vaidosasclub.com/search/label/OPI
216.239.34.21301 Moved Permanently 224 B URL HTTP/1.1 vaidosasclub.com/search/label/OPI
IP 216.239.34.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 17a922cf5a836620d880476b5967f6ec
d6ffa76c07fe613befd359bdb674401933e48fa6
16a62dcb9a7b8aac74bc315c988d2c24941f89eeed2d4e4148ddc8cab87c03b3
Analyzer Verdict Alert fortinet Malware
GET /search/label/OPI HTTP/1.1
Host: vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.vaidosasclub.com
Date: Tue, 31 Jan 2023 01:55:15 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 224
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8675
Expires: Tue, 31 Jan 2023 04:19:50 GMT
Date: Tue, 31 Jan 2023 01:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10841
Expires: Tue, 31 Jan 2023 04:55:56 GMT
Date: Tue, 31 Jan 2023 01:55:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6123
Expires: Tue, 31 Jan 2023 03:37:18 GMT
Date: Tue, 31 Jan 2023 01:55:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 01:43:15 GMT
content-type: application/json
age: 720
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mWsknPJf+NqCTeuImbB+4+aPuWFFqPz9u61bcx7RmP8xXU5xB3KM1SQfOTnDe3fFDziNC+R9yYMenufFOk/6qw==
x-amz-request-id: NWCC9NHBRPA55VMK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 01:50:59 GMT
age: 257
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 01:55:16 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 01:49:04 GMT
age: 372
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9334
Expires: Tue, 31 Jan 2023 04:30:50 GMT
Date: Tue, 31 Jan 2023 01:55:16 GMT
Connection: keep-alive
www.vaidosasclub.com/
172.217.21.179200 OK 26 kB IP 172.217.21.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2440)
Hash 2dc0e0c4ab714bc9620aa3a77d389502
03cd577be0d908791caf23776c7ff3780a3cd50f
cf9f6ee5322d5555fe1f7b9c9b47774b9083d3a7d6be957f8248445ff498456a
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 31 Jan 2023 01:55:16 GMT
Date: Tue, 31 Jan 2023 01:55:16 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
ETag: W/"df49512502ac1ef5107a3cb76dc241a4aa489d90a42bdfe32ca1a55f094fce22"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 26086
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
142.250.74.42200 OK 34 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.8.2/jquery.min.js
IP 142.250.74.42:0
File type Unicode text, UTF-8 text, with very long lines (65480)
Hash b582b2eca79a750948dbb3777aeaaadb
bf0ea1c8a7b4a55779cbb3df1f1d75cc19910e9f
04c7f19e1ae294cc641f6c497653b5c13c41b258559f5f05b790032ccca16c82
GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33621
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 28 Jan 2023 15:53:26 GMT
Expires: Sun, 28 Jan 2024 15:53:26 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 208910
fonts.googleapis.com/css?family=Open+Sans+Condensed:300,300italic,700
142.250.74.106200 OK 690 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans+Condensed:300,300italic,700
IP 142.250.74.106:0
Hash da0af72dad33e208c5ba221c13f0fe0f
75ddbe8df06d59253d4fc64bd965b9c76995e67c
d582f0245acbfd3503451f2be53ab5da97e6fa4bfe9a22b4fd08f198cddf318c
GET /css?family=Open+Sans+Condensed:300,300italic,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 31 Jan 2023 01:55:16 GMT
Date: Tue, 31 Jan 2023 01:55:16 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
static.tumblr.com/wvgucgb/AQdnb2liy/cufon.js
192.0.77.40301 Moved Permanently 162 B URL HTTP/1.1 static.tumblr.com/wvgucgb/AQdnb2liy/cufon.js
IP 192.0.77.40:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /wvgucgb/AQdnb2liy/cufon.js HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://static.tumblr.com/wvgucgb/AQdnb2liy/cufon.js
static.tumblr.com/uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js
192.0.77.40301 Moved Permanently 162 B URL HTTP/1.1 static.tumblr.com/uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js
IP 192.0.77.40:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://static.tumblr.com/uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js
push.services.mozilla.com/
52.39.176.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.176.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iba5XzYzNSxnctI6b7pZ1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F92L9LQN1IHIykwHFGjl3dRL/a4=
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.110301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 31 Jan 2023 01:55:16 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Tue, 31 Jan 2023 01:55:16 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116325 bytes)
Hash ff4671f71c958029bbf6d9694284da70
7535744f2dbaf99902a54fc529e760b08a73f265
123f781673b2e45e18df36b64984674f489a5f3541c69e295f01f554b8d3c738
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116325
date: Tue, 31 Jan 2023 01:55:16 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 59c5cc0cf7d0b64734f3ee24cdc2482c
5bd095eba6421e1b275b861f98cd2372b9a0555e
59cfcaa12a4de87b420f02bdb01599a0ef3c133607eb5ba961098d648fbabbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:27:21 GMT
expires: Fri, 26 Jan 2024 03:27:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: text/css
age: 426476
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1a17f5bd9cf6bb2ec333fa6eeefb3345
d00ac8d8036e4b5e584006b4446b95445835ea09
4ad64978a243ed85af02e7128e8c0b809709be861997dca42a6f21b4f728766e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.tumblr.com/wvgucgb/AQdnb2liy/cufon.js
192.0.77.40200 OK 7.6 kB URL HTTP/2 static.tumblr.com/wvgucgb/AQdnb2liy/cufon.js
IP 192.0.77.40:0
File type ASCII text, with very long lines (18158), with CRLF line terminators
Hash 16d3b4433c28cf5fe016fd18c5d96997
d2b07d68b54983dc95308cebc58eb1acfd46de30
855704781b13a291855e11405aa51806d46714be528e76aed41cd79cd8788e6e
GET /wvgucgb/AQdnb2liy/cufon.js HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 01:55:16 GMT
content-type: application/javascript
last-modified: Fri, 29 Aug 2014 13:30:35 GMT
etag: W/"2ef30245466e5023c2187d138075cb5a"
content-encoding: br
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-nc: HIT arn 1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Tue, 31 Jan 2023 01:55:17 GMT
expires: Tue, 31 Jan 2023 01:55:17 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "03884666a30c671f"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/Miss%20R%C3%B4se?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 7.2 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Miss%20R%C3%B4se?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (25608)
Hash 00a7a27ead26d32c068ef21c21b2384d
aa1a0b6ab2be210178b2cd0575e8f0f995533c83
e38c0612c9ef88dd1bf1941bd97f974a8205f79ad83b4f525b20c2007c02bec4
GET /feeds/posts/default/-/Miss%20R%C3%B4se?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"480c20f39f1b4682f796229841bcce8f0c63e22b5642f172baf3b715cbd62f2f"
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7196
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Patty%20Pel%C3%ADculas%20de%20Unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Patty%20Pel%C3%ADculas%20de%20Unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31908)
Hash f375c168e76c00798e3f458517cf5e51
3618af4b754c3f2744e3f0116cf167ee99c8b415
186a9629afeeb5420bc5bd3cc6e4e80ec50d7622e854109a402fa40f04b883fe
GET /feeds/posts/default/-/Patty%20Pel%C3%ADculas%20de%20Unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"4befc0b9934f8d1fcd202f0c5f59b3eb4496a177a5314cc13422db8f61dd20fc"
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8010
X-Frame-Options: SAMEORIGIN
www.julianaplf.com/scriptanimacao.js
190.2.139.23200 OK 6.7 kB URL HTTP/1.1 www.julianaplf.com/scriptanimacao.js
IP 190.2.139.23:0
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (14645)
Hash d1094367a4f0247ada564adf6859aad7
ba2e1b3de60a9374b76dc5af0c75be6b9c0c6ec4
13581d34843791fc86af48fef07c1fadd85df1c27bd402bfbecf43907d6e9f80
Analyzer Verdict Alert fortinet Malware
GET /scriptanimacao.js HTTP/1.1
Host: www.julianaplf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
X-Powered-By: PHP/7.2.34
Content-Encoding: gzip
www.vaidosasclub.com/feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 9.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (33241)
Hash 55f2a0dde85d5b7b535a263e1a08169f
9c0da11b4b291d28a1b5e532fd9956c5914d197c
97a01686c8e8b20f7b443b23a7c035300f07522a7f3dccbab7905f414b34a015
GET /feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"2b50c3774d22f734ada61c9ab0a4e6a0b803e51770c4fd44e69e09dc9abd1bbf"
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 9048
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 59c5cc0cf7d0b64734f3ee24cdc2482c
5bd095eba6421e1b275b861f98cd2372b9a0555e
59cfcaa12a4de87b420f02bdb01599a0ef3c133607eb5ba961098d648fbabbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 59c5cc0cf7d0b64734f3ee24cdc2482c
5bd095eba6421e1b275b861f98cd2372b9a0555e
59cfcaa12a4de87b420f02bdb01599a0ef3c133607eb5ba961098d648fbabbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/tutorial?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 12 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/tutorial?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (44651)
Hash 9feea56803f31e33978cfd52a2d840e0
33a7b91ca9b1f096b9f665b3a147d8c9be42e1a1
b8b69c65c7e685ae526c9f0a6eeea59630d54f95052e64aa4b42f8b387005171
GET /feeds/posts/default/-/tutorial?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"09d1d5e913f334c01109c99d932a5f3fd8708d685c1e7471c48a2c89de1ce11b"
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 12216
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31390)
Hash 207c01ab73aa7747c2600b60340ae423
4b084d91eff08d1be69075b461db25f2a7d6e696
c9d416e8bfd9f3e1d9e7b8673cd648964fb97ca042020cf3c0da315aa01bedc2
GET /feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"c21ebc3a6cb66429be35f8505fd4ccfb3e13a485684c71a49e13cae0a5945d55"
Date: Tue, 31 Jan 2023 01:55:16 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7979
X-Frame-Options: SAMEORIGIN
i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/140802_DIVULGACcedilAtildeOPARCERIA_zps34d5e0b2.png
54.230.111.17301 Moved Permanently 167 B URL HTTP/1.1 i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/140802_DIVULGACcedilAtildeOPARCERIA_zps34d5e0b2.png
IP 54.230.111.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/x412/PandoraDaena/Vaidosas%20Club/140802_DIVULGACcedilAtildeOPARCERIA_zps34d5e0b2.png HTTP/1.1
Host: i1180.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/140802_DIVULGACcedilAtildeOPARCERIA_zps34d5e0b2.png
X-Cache: Redirect from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: b7zKM9oQxkfk4LKMWzSheapIALQ4EflCkdhOSSMPAaFDLKfGKbUMFQ==
Vary: Origin
i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/LINK%20US2_zpshdfko5lo.png
54.230.111.17301 Moved Permanently 167 B URL HTTP/1.1 i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/LINK%20US2_zpshdfko5lo.png
IP 54.230.111.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/x412/PandoraDaena/Vaidosas%20Club/LINK%20US2_zpshdfko5lo.png HTTP/1.1
Host: i1180.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1180.photobucket.com/albums/x412/PandoraDaena/Vaidosas%20Club/LINK%20US2_zpshdfko5lo.png
X-Cache: Redirect from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1yiutlBd8vP6zNGhDMNmdAu5ti89fgU0vhd9gDsVYhPBuD3gcktcpA==
Vary: Origin
i.imgur.com/xbYSX25.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /xbYSX25.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/xbYSX25.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:17 GMT
X-Served-By: cache-hel1410020-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.522824,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/7AWsYIE.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7AWsYIE.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/7AWsYIE.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:17 GMT
X-Served-By: cache-hel1410027-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.537718,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s72-c/miss%2Brose%2Be%2Bppu%2B04.png
142.250.74.161200 OK 12 kB URL HTTP/1.1 1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s72-c/miss%2Brose%2Be%2Bppu%2B04.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 6cb54e4ef5fc96f8ccfc31967b78514d
fcfe182c4d0aaef38e443f3aa73aee6bb91b81d2
e67a2c29fbf3433b64c9d54f1174520d4d800c9c3f58703508100a51a928da64
GET /-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s72-c/miss%2Brose%2Be%2Bppu%2B04.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve65"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose e ppu 04.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 12051
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/cremoso?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 5.9 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/cremoso?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (18803)
Hash bf322e2963443f5596440c1ad11dba6d
c87dd6d406ed3ccde93c56c968fccfd793e74344
76f96f0ac5b03d9223b9066110011baf9251bdc1cd2d8ae6f0b4b326784b07c9
GET /feeds/posts/default/-/cremoso?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"fd95bb8163c649771d15795175a7f334114c4d409b71f8ba0a57294b59a49db7"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5875
X-Frame-Options: SAMEORIGIN
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:17 GMT
Connection: keep-alive
Content-Length: 0
1.bp.blogspot.com/-biX3oUtjCz0/VMHLDWx8FUI/AAAAAAAADmE/DiHM1rfhJoI/s1600/miss%2Brose%2Be%2Bppu%2B03.png
142.250.74.161200 OK 425 kB URL HTTP/1.1 1.bp.blogspot.com/-biX3oUtjCz0/VMHLDWx8FUI/AAAAAAAADmE/DiHM1rfhJoI/s1600/miss%2Brose%2Be%2Bppu%2B03.png
IP 142.250.74.161:0
File type PNG image data, 502 x 502, 8-bit/color RGB, non-interlaced\012- data
Size 425 kB (424720 bytes)
Hash 3b99637abc2982a400e436dfd31b5a6e
d8b5998623361665ede8938dbdec844e0f581d83
73620190ad9eea8899ab137c9dc4704bf77b115eba9c2282e4bb2e581f115d7a
GET /-biX3oUtjCz0/VMHLDWx8FUI/AAAAAAAADmE/DiHM1rfhJoI/s1600/miss%2Brose%2Be%2Bppu%2B03.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve64"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose e ppu 03.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 424720
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/Doc?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 5.9 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Doc?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (18795)
Hash 0ef4e366bd1fe6787699e47203fc59d1
d789463fc0a843576bef97fb5416838b9f7dda03
d09e53ccde4a38d2c73a9effde0b85935e6caa53cf5617a7281abd607191a7fa
GET /feeds/posts/default/-/Doc?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"fee57116bc0735bea248c295d9820dc6cd5b67fc9fe6991e0a0acf517f260207"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5874
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.1 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31616)
Hash d8dd75876303c5a712058ffc7c685a16
d56750664b28cda702417ec550d456a32250efdd
648877d70ef9b7e367d8a9f752582400d58723627a298475e233dabac6018c43
GET /feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"bc276efec02961a42c5d52a000c4239219868091bb030f28c82d9b0114e2a3b6"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8136
X-Frame-Options: SAMEORIGIN
i.imgur.com/WqJo5sr.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WqJo5sr.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/WqJo5sr.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:17 GMT
X-Served-By: cache-hel1410031-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.593318,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/dAe3cNz.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dAe3cNz.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/dAe3cNz.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:17 GMT
X-Served-By: cache-hel1410031-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.623845,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fa4e3a6c0ea0d843f6f77af6a290fca
965944af181e8d47677e5b428e8a3233c942cf99
801765bb2eb7f84e39a58691c4798b32ccd9e6ed22e924754d26277f4f2e0b11
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1433
Cache-Control: max-age=103303
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Etag: "63d75ff3-1d7"
Expires: Wed, 01 Feb 2023 06:37:00 GMT
Last-Modified: Mon, 30 Jan 2023 06:13:07 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
i.creativecommons.org/l/by-nc-nd/4.0/88x31.png
172.67.34.140301 Moved Permanently 155 B URL HTTP/1.1 i.creativecommons.org/l/by-nc-nd/4.0/88x31.png
IP 172.67.34.140:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 42c394b8f0152b372537ace9acc3f7bb
1219c55c4e3ea109c473aab65deb81f09a0fe0a6
6aaad3365c30c4f8d2504e569527e588d33eeae66dd7045bcfeef7413820db2a
GET /l/by-nc-nd/4.0/88x31.png HTTP/1.1
Host: i.creativecommons.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://licensebuttons.net/l/by-nc-nd/4.0/88x31.png
Strict-Transport-Security: max-age=15768000
X-Content-Type-Options: nosniff
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
Cache-Control: max-age=432000
CF-Cache-Status: HIT
Age: 93
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791ed3039cb70b39-OSL
1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s1600/miss%2Brose%2Be%2Bppu%2B04.png
142.250.74.161200 OK 430 kB URL HTTP/1.1 1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s1600/miss%2Brose%2Be%2Bppu%2B04.png
IP 142.250.74.161:0
File type PNG image data, 502 x 502, 8-bit/color RGB, non-interlaced\012- data
Size 430 kB (430006 bytes)
Hash 78918b2758b4e4aa3f776e70da89a79f
9a529d0b83ab91e698ebebdaf962224672155d8e
e6f1786c0ea37e186fdcb76bbe10b31d7a11c0a1dfc534d7aeeafaa76ea1e846
GET /-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s1600/miss%2Brose%2Be%2Bppu%2B04.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve65"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose e ppu 04.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 430006
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/amarelo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.4 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/amarelo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (32313)
Hash 9526ae94457881116e2be16584ca4761
cb715b4ee0342298a235d05c9fd2154bfd920f98
aa92eb5cfffd029d76b4d16bffbebf8d1c0cfd18f4867d6b9133c04be31c3401
GET /feeds/posts/default/-/amarelo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"65150fa4720ef6378f4669cdffc58fa3182f9ce110d211dc538ef44d16b46ed6"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8412
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Essence?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 9.4 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Essence?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (37108)
Hash 0d833c13ebd193a43e7051ead86c86da
68d83fc90c4b0d5563a0b14f32eb50125a78df9e
5f4f040dbbbd41a5fae5833edb767c5f96a55a62036666d1a4751a9ba4d99032
GET /feeds/posts/default/-/Essence?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"2d06883e0ddc09bc86b1c37c42babab25980c7c7502985c97c1f9083ec500f39"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 9354
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-0luHjtV9hNw/UwD4QQy5mGI/AAAAAAAADfg/3m87m_WqcG4/s1600/logo_topo.png
142.250.74.161200 OK 40 kB URL HTTP/1.1 1.bp.blogspot.com/-0luHjtV9hNw/UwD4QQy5mGI/AAAAAAAADfg/3m87m_WqcG4/s1600/logo_topo.png
IP 142.250.74.161:0
File type PNG image data, 302 x 133, 8-bit/color RGBA, non-interlaced\012- data
Hash ebd2325aa25ebebb17efd387210e827f
f701587604d4044a6ffdbbc914ebc639cbfc965b
1d0d1d43b4f19195d7b31893932b9916f812379f369a3361df170be2a69a1654
GET /-0luHjtV9hNw/UwD4QQy5mGI/AAAAAAAADfg/3m87m_WqcG4/s1600/logo_topo.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdf9"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logo_topo.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 40164
X-XSS-Protection: 0
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2016/03/jotform.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 3VlwIxoaypJG57N5YA61MNljwX9DmWOu5qeIihUUFE0KD6juIzWr6+zQIoZ+WHGZRRjp3bNOOHNquY/wrcOirA==
content-length: 0
date: Tue, 31 Jan 2023 01:55:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
i.imgur.com/dAe3cNz.png
151.101.244.193200 OK 2.1 kB IP 151.101.244.193:0
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 88191eeda3e9ef7253a658c160af71ee
38463d270d3b67d16b57af43979930f5f4dd68e2
11ca3dc06f76d47fba047326754b5915b5f71cc3fb5f557e8dc015ea3cc2c7bd
GET /dAe3cNz.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 01:56:27 GMT
etag: "88191eeda3e9ef7253a658c160af71ee"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:17 GMT
age: 402354
x-served-by: cache-iad-kiad7000120-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 4, 0
x-timer: S1675130118.669457,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2135
X-Firefox-Spdy: h2
i.imgur.com/DbFcWvH.png
151.101.244.193200 OK 2.4 kB IP 151.101.244.193:0
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f713243a9d024593eac0a18e2ff3193
c32a4889887bc081d4e0b70378a8af455cffc885
40147f7ded92700a5b14641aa5062679a2f4dd49014e154871b89b252df189c4
GET /DbFcWvH.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 01:56:29 GMT
etag: "2f713243a9d024593eac0a18e2ff3193"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:17 GMT
age: 341203
x-served-by: cache-iad-kjyo7100044-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 4, 0
x-timer: S1675130118.669600,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2361
X-Firefox-Spdy: h2
i.imgur.com/xbYSX25.png
151.101.244.193200 OK 2.6 kB IP 151.101.244.193:0
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash e7c3188611a33938c6714e8394ae032e
f85d217ef30df4ebe6d299d165b2c11d8b1a63b3
4f833fcd23d2e7cccc9e65f1b4d1e313c72e9b22fb3519dff25b9fa00ccb7f72
GET /xbYSX25.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 01:56:28 GMT
etag: "e7c3188611a33938c6714e8394ae032e"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:17 GMT
age: 1205870
x-served-by: cache-iad-kcgs7200034-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 19, 0
x-timer: S1675130118.670766,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 2643
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-ytMRBkt3Geo/VDAk0pk2grI/AAAAAAAAAEc/s3VD8EiBXww/s1600/SAM_2171.JPG
142.250.74.161200 OK 109 kB URL HTTP/1.1 3.bp.blogspot.com/-ytMRBkt3Geo/VDAk0pk2grI/AAAAAAAAAEc/s3VD8EiBXww/s1600/SAM_2171.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 1000x750, components 3\012- data
Size 109 kB (109237 bytes)
Hash 7c78ef3c1060c8cdebced6b4aca6e5c4
f1066a5ae489a30de878a1cc75a08b66bb044047
9429fd14271d7ddcf3eae782ffb19ed2813dbcd1ef05b5097db59d26acf8aa83
GET /-ytMRBkt3Geo/VDAk0pk2grI/AAAAAAAAAEc/s3VD8EiBXww/s1600/SAM_2171.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v48"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2171.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 109237
X-XSS-Protection: 0
3.bp.blogspot.com/-pWptS2TdULQ/VB42Ps6fugI/AAAAAAAAADg/my8RQbl_RI0/s1600/SAM_2196.JPG
142.250.74.161200 OK 99 kB URL HTTP/1.1 3.bp.blogspot.com/-pWptS2TdULQ/VB42Ps6fugI/AAAAAAAAADg/my8RQbl_RI0/s1600/SAM_2196.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 1000x755, components 3\012- data
Hash ce199cb1d51c1b6bc6a1465ad9928939
c70dd1ef1a5bafc0b1869eed7a9592d7ca66e41a
2cddff334a31d07d6947fb8698c093987c9c088a99b00c4aca892d0f9b0d2535
GET /-pWptS2TdULQ/VB42Ps6fugI/AAAAAAAAADg/my8RQbl_RI0/s1600/SAM_2196.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3b"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2196.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 98661
X-XSS-Protection: 0
1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s1600/SAM_2166.JPG
142.250.74.161200 OK 182 kB URL HTTP/1.1 1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s1600/SAM_2166.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 1000x765, components 3\012- data
Size 182 kB (182544 bytes)
Hash 9a455087f2174d91f6add76a1a73b9a5
747e64b519cf98f71756c358ef488b624b0daf84
af4975cbebced30d568ff083cf1e211bc0233d256b5980a6afb1c43b4a1e2178
GET /-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s1600/SAM_2166.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2166.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 182544
X-XSS-Protection: 0
3.bp.blogspot.com/-EIBA-Y_B5Ek/VGa5nXd4N2I/AAAAAAAAAFc/q12Cdy8OEK8/s1600/IMG_20141024_124041328_HDR.jpg
142.250.74.161200 OK 209 kB URL HTTP/1.1 3.bp.blogspot.com/-EIBA-Y_B5Ek/VGa5nXd4N2I/AAAAAAAAAFc/q12Cdy8OEK8/s1600/IMG_20141024_124041328_HDR.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x973, components 3\012- data
Size 209 kB (208961 bytes)
Hash f4c7fb0725fa583b5d4ea2b1efe1d18c
b1b5453b44f3e4d4456a865176edda04c43da99d
33a88d0d0e4c329784e1896aebd00b6565e5a9a517419e4f4440ac38fb244fe7
GET /-EIBA-Y_B5Ek/VGa5nXd4N2I/AAAAAAAAAFc/q12Cdy8OEK8/s1600/IMG_20141024_124041328_HDR.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v59"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141024_124041328_HDR.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 208961
X-XSS-Protection: 0
3.bp.blogspot.com/-T7P7r8g8cIs/VGa5n8yu26I/AAAAAAAAAFg/BgQ0-bo-ahg/s1600/IMG_20141024_124019152.jpg
142.250.74.161200 OK 160 kB URL HTTP/1.1 3.bp.blogspot.com/-T7P7r8g8cIs/VGa5n8yu26I/AAAAAAAAAFg/BgQ0-bo-ahg/s1600/IMG_20141024_124019152.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x900, components 3\012- data
Size 160 kB (159659 bytes)
Hash 937b8773388e664a183f2ebffe10699a
12832d1649527a986febc5a50b2bcfccd82b3528
3ef7a31173a8631ca14226c1edfe10aeb97e990dc914d91abf58fc0fef7ffa33
GET /-T7P7r8g8cIs/VGa5n8yu26I/AAAAAAAAAFg/BgQ0-bo-ahg/s1600/IMG_20141024_124019152.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5a"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141024_124019152.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 159659
X-XSS-Protection: 0
1.bp.blogspot.com/-gFNCy8fAy1c/VElKfWMWSVI/AAAAAAAADlk/Uh-kjM9_rvg/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B02.png
142.250.74.161200 OK 450 kB URL HTTP/1.1 1.bp.blogspot.com/-gFNCy8fAy1c/VElKfWMWSVI/AAAAAAAADlk/Uh-kjM9_rvg/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B02.png
IP 142.250.74.161:0
File type PNG image data, 502 x 502, 8-bit/color RGB, non-interlaced\012- data
Size 450 kB (450527 bytes)
Hash c15574b1d9613d2bdf6783432f25aa5d
5e24e4b377ed29cdbae77598b96a2ec59c34f6e1
f19a47bc0f5660fc87debfa968e4f06cf090bb4c5d630d6e90b803e1d03d9252
GET /-gFNCy8fAy1c/VElKfWMWSVI/AAAAAAAADlk/Uh-kjM9_rvg/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B02.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve5b"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="purple panic e tudo para unhas bh 02.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 450527
X-XSS-Protection: 0
i.imgur.com/7AWsYIE.png
151.101.244.193200 OK 117 kB IP 151.101.244.193:0
File type PNG image data, 242 x 455, 8-bit/color RGBA, non-interlaced\012- data
Size 117 kB (116810 bytes)
Hash c77fff64a5c69724da840fb3bdce6228
6e7bb87bef3a31864b03e5c54ea0dc4c7f70d41b
3370a40ee657943849e2b1f5ad25a69f72e0e808cc4896987bc0f07a7b648eb3
GET /7AWsYIE.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 14:03:43 GMT
etag: "c77fff64a5c69724da840fb3bdce6228"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:17 GMT
age: 1654640
x-served-by: cache-iad-kiad7000087-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 37, 0
x-timer: S1675130118.670838,VS0,VE99
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 116810
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 378874
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 7.7 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (30813)
Hash 64e1d4e8101d2ec01e176636f4bfbdce
ea0f3dfb48bb903bd506abca7e5a1d0ebd710764
973c16254bf18575f90cc6833a94f4bd0755d1b8706dc122d5614381c97e8d1d
GET /feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7748
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-WxvjUsRLAS8/UTDFZ9aHpRI/AAAAAAAABBI/eGDDE89R-p0/s72-c/350.JPG
142.250.74.161404 Not Found 1.7 kB URL HTTP/1.1 4.bp.blogspot.com/-WxvjUsRLAS8/UTDFZ9aHpRI/AAAAAAAABBI/eGDDE89R-p0/s72-c/350.JPG
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
GET /-WxvjUsRLAS8/UTDFZ9aHpRI/AAAAAAAABBI/eGDDE89R-p0/s72-c/350.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 360434
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.2 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31945)
Hash 4460ac3222ab3432b73bd89a82201d85
d0aa12364eb28c128be7b50f5c814acacc5dcba9
6096607addafcfa6e6e40d07a8c89d8d628d0d721efeb2594277cf17ff1f708d
GET /feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8238
X-Frame-Options: SAMEORIGIN
i.imgur.com/WqJo5sr.png
151.101.244.193200 OK 618 kB IP 151.101.244.193:0
File type PNG image data, 2730 x 1450, 8-bit/color RGBA, non-interlaced\012- data
Size 618 kB (618214 bytes)
Hash b8120e02343d093a1987f5ba8f31ddd2
da977fdc53c68cba3b3f98d20ab8f072457baad8
51afb10fe30801ddc8ccd4e3171342f8ed6e4202b35d454effc685f1c9c668ac
GET /WqJo5sr.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Apr 2015 13:22:38 GMT
etag: "b8120e02343d093a1987f5ba8f31ddd2"
x-amz-storage-class: STANDARD_IA
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:17 GMT
age: 1194879
x-served-by: cache-iad-kiad7000134-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 13, 0
x-timer: S1675130118.669506,VS0,VE235
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 618214
X-Firefox-Spdy: h2
i.imgur.com/eZoSYNb.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eZoSYNb.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/eZoSYNb.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:17 GMT
X-Served-By: cache-hel1410023-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.926732,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
static.tumblr.com/uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js
192.0.77.40200 OK 39 kB URL HTTP/2 static.tumblr.com/uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js
IP 192.0.77.40:0
File type ASCII text, with very long lines (44328)
Hash 49af207c196f74ba64ee11e16a287535
7e2e3b998c9b8fcdd9250b8ee2c881c9727c67f9
7b15eca38fe910d4306bb1d8d78c146da0c99164d6f8d52adc51a08a16adfd70
GET /uoel5vg/oRsnmygig/karine_aime_les_chocolats_400.font.js HTTP/1.1
Host: static.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 01:55:17 GMT
content-type: application/javascript
last-modified: Fri, 17 Apr 2015 14:35:05 GMT
etag: W/"0ae6e0d0e50b2b8a376dd8b2de1b620e"
content-encoding: br
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-allow-origin: *
access-control-max-age: 86400
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-nc: MISS arn 1
strict-transport-security: max-age=31536000; preload
X-Firefox-Spdy: h2
4.bp.blogspot.com/-jb3qwNcdWsA/VDAkyU9YnyI/AAAAAAAAAEU/0MpW6sFLPfU/s1600/SAM_2170.JPG
142.250.74.161200 OK 185 kB URL HTTP/1.1 4.bp.blogspot.com/-jb3qwNcdWsA/VDAkyU9YnyI/AAAAAAAAAEU/0MpW6sFLPfU/s1600/SAM_2170.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 1000x750, components 3\012- data
Size 185 kB (185153 bytes)
Hash 17bca0de47cabba0c4193d9782f5fd80
123b38c498f052ee913ddf71d12ecfdac72045b5
deb3bc427b52475dbccadb74590872cc6c1cee856f3b1d4ba9cc5fde3fe22e38
GET /-jb3qwNcdWsA/VDAkyU9YnyI/AAAAAAAAAEU/0MpW6sFLPfU/s1600/SAM_2170.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v46"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2170.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 185153
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f76423be15666b5dc8814937391dd9c3
a502da01c2a309f309f37892666ec13853da268a
2c1a3476b98d2b73afd84741b9ec3919222ae4842f180e3ed68df835409dd378
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C1A3476B98D2B73AFD84741B9EC3919222AE4842F180E3ED68DF835409DD378"
Last-Modified: Sat, 28 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3872
Expires: Tue, 31 Jan 2023 02:59:49 GMT
Date: Tue, 31 Jan 2023 01:55:17 GMT
Connection: keep-alive
1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s1600/IMG_20141022_122305331.jpg
142.250.74.161200 OK 263 kB URL HTTP/1.1 1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s1600/IMG_20141022_122305331.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x948, components 3\012- data
Size 263 kB (263152 bytes)
Hash 20d607a3ddc91b11e17efe4db66d562f
8884509aa6fbee71b80bffce28352e12f82b6d45
6c27cb1b8f5be0687d98560f48bab5e763ff01225bb4e57a14aa9fb3c48f1547
GET /-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s1600/IMG_20141022_122305331.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141022_122305331.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 263152
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/Snow%20White?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 5.9 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Snow%20White?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (18811)
Hash 1d1b49b48abbecbc1f51f5791bd885f0
17bd07b452fea38e339e98760fb4ac3d66346cdd
409807580fad1e7b526c2fc0764c728d47edc23267363ac01d00d9620e273926
GET /feeds/posts/default/-/Snow%20White?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"03dee672f74f2b2048d6c6588b1b81885f65289d845d22205827080cc723e6d0"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5884
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-ab7lXptmnPg/VMHNseXUsJI/AAAAAAAADmY/A2XvpoMSUwI/s1600/Vaidosas13.png
142.250.74.161200 OK 134 kB URL HTTP/1.1 2.bp.blogspot.com/-ab7lXptmnPg/VMHNseXUsJI/AAAAAAAADmY/A2XvpoMSUwI/s1600/Vaidosas13.png
IP 142.250.74.161:0
File type PNG image data, 434 x 398, 8-bit/color RGB, non-interlaced\012- data
Size 134 kB (133638 bytes)
Hash 6907ea925354d6733f105a73fd11716c
3f3d5aa4142b6e2a80f8dd0bad5a68b42fb6da7b
ecfb2f9c956b04131efd64d19f51f41829938741f229adb4018750a53f46938b
GET /-ab7lXptmnPg/VMHNseXUsJI/AAAAAAAADmY/A2XvpoMSUwI/s1600/Vaidosas13.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve67"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Vaidosas13.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 133638
X-XSS-Protection: 0
1.bp.blogspot.com/-03pMSMl_9IU/VGajgVDvAuI/AAAAAAAAAEs/uWAW4fZzQqo/s1600/IMG_20141022_122305332.jpg
142.250.74.161200 OK 293 kB URL HTTP/1.1 1.bp.blogspot.com/-03pMSMl_9IU/VGajgVDvAuI/AAAAAAAAAEs/uWAW4fZzQqo/s1600/IMG_20141022_122305332.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x948, components 3\012- data
Size 293 kB (293331 bytes)
Hash 8c302228d675fedb82843a585e28bfd0
35c8a1a11bef3aafc1f60889342f5cefdf3b1daa
2883ec7ff5441462e4f47e3469a9ee27d733f78c7d7d21180349b4db06d31cad
GET /-03pMSMl_9IU/VGajgVDvAuI/AAAAAAAAAEs/uWAW4fZzQqo/s1600/IMG_20141022_122305332.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4d"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141022_122305332.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 293331
X-XSS-Protection: 0
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2015/01/miss-rose-e-ppu.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2015/01/miss-rose-e-ppu.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2015/01/miss-rose-e-ppu.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2015/01/miss-rose-e-ppu.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
Content-Length: 0
fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
216.58.207.227200 OK 15 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 14964, version 1.0\012- data
Hash 44b4e1e6aecc684d11fe7501dd36df19
59e2710168a0d6889a24eaaa5134114f7e258461
6b0b111ca14c2147a0f0cb51f1317290eb5ec19b4a9bea595a5ad7ffb7d9661a
GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff1GhDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.vaidosasclub.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 14964
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 15:55:18 GMT
Expires: Sat, 27 Jan 2024 15:55:18 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:08:11 GMT
Content-Type: font/woff2
Age: 295200
www.vaidosasclub.com/feeds/posts/default/-/Bourjois?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 6.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Bourjois?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (19120)
Hash 6861eb9d083a8b9fdc96c887382c038a
1f2f4774daccc5137b17e39d51b7b57a6360e7e4
20d44a7151547404dcdd5d82278d86c1f4c0610eed594229a86e4feb4e1166e9
GET /feeds/posts/default/-/Bourjois?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"be7a9846a7d868f6d89c1d68967f5fc46f9ccd29e3933eca4e3ea5e6b63870d6"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5980
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81493fd195a3491d711dc88dbeddeebd
0477afe9d58f0987d2b3be6edc5b5649907a8ddc
8f449f97e28164244431a71b78ffaae82dd8f704db311d43a6ba8d89d2c94626
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "8F449F97E28164244431A71B78FFAAE82DD8F704DB311D43A6BA8D89D2C94626"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20405
Expires: Tue, 31 Jan 2023 07:35:23 GMT
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
2.bp.blogspot.com/-ge9zmN8tGu8/UwD5_kvKCQI/AAAAAAAADfs/_jng1EPZQ3c/s1600/miss+rose.png
142.250.74.161200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/-ge9zmN8tGu8/UwD5_kvKCQI/AAAAAAAADfs/_jng1EPZQ3c/s1600/miss+rose.png
IP 142.250.74.161:0
File type PNG image data, 233 x 103, 8-bit/color RGBA, non-interlaced\012- data
Hash d669b66881ef54da720d834318ebcd43
3d64282cdb713e1bc9501cc3f7b0c5cde7bb6236
bad7e5d534e22777620b2c48d6be489d762f9852695d0f8dec02773f53b54bea
GET /-ge9zmN8tGu8/UwD5_kvKCQI/AAAAAAAADfs/_jng1EPZQ3c/s1600/miss+rose.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdfc"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 12165
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
142.250.74.161200 OK 444 kB URL HTTP/1.1 2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
IP 142.250.74.161:0
File type PNG image data, 502 x 502, 8-bit/color RGB, non-interlaced\012- data
Size 444 kB (443634 bytes)
Hash f18100ab3c90486895077560eed1e2ec
bede6ba167ddd438f7be0d01edd94d04f9f173a8
c72172abea118b6d15f0ac161719b6eceb3a7fb4c113450ce39b52fa0e76fdc2
GET /-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s1600/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve5c"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="purple panic e tudo para unhas bh 01.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 443634
X-XSS-Protection: 0
cleverjump.org/counter.js
217.23.10.44200 OK 5.6 kB URL HTTP/1.1 cleverjump.org/counter.js
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type ASCII text, with CRLF line terminators
Hash 83126dc4af783a2179ab362a5bbec530
b1fe91477d92ab09066f28ddda5b31a4bf0f1689
cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4
GET /counter.js HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: application/javascript
Content-Length: 5571
Last-Modified: Wed, 20 Jan 2021 12:50:32 GMT
Connection: keep-alive
ETag: "60082718-15c3"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes
i.imgur.com/uHzFH3N.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /uHzFH3N.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/uHzFH3N.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410030-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.077942,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
www.vaidosasclub.com/feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 9.2 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (35798)
Hash 7435d1b8c949839a1688b6df54e4cfba
5808b6eab622684672c17463818d47e3b9b5647b
0ffaee9462f6ff896368166e514bb04b70dd3f1722f23190312224d8aab74766
GET /feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"be9b54ca923119cc992f0e2f63ee5ab44b9b86660c48667a0399f999fabcad73"
Date: Tue, 31 Jan 2023 01:55:17 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 9199
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 82bbc55c2e2fab9fe081fbe7df772fe7
833d1def56fbc7c9b9785e2d68444487fc6a0eb0
59d16335e59b97349293f3ae1eca1d42767b2172b30475be384bbbd33d01822d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59D16335E59B97349293F3AE1ECA1D42767B2172B30475BE384BBBD33D01822D"
Last-Modified: Sun, 29 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14975
Expires: Tue, 31 Jan 2023 06:04:53 GMT
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
1.bp.blogspot.com/-DEwyp8eSUv0/UwD6ZLd77qI/AAAAAAAADf0/1J28VhqHYdM/s1600/ng.png
142.250.74.161200 OK 15 kB URL HTTP/1.1 1.bp.blogspot.com/-DEwyp8eSUv0/UwD6ZLd77qI/AAAAAAAADf0/1J28VhqHYdM/s1600/ng.png
IP 142.250.74.161:0
File type PNG image data, 167 x 167, 8-bit/color RGB, non-interlaced\012- data
Hash 9cb3b6a9655a64330a655cbbe6afd30b
b81ff6bd4b2c3b9dccc88d8e52a578f3566cc280
058686ad76b2e1df2e2a9877833faded00637e00c2448e5b1a27380b76fd1e42
GET /-DEwyp8eSUv0/UwD6ZLd77qI/AAAAAAAADf0/1J28VhqHYdM/s1600/ng.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdfe"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ng.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 15213
X-XSS-Protection: 0
2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s72-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
142.250.74.161200 OK 12 kB URL HTTP/1.1 2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s72-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash b8bcff99c0cfb3058f9f60c2bacdf214
001da13da53cbd9b245c0313c076e5bdd29630f7
b74badce3cc6b421185b47932e542565ee2258dc17385fdfa9da59dc51876d4d
GET /-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s72-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve5c"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="purple panic e tudo para unhas bh 01.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 12388
X-XSS-Protection: 0
licensebuttons.net/l/by-nc-nd/4.0/88x31.png
104.22.10.121200 OK 1.6 kB URL HTTP/2 licensebuttons.net/l/by-nc-nd/4.0/88x31.png
IP 104.22.10.121:0
File type PNG image data, 88 x 31, 8-bit colormap, non-interlaced\012- data
Hash 0b9a57364ee1b9720fc99fab2f7e2c95
7c08af0a0698b6ac245b081e263ef17db4785440
570a8b61fa9fe9a875a8db3807ad7a02460f7acfd83187387696a64bc9791314
GET /l/by-nc-nd/4.0/88x31.png HTTP/1.1
Host: licensebuttons.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 01:55:18 GMT
content-type: image/png
content-length: 1566
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5281
etag: "5eab4a31-14a1"
last-modified: Thu, 30 Apr 2020 21:59:13 GMT
strict-transport-security: max-age=15768000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
cache-control: max-age=432000
cf-cache-status: HIT
age: 2561
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 791ed3063fa50b69-OSL
X-Firefox-Spdy: h2
i.imgur.com/QG9WmnV.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /QG9WmnV.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/QG9WmnV.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410029-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.119432,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.110200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.110:0
File type ASCII text, with very long lines (2385)
Hash 7362f0a805db35efc524e74347a95dc6
df2e530c11894acfa147277857ec6095cf232ac8
9580d1fbb086c87eca5650e8c49e1e4fc2649858e2d148a71b8481805a0b036f
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 31 Jan 2023 01:55:17 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+309; expires=Thu, 30-Jan-2025 01:55:17 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.imgur.com/HmqqZf8.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /HmqqZf8.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/HmqqZf8.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410028-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.119037,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/g0KtVWc.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g0KtVWc.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/g0KtVWc.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410033-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.160557,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s1600/IMG_20141024_124008769.jpg
142.250.74.161200 OK 154 kB URL HTTP/1.1 1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s1600/IMG_20141024_124008769.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x900, components 3\012- data
Size 154 kB (153588 bytes)
Hash 6065805efe2afcb45bca392e7132837f
0a69033b75553e984d54c4d49730ce923bf1eb1e
4dae35454a6b034429f06da550774d4563a5c093bbbda1b587c0f790eb1bc5ec
GET /-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s1600/IMG_20141024_124008769.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v56"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141024_124008769.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 153588
X-XSS-Protection: 0
i.imgur.com/VD86sug.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /VD86sug.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/VD86sug.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410029-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.161974,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/HaFh5W2.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /HaFh5W2.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/HaFh5W2.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410022-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.160814,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
statinside.com/counter.js
217.23.10.44200 OK 3.7 kB URL HTTP/1.1 statinside.com/counter.js
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type exported SGML document, ASCII text, with very long lines (8439)
Hash b5aa25093742549715a6dfbe795232e7
7438c6075282dd839122f3ba3634ad405fb2067b
59c784457013ec85621d34cb7df09cab6398599ef6fabd2de565bc0a2649271d
GET /counter.js HTTP/1.1
Host: statinside.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: application/javascript
Last-Modified: Fri, 13 Jan 2023 16:16:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63c183d4-20f8"
Content-Encoding: gzip
i.imgur.com/kMrVTZ6.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /kMrVTZ6.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/kMrVTZ6.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:18 GMT
X-Served-By: cache-hel1410029-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130118.181601,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
1.bp.blogspot.com/-dIxP4DNN8KU/UGu3BQFkrsI/AAAAAAAAAt4/cV_oDEU90W0/s72-c/foto+6.png
142.250.74.161200 OK 10 kB URL HTTP/1.1 1.bp.blogspot.com/-dIxP4DNN8KU/UGu3BQFkrsI/AAAAAAAAAt4/cV_oDEU90W0/s72-c/foto+6.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 74744768b7c08373faf244419f599de4
807ad810e8ace9a35a7bfbd3e3a366d127be81ab
8d9f2bf6e70c4a5f4157fbe2f77e6a18726fa90507006648384176bac91a40ed
GET /-dIxP4DNN8KU/UGu3BQFkrsI/AAAAAAAAAt4/cV_oDEU90W0/s72-c/foto+6.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2de"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="foto 6.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 10141
X-XSS-Protection: 0
2.bp.blogspot.com/-lOWjENa1Fb4/UfaXQ3b6o3I/AAAAAAAABXc/4TYg32LgjI0/s72-c/510.JPG
142.250.74.161404 Not Found 1.7 kB URL HTTP/1.1 2.bp.blogspot.com/-lOWjENa1Fb4/UfaXQ3b6o3I/AAAAAAAABXc/4TYg32LgjI0/s72-c/510.JPG
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
GET /-lOWjENa1Fb4/UfaXQ3b6o3I/AAAAAAAABXc/4TYg32LgjI0/s72-c/510.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0
3.bp.blogspot.com/-xqsVp_CmgsQ/VAFq8VJX8fI/AAAAAAAADkY/SauyeD2I0GE/s72-c/neon%2B%26%2Bon%2B%26%2Bon%2Be%2Bfairy%2Bdust%2B-%2Bchina%2Bglaze%2B02.png
142.250.74.161200 OK 12 kB URL HTTP/1.1 3.bp.blogspot.com/-xqsVp_CmgsQ/VAFq8VJX8fI/AAAAAAAADkY/SauyeD2I0GE/s72-c/neon%2B%26%2Bon%2B%26%2Bon%2Be%2Bfairy%2Bdust%2B-%2Bchina%2Bglaze%2B02.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash b704a23cfb307926f7cc48d8221c06ae
6da1f787e2f6eb876f58d7f56d20691b507ecb84
fecb342bb93a9ba0808c123c9ca13658bbf303f555b773bd80ff30446be123e0
GET /-xqsVp_CmgsQ/VAFq8VJX8fI/AAAAAAAADkY/SauyeD2I0GE/s72-c/neon%2B%26%2Bon%2B%26%2Bon%2Be%2Bfairy%2Bdust%2B-%2Bchina%2Bglaze%2B02.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve48"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="neon & on & on e fairy dust - china glaze 02.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 12433
X-XSS-Protection: 0
cleverjump.org/hit?z0;s1280*1024*24;fucE4px0NOqm6sgYHwkeWsaGz9ikDu8;cshb2;r;uhttp%3A%2F%2Fwww.vaidosasclub.com%2F;hVaidosas%20Club;0.5812993873028154
217.23.10.44200 OK 0 B URL HTTP/1.1 cleverjump.org/hit?z0;s1280*1024*24;fucE4px0NOqm6sgYHwkeWsaGz9ikDu8;cshb2;r;uhttp%3A%2F%2Fwww.vaidosasclub.com%2F;hVaidosas%20Club;0.5812993873028154
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?z0;s1280*1024*24;fucE4px0NOqm6sgYHwkeWsaGz9ikDu8;cshb2;r;uhttp%3A%2F%2Fwww.vaidosasclub.com%2F;hVaidosas%20Club;0.5812993873028154 HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
P3P: CP=CleverJump
Set-Cookie: _cjuh=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ; expires=Wed, 31-Jan-2024 01:55:18 GMT; Max-Age=31536000; path=/hit; httponly; SameSite=None; Secure
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5758
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
2.bp.blogspot.com/-vGysiC-O1Z4/VGajtl0F8gI/AAAAAAAAAFE/5GjrxdBIlGc/s1600/IMG_20141022_122351387.jpg
142.250.74.161200 OK 244 kB URL HTTP/1.1 2.bp.blogspot.com/-vGysiC-O1Z4/VGajtl0F8gI/AAAAAAAAAFE/5GjrxdBIlGc/s1600/IMG_20141022_122351387.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1024, components 3\012- data
Size 244 kB (243894 bytes)
Hash 6000aaa0b33ad36af9ca1203700edf38
9629ec3dac4d03d8984be3e8397a1636cf0046ea
262fd39db33686c85c5e875ede47fbe143b50c33645d637a2e8fe6c91c832167
GET /-vGysiC-O1Z4/VGajtl0F8gI/AAAAAAAAAFE/5GjrxdBIlGc/s1600/IMG_20141022_122351387.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141022_122351387.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 243894
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5758
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5758
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e575f4c5e3aa793f846cadc8baf386c
f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d
09a5bbe4fb7f23ee43228267f30c1ef0cd8747e515e01c963df0756b866f23ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd328471c-fc31-49a3-ae71-21d6171a8237.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9700
x-amzn-requestid: 059475a7-d7de-4a44-9fc7-11fb24e201b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_9G8DIAMF64A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e399-57fea3031d1e93ec02308fac;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vzubP2I1xR5NF1amWIPiIlp6yPykWhz-CEbwDiJOs-eTWkTE-fvfjA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 03:51:25 GMT
age: 79433
etag: "f482a4e8e80ea5b6afc29e5cc1a9a2b8c2f0434d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUGjUSIkoacdmaO1jnMwIuNMONhjyVfAIcTQ3B5d5da_g9eEnCtW7g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:17 GMT
age: 14821
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60fc180ec5b99ac357db8775775c3c11
c9856a488e82bc330881377528bf2e53274ef5f3
a31fd6fc84f79b0f5fb79cccf490ddf61eb58bdaf57ca27f57a911332e550d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffea501ff-acf4-4b37-aa0a-baf417cf3694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5394
x-amzn-requestid: 16d876fb-0afd-4b5d-b19e-1029506fd6f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIgq2E4CIAMFiFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce178-1f08dc2105b6e182677004e7;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:10:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 36E3JCGqpkeMmb_fzM0DTb24ElUMGDdikE1IdqQABDlbT28XRs7B-w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 11:52:37 GMT
age: 50561
etag: "c9856a488e82bc330881377528bf2e53274ef5f3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XYo_QvM8GWDyulOtUb5nVjS9PxOinaRJ3lYvCreeqd_9tHI5yv5xcQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:21 GMT
age: 14817
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee0e708ca11a9468634d2a7dff56510f
40d7c0f07b5218c4ceabcd7fc90af26bb3dc2cf3
e944a184377a91dae9fbc38ebc686fb95e261cb16ae09c7d69ababacffa75e57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6c0b4d2-6327-4501-8fe0-017b08501835.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8529
x-amzn-requestid: 633fc342-7b5a-4103-970e-74730c08679b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbhguFesIAMFqVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d47c6a-38e274c36d39ef4f2dd6034a;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 01:37:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: URqrtcPijXsHDSPMQ3K9PHbq20O0KYuk3YyO91rNW7t10zCuF3g5wg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:29:22 GMT
age: 55556
etag: "40d7c0f07b5218c4ceabcd7fc90af26bb3dc2cf3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b43468b05cd1fd11c398263a80e4edb2
02e964ea5a88c866267ac6c5601bfcde26ffd42b
19783f05297f7ed5d7ca8cec0fc0e1676831275ac48f1510a4f410dbe2802314
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa70b0b84-f0e7-44e4-a574-ee3e55fbc0d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4634
x-amzn-requestid: 2941da94-203c-47d1-99ee-d864bdbf6993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffCAHF9kIAMFrUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e39a-78bb7189351d830a7ef70c67;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uwVY2yJq8mZgVFAkrRx3OPU0qJ7uI5aehpxP_ULNJX9BQJLCiUwo7g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 04:03:31 GMT
age: 78707
etag: "02e964ea5a88c866267ac6c5601bfcde26ffd42b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.imgur.com/QG9WmnV.png
151.101.244.193200 OK 3.2 kB IP 151.101.244.193:0
File type PNG image data, 129 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ebca8982b47abccd2a43d872e4466cd
a67acce1db80c1d5557ba8e69fa75d63292141cf
6413f538c55de80135f1823827c76fa708784233eb06ad87d8ca32a646ce7fa7
GET /QG9WmnV.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 00:13:29 GMT
etag: "2ebca8982b47abccd2a43d872e4466cd"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 1654644
x-served-by: cache-iad-kcgs7200081-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 29, 0
x-timer: S1675130118.208231,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 3217
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/doc-essence.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/doc-essence.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2014/11/doc-essence.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/doc-essence.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
Content-Length: 0
i.imgur.com/HmqqZf8.png
151.101.244.193200 OK 3.3 kB IP 151.101.244.193:0
File type PNG image data, 193 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash d9ce906c1546e38334ac5e4d28102cae
992c92e4ea4e113e6de6b75db3d0a3f42aa46f8d
fa02f9eadd7d1845a3d6fbc6fc899f95b9ac32439e3f812605a6aba0ac231f8f
GET /HmqqZf8.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 15:35:58 GMT
etag: "d9ce906c1546e38334ac5e4d28102cae"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 341200
x-served-by: cache-iad-kiad7000044-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1675130118.219191,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 3278
X-Firefox-Spdy: h2
i.imgur.com/VD86sug.png
151.101.244.193200 OK 9.2 kB IP 151.101.244.193:0
File type PNG image data, 460 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 346e2d5058ff97a97d6194c17b67e681
556ccf1b81a263179412dba9de8291cb57a78c2b
7560d303e47da15793b441c2c2106849e2a5c338f4d9a00c23ac34bcce6381f3
GET /VD86sug.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 17:31:58 GMT
etag: "346e2d5058ff97a97d6194c17b67e681"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 2199991
x-served-by: cache-iad-kcgs7200165-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 36, 0
x-timer: S1675130118.219718,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 9189
X-Firefox-Spdy: h2
i.imgur.com/dN5Nhqs.png
151.101.244.193200 OK 342 kB IP 151.101.244.193:0
File type PNG image data, 2993 x 909, 8-bit/color RGBA, non-interlaced\012- data
Size 342 kB (342343 bytes)
Hash 3e88d6c6f8a80d6540d763f049709466
11260feb00c9fc7d76f2179851bf239b52cb0271
b4d3e3b662e0eaacc06d1b02c3540228f238ae4b5c38cfd745b90a89afb0f815
GET /dN5Nhqs.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 18 Apr 2015 13:22:30 GMT
etag: "3e88d6c6f8a80d6540d763f049709466"
x-amz-storage-class: STANDARD_IA
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 1654645
x-served-by: cache-iad-kjyo7100023-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 40, 0
x-timer: S1675130118.218940,VS0,VE100
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 342343
X-Firefox-Spdy: h2
i.imgur.com/HaFh5W2.png
151.101.244.193200 OK 31 kB IP 151.101.244.193:0
File type PNG image data, 654 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash a93e93b55a4aa20e80b3a18916db1c22
36d4775a2a05309d1d77a30d891baf91cff864dc
f0d783410466c4a3a73c8e9416c136949d2bf43ca3133046d5631b734d55bba7
GET /HaFh5W2.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Apr 2015 04:55:09 GMT
etag: "a93e93b55a4aa20e80b3a18916db1c22"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 340675
x-served-by: cache-iad-kcgs7200032-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 6, 0
x-timer: S1675130118.228541,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 30556
X-Firefox-Spdy: h2
i.imgur.com/g0KtVWc.png
151.101.244.193200 OK 81 kB IP 151.101.244.193:0
File type PNG image data, 454 x 316, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a1d4719e9b8d77ea55dd1bfbfdf9d44
60a6bbc36176f448cdeecd726b85bd2c23608005
882de4284adc6b4fae7938eee0a4a6df5d786dad54e4fc18c7ca1ffe44c2f490
GET /g0KtVWc.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Apr 2015 04:41:43 GMT
etag: "0a1d4719e9b8d77ea55dd1bfbfdf9d44"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 340675
x-served-by: cache-iad-kjyo7100170-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1675130118.228000,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 81323
X-Firefox-Spdy: h2
cleverjump.org/hit/get-uid.php
217.23.10.44200 OK 30 B URL HTTP/1.1 cleverjump.org/hit/get-uid.php
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type ASCII text, with no line terminators
Hash a6bb0f4624c4c85ed6d4355549738840
0339eaa77453fbb1812c23cd6d2136e1632ed48c
720ef3831d1a0b0fb0c09068e5c5ed02eb79c44f1784a6f20de141248ce27121
Analyzer Verdict Alert fortinet Malware
GET /hit/get-uid.php HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.vaidosasclub.com
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Cookie: _cjuh=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: http://www.vaidosasclub.com
Access-Control-Allow-Credentials: true
i.imgur.com/kMrVTZ6.png
151.101.244.193200 OK 28 kB IP 151.101.244.193:0
File type PNG image data, 300 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash d68c2843a6a95ae401b85411417ad2d1
d7a558aa2faba77382fb8e9b22bd35bb5b73b368
48029f87690dcdca1bed841f6b168ee27afd640e5a77fd414479d2303c2e3993
GET /kMrVTZ6.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 16:43:24 GMT
etag: "d68c2843a6a95ae401b85411417ad2d1"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 1654641
x-served-by: cache-iad-kjyo7100071-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 30, 0
x-timer: S1675130118.237090,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 28224
X-Firefox-Spdy: h2
statinside.com/api/add-page-view
217.23.10.44200 OK 115 B URL HTTP/1.1 statinside.com/api/add-page-view
IP 217.23.10.44:0
ASN #49981 WorldStream B.V.
File type JSON data\012- , ASCII text
Hash 5bcf32d4c0a400bb871b2c6482cce766
abeaaf984a551f04c0d6ef6a7b1b1bc6965c5563
46e5539d56728116913bdae8e7f75262a9f9e46239016561f3455332d4b6166b
POST /api/add-page-view HTTP/1.1
Host: statinside.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 256
Origin: http://www.vaidosasclub.com
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: application/json; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: *
Content-Encoding: gzip
3.bp.blogspot.com/-uPXV9h8_n_I/VA-BjnucsUI/AAAAAAAADlA/3-Ju_D1Sa74/s72-c/lua%2Be%2Bppu%2B01.png
142.250.74.161200 OK 13 kB URL HTTP/1.1 3.bp.blogspot.com/-uPXV9h8_n_I/VA-BjnucsUI/AAAAAAAADlA/3-Ju_D1Sa74/s72-c/lua%2Be%2Bppu%2B01.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 2fc7e85e2558c556201a84c6e9f95b1b
37c91cdbcc8107d770bd53733a39d707081528d4
f9241330296c6f85b40f6753e85b3c317361ef4b6b427c5a9f5a8df9684dcba5
GET /-uPXV9h8_n_I/VA-BjnucsUI/AAAAAAAADlA/3-Ju_D1Sa74/s72-c/lua%2Be%2Bppu%2B01.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve51"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="lua e ppu 01.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 13145
X-XSS-Protection: 0
2.bp.blogspot.com/-wNDA-w-h5KU/UwD_5IKTrcI/AAAAAAAADgM/ewnVlohuhlM/s1600/sos+menor.png
142.250.74.161200 OK 34 kB URL HTTP/1.1 2.bp.blogspot.com/-wNDA-w-h5KU/UwD_5IKTrcI/AAAAAAAADgM/ewnVlohuhlM/s1600/sos+menor.png
IP 142.250.74.161:0
File type PNG image data, 210 x 88, 8-bit/color RGBA, non-interlaced\012- data
Hash 13fe22c536e9822a30a94486321515e3
12505284bc8c8821af3abe53c7188de014af51f9
9f18140803e65b059f4c379b2e3bc122bcc02db67295806556d538b97e98b265
GET /-wNDA-w-h5KU/UwD_5IKTrcI/AAAAAAAADgM/ewnVlohuhlM/s1600/sos+menor.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve04"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="sos menor.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 34167
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/liquid%20sand?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.7 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/liquid%20sand?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (33197)
Hash cf301a491f8000330daaedc9a9002d53
b5030e97ec57293d287e715a973f581dd2d2bf87
1c332e3c41cb46fa3d9982997eacf7962a9c2fbef20770f43d35a33d77290406
GET /feeds/posts/default/-/liquid%20sand?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"0053aa508218f9316dc0fb4310b202b1b7b6ddd56bd57a96e57cbee8ce4d9948"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8666
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/China%20Glaze?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/China%20Glaze?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31484)
Hash 04a2afb49d0e965f030cd1221227f5ee
26697d21a23a7284a9c8b8e408bc5b7db8ca1021
cec96acf19fb172e0a4827b877d10d7e55ceea142415dd6eadb53baba5ae3ee8
GET /feeds/posts/default/-/China%20Glaze?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"36b3bcd649939745b231d375cc1abafc636fef41b158c2dc19a9d5db2bb80bfa"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8003
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/laranja?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.6 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/laranja?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (32814)
Hash 158dcd43a5338b7347c15177f5c791f5
307a92110d0a90321da40ad9d8cc0475f70119e1
a3387b997d623920eac48fc7406e310b493b8b6f3ee1dc18f1e885449f832f27
GET /feeds/posts/default/-/laranja?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"557c269979fd63d36ec94e8a97ad7f68fb2df38017ab0aa730e1368aa4c11a33"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8552
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Purple%20Panic?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 11 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Purple%20Panic?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (44906)
Hash 26f462896299bdeaf50cd97e3b1523e4
eae42acb0b468789adfc0cd54f17799ea9fd03a9
0d91b3060486fee24cc0edcc82035c9cdbc9e9c0014fd706fd7c6ceb0a476dfd
GET /feeds/posts/default/-/Purple%20Panic?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"2bba355406369e66d1432e8004d29c57e27bde4abe22d777c6c385cd415c5412"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 10586
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s72-c/IMG_20141022_122305331.jpg
142.250.74.161200 OK 4.0 kB URL HTTP/1.1 1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s72-c/IMG_20141022_122305331.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f4b7e5b6c81910a220f3d47308d262d6
604135cb39cfbdc761c722a92816ea44f60fb8e6
a9d909d8c808e3b49bcd1e47e27ca7adbd973b3667428d1b48efd9b2e6715c57
GET /-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s72-c/IMG_20141022_122305331.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141022_122305331.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 4030
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 01:42:52 GMT
expires: Tue, 31 Jan 2023 01:57:52 GMT
cache-control: public, max-age=900
age: 746
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33e403367d183257be0f03f28da923d2
a586e4052008741f8f535e7bd12a94bde81b264e
82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
216.58.207.226302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 216.58.207.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 31 Jan 2023 01:55:18 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 01:55:18 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
172.217.21.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 8acc5e64bb828e7a68e7b765e7b9c470
0bc2a8276e1ce20d27bcb52eb2db07634aaff518
0ea657a588984fed21d1f07d904ae82233ec7c5fb51e17e5886c6723b7bc35be
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 01:55:18 GMT
server: ESF
cache-control: private
content-length: 30837
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/i-like-to-mauve-it-bourjois.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/i-like-to-mauve-it-bourjois.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2014/11/i-like-to-mauve-it-bourjois.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/11/i-like-to-mauve-it-bourjois.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:18 GMT
Connection: keep-alive
Content-Length: 0
www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
216.58.211.4200 OK 14 kB URL HTTP/2 www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js
IP 216.58.211.4:0
File type ASCII text, with very long lines (36000)
Hash b40bdd235c7883921e2b18743b3aea21
9aaa96e2ec231327ba976911513989568c56c7c1
8b00f3a7d9b7acabf6b991926d7543944771ce1431efd342dea743192ec667e3
GET /js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14173
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 01:14:43 GMT
expires: Mon, 29 Jan 2024 01:14:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 175235
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 750f718797fc50f8465259f62a6da6ba
e9b7abb1a4dff4896c9fb48e7c7b1407885790de
8e3c0c96771c92bcee1d63055e2aa46aa5e0e3125da993844a9297340166873d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/uHzFH3N.png
151.101.244.193200 OK 13 kB IP 151.101.244.193:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 3b0c87f2ea92c6c7f2048bbbe92813b2
95550a60aee5ac46d9453ed0a50e302b7256b943
ebbb08e58beb97dfc60a60eddfbc1ab94ed428cbc98374eb5ee94ba8bb9f4216
GET /uHzFH3N.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Apr 2015 04:41:04 GMT
etag: "cb4d8796aa8f5cca78a70756bcd1f0dd"
x-amz-storage-class: STANDARD_IA
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 1654644
x-served-by: cache-iad-kcgs7200124-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 5, 0
x-timer: S1675130118.173453,VS0,VE342
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 244542
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/DS%20Extravagance?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 5.5 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/DS%20Extravagance?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (17340)
Hash 353e59523b772c740b4610a9a04af3e4
a3b28f114182585b70688955893a98410ad9a973
ac3dc2009aec5effde6620a883e87915376ba10fd67ad1dfff060ad10982981d
GET /feeds/posts/default/-/DS%20Extravagance?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"7f0a476339ff4d9c1772f4333f3c2d08555dba79aaca8b025c84ce650e871363"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5513
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi_webp/HwFv3s05jVs/sddefault.webp
216.58.207.246200 OK 12 kB URL HTTP/2 i.ytimg.com/vi_webp/HwFv3s05jVs/sddefault.webp
IP 216.58.207.246:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a7d46a86d36e3e83643a01c9153114a3
a10fe94daec8856ab9e075b1e9376ab4aead7f03
4484b61b552037f3f4f7691b91dac369536cafa4faac11d671030464c4343f7e
GET /vi_webp/HwFv3s05jVs/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 11982
date: Tue, 31 Jan 2023 01:55:18 GMT
expires: Tue, 31 Jan 2023 03:55:18 GMT
cache-control: public, max-age=7200
etag: "1458145081"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c3a242e6132fe39e40953523bb8d3175
c9914952910c863f533f0c7bf6451b77b12d10b7
423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Tudo%20Para%20Unhas%20BH?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 6.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Tudo%20Para%20Unhas%20BH?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (18498)
Hash 5b3f350dd562b00085fd573fc3031e65
99df763efaf7e4121be9ff3a26bc55a88bc8639d
a7722cd97b62eb64dc5f011cc76fceb3122e0a49689ca6ad146f8672f1148435
GET /feeds/posts/default/-/Tudo%20Para%20Unhas%20BH?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"bf0a696f17abb0e34463a38bbf0ef68c7160260ea6e486d46877224a43f9425c"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5967
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/DS%20Series?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.3 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/DS%20Series?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (30408)
Hash 35add79e048082165add22c60de7d0d7
d397a10f9c1a64d76683dce030a4896f5c1221e7
07595178e986faec12d3528f2b1ee7abd9bcb36f2010086264e8532b6a948faf
GET /feeds/posts/default/-/DS%20Series?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"b0bc56c651c46353d9721a5dd4399548c948784396fea83a0617ab3dd6e35471"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8276
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/roxo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.6 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/roxo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (32614)
Hash 75d7c853e6dfe24537c9cb61fa3dbe7a
aa0632be4a2f776f2609026e209c86cf5e90549c
44adc3751645399d5c34a4b3fd8fa2f2d38972fe8b345ec4ff76b2a0285719f1
GET /feeds/posts/default/-/roxo?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"e4eb4972470d0088cfe828585260a800b1d4b3f90ec5491f597858c53da23ae6"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8596
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/vinho?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 7.7 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/vinho?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (26945)
Hash 31d5fad9eba9a8da0f30040b355f0b48
f0b9ce9eeeeb8a34ddede7cd37558146fa75ea41
74ca72486546accbfe2f6ea23bfdf5a11cad37e019e1b1b34066258e8b6815a2
GET /feeds/posts/default/-/vinho?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"0457af7dbac0bc04034ab0fb314f4862708156ccf0d00d1e93103dc5df6c7509"
Date: Tue, 31 Jan 2023 01:55:18 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7655
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/js/cookienotice.js
172.217.21.179200 OK 2.0 kB URL HTTP/1.1 www.vaidosasclub.com/js/cookienotice.js
IP 172.217.21.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Tue, 31 Jan 2023 01:55:18 GMT
Expires: Tue, 07 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 30 Jan 2023 21:53:43 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
fonts.gstatic.com/s/opensanscondensed/v23/z7NHdQDnbTkabZAIOl9il_O6KJj73e7Fd_-7suD8Rb2V.woff2
216.58.207.227200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/opensanscondensed/v23/z7NHdQDnbTkabZAIOl9il_O6KJj73e7Fd_-7suD8Rb2V.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13448, version 1.0\012- data
Hash 325899a671fad54a46c5ac2701103175
e196b314ea0f948da1f0dc0159f35c48cada177c
13eb7692c61b6b00555bf65ad4ec452441910715d6e2c81b1e99d6d008b38b90
GET /s/opensanscondensed/v23/z7NHdQDnbTkabZAIOl9il_O6KJj73e7Fd_-7suD8Rb2V.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.vaidosasclub.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: font/woff2
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13448
Date: Tue, 31 Jan 2023 01:55:18 GMT
Expires: Wed, 31 Jan 2024 01:55:18 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 18:11:16 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
yt3.ggpht.com/ytc/AL5GRJU_JsVMwwY1NXFCXvtAsXvbYbLXIzGTWqh8VhLI=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 3.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AL5GRJU_JsVMwwY1NXFCXvtAsXvbYbLXIzGTWqh8VhLI=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash fc4ba4b3da36470667e4e1cd154b07d5
e8b6078225851c22fd58950b1b170e33c3ffba6c
e3f9c0a085a9fe02307e41b325eea3189d893d9449a7f0f1c0a8af1f7e4ef7da
GET /ytc/AL5GRJU_JsVMwwY1NXFCXvtAsXvbYbLXIzGTWqh8VhLI=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v70"
expires: Wed, 01 Feb 2023 01:55:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 01:55:19 GMT
server: fife
content-length: 3424
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/Pitaya?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 5.8 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Pitaya?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (18145)
Hash 05f4ecbf712ccdc56df4ce71728ef0d0
5fc4fc5f11b1988ec08c1fe9d81e199ca5b46600
8a77f58f285c1e8fc4adada52cda9fc009df430ad83022304f82c1407037a614
GET /feeds/posts/default/-/Pitaya?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"63e863272a098f903c79926ae4410fc1dca124efdf70154983f1d2e2b172eee5"
Date: Tue, 31 Jan 2023 01:55:19 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 5758
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 750f718797fc50f8465259f62a6da6ba
e9b7abb1a4dff4896c9fb48e7c7b1407885790de
8e3c0c96771c92bcee1d63055e2aa46aa5e0e3125da993844a9297340166873d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/glitter?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 7.8 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/glitter?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31282)
Hash 3cee461aa8ca98db4a7ac0adce1445bb
d859e973577015fa483306f4d758a3d53b2abee8
0101467ab3dfde1646c0b5e67165ee308c0e16ea21ec02c9d36a01413f33c62d
GET /feeds/posts/default/-/glitter?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"d58312177d55dc13c22de7fbaf380c8e127d05b1f6a748353525c7ddb4c88db3"
Date: Tue, 31 Jan 2023 01:55:19 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7841
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s72-c/IMG_20141024_124008769.jpg
142.250.74.161200 OK 3.8 kB URL HTTP/1.1 1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s72-c/IMG_20141024_124008769.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 86cd3dcc28012f574ee79b7c121edbe9
df2aa0b0aaccb02a0cf26726bba1997ab1941183
bbccf4e78a962ca17eaea207a5ddb7b47d024fd46b389434c9dfe0e1676438ad
GET /-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s72-c/IMG_20141024_124008769.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v56"
Expires: Wed, 01 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141024_124008769.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:19 GMT
Server: fife
Content-Length: 3753
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/OPI?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/OPI?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (30757)
Hash f10323d97df00aa80b144dbfdb626ce0
b4d3864b5a3bd2f548a2f95db990e8eaf56389f8
1e46cff6f35fe02bb035b0343d5797a82b92465e290d77733b8456ededd62bd8
GET /feeds/posts/default/-/OPI?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"d540a63fd0135ff1b4f2155219605cad07e6971287fae4915263e1bc6a6574c4"
Date: Tue, 31 Jan 2023 01:55:19 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8044
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/purple-panic-china-glaze-peliculas-tudo.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/purple-panic-china-glaze-peliculas-tudo.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2014/10/purple-panic-china-glaze-peliculas-tudo.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/purple-panic-china-glaze-peliculas-tudo.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:19 GMT
Connection: keep-alive
Content-Length: 0
1.bp.blogspot.com/-iEZAwBw_i7g/UBK6VY8COSI/AAAAAAAAAKk/2OqL2hbCQYg/s72-c/DSC_0010.JPG
142.250.74.161404 Not Found 1.7 kB URL HTTP/1.1 1.bp.blogspot.com/-iEZAwBw_i7g/UBK6VY8COSI/AAAAAAAAAKk/2OqL2hbCQYg/s72-c/DSC_0010.JPG
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
GET /-iEZAwBw_i7g/UBK6VY8COSI/AAAAAAAAAKk/2OqL2hbCQYg/s72-c/DSC_0010.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:19 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0
4.bp.blogspot.com/-aCOugUpK5rg/Uivw3E3rc_I/AAAAAAAADMs/03WVWPt81zk/s72-c/SHL+DOLL+02.png
142.250.74.161200 OK 11 kB URL HTTP/1.1 4.bp.blogspot.com/-aCOugUpK5rg/Uivw3E3rc_I/AAAAAAAADMs/03WVWPt81zk/s72-c/SHL+DOLL+02.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 8513173c101762a180efc3ec7d72b861
fefade77392b47ac5e584f6794aac1c1f4c8970a
21f7287822697886978eee52c19cc1a8313f1a91e0bebabc318dccc54e1f5d76
GET /-aCOugUpK5rg/Uivw3E3rc_I/AAAAAAAADMs/03WVWPt81zk/s72-c/SHL+DOLL+02.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vccc"
Expires: Wed, 01 Feb 2023 01:55:19 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SHL DOLL 02.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:19 GMT
Server: fife
Content-Length: 11121
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/Patr%C3%ADcia%20Brand%C3%A3o?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"c21ebc3a6cb66429be35f8505fd4ccfb3e13a485684c71a49e13cae0a5945d55"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"c21ebc3a6cb66429be35f8505fd4ccfb3e13a485684c71a49e13cae0a5945d55"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.vaidosasclub.com/feeds/posts/default/-/Dote?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179200 OK 8.0 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Dote?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (31577)
Hash 7b9117a15bf99cd6c598d231123c98fc
17c9475e75e3b7abe22ef710bb199a6d40b91e55
e1b641a0b7d18e82d29c9d667f4da579b35956daa7145bc5d8613b48596cbf7f
GET /feeds/posts/default/-/Dote?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"215cc570c9dff329741598600197a8e927c4a55266bf30bf905b34feb41f0ed7"
Date: Tue, 31 Jan 2023 01:55:19 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 8010
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/pel%C3%ADcula%20de%20unhas?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"bc276efec02961a42c5d52a000c4239219868091bb030f28c82d9b0114e2a3b6"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"bc276efec02961a42c5d52a000c4239219868091bb030f28c82d9b0114e2a3b6"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.vaidosasclub.com/feeds/posts/summary?max-results=7&alt=json-in-script&callback=bsrpGallery
172.217.21.179200 OK 7.4 kB URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/summary?max-results=7&alt=json-in-script&callback=bsrpGallery
IP 172.217.21.179:0
File type Unicode text, UTF-8 text, with very long lines (28850)
Hash 4c905b5cc43f41a93551f81827790a8a
a75935bdaa3ce24202fb46d1fc8d282783e8da34
cb67b8339c382abe296fd3465aa8be783efb2065804477d18e90d3dd8fed098c
GET /feeds/posts/summary?max-results=7&alt=json-in-script&callback=bsrpGallery HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"99f26c926094abbf016eaad8b818ed29514ce1c53f44f9e6ad61ec3bf7a24056"
Date: Tue, 31 Jan 2023 01:55:19 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
Content-Encoding: gzip
Content-Length: 7413
X-Frame-Options: SAMEORIGIN
www.vaidosasclub.com/feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/review?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"be9b54ca923119cc992f0e2f63ee5ab44b9b86660c48667a0399f999fabcad73"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:19 GMT
Expires: Tue, 31 Jan 2023 01:55:20 GMT
Age: 0
ETag: W/"be9b54ca923119cc992f0e2f63ee5ab44b9b86660c48667a0399f999fabcad73"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/ds-extravagance-opi.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/ds-extravagance-opi.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2014/10/ds-extravagance-opi.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/10/ds-extravagance-opi.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:20 GMT
Connection: keep-alive
Content-Length: 0
www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/importados?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:20 GMT
Expires: Tue, 31 Jan 2023 01:55:21 GMT
Age: 0
ETag: W/"f54408d1b346013b4baa3e05dc4341613b66724be49bdea38086d06f5aa247f2"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 01:55:20 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
172.217.21.170200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 172.217.21.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c8d0b178baee097a51631c9e1f19fc56
83756081ea15547bd44622f3736ca3d225a3ac54
c05914c2fda240fd00b50db1a76af3fc5c20d65b6c4b542a8dfcd80663b32aa7
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1067
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 01:55:20 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Cookie: cj_uid=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ; si_user_id=1675130118.348227541629; si_sess_id=1675130118.348227541629
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:20 GMT
Expires: Tue, 31 Jan 2023 01:55:21 GMT
Age: 0
ETag: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/09/pitaya-dote.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/09/pitaya-dote.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://www.vaidosasclub.com/2014/09/pitaya-dote.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://www.vaidosasclub.com/2014/09/pitaya-dote.html&layout=button_count&show_faces=false&width=100&action=like&font=arial&colorscheme=light
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:21 GMT
Connection: keep-alive
Content-Length: 0
1.bp.blogspot.com/-RILe5cERfe4/UXFLJpIqZLI/AAAAAAAABKQ/6sbs_hDgS38/s72-c/410.jpg
142.250.74.161404 Not Found 1.7 kB URL HTTP/1.1 1.bp.blogspot.com/-RILe5cERfe4/UXFLJpIqZLI/AAAAAAAABKQ/6sbs_hDgS38/s72-c/410.jpg
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
GET /-RILe5cERfe4/UXFLJpIqZLI/AAAAAAAABKQ/6sbs_hDgS38/s72-c/410.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0
3.bp.blogspot.com/-RFWwkSyltik/UGflKplxeAI/AAAAAAAAArY/pES_iIMAiPw/s72-c/opi+3.png
142.250.74.161200 OK 11 kB URL HTTP/1.1 3.bp.blogspot.com/-RFWwkSyltik/UGflKplxeAI/AAAAAAAAArY/pES_iIMAiPw/s72-c/opi+3.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash bd70c4a883d07bd88619de16adc39470
4649115df796f7c9b26258ba0ef8180a1a3ca38c
fda7f18c7a005c079654f5132f7da96587854c8c291c964c273b0eea07d4010b
GET /-RFWwkSyltik/UGflKplxeAI/AAAAAAAAArY/pES_iIMAiPw/s72-c/opi+3.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2b6"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="opi 3.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 10805
X-XSS-Protection: 0
www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/Karoline%20Souza?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Cookie: cj_uid=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ; si_user_id=1675130118.348227541629; si_sess_id=1675130118.348227541629
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:21 GMT
Expires: Tue, 31 Jan 2023 01:55:22 GMT
Age: 0
ETag: W/"ffde11580c4824af592749dc667bf74b118f6263bb951b38eb04a1878dd5fc9b"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
www.vaidosasclub.com/feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
172.217.21.179304 Not Modified 0 B URL HTTP/1.1 www.vaidosasclub.com/feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3
IP 172.217.21.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /feeds/posts/default/-/nacionais?alt=json-in-script&callback=related_results_labels_thumbs&max-results=3 HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Cookie: cj_uid=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ; si_user_id=1675130118.348227541629; si_sess_id=1675130118.348227541629
If-Modified-Since: Mon, 30 Jan 2023 00:14:18 GMT
If-None-Match: W/"2b50c3774d22f734ada61c9ab0a4e6a0b803e51770c4fd44e69e09dc9abd1bbf"
HTTP/1.1 304 Not Modified
Date: Tue, 31 Jan 2023 01:55:21 GMT
Expires: Tue, 31 Jan 2023 01:55:22 GMT
Age: 0
ETag: W/"2b50c3774d22f734ada61c9ab0a4e6a0b803e51770c4fd44e69e09dc9abd1bbf"
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s72-c/SAM_2166.JPG
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s72-c/SAM_2166.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=Copyright 2012], baseline, precision 8, 72x72, components 3\012- data
Hash 3489014b23005884b18959a9a37d8810
aa776d5af5ace12efa184b23291600f51e11375d
4145d6bae15d660da569dc33e468207090b5b4ee3221ccf815f3b0b00a850882
GET /-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s72-c/SAM_2166.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2166.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 4287
X-XSS-Protection: 0
www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fvaidosasclub&width=250&height=290&colorscheme=light&show_faces=true&border_color&stream=false&header=true&appId=124685914272423
157.240.205.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fvaidosasclub&width=250&height=290&colorscheme=light&show_faces=true&border_color&stream=false&header=true&appId=124685914272423
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fvaidosasclub&width=250&height=290&colorscheme=light&show_faces=true&border_color&stream=false&header=true&appId=124685914272423 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=http%3A%2F%2Fwww.facebook.com%2Fvaidosasclub&width=250&height=290&colorscheme=light&show_faces=true&border_color&stream=false&header=true&appId=124685914272423
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:21 GMT
Connection: keep-alive
Content-Length: 0
i.imgur.com/rbtYciS.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rbtYciS.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/rbtYciS.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:21 GMT
X-Served-By: cache-hel1410032-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130121.474121,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/LyR27TA.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /LyR27TA.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/LyR27TA.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:21 GMT
X-Served-By: cache-hel1410030-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130121.474530,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s100-c/IMG_20141022_122305331.jpg
142.250.74.161200 OK 6.9 kB URL HTTP/1.1 1.bp.blogspot.com/-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s100-c/IMG_20141022_122305331.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 000511fa278640223566ed7241600b57
5905cf593a3e919735364d6975ba406a16616ebc
fed03f0b73ba31bec22380a465420a801106e6f895d8df1e2a9fa7f358212fc6
GET /-Ow29Pxvvx0Q/VGajgY1nQiI/AAAAAAAAAEw/HDGwi9Q5Ulk/s100-c/IMG_20141022_122305331.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141022_122305331.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 6897
X-XSS-Protection: 0
1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s100-c/SAM_2166.JPG
142.250.74.161200 OK 7.4 kB URL HTTP/1.1 1.bp.blogspot.com/-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s100-c/SAM_2166.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=Copyright 2012], baseline, precision 8, 100x100, components 3\012- data
Hash 673dc5b848f2224577942d7c665d2bd7
70c8c390c0f03052be3fa4563b14b7fbbee275c1
2c49f7926ca452757a2b9fa084ae7ad8a02b4a641e1827919ef99ab9c326e5dd
GET /-XCUC5se80TY/VDAkxWs7bJI/AAAAAAAAAEE/IIyz-oYqfUo/s100-c/SAM_2166.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2166.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 7430
X-XSS-Protection: 0
1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s100-c/IMG_20141024_124008769.jpg
142.250.74.161200 OK 6.1 kB URL HTTP/1.1 1.bp.blogspot.com/-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s100-c/IMG_20141024_124008769.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 94ef50edd0b72721b6cab52e3d405971
f9a832fe994bd5a0a5154235e343f9d0a99cc438
02af3653fcc29eb44829bfc39f0d1188f608b4ab123b8b3ec4ee13a79c476c94
GET /-vXuy5YxQYro/VGa5mGZZOVI/AAAAAAAAAFU/i1_Phy1eYEg/s100-c/IMG_20141024_124008769.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v56"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="IMG_20141024_124008769.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 6067
X-XSS-Protection: 0
2.bp.blogspot.com/-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s100-c/SAM_2192.JPG
142.250.74.161200 OK 5.8 kB URL HTTP/1.1 2.bp.blogspot.com/-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s100-c/SAM_2192.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=Copyright 2012], baseline, precision 8, 100x100, components 3\012- data
Hash 5d40f0e75c15e32af9d143e277112f2b
6eb67865da6a823b3562f00588f345e889f30884
44b43ecae9f20a1cb93074259e5d41aa3bba00728e7ccc469fcdabcc90ea6b26
GET /-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s100-c/SAM_2192.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3a"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2192.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 5848
X-XSS-Protection: 0
2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s100-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
142.250.74.161200 OK 23 kB URL HTTP/1.1 2.bp.blogspot.com/-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s100-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png
IP 142.250.74.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 55aa3f4175a2de7bad7a36f4c19e9d15
f15f3afd047f19cbdabfe80587f483a60c467729
24a7d463398f1352a786c41e7164de0d97d97754fc3957589cbe7a1c5063f3ed
GET /-RLDLwqstJqs/VElKgHrENvI/AAAAAAAADlo/jeQw8SX9KEo/s100-c/purple%2Bpanic%2Be%2Btudo%2Bpara%2Bunhas%2Bbh%2B01.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve5c"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="purple panic e tudo para unhas bh 01.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 22925
X-XSS-Protection: 0
1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s100-c/miss%2Brose%2Be%2Bppu%2B04.png
142.250.74.161200 OK 22 kB URL HTTP/1.1 1.bp.blogspot.com/-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s100-c/miss%2Brose%2Be%2Bppu%2B04.png
IP 142.250.74.161:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 12385ee0f3bcbad29c47f5c19d8a390b
c7767a4dd2d1d0c1e7075e4eea209b913de55a8a
a0d574a4299626bae34b45d87827e6e10b0eb3672ea6590e4d4a2f59188279b2
GET /-AXKcxQn7IgE/VMHLDreV1pI/AAAAAAAADmM/smfNnuIT6DE/s100-c/miss%2Brose%2Be%2Bppu%2B04.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve65"
Expires: Wed, 01 Feb 2023 01:55:21 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose e ppu 04.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:21 GMT
Server: fife
Content-Length: 22146
X-XSS-Protection: 0
i.imgur.com/vMFSrF2.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vMFSrF2.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/vMFSrF2.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:21 GMT
X-Served-By: cache-hel1410021-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130122.584155,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/gw6oqbr.png
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gw6oqbr.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/gw6oqbr.png
Accept-Ranges: bytes
Date: Tue, 31 Jan 2023 01:55:21 GMT
X-Served-By: cache-hel1410028-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675130122.585891,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 31 Jan 2023 01:55:21 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
i.imgur.com/rbtYciS.png
151.101.244.193200 OK 11 kB IP 151.101.244.193:0
File type PNG image data, 300 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a84b4ca48eff9a3a1bfcdf5cb1188b2
adae146f5030d6b4a0ef0acf6a7df958235fb089
1f48384aacf8bf46cbc10d6f365bfce35ab6c2d835e86099269b58b27a722158
GET /rbtYciS.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Apr 2015 12:10:55 GMT
etag: "3a84b4ca48eff9a3a1bfcdf5cb1188b2"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:21 GMT
age: 1202139
x-served-by: cache-iad-kiad7000042-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 14, 0
x-timer: S1675130122.735863,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10933
X-Firefox-Spdy: h2
i.imgur.com/LyR27TA.png
151.101.244.193200 OK 19 kB IP 151.101.244.193:0
File type PNG image data, 290 x 73, 8-bit/color RGBA, non-interlaced\012- data
Hash 2ba252cc3e916a2abbe52395c397ed20
5bded1bb00a6e0df2076d44402d47d3c3c4e943d
f4c69bf2b10658f0c5de8856822282840ba39187ae4e4492d28a2cc0fa1ac4cb
GET /LyR27TA.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 17:44:47 GMT
etag: "2ba252cc3e916a2abbe52395c397ed20"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:21 GMT
age: 72260
x-served-by: cache-iad-kjyo7100152-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1675130122.737695,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 19184
X-Firefox-Spdy: h2
i.imgur.com/vMFSrF2.png
151.101.244.193200 OK 30 kB IP 151.101.244.193:0
File type PNG image data, 1300 x 378, 8-bit/color RGBA, non-interlaced\012- data
Hash 402518d275493f959cc45b7de7ed6ea6
7691ceb4b87e8bbc43298312532e193509865c80
474981ee81087f08efcd3b4512b18ab43c1538233dc79188f23907f4792166bc
GET /vMFSrF2.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 17:59:44 GMT
etag: "402518d275493f959cc45b7de7ed6ea6"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:21 GMT
age: 340239
x-served-by: cache-iad-kiad7000024-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1675130122.742839,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 29965
X-Firefox-Spdy: h2
i.imgur.com/gw6oqbr.png
151.101.244.193200 OK 11 kB IP 151.101.244.193:0
File type PNG image data, 221 x 82, 8-bit/color RGBA, non-interlaced\012- data
Hash fcca76845d45f7868b3fb90639010716
e3c130ba887b2bddb0ba90c32912e0a7c2ee0818
0f852285addcb6cba9796b7fad91bc5daec1fd08006b4cd4bdda9354313ab7cf
GET /gw6oqbr.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 16 Apr 2015 18:32:05 GMT
etag: "fcca76845d45f7868b3fb90639010716"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:21 GMT
age: 216995
x-served-by: cache-iad-kiad7000032-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1675130122.743721,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10972
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yq/l/0,cross/a2DjHztDH0n.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 18 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yq/l/0,cross/a2DjHztDH0n.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (18129)
Hash 31507858b2ea9a3d47c6ab6958f4caef
4bc40d0ada1795a021e3fe433939c6073aaf3c17
f2faa1e21770e6b01db408019b46b81233b1e4bcf176ed4ee427897156b44b8a
GET /rsrc.php/v3/yq/l/0,cross/a2DjHztDH0n.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 30 Jan 2024 18:51:41 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Q1K/aj9gA0uNPElDTrUeOg==
x-fb-debug: h5nVE8gNIJBo9O9o1ckyyegb1rAxbTc6lI6tdJgUc8llE8Wu9xJYQi3UonSlQSgLeJdnGT1HoU+SczUTBFMzRg==
priority: u=3,i
content-length: 5364
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (42114)
Hash f8ca3ab8395af8fbd25391b445bb6670
12da1e04b1e26a8c7710ac93a66ab4fbbbc5026d
2f11cd57e135482fab0eb7606f056110bfd99d3a5afb47732cc4bab681fb54ed
GET /rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 21:50:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +Mo6uDla+PvSU5G0RbtmcA==
x-fb-debug: t5grVzqgysRPy9PRyOl4RpSclz6F7SuyOmiDiz0O/QsXUkvOISf1yXgMzePrwu0dWjsMQRZ8cxvIyQQ08A+/CQ==
priority: u=3,i
content-length: 23510
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 26 Jan 2024 00:24:48 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: o8vhsU9XsRNzUsHEFcB/PYZ47w9eafX3mCego/vNp5DQ/F8ogrw6lOUxsWnuqxGrrV6o2kfFNo3m1CDVBAwopA==
content-length: 830
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 30 Jan 2023 09:56:41 GMT
Expires: Mon, 13 Feb 2023 09:56:41 GMT
Cache-Control: public, max-age=1209600
Age: 57520
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type C source, ASCII text, with very long lines (8848)
Hash 9734a0267b00a50c8eb7614bee9c6545
d8163bd9220aaa5674dbf00612b42505fb15f2cd
ca64b67c67b52c47e3a136997975c35e2a8c40751740bab7a88af53020dfcbe4
GET /rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 01:29:00 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: lzSgJnsApQyOt2FL7pxlRQ==
x-fb-debug: NQrwBaD0boiSxHKqcQwCaL44S0tbMeJCkScETc82W9a262wWk87uVedFoL7VdOb/S/H2dO8kvBC62Rwy9cGk1w==
content-length: 16276
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-511bbe8405a64ebd/_ate.track.config_resp
23.38.200.123200 OK 558 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-511bbe8405a64ebd/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (1668), with no line terminators
Hash 8b1c1cdec5e9d557e5e81ff292e6d285
b2c93dcf8decb1a1cc5ac3f92b0e9148491fe166
2852e4a90f07e8c5c77c37a39af04cba8907976d0a73d3768b4a977ea9a23a32
GET /live/boost/ra-511bbe8405a64ebd/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 558
etag: 1791166343--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=17, s-maxage=86400
date: Tue, 31 Jan 2023 01:55:22 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
connect.facebook.net/pt_BR/all.js
157.240.205.11301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/pt_BR/all.js
IP 157.240.205.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pt_BR/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/pt_BR/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 31 Jan 2023 01:55:22 GMT
Connection: keep-alive
Content-Length: 0
static.xx.fbcdn.net/rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 1.8 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (1984)
Hash 82333ad308c4549f3fcdc7d4a696a137
d2ba713d1cdfda7793daeb48533595d31b484d33
0dded3874c2b5a81113c5710f3b7b1947c3385735b214a412fccfa6343452216
GET /rsrc.php/v3/yf/r/05RPrRxwJDB.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 30 Jan 2024 18:23:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: gjM60wjEVJ8/zcfUppahNw==
x-fb-debug: 2Plw3HM9fjNG970vECupIG5qYKTm3JSJ8uEDkmZoVIV08exBmZUnrC6wPfO5z3PxAeatENyKVE8KsalrFIAkVg==
content-length: 1770
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yC/r/3bYHK16vEsa.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yC/r/3bYHK16vEsa.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (18622)
Hash 517b916bcdce11531f5ad214bd3e0c0e
73b525a7f61f9d00f1169cf8f01d636a03d02c9d
5cf2c1bafc03f3d5844c8a0626c95edaecd012d8ca4eeed77e77440862ce7357
GET /rsrc.php/v3/yC/r/3bYHK16vEsa.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 30 Jan 2024 22:36:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: UXuRa83OEVMfWtIUvT4MDg==
x-fb-debug: /QqPB316Io+WBZMyBFAApkKiN/gytZ2R8k7sIL2nE+MRkqDJYyWkXioORov6E0aZQo0bLTimyJWdZk9Pw2Tmag==
priority: u=3,i
content-length: 85107
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
vaidosasclub.disqus.com/blogger_index.js
199.232.192.134301 Moved Permanently 219 B URL HTTP/1.1 vaidosasclub.disqus.com/blogger_index.js
IP 199.232.192.134:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b22a8f71ae72ac4b781cff49386dfa9
a8e7202517458752851aeb18c9fb770e931fec34
186d5321baf20106cb6361d9ec524b818d876d773a5bd9dd5530ae5889d74be3
GET /blogger_index.js HTTP/1.1
Host: vaidosasclub.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 219
Server: Varnish
Location: https://vaidosasclub.disqus.com/blogger_index.js
Content-Type: text/html
Cache-Control: public, max-age=31536000
Date: Tue, 31 Jan 2023 01:55:22 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=58554
date: Tue, 31 Jan 2023 01:55:22 GMT
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (5542)
Hash 1ad15afc034f310427c81b0759603a2b
e5efd1d029dccf5fa8128c84aadb6544a4ab60e0
fedf63f655f9eef24c517c3d6762fb07b142213ba623d4a0b06614fb5d9754bd
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 15:10:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: u5PJuQWZGM3FfkN/zbakAZbw34cdc3Qj/ATzGfaXvAmDSWZDVPuLrGrySIFnzbXEet/vYBnkdxog76KP4aFp1g==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1679558926
date: Tue, 31 Jan 2023 01:55:21 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/AHs97-k8d31AJDvNQ-4r8hoZ-gVUzYAKT6qRFc53IY7gudksC09tfcy_SJqMo7WBErDXgBXinQ-kTVVNRrHK90r5GXlIZBQYIiNMAj-81R8tqTpGoFI
216.58.211.1200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AHs97-k8d31AJDvNQ-4r8hoZ-gVUzYAKT6qRFc53IY7gudksC09tfcy_SJqMo7WBErDXgBXinQ-kTVVNRrHK90r5GXlIZBQYIiNMAj-81R8tqTpGoFI
IP 216.58.211.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 0dbe635c8e4faac4beac433b802053d1
b351fc44bf1e9a0d7c29ca640bda5571df14ffe8
169ae677bdf5845029a3cc5ce78928d92ee198c0839e6ae779702842060117f1
GET /blogger_img_proxy/AHs97-k8d31AJDvNQ-4r8hoZ-gVUzYAKT6qRFc53IY7gudksC09tfcy_SJqMo7WBErDXgBXinQ-kTVVNRrHK90r5GXlIZBQYIiNMAj-81R8tqTpGoFI HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 01 Feb 2023 01:55:22 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 31 Jan 2023 01:55:22 GMT
server: fife
content-length: 1908
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63d87514acba7896&bkl=0&bl=1&pdt=1118&sid=63d87514acba7896&pub=ra-511bbe8405a64ebd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.vaidosasclub.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675130136313&jsl=1&uvs=63d87514e2df2ca9000&skipb=1&callback=addthis.cbs.jsonp__65952564509915690
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63d87514acba7896&bkl=0&bl=1&pdt=1118&sid=63d87514acba7896&pub=ra-511bbe8405a64ebd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.vaidosasclub.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675130136313&jsl=1&uvs=63d87514e2df2ca9000&skipb=1&callback=addthis.cbs.jsonp__65952564509915690
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 0fdf9860e59082912b4838696ea06222
576236e9a53ff7b8b27c5a803f3fe6055b81d1f7
5f7877f4f258533406e4fe9b15137e21508f2fa292eb8dbecfc8b32826075e81
GET /live/red_lojson/300lo.json?si=63d87514acba7896&bkl=0&bl=1&pdt=1118&sid=63d87514acba7896&pub=ra-511bbe8405a64ebd&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.vaidosasclub.com&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1675130136313&jsl=1&uvs=63d87514e2df2ca9000&skipb=1&callback=addthis.cbs.jsonp__65952564509915690 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 31 Jan 2023 01:55:22 GMT
X-Firefox-Spdy: h2
www.vaidosasclub.com/favicon.ico
172.217.21.179200 OK 775 B URL HTTP/1.1 www.vaidosasclub.com/favicon.ico
IP 172.217.21.179:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash acba562b3f5d234bbe7ce09da5a309e7
913584b75bd33992977952c46ca46ed1312192ea
f92cc89f86b4ee1a068550b6745c284dcb92d0678dac943651e1056c2d3265e8
GET /favicon.ico HTTP/1.1
Host: www.vaidosasclub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Cookie: cj_uid=BGg5F7VINjxjv8IJ9sc1lEknawvaiZ; si_user_id=1675130118.348227541629; si_sess_id=1675130118.348227541629; __atuvc=1%7C5; __atuvs=63d87514e2df2ca9000
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Tue, 31 Jan 2023 01:55:22 GMT
Date: Tue, 31 Jan 2023 01:55:22 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 30 Jan 2023 00:14:18 GMT
ETag: W/"df49512502ac1ef5107a3cb76dc241a4aa489d90a42bdfe32ca1a55f094fce22"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 775
Server: GSE
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Tue, 31 Jan 2023 01:55:22 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4b973033f8a4e7f1d38e80b8f83d3a60
e0beacd8458505d57e374160d17316c7b6b3d139
637a7ffaba5de6ded612572262431895594d018fb88da5a274998c27ada9418f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.35200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.35:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 12:53:47 GMT
expires: Tue, 30 Jan 2024 12:53:47 GMT
cache-control: public, max-age=31536000
age: 46895
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.35200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.35:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:07:41 GMT
expires: Tue, 30 Jan 2024 16:07:41 GMT
cache-control: public, max-age=31536000
age: 35261
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vaidosasclub.disqus.com/blogger_index.js
199.232.192.134302 Found 0 B URL HTTP/1.1 vaidosasclub.disqus.com/blogger_index.js
IP 199.232.192.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /blogger_index.js HTTP/1.1
Host: vaidosasclub.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Content-Length: 0
Server: Varnish
Location: https://a.disquscdn.com/blogger_index.js
Cache-Control: public, max-age=3600
Date: Tue, 31 Jan 2023 01:55:22 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
142.250.74.35200 OK 910 B URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP 142.250.74.35:0
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 07:32:15 GMT
expires: Mon, 29 Jan 2024 07:32:15 GMT
cache-control: public, max-age=31536000
age: 152587
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
142.250.74.45302 Found 454 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.45:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (499)
Hash d3642823a6ceb35c221fd731ec04963b
8a11c09b87d91ec84dee1117fd92f3d9ebd592f3
bf61b32d87f74e3da27cab7020aa6ee68812f75bded9e5196cd4351f0cf200e1
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3782203651507619989%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://www.vaidosasclub.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.AMZ27oQJoUI.O/d%253D1/rs%253DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 31 Jan 2023 01:55:22 GMT
location: https://www.blogger.com/followers.g?blogID=3782203651507619989&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fwww.vaidosasclub.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.AMZ27oQJoUI.O%2Fd%3D1%2Frs%3DAHpOoo9dsXwz2g0gTMdQFEKa7ZoVvtQf4g%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-ALJjIzM5Mj__iQDyew0stA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 454
server: GSE
set-cookie: __Host-GAPS=1:Sb9lMuBbfgRUCHOpIeoxfM171NRc1Q:RzK4paWn62mKCzTX;Path=/;Expires=Thu, 30-Jan-2025 01:55:22 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.disquscdn.com/blogger_index.js
199.232.194.49200 OK 1.3 kB URL HTTP/2 a.disquscdn.com/blogger_index.js
IP 199.232.194.49:0
Hash 87b72c97486279c5c677a3c492545542
16e197ace0883b9f284b7683ddd34091c40cf9d0
e3fff474fed7b7bbc1a1ec81d6a9389563ec2b683497676a50d73a9b3519d516
GET /blogger_index.js HTTP/1.1
Host: a.disquscdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
last-modified: Fri, 26 Feb 2021 20:50:09 GMT
etag: "60395f01-542"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
expires: Wed, 25 Jan 2023 02:55:40 GMT
cache-control: max-age=300, public
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: zeApLjuKcAFGNk4OAVe4ekwr2Pgw60s60NaKDURfsirinHzn30n0AA==
date: Tue, 31 Jan 2023 01:55:22 GMT
age: 217
strict-transport-security: max-age=300; includeSubdomains
content-length: 1346
X-Firefox-Spdy: h2
vaidosasclub.disqus.com/count.js
199.232.192.134301 Moved Permanently 219 B URL HTTP/1.1 vaidosasclub.disqus.com/count.js
IP 199.232.192.134:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b22a8f71ae72ac4b781cff49386dfa9
a8e7202517458752851aeb18c9fb770e931fec34
186d5321baf20106cb6361d9ec524b818d876d773a5bd9dd5530ae5889d74be3
GET /count.js HTTP/1.1
Host: vaidosasclub.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 219
Server: Varnish
Location: https://vaidosasclub.disqus.com/count.js
Content-Type: text/html
Cache-Control: public, max-age=31536000
Date: Tue, 31 Jan 2023 01:55:22 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20230124
142.250.74.110204 No Content 0 B URL HTTP/1.1 translate.google.com/gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20230124
IP 142.250.74.110:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=pt&nca=te_ap&client=te&logld=vTE_20230124 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 31 Jan 2023 01:55:22 GMT
Cross-Origin-Resource-Policy: cross-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: same-origin
Content-Security-Policy: script-src 'nonce-fcZ7ArwbtzJkZZha14HMsg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
vaidosasclub.disqus.com/count.js
199.232.192.134200 OK 871 B URL HTTP/1.1 vaidosasclub.disqus.com/count.js
IP 199.232.192.134:0
File type ASCII text, with very long lines (528)
Hash a487039f9b553cb4f6928743872234e9
b3d835075d1983a8c2fe716285d173fcc3708f9c
364f622ba24e063adcee84f132da53c6e6071745f04a00d10937663deb24b822
GET /count.js HTTP/1.1
Host: vaidosasclub.disqus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 871
Content-Type: application/javascript; charset=utf-8
Server: nginx
Last-Modified: Tue, 24 Jan 2023 18:53:30 GMT
ETag: "63d0292a-367"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Amz-Cf-Pop: DFW3-C1
X-Amz-Cf-Id: B8XjkjYCvjOHfdTmCWzAEJFP5Y9A_6Zgugyc2WU9Ga8CNiEDDeeoig==
Cache-Control: public, max-age=300
Date: Tue, 31 Jan 2023 01:55:22 GMT
Age: 136
Vary: Accept-Encoding
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f4a0e788bd484c84f6fc7407e06ad3
840418f49c444dc62e370825451b945ff89e99bf
69b2086f39e1f30b567049191696db642db8babe79a0c6ce084b06cdbc962b6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f4a0e788bd484c84f6fc7407e06ad3
840418f49c444dc62e370825451b945ff89e99bf
69b2086f39e1f30b567049191696db642db8babe79a0c6ce084b06cdbc962b6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f4a0e788bd484c84f6fc7407e06ad3
840418f49c444dc62e370825451b945ff89e99bf
69b2086f39e1f30b567049191696db642db8babe79a0c6ce084b06cdbc962b6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f4a0e788bd484c84f6fc7407e06ad3
840418f49c444dc62e370825451b945ff89e99bf
69b2086f39e1f30b567049191696db642db8babe79a0c6ce084b06cdbc962b6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 01:55:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-T_a3ZXvuCsU/VMHLDMCMPPI/AAAAAAAADmA/x-PBeCvokqg/s1600/miss%2Brose%2Be%2Bppu%2B01.png
142.250.74.161200 OK 0 B URL HTTP/1.1 3.bp.blogspot.com/-T_a3ZXvuCsU/VMHLDMCMPPI/AAAAAAAADmA/x-PBeCvokqg/s1600/miss%2Brose%2Be%2Bppu%2B01.png
IP 142.250.74.161:0
GET /-T_a3ZXvuCsU/VMHLDMCMPPI/AAAAAAAADmA/x-PBeCvokqg/s1600/miss%2Brose%2Be%2Bppu%2B01.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve62"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="miss rose e ppu 01.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 429455
X-XSS-Protection: 0
4.bp.blogspot.com/-d8uhvnoOIlA/VB42P8T51hI/AAAAAAAAADk/KKLUPZiif5U/s1600/SAM_2194.JPG
142.250.74.161200 OK 0 B URL HTTP/1.1 4.bp.blogspot.com/-d8uhvnoOIlA/VB42P8T51hI/AAAAAAAAADk/KKLUPZiif5U/s1600/SAM_2194.JPG
IP 142.250.74.161:0
GET /-d8uhvnoOIlA/VB42P8T51hI/AAAAAAAAADk/KKLUPZiif5U/s1600/SAM_2194.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3c"
Expires: Wed, 01 Feb 2023 01:55:17 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2194.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:17 GMT
Server: fife
Content-Length: 108361
X-XSS-Protection: 0
i.imgur.com/eZoSYNb.png
151.101.244.193200 OK 0 B IP 151.101.244.193:0
GET /eZoSYNb.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.vaidosasclub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Apr 2015 16:29:23 GMT
etag: "756845041ee6662506c327ea0186c00c"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 31 Jan 2023 01:55:18 GMT
age: 1654644
x-served-by: cache-iad-kiad7000107-IAD, cache-hel1410023-HEL
x-cache: HIT, MISS
x-cache-hits: 36, 0
x-timer: S1675130118.012534,VS0,VE99
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 96300
X-Firefox-Spdy: h2
2.bp.blogspot.com/-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s1600/SAM_2192.JPG
142.250.74.161200 OK 0 B URL HTTP/1.1 2.bp.blogspot.com/-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s1600/SAM_2192.JPG
IP 142.250.74.161:0
GET /-TbT-tSoZB2o/VB42PIn5F9I/AAAAAAAAADc/VIwuZxGumgc/s1600/SAM_2192.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.vaidosasclub.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3a"
Expires: Wed, 01 Feb 2023 01:55:18 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="SAM_2192.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 31 Jan 2023 01:55:18 GMT
Server: fife
Content-Length: 108554
X-XSS-Protection: 0