3d80bad7c85b1c91928599ec1c11485ad078fe27d36328c0d47399d40b85ef86

Analysis

max time kernel
144s
max time network
142s
platform
windows7_x64
resource
win7-20240215-en
resource tags

arch:x64arch:x86image:win7-20240215-enlocale:en-usos:windows7-x64system
submitted
20/05/2024, 06:35 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5da99a8dbbaf7be5719d46bb17db14ee_JaffaCakes118.html
Size

117KB
MD5

5da99a8dbbaf7be5719d46bb17db14ee
SHA1

6b8bbc3a1310cdabd6160addad99f4a64bc4d8a9
SHA256

3d80bad7c85b1c91928599ec1c11485ad078fe27d36328c0d47399d40b85ef86
SHA512

35bbbaf9c02e41f82d84fb7e3622ab19f4992e221140914dfa47ccdc792ff3dfd99de479220acab8ce6a4ffd6c21e23212686b0878d294984712845bdba4b1ae
SSDEEP

768:6qM8fQO8bKJ8HO7qHIKaBMPp1fz6EV3Whntv+v29Y0:3M8b8WeO7qgBcbzgxt2W

Score

1^/10

Malware Config

Signatures

Modifies Internet Explorer settings 1 TTPs 36 IoCs

adware spyware

Modify Registry

T1112

description	ioc	Process
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive\{35DE9B31-1673-11EF-9AB8-560090747152} = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\LastProcessed = f043250e80aada01	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DontShowMeThisDialogAgain	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes\DownloadRetries = "2"	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\MFV = 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	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Zoom	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "0"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IntelliForms	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\PageSetup	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\InternetRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\AdminActive	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Recovery\PendingRecovery\AdminActive = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\GPU	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\IETld\LowMic	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NTPFirstRun = "1"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\FullScreen = "no"	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\CompatibilityFlags = "0"	iexplore.exe
Set value (str)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\WindowsSearch\Version = "WS not running"	IEXPLORE.EXE
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\SearchScopes	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\TabbedBrowsing\NewTabPage\DecayDateQueue = 01000000d08c9ddf0115d1118c7a00c04fc297eb010000001b5c4dd66253eb4a8c0f98358538170400000000020000000000106600000001000020000000a5a70c5f02152f23d5bace1a75b71f9af2a9babe4cf186ab622e4c2163d86767000000000e8000000002000020000000f8acba72bb34f433bd04466fca1c4a57d31e0ccbdec4f0f07fa4072735ee13c42000000081e7bffc6982c82bff0dd1d4a3668b66861d95ce2dfafa4d7d2132b86278c78c40000000d6998fbd16bfef7c43224d43fd5bdf547b4ecd24a74c618ae32673af90ed07c20684e12be5e77ad614c7c63608a78cd36bd33b696ce1f48811d50f60d6a0f7d6	iexplore.exe
Set value (int)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\DomainSuggestion\NextUpdateDate = "422348823"	iexplore.exe
Key created	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\BrowserEmulation\LowMic	iexplore.exe
Set value (data)	\REGISTRY\USER\S-1-5-21-2248906074-2862704502-246302768-1000\Software\Microsoft\Internet Explorer\Main\Window_Placement = 2c0000000200000003000000ffffffffffffffffffffffffffffffff2400000024000000aa04000089020000	iexplore.exe

Suspicious use of FindShellTrayWindow 1 IoCs

pid	Process
2816	iexplore.exe

Suspicious use of SetWindowsHookEx 6 IoCs

pid	Process
2816	iexplore.exe
2816	iexplore.exe
1504	IEXPLORE.EXE
1504	IEXPLORE.EXE
1504	IEXPLORE.EXE
1504	IEXPLORE.EXE

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2816 wrote to memory of 1504	2816	iexplore.exe	28
PID 2816 wrote to memory of 1504	2816	iexplore.exe	28
PID 2816 wrote to memory of 1504	2816	iexplore.exe	28
PID 2816 wrote to memory of 1504	2816	iexplore.exe	28

C:\Program Files\Internet Explorer\iexplore.exe
"C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\5da99a8dbbaf7be5719d46bb17db14ee_JaffaCakes118.html
1⤵
- Modifies Internet Explorer settings
- Suspicious use of FindShellTrayWindow
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:2816
- C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
  "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2816 CREDAT:275457 /prefetch:2
  2⤵
  - Modifies Internet Explorer settings
  - Suspicious use of SetWindowsHookEx
  PID:1504

Network

DNS

www.blogger.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN A

Response

www.blogger.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.178.9
DNS

code.jquery.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

code.jquery.com

IN A

Response

code.jquery.com

IN A

151.101.194.137

code.jquery.com

IN A

151.101.2.137

code.jquery.com

IN A

151.101.66.137

code.jquery.com

IN A

151.101.130.137
DNS

ajax.googleapis.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN A

Response

ajax.googleapis.com

IN A

142.250.180.10
DNS

1.bp.blogspot.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

1.bp.blogspot.com

IN A

Response

1.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.180.1
DNS

4.bp.blogspot.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

4.bp.blogspot.com

IN A

Response

4.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.180.1
DNS

3.bp.blogspot.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

3.bp.blogspot.com

IN A

Response

3.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.180.1
DNS

2.bp.blogspot.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

2.bp.blogspot.com

IN A

Response

2.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.180.1
DNS

apis.google.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.200.14
DNS

resources.blogblog.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

resources.blogblog.com

IN A

Response

resources.blogblog.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.178.9
GET

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

IEXPLORE.EXE

Remote address:

142.250.180.10:80

Request

GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 62563
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 19 May 2024 03:18:08 GMT
Expires: Mon, 19 May 2025 03:18:08 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 98269
Last-Modified: Fri, 27 Jan 2023 21:54:31 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
GET

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

IEXPLORE.EXE

Remote address:

142.250.180.10:80

Request

GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
If-Modified-Since: Fri, 27 Jan 2023 21:54:31 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sun, 19 May 2024 03:18:08 GMT
Expires: Mon, 19 May 2025 03:18:08 GMT
Age: 98304
Last-Modified: Fri, 27 Jan 2023 21:54:31 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Vary: Accept-Encoding
GET

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

IEXPLORE.EXE

Remote address:

142.250.180.10:80

Request

GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
If-Modified-Since: Fri, 27 Jan 2023 21:54:31 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sun, 19 May 2024 03:18:08 GMT
Expires: Mon, 19 May 2025 03:18:08 GMT
Age: 98338
Last-Modified: Fri, 27 Jan 2023 21:54:31 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Vary: Accept-Encoding
GET

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

IEXPLORE.EXE

Remote address:

142.250.180.10:80

Request

GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
If-Modified-Since: Fri, 27 Jan 2023 21:54:31 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sun, 19 May 2024 03:18:08 GMT
Expires: Mon, 19 May 2025 03:18:08 GMT
Age: 98372
Last-Modified: Fri, 27 Jan 2023 21:54:31 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Vary: Accept-Encoding
GET

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

IEXPLORE.EXE

Remote address:

142.250.180.10:80

Request

GET /ajax/libs/jqueryui/1.9.2/jquery-ui.min.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: ajax.googleapis.com
If-Modified-Since: Fri, 27 Jan 2023 21:54:31 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sun, 19 May 2024 03:18:08 GMT
Expires: Mon, 19 May 2025 03:18:08 GMT
Age: 98406
Last-Modified: Fri, 27 Jan 2023 21:54:31 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Vary: Accept-Encoding
GET

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /static/v1/widgets/124887373-widget_css_bundle.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 7278
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 12:39:22 GMT
Expires: Sun, 18 May 2025 12:39:22 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 24 May 2017 03:26:36 GMT
Content-Type: text/css
Vary: Accept-Encoding
Age: 150996
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Mon, 20 May 2024 06:35:58 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:35:59 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/css; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:36:33 GMT
Last-Modified: Mon, 20 May 2024 06:36:33 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:36:33 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: www.blogger.com

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:36:33 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /static/v1/widgets/124887373-widget_css_bundle.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
If-Modified-Since: Wed, 24 May 2017 03:26:36 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:39:22 GMT
Expires: Sun, 18 May 2025 12:39:22 GMT
Last-Modified: Wed, 24 May 2017 03:26:36 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 151064
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 20 May 2024 06:37:07 GMT
Expires: Mon, 20 May 2024 06:37:07 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: www.blogger.com

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:07 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /static/v1/widgets/124887373-widget_css_bundle.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
If-Modified-Since: Wed, 24 May 2017 03:26:36 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:39:22 GMT
Expires: Sun, 18 May 2025 12:39:22 GMT
Last-Modified: Wed, 24 May 2017 03:26:36 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 151098
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 20 May 2024 06:37:40 GMT
Expires: Mon, 20 May 2024 06:37:40 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: www.blogger.com

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:41 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /static/v1/widgets/124887373-widget_css_bundle.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
If-Modified-Since: Wed, 24 May 2017 03:26:36 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:39:22 GMT
Expires: Sun, 18 May 2025 12:39:22 GMT
Last-Modified: Wed, 24 May 2017 03:26:36 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 151132
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 20 May 2024 06:38:14 GMT
Expires: Mon, 20 May 2024 06:38:14 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

http://code.jquery.com/jquery-2.1.1.js

IEXPLORE.EXE

Remote address:

151.101.194.137:80

Request

GET /jquery-2.1.1.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: code.jquery.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Connection: keep-alive
Content-Length: 72985
Server: nginx
Content-Type: application/javascript; charset=utf-8
Last-Modified: Fri, 18 Oct 1991 12:00:00 GMT
ETag: W/"28feccc0-3c637"
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Mon, 20 May 2024 06:35:57 GMT
Age: 2840391
X-Served-By: cache-lga21982-LGA, cache-lcy-eglc8600034-LCY
X-Cache: HIT, HIT
X-Cache-Hits: 15455, 201
X-Timer: S1716186957.125720,VS0,VE0
Vary: Accept-Encoding
GET

http://code.jquery.com/jquery-2.1.1.js

IEXPLORE.EXE

Remote address:

151.101.194.137:80

Request

GET /jquery-2.1.1.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: code.jquery.com
If-Modified-Since: Fri, 18 Oct 1991 12:00:00 GMT
If-None-Match: W/"28feccc0-3c637"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Connection: keep-alive
Date: Mon, 20 May 2024 06:36:32 GMT
Via: 1.1 varnish
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
ETag: W/"28feccc0-3c637"
Age: 2840426
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: HIT
X-Cache-Hits: 202
X-Timer: S1716186993.549753,VS0,VE0
Vary: Accept-Encoding
GET

http://code.jquery.com/jquery-2.1.1.js

IEXPLORE.EXE

Remote address:

151.101.194.137:80

Request

GET /jquery-2.1.1.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: code.jquery.com
If-Modified-Since: Fri, 18 Oct 1991 12:00:00 GMT
If-None-Match: W/"28feccc0-3c637"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Connection: keep-alive
Date: Mon, 20 May 2024 06:37:06 GMT
Via: 1.1 varnish
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
ETag: W/"28feccc0-3c637"
Age: 2840460
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: HIT
X-Cache-Hits: 203
X-Timer: S1716187027.784969,VS0,VE0
Vary: Accept-Encoding
GET

http://code.jquery.com/jquery-2.1.1.js

IEXPLORE.EXE

Remote address:

151.101.194.137:80

Request

GET /jquery-2.1.1.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: code.jquery.com
If-Modified-Since: Fri, 18 Oct 1991 12:00:00 GMT
If-None-Match: W/"28feccc0-3c637"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Connection: keep-alive
Date: Mon, 20 May 2024 06:37:40 GMT
Via: 1.1 varnish
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
ETag: W/"28feccc0-3c637"
Age: 2840494
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: HIT
X-Cache-Hits: 204
X-Timer: S1716187061.578642,VS0,VE0
Vary: Accept-Encoding
GET

http://code.jquery.com/jquery-2.1.1.js

IEXPLORE.EXE

Remote address:

151.101.194.137:80

Request

GET /jquery-2.1.1.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: code.jquery.com
If-Modified-Since: Fri, 18 Oct 1991 12:00:00 GMT
If-None-Match: W/"28feccc0-3c637"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Connection: keep-alive
Date: Mon, 20 May 2024 06:38:14 GMT
Via: 1.1 varnish
Cache-Control: public, max-age=31536000, stale-while-revalidate=604800
ETag: W/"28feccc0-3c637"
Age: 2840528
X-Served-By: cache-lcy-eglc8600034-LCY
X-Cache: HIT
X-Cache-Hits: 205
X-Timer: S1716187094.360211,VS0,VE0
Vary: Accept-Encoding
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="social-frontend-mpm-access"
Report-To: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
Content-Length: 15190
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 12:16:35 GMT
Expires: Sun, 18 May 2025 12:16:35 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 152363
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:16:35 GMT
Expires: Sun, 18 May 2025 12:16:35 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 152398
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:16:35 GMT
Expires: Sun, 18 May 2025 12:16:35 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 152431
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform:gapi.iframes.style.common.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "1df5d68c1707a051"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:07 GMT
Expires: Mon, 20 May 2024 06:37:07 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "1df5d68c1707a051"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 10:23:05 GMT
Expires: Sun, 18 May 2025 10:23:05 GMT
Age: 159242
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "d8cc7aca923e8ade"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:07 GMT
Expires: Mon, 20 May 2024 06:37:07 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "d8cc7aca923e8ade"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:03:47 GMT
Expires: Sun, 18 May 2025 12:03:47 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153200
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/plusone.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/plusone.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "80d5c9d57d5f206f"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:40 GMT
Expires: Mon, 20 May 2024 06:37:40 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "80d5c9d57d5f206f"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:05:40 GMT
Expires: Sun, 18 May 2025 12:05:40 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153120
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:16:35 GMT
Expires: Sun, 18 May 2025 12:16:35 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 152499
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform:gapi.iframes.style.common.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "1df5d68c1707a051"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:38:15 GMT
Expires: Mon, 20 May 2024 06:38:15 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "1df5d68c1707a051"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 10:23:05 GMT
Expires: Sun, 18 May 2025 10:23:05 GMT
Age: 159310
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "d8cc7aca923e8ade"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:38:15 GMT
Expires: Mon, 20 May 2024 06:38:15 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "d8cc7aca923e8ade"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:03:47 GMT
Expires: Sun, 18 May 2025 12:03:47 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153268
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/plusone.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/plusone.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Mon, 20 May 2024 06:35:57 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "80d5c9d57d5f206f"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="social-frontend-mpm-access"
Report-To: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
Content-Length: 55813
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 12:05:40 GMT
Expires: Sun, 18 May 2025 12:05:40 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 153018
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform:gapi.iframes.style.common.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Date: Mon, 20 May 2024 06:35:59 GMT
Expires: Mon, 20 May 2024 06:35:59 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "1df5d68c1707a051"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="social-frontend-mpm-access"
Report-To: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
Content-Length: 45677
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 10:23:05 GMT
Expires: Sun, 18 May 2025 10:23:05 GMT
Cache-Control: public, max-age=31536000
Age: 159174
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Date: Mon, 20 May 2024 06:35:59 GMT
Expires: Mon, 20 May 2024 06:35:59 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "d8cc7aca923e8ade"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="social-frontend-mpm-access"
Report-To: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
Content-Length: 45677
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 12:03:47 GMT
Expires: Sun, 18 May 2025 12:03:47 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 153132
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/plusone.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/plusone.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "80d5c9d57d5f206f"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:36:32 GMT
Expires: Mon, 20 May 2024 06:36:32 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "80d5c9d57d5f206f"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:05:40 GMT
Expires: Sun, 18 May 2025 12:05:40 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153053
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform:gapi.iframes.style.common.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "1df5d68c1707a051"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:36:33 GMT
Expires: Mon, 20 May 2024 06:36:33 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "1df5d68c1707a051"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 10:23:05 GMT
Expires: Sun, 18 May 2025 10:23:05 GMT
Age: 159208
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "d8cc7aca923e8ade"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:36:33 GMT
Expires: Mon, 20 May 2024 06:36:33 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "d8cc7aca923e8ade"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:03:47 GMT
Expires: Sun, 18 May 2025 12:03:47 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153166
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/plusone.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/plusone.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "80d5c9d57d5f206f"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:06 GMT
Expires: Mon, 20 May 2024 06:37:06 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "80d5c9d57d5f206f"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:05:40 GMT
Expires: Sun, 18 May 2025 12:05:40 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153086
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:16:35 GMT
Expires: Sun, 18 May 2025 12:16:35 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 152465
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform:gapi.iframes.style.common.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "1df5d68c1707a051"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:41 GMT
Expires: Mon, 20 May 2024 06:37:41 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "1df5d68c1707a051"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 10:23:05 GMT
Expires: Sun, 18 May 2025 10:23:05 GMT
Age: 159276
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/platform.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/platform.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "d8cc7aca923e8ade"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:37:41 GMT
Expires: Mon, 20 May 2024 06:37:41 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "d8cc7aca923e8ade"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:03:47 GMT
Expires: Sun, 18 May 2025 12:03:47 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153234
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/js/plusone.js

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /js/plusone.js HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-None-Match: "80d5c9d57d5f206f"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Access-Control-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Date: Mon, 20 May 2024 06:38:14 GMT
Expires: Mon, 20 May 2024 06:38:14 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "80d5c9d57d5f206f"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

IEXPLORE.EXE

Remote address:

142.250.200.14:443

Request

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Accept: application/javascript, */*;q=0.8
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: apis.google.com
If-Modified-Since: Mon, 15 Apr 2024 18:15:45 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:05:40 GMT
Expires: Sun, 18 May 2025 12:05:40 GMT
Last-Modified: Mon, 15 Apr 2024 18:15:45 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 153154
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/css; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:35:58 GMT
Last-Modified: Mon, 20 May 2024 06:35:58 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:35:58 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /static/v1/widgets/124887373-widget_css_bundle.css HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
If-Modified-Since: Wed, 24 May 2017 03:26:36 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:39:22 GMT
Expires: Sun, 18 May 2025 12:39:22 GMT
Last-Modified: Wed, 24 May 2017 03:26:36 GMT
Cache-Control: public, max-age=31536000
Vary: Accept-Encoding
Age: 151030
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Moved Temporarily

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 20 May 2024 06:36:33 GMT
Expires: Mon, 20 May 2024 06:36:33 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/css; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:06 GMT
Last-Modified: Mon, 20 May 2024 06:37:06 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:07 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/css; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:40 GMT
Last-Modified: Mon, 20 May 2024 06:37:40 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:41 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64 HTTP/1.1
Accept: text/css, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/css; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:38:14 GMT
Last-Modified: Mon, 20 May 2024 06:38:14 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: www.blogger.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:38:14 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1 HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Connection: Keep-Alive
Host: www.blogger.com

Response

HTTP/1.1 200 OK

P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Content-Security-Policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:38:15 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Server: GSE
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
Transfer-Encoding: chunked
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "vb42"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="U1_2593_redimensionar.JPG"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1748
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb34"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb34"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb42"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb42"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "v1b8"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 103
ETag: "v1b8"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb34"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb34"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb79"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1124
ETag: "vb79"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vba0"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vba0"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vba0"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vba0"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "v1b8"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 137
ETag: "v1b8"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 915
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vba0"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vba0"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "vb34"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="farfalle_3.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 3083
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "v1b8"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 35
ETag: "v1b8"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb34"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb34"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb79"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1057
ETag: "vb79"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 915
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1956515.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2766
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1b8"
Content-Type: image/jpeg
Vary: Origin
Age: 0
GET

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="arrow_right.gif"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 62
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 988
ETag: "vb79"
Content-Type: image/gif
Vary: Origin
GET

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 915
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vba0"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vba0"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb42"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb42"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb79"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1090
ETag: "vb79"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 915
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "vba0"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pbn1.JPG"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1340
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb42"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb42"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb79"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1023
ETag: "vb79"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 915
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "v1b8"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 69
ETag: "v1b8"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb34"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb34"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
If-None-Match: "vb42"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vb42"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 1.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 3.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "vfe"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="dcd3c6cf6215d8558bfdd47276147a27.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 2317
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vfe"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vfe"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vb99"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1023
ETag: "vb99"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v292"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v292"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vb99"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1057
ETag: "vb99"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v292"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v292"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vb99"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1090
ETag: "vb99"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v1416"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 137
ETag: "v1416"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vb99"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1124
ETag: "vb99"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v812"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="6.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1193
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v25e"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v25e"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v3f2"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Tue, 21 May 2024 06:35:58 GMT
Age: 68
ETag: "v3f2"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v812"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v812"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v2965"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1090
ETag: "v2965"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v1ca"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v1ca"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v2965"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1124
ETag: "v2965"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v292"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="island_by_piddling-d3274p4.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1687
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v682"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v682"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v682"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v682"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v682"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v682"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v682"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v682"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="no image.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 7651
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1416"
Content-Type: image/jpeg
Vary: Origin
Age: 0
GET

http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "va09"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "va09"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "va09"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "va09"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vfe"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vfe"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v1ca"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="suenos.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 3270
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v812"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v812"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v3f2"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Tue, 21 May 2024 06:35:58 GMT
Age: 34
ETag: "v3f2"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v2965"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1023
ETag: "v2965"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v1ca"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v1ca"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v86a"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v86a"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v1416"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 69
ETag: "v1416"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "va09"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "va09"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "va09"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "va09"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v86a"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ILG_4.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 2131
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v25e"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v25e"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v812"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v812"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v2965"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Age: 1057
ETag: "v2965"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v1ca"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v1ca"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v86a"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v86a"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v86a"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v86a"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v682"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tumblr_m47srys3q31qgvnq9o1_500.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 3651
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="arrow_down.gif"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 56
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 988
ETag: "vb99"
Content-Type: image/gif
Vary: Origin
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v292"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v292"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vfe"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vfe"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "vfe"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "vfe"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v292"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v292"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v25e"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1430438.jpg"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1710
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v25e"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v25e"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 103
GET

http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v3f2"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Tue, 21 May 2024 06:35:58 GMT
Age: 102
ETag: "v3f2"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v812"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v812"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="normal_Sumisas_157.jpg"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2638
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Tue, 21 May 2024 06:35:58 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3f2"
Content-Type: image/jpeg
Vary: Origin
Age: 0
GET

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="batas.gif"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 35
X-XSS-Protection: 0
Date: Mon, 20 May 2024 06:19:30 GMT
Expires: Tue, 21 May 2024 06:19:30 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 988
ETag: "v2965"
Content-Type: image/gif
Vary: Origin
GET

http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v1ca"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v1ca"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 35
GET

http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:36:32 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v86a"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v86a"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 69
GET

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:40 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v25e"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
ETag: "v25e"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
Age: 137
GET

http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
If-None-Match: "v3f2"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:58 GMT
Expires: Tue, 21 May 2024 06:35:58 GMT
Age: 136
ETag: "v3f2"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 4.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "va09"
Expires: Tue, 21 May 2024 06:35:57 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bn311009.JPG"
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:35:57 GMT
Server: fife
Content-Length: 2350
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v1416"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 35
ETag: "v1416"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:37:06 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
If-None-Match: "v1416"
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Mon, 20 May 2024 06:35:57 GMT
Expires: Tue, 21 May 2024 06:35:57 GMT
Age: 103
ETag: "v1416"
Cache-Control: public, max-age=86400, no-transform
Vary: Origin
GET

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

IEXPLORE.EXE

Remote address:

142.250.180.1:80

Request

GET /_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: 2.bp.blogspot.com
Connection: Keep-Alive

Response

HTTP/1.1 404 Not Found

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Mon, 20 May 2024 06:38:14 GMT
Server: fife
Content-Length: 1323
X-XSS-Protection: 0
GET

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: resources.blogblog.com
Connection: Keep-Alive

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 475
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 18 May 2024 12:32:12 GMT
Expires: Sat, 25 May 2024 12:32:12 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 18 May 2024 09:53:24 GMT
Content-Type: image/png
Age: 151425
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: resources.blogblog.com
If-Modified-Since: Sat, 18 May 2024 09:53:24 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:32:12 GMT
Expires: Sat, 25 May 2024 12:32:12 GMT
Last-Modified: Sat, 18 May 2024 09:53:24 GMT
Cache-Control: public, max-age=604800
Age: 151460
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: resources.blogblog.com
If-Modified-Since: Sat, 18 May 2024 09:53:24 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:32:12 GMT
Expires: Sat, 25 May 2024 12:32:12 GMT
Last-Modified: Sat, 18 May 2024 09:53:24 GMT
Cache-Control: public, max-age=604800
Age: 151494
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: resources.blogblog.com
If-Modified-Since: Sat, 18 May 2024 09:53:24 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:32:12 GMT
Expires: Sat, 25 May 2024 12:32:12 GMT
Last-Modified: Sat, 18 May 2024 09:53:24 GMT
Cache-Control: public, max-age=604800
Age: 151528
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

IEXPLORE.EXE

Remote address:

142.250.178.9:443

Request

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: resources.blogblog.com
If-Modified-Since: Sat, 18 May 2024 09:53:24 GMT
Connection: Keep-Alive

Response

HTTP/1.1 304 Not Modified

Date: Sat, 18 May 2024 12:32:12 GMT
Expires: Sat, 25 May 2024 12:32:12 GMT
Last-Modified: Sat, 18 May 2024 09:53:24 GMT
Cache-Control: public, max-age=604800
Age: 151562
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
DNS

www.mykel.info

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

www.mykel.info

IN A

Response
DNS

accounts.google.com

IEXPLORE.EXE

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

74.125.71.84
GET

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

IEXPLORE.EXE

Remote address:

74.125.71.84:443

Request

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive

Response

HTTP/1.1 302 Found

Content-Type: application/binary
Set-Cookie: __Host-GAPS=1:mH9jTVSXi8L1LaQPmoSFcxb8gNWUgg:hqr9EumAtW-IfU_3; Expires=Wed, 20-May-2026 06:35:59 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:35:59 GMT
Location: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: script-src 'nonce-7zI6jkcnRblJcyE6VEXpDA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Cross-Origin-Opener-Policy: unsafe-none
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Resource-Policy: cross-origin
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

IEXPLORE.EXE

Remote address:

74.125.71.84:443

Request

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:mH9jTVSXi8L1LaQPmoSFcxb8gNWUgg:hqr9EumAtW-IfU_3

Response

HTTP/1.1 302 Found

Content-Type: application/binary
Set-Cookie: __Host-GAPS=1:Nti7HFuJ7JJ-RLn1JmaBVgH1-79kkg:iRUzMycljO9ahlkM; Expires=Wed, 20-May-2026 06:36:33 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:36:33 GMT
Location: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Content-Security-Policy: script-src 'nonce--mMbQIBp4VAGrbsPGwKJJA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: unsafe-none
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

IEXPLORE.EXE

Remote address:

74.125.71.84:443

Request

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:Nti7HFuJ7JJ-RLn1JmaBVgH1-79kkg:iRUzMycljO9ahlkM

Response

HTTP/1.1 302 Found

Content-Type: application/binary
Set-Cookie: __Host-GAPS=1:aiXv35_AaOu2di153On5I8Y7C5kXwA:FzsC4OHRyiCelkKr; Expires=Wed, 20-May-2026 06:37:07 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:07 GMT
Location: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Cross-Origin-Resource-Policy: cross-origin
Content-Security-Policy: script-src 'nonce-yodT2Sw5H-jfqIWryvLftA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Opener-Policy: unsafe-none
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

IEXPLORE.EXE

Remote address:

74.125.71.84:443

Request

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:aiXv35_AaOu2di153On5I8Y7C5kXwA:FzsC4OHRyiCelkKr

Response

HTTP/1.1 302 Found

Content-Type: application/binary
Set-Cookie: __Host-GAPS=1:OjYxEwgQ4NtXj9cOMqLn2cdC15UNiQ:oiwxqlo29HL6kuyX; Expires=Wed, 20-May-2026 06:37:40 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:37:40 GMT
Location: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Content-Security-Policy: script-src 'nonce-BBGEXj5eX0VfohX0Zxjhyw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: unsafe-none
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

IEXPLORE.EXE

Remote address:

74.125.71.84:443

Request

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: en-US
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
Accept-Encoding: gzip, deflate
Host: accounts.google.com
Connection: Keep-Alive
Cookie: __Host-GAPS=1:OjYxEwgQ4NtXj9cOMqLn2cdC15UNiQ:oiwxqlo29HL6kuyX

Response

HTTP/1.1 302 Found

Content-Type: application/binary
Set-Cookie: __Host-GAPS=1:jd6UALEhCWzmapUqRM3O11H8A61mvw:3vw1btNPaESFR58q; Expires=Wed, 20-May-2026 06:38:15 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 20 May 2024 06:38:15 GMT
Location: https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
Content-Security-Policy: script-src 'nonce-rDZZIujj97F-I3YydwRYcg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self'
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
Cross-Origin-Opener-Policy: unsafe-none
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Resource-Policy: cross-origin
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Content-Type-Options: nosniff
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
DNS

www.microsoft.com

iexplore.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.55.97.181
DNS

www.microsoft.com

iexplore.exe

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.55.97.181

142.250.180.10:80

http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

http

IEXPLORE.EXE

4.4kB
66.9kB
55
54

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

HTTP Response

200

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

HTTP Response

304

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

HTTP Response

304

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

HTTP Response

304

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.min.js

HTTP Response

304
142.250.180.1:80

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

http

IEXPLORE.EXE

2.2kB
8.4kB
12
16

HTTP Request

GET http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

HTTP Response

404
142.250.178.9:443

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

tls, http

IEXPLORE.EXE

11.3kB
42.6kB
49
72

HTTP Request

GET https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

HTTP Response

200

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

302

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

HTTP Response

200

HTTP Request

GET https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

HTTP Response

200

HTTP Request

GET https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

200

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

HTTP Response

200

HTTP Request

GET https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

HTTP Response

304

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

302

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

HTTP Response

200

HTTP Request

GET https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

HTTP Response

304

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

302

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

HTTP Response

200

HTTP Request

GET https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

HTTP Response

304

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

302
151.101.194.137:80

http://code.jquery.com/jquery-2.1.1.js

http

IEXPLORE.EXE

4.2kB
79.2kB
51
69

HTTP Request

GET http://code.jquery.com/jquery-2.1.1.js

HTTP Response

200

HTTP Request

GET http://code.jquery.com/jquery-2.1.1.js

HTTP Response

304

HTTP Request

GET http://code.jquery.com/jquery-2.1.1.js

HTTP Response

304

HTTP Request

GET http://code.jquery.com/jquery-2.1.1.js

HTTP Response

304

HTTP Request

GET http://code.jquery.com/jquery-2.1.1.js

HTTP Response

304
151.101.194.137:80

code.jquery.com

IEXPLORE.EXE

242 B
184 B
5
4
142.250.180.10:80

ajax.googleapis.com

IEXPLORE.EXE

190 B
92 B
4
2
142.250.180.1:80

http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

http

IEXPLORE.EXE

2.3kB
8.4kB
12
16

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

HTTP Response

404
142.250.200.14:443

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

tls, http

IEXPLORE.EXE

12.1kB
28.1kB
39
42

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

HTTP Response

200

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform:gapi.iframes.style.common.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/plusone.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform:gapi.iframes.style.common.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304
142.250.200.14:443

https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

tls, http

IEXPLORE.EXE

19.9kB
239.9kB
118
199

HTTP Request

GET https://apis.google.com/js/plusone.js

HTTP Response

200

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

200

HTTP Request

GET https://apis.google.com/js/platform:gapi.iframes.style.common.js

HTTP Response

200

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

200

HTTP Request

GET https://apis.google.com/js/platform.js

HTTP Response

200

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

200

HTTP Request

GET https://apis.google.com/js/plusone.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform:gapi.iframes.style.common.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/plusone.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/exm=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_1?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform:gapi.iframes.style.common.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/platform.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304

HTTP Request

GET https://apis.google.com/js/plusone.js

HTTP Response

304

HTTP Request

GET https://apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=plusone/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

HTTP Response

304
142.250.178.9:443

https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

tls, http

IEXPLORE.EXE

9.3kB
33.6kB
42
59

HTTP Request

GET https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

HTTP Response

200

HTTP Request

GET https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

200

HTTP Request

GET https://www.blogger.com/static/v1/widgets/124887373-widget_css_bundle.css

HTTP Response

304

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

302

HTTP Request

GET https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

HTTP Response

200

HTTP Request

GET https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

200

HTTP Request

GET https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

HTTP Response

200

HTTP Request

GET https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

200

HTTP Request

GET https://www.blogger.com/dyn-css/authorization.css?targetBlogID=6991003047646672080&zx=bf3ce665-98d0-49e4-8ea0-355b2603da64

HTTP Response

200

HTTP Request

GET https://www.blogger.com/navbar.g?targetBlogID=6991003047646672080&blogName=from+the+heart+by+love+amatista&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=http://fromtheheartbyloveamatista.blogspot.com/search&blogLocale=en&v=2&homepageUrl=http://fromtheheartbyloveamatista.blogspot.com/&vt=7950012442061346625&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

HTTP Response

200

HTTP Request

GET https://www.blogger.com/followers.g?blogID=6991003047646672080&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%3D%3D&pageSize=21&origin=http://fromtheheartbyloveamatista.blogspot.kr/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.JisoxTPHVRs.O/am%3DAAAC/d%3D1/rs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%3D__features__&bpli=1

HTTP Response

200
142.250.180.1:80

http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

http

IEXPLORE.EXE

4.3kB
10.9kB
20
27

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

HTTP Response

200

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

HTTP Response

304
142.250.180.1:80

http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

http

IEXPLORE.EXE

2.2kB
8.4kB
12
16

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

HTTP Response

404
142.250.180.1:80

http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

http

IEXPLORE.EXE

3.9kB
10.9kB
18
25

HTTP Request

GET http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

HTTP Response

304
142.250.180.1:80

http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

http

IEXPLORE.EXE

2.2kB
8.4kB
12
16

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/-vJdBunb3dLQ/Uj-7_qdtW2I/AAAAAAAAMsM/S3VRwTZe3P4/s72-c/Boa+semana_seximaginarium.png

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

HTTP Response

404
142.250.180.1:80

http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

http

IEXPLORE.EXE

3.0kB
9.9kB
14
20

HTTP Request

GET http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

HTTP Response

404
142.250.180.1:80

http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

http

IEXPLORE.EXE

3.5kB
10.8kB
18
21

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

HTTP Response

200

HTTP Request

GET http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-Z2cCC3L9TkE/UF_RdRbg18I/AAAAAAAAIx4/5zG6yj6L0F4/s72-c/no+chupeta.jpg

HTTP Response

404
142.250.180.1:80

http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

http

IEXPLORE.EXE

4.7kB
14.0kB
23
29

HTTP Request

GET http://1.bp.blogspot.com/-Cr7Sw-rb55o/UOchRmiJ0lI/AAAAAAAAK-8/JrHAhcMnDSY/s72-c/anja1.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

HTTP Response

200

HTTP Request

GET http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

HTTP Response

200

HTTP Request

GET http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

HTTP Response

404
142.250.180.1:80

http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

http

IEXPLORE.EXE

4.3kB
10.0kB
19
26

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RlDMX82vtSI/AAAAAAAAC6A/oFHH8uZowoc/s72-c/pbn1.JPG

HTTP Response

200

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-UjfpPYeviD0/UOSDzNNpoyI/AAAAAAAAKpc/rILryN0L_iM/s72-c/002-01b.jpg

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/-9FCgC3SpZ00/UPMiEedG1VI/AAAAAAAACl0/zLgl3K6_d3I/s1600/arrow_right.gif

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-L8EaBn5b_Tk/VAHuFeEUdzI/AAAAAAAAACI/uBFhy-LlTnE/s1600/Idool.gif

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_rMfXrwFvDcM/THulrEF01_I/AAAAAAAAAbg/ttbz78V6hBA/s72-c/1956515.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/Rkua5M2vscI/AAAAAAAACzQ/HrOQ_8yMuu0/s72-c/farfalle_3.jpg

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-2XZuWsPghdA/TWEUvjqrPYI/AAAAAAAADtk/-SrJHFoH_R0/s72-c/premio.bmp

HTTP Response

404

HTTP Request

GET http://1.bp.blogspot.com/_QbTn_0x4tAI/RkzbN82vsjI/AAAAAAAAC0I/X0BT8ypwh94/s72-c/U1_2593_redimensionar.JPG

HTTP Response

304

HTTP Request

GET http://1.bp.blogspot.com/-Hr8-_cPWLvc/TrXgIJzFRdI/AAAAAAAAFLQ/YvoztYMIQOY/s72-c/carol-nakamura-capa-ensaio-2011.jpg

HTTP Response

404
142.250.180.1:80

http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

http

IEXPLORE.EXE

2.2kB
8.4kB
12
16

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/SzAEZzBpWjI/AAAAAAAABS0/ZKZZeA7QczU/s72-c/Rita+Cadilac2.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TEJWlN92uLI/AAAAAAAACjA/spLkENk4iXc/s72-c/sexo+e+amizade6-tile.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/THyFtI-gH4I/AAAAAAAAC2s/oczgvbSU1Do/s72-c/Mariana+Graciolli.jpg

HTTP Response

404

HTTP Request

GET http://3.bp.blogspot.com/_VJ3vjDaeCN4/TJLY8c4pecI/AAAAAAAAC9I/y_QTLuwB0D4/s72-c/segredosdalcova1.jpg

HTTP Response

404
142.250.180.1:80

http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

http

IEXPLORE.EXE

5.7kB
11.8kB
25
30

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

HTTP Response

304
142.250.180.1:80

http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

http

IEXPLORE.EXE

4.6kB
10.1kB
20
26

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

HTTP Response

304
142.250.180.1:80

http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

http

IEXPLORE.EXE

2.4kB
3.5kB
13
10

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

HTTP Response

304
142.250.180.1:80

http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

http

IEXPLORE.EXE

3.2kB
14.3kB
17
22

HTTP Request

GET http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

HTTP Response

404
142.250.180.1:80

http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

http

IEXPLORE.EXE

4.6kB
13.6kB
20
28

HTTP Request

GET http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

HTTP Response

404
142.250.180.1:80

http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

http

IEXPLORE.EXE

2.8kB
6.5kB
16
17

HTTP Request

GET http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

HTTP Response

304
142.250.180.1:80

http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

http

IEXPLORE.EXE

4.2kB
10.8kB
18
25

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

HTTP Response

404
142.250.180.1:80

http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

http

IEXPLORE.EXE

3.4kB
12.1kB
17
24

HTTP Request

GET http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

HTTP Response

404
142.250.180.1:80

http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

http

IEXPLORE.EXE

4.1kB
11.8kB
19
26

HTTP Request

GET http://2.bp.blogspot.com/-b-pz5QmZT04/Ui25hNq9JUI/AAAAAAAABoE/6DDjVmVw_Do/s72-c/tumblr_m47srys3q31qgvnq9o1_500.jpg

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/-QB-QrnRTSJI/UPMiEYKozJI/AAAAAAAAClw/ieBOFWLIqlM/s1600/arrow_down.gif

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-HhnJDxl1Qos/UOTZaAHbJ-I/AAAAAAAAKuc/U52N0YvO1dI/s72-c/Piada-da-semana-Sexo-game-over.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TCr9n_4-P0I/AAAAAAAAAP4/NsJ3ZVc8dLo/s72-c/dcd3c6cf6215d8558bfdd47276147a27.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/-ZL-DpzJ4y04/UFaLrs9nprI/AAAAAAAAIqo/L_nEqf5hFA4/s72-c/ScreenShot034.png

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/_rMfXrwFvDcM/TNQaNFzGkcI/AAAAAAAAApI/VEI54-S-W7A/s72-c/island_by_piddling-d3274p4.jpg

HTTP Response

304
142.250.180.1:80

http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

http

IEXPLORE.EXE

3.4kB
9.8kB
15
21

HTTP Request

GET http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RiASjVa4MPI/AAAAAAAACBI/f5oi-LGqlRc/s72-c/6.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

HTTP Response

404
142.250.180.1:80

http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

http

IEXPLORE.EXE

5.5kB
15.2kB
25
32

HTTP Request

GET http://4.bp.blogspot.com/_VJ3vjDaeCN4/S6FE-ucyxsI/AAAAAAAABwE/nj9pNnLjfF8/s72-c/m%C3%A3os+presas+-.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-MnECbKXhM_4/TZfme0l-kkI/AAAAAAAAD8g/v-GOZohnWz4/s72-c/AAA.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/-tk5hQcNMq6M/T8zPEwjH-RI/AAAAAAAAGm0/t8xkrJitkxg/s1600/batas.gif

HTTP Response

200

HTTP Request

GET http://4.bp.blogspot.com/-ib1mh5rWLXk/UBZ_p-R9s8I/AAAAAAAAAco/Ih7mmQ4BD7M/s72-c/suenos.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-XVMael3u5Vc/UEP6JdlrrwI/AAAAAAAAIbA/XELIOi57BIc/s72-c/1.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_QbTn_0x4tAI/RifpSDqmSfI/AAAAAAAACGo/f3eq4RgQ02M/s72-c/ILG_4.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-d60SwC0P4Iw/UN-jfH6V7yI/AAAAAAAAKhU/Ab0kTT5X8-E/s72-c/ScreenShot006.jpg

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/-8swPBVsbE7I/TaI_zXRGawI/AAAAAAAAD-s/1UdMZ9OO-t4/s72-c/sexicine3.png

HTTP Response

404

HTTP Request

GET http://4.bp.blogspot.com/_rMfXrwFvDcM/TLLCqJJXk9I/AAAAAAAAAl4/guXC_otVJb0/s72-c/1430438.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-nChXfpm9zhM/UO1oIEgLeDI/AAAAAAAAA_I/ytSDTjY0GF0/s72-c/normal_Sumisas_157.jpg

HTTP Response

304

HTTP Request

GET http://4.bp.blogspot.com/-Wmqx7YJZ0xc/T6YQYYQm7eI/AAAAAAAAGgU/7w1cpm7UGDg/s72-c/RITA+PEREIRA.jpg

HTTP Response

404
142.250.180.1:80

http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

http

IEXPLORE.EXE

2.3kB
6.9kB
13
15

HTTP Request

GET http://2.bp.blogspot.com/_QbTn_0x4tAI/RkEEmvZAbOI/AAAAAAAACgk/Z7I2E1Ouu00/s72-c/bn311009.JPG

HTTP Response

200

HTTP Request

GET http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

HTTP Response

404

HTTP Request

GET http://2.bp.blogspot.com/-uitX7ROPtTU/Tyv-G4NA_uI/AAAAAAAAFBY/NcWLPVnYEnU/s1600/no+image.jpg

HTTP Response

304

HTTP Request

GET http://2.bp.blogspot.com/_VJ3vjDaeCN4/SzaVl7CGv7I/AAAAAAAABT0/dJwCWe1igD0/s72-c/man1+%284%29.jpg

HTTP Response

404
142.250.178.9:443

https://resources.blogblog.com/img/icon18_wrench_allbkg.png

tls, http

IEXPLORE.EXE

3.4kB
9.7kB
24
18

HTTP Request

GET https://resources.blogblog.com/img/icon18_wrench_allbkg.png

HTTP Response

200

HTTP Request

GET https://resources.blogblog.com/img/icon18_wrench_allbkg.png

HTTP Response

304

HTTP Request

GET https://resources.blogblog.com/img/icon18_wrench_allbkg.png

HTTP Response

304

HTTP Request

GET https://resources.blogblog.com/img/icon18_wrench_allbkg.png

HTTP Response

304

HTTP Request

GET https://resources.blogblog.com/img/icon18_wrench_allbkg.png

HTTP Response

304
142.250.178.9:443

resources.blogblog.com

tls

IEXPLORE.EXE

972 B
4.8kB
11
9
74.125.71.84:443

accounts.google.com

tls

IEXPLORE.EXE

756 B
4.8kB
10
9
74.125.71.84:443

https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

tls, http

IEXPLORE.EXE

7.6kB
14.4kB
16
22

HTTP Request

GET https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

HTTP Response

302

HTTP Request

GET https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

HTTP Response

302

HTTP Request

GET https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

HTTP Response

302

HTTP Request

GET https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

HTTP Response

302

HTTP Request

GET https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D6991003047646672080%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaBjAwMDAwMCIGMDAwMDAwKgZGRkZGRkYyBjAwMDAwMDoGMDAwMDAwQgYwMDAwMDBKBjAwMDAwMFIGRkZGRkZGWgt0cmFuc3BhcmVudA%253D%253D%26pageSize%3D21%26origin%3Dhttp://fromtheheartbyloveamatista.blogspot.kr/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.JisoxTPHVRs.O/am%253DAAAC/d%253D1/rs%253DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/m%253D__features__%26bpli%3D1&go=true

HTTP Response

302
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

747 B
7.6kB
9
12
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

747 B
7.6kB
9
12
204.79.197.200:443

ieonline.microsoft.com

tls

iexplore.exe

831 B
7.7kB
10
13

8.8.8.8:53

www.blogger.com

dns

IEXPLORE.EXE

61 B
108 B
1
1

DNS Request

www.blogger.com

DNS Response

142.250.178.9
8.8.8.8:53

code.jquery.com

dns

IEXPLORE.EXE

61 B
125 B
1
1

DNS Request

code.jquery.com

DNS Response

151.101.194.137

151.101.2.137

151.101.66.137

151.101.130.137
8.8.8.8:53

ajax.googleapis.com

dns

IEXPLORE.EXE

65 B
81 B
1
1

DNS Request

ajax.googleapis.com

DNS Response

142.250.180.10
8.8.8.8:53

1.bp.blogspot.com

dns

IEXPLORE.EXE

63 B
124 B
1
1

DNS Request

1.bp.blogspot.com

DNS Response

142.250.180.1
8.8.8.8:53

4.bp.blogspot.com

dns

IEXPLORE.EXE

63 B
124 B
1
1

DNS Request

4.bp.blogspot.com

DNS Response

142.250.180.1
8.8.8.8:53

3.bp.blogspot.com

dns

IEXPLORE.EXE

63 B
124 B
1
1

DNS Request

3.bp.blogspot.com

DNS Response

142.250.180.1
8.8.8.8:53

2.bp.blogspot.com

dns

IEXPLORE.EXE

63 B
124 B
1
1

DNS Request

2.bp.blogspot.com

DNS Response

142.250.180.1
8.8.8.8:53

apis.google.com

dns

IEXPLORE.EXE

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.200.14
8.8.8.8:53

resources.blogblog.com

dns

IEXPLORE.EXE

68 B
115 B
1
1

DNS Request

resources.blogblog.com

DNS Response

142.250.178.9
8.8.8.8:53

www.mykel.info

dns

IEXPLORE.EXE

125 B
220 B
2
2

DNS Request

www.mykel.info

DNS Request

accounts.google.com

DNS Response

74.125.71.84
8.8.8.8:53

www.microsoft.com

dns

iexplore.exe

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

23.55.97.181
8.8.8.8:53

www.microsoft.com

dns

iexplore.exe

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

23.55.97.181

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

T1112

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\24BD96D5497F70B3F510A6B53CD43F3E_3A89246FB90C5EE6620004F1AE0EB0EA

Filesize
1KB

MD5
fe6bd6c298147e79a7f3d71cd37dc191

SHA1
d46b556357a38b15fb12aa6b05f49298d2327925

SHA256
4805b33be79c1143a7370210d66c6b95613680e54105a897052b0f23c3197365

SHA512
632ea2e5d3ee49dbaa2b7a23fcc8e343d7832b5d5789e38a1e6846c177d76e09a975b974b00b07b74a1a4be6378c8dca79f2b1aa547f686d2d08acdaa4b9bcb1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
914B

MD5
e4a68ac854ac5242460afd72481b2a44

SHA1
df3c24f9bfd666761b268073fe06d1cc8d4f82a4

SHA256
cb3ccbb76031e5e0138f8dd39a23f9de47ffc35e43c1144cea27d46a5ab1cb5f

SHA512
5622207e1ba285f172756f6019af92ac808ed63286e24dfecc1e79873fb5d140f1ceb7133f2476e89a5f75f711f9813a9fbb8fd5287f64adfdcc53b864f9bdc5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

Filesize
724B

MD5
ac89a852c2aaa3d389b2d2dd312ad367

SHA1
8f421dd6493c61dbda6b839e2debb7b50a20c930

SHA256
0b720e19270c672f9b6e0ec40b468ac49376807de08a814573fe038779534f45

SHA512
c6a88f33688cc0c287f04005e07d5b5e4a8721d204aa429f93ade2a56aeb86e05d89a8f7a44c1e93359a185a4c5f418240c6cdbc5a21314226681c744cf37f36

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
1KB

MD5
a266bb7dcc38a562631361bbf61dd11b

SHA1
3b1efd3a66ea28b16697394703a72ca340a05bd5

SHA256
df545bf919a2439c36983b54cdfc903dfa4f37d3996d8d84b4c31eec6f3c163e

SHA512
0da8ef4f8f6ed3d16d2bc8eb816b9e6e1345dfe2d91160196c47e6149a1d6aedaafadcefd66acdea7f72dcf0832770192ceac15b0c559c4ccc2c0e5581d5aefc

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\3C428B1A3E5F57D887EC4B864FAC5DCC

Filesize
252B

MD5
8bd81e6eb7addce503cbaf1deb9bbf9b

SHA1
a5278521da977a2cf81cb4831c8e327f242f587b

SHA256
58e535fd1de2ea6d2f56c473ebf1beb23df75df06c9eba2cf9a0b7c366836ced

SHA512
451fd2e6642611fd8b9003e741653036d4c9152e6f47eeb47ba12f89b5f7df9f63e559f0d24fdd1c34969dcc4090192133cf2de9b855f32d3b4110a1e7c9a79a

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
37f6675f9f04cb1e350ad87489bf9b40

SHA1
1be4ba6a28530723914cf44a07352bda2060a262

SHA256
61d716a8b00aa2038d0183152c054a15d92aafbb0e74f1611a98bf19eb68d308

SHA512
67281c03659e9a75fd65156bcd60f4aa1992679696df6a66f3adb13b9b52ca4a9ac521728dff670f26a5497f0c9e4da761921fcfbff8c842716e3d8bea33fd84

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
a5147114de5a0c4157ba46d7048fc000

SHA1
ee9e0c83f0b1ddbe4c9f8fa841836136e2ac6bfc

SHA256
cd0b1078956c0217c0b3916bce9a78ed57d90addc2b1ab6eda5a27eabb8c2d3a

SHA512
7c02291772d41c85569b339d3b3a9c078a576f1fe91ae0f0f476a87402f36c20b34907b4fe5ffe3c074969aa7c2bafbfa904cd23941356a5083202f1c8563091

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
868b97eae5076012e337141b1bdf60d5

SHA1
28feea5f405d8cdd901351dfa3c482510a1c2734

SHA256
d63f4644b926c26a4cf079878c1839989eebfd23de8d7ce7021ddddd071084ee

SHA512
5ff7d6f32d7485e04a4385736d21f5da287b2e0c9aa6e8c3b7ca564e09c343553c7a1c40c9617577a9b0eb53b7334881484fad1e3fec36157f5f98ead8763db5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
bc3d7312ef4fbf2cf3bff35e23345c3b

SHA1
0d8691d03373b7f92aee7efaa796ea8d235f5107

SHA256
9031c4b8603d58b59304096d6729ac58108e904d26473b938be4d70b99167712

SHA512
3ab2123558ca8dda2537b686579a25c2c44ef504a1066dc2fa6a94b67e22a2ac7243853a3243b3fc9d33ba454a646c28d4552ed0ea7c07c6488ff6938fafb5e0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
36f22597780f579a6972365f32796e5e

SHA1
58d952e6d5e1729e5fcc067eb9d53821b0b0bee6

SHA256
31ebab7a02f0b9a577eb511d6d8e1c834d68d6333fdc6cff0478d358b8926841

SHA512
c075d5d1740a3d770674e053a7386ab8cc43481a5937a65fe217d5b3004e3e8e9d37f5890d9c71274705500549c0e0b1675bb38c8475b0189f3f7c673f0f8df8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
eaef8437eede3e1029a49edc082dc04b

SHA1
7dcebf0781861f60103fb0a2791a1dac419218c6

SHA256
84e1e2b7b6a57b58f9a5bac7ee09f4698cb9288f90603b00baf3b955ba74e963

SHA512
f9a4f1d56e809f04f9d9431fd6fe4f3371c1f51c9198008cb4c8dd440e6186d0de853ff943a42d1d5fea3041f1b0fe167ae8c463db23b9de550fe9c47ca9b4ac

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cea1596c4b6112c3747b557ac95725d5

SHA1
985020ba27f9785213a492d632315fe89608120b

SHA256
4a39cb8c2e310e2ba3ce8141b7338ab9cecb6e1d27fc40f31d86456d14185ed0

SHA512
2cc9bfe8c9ffe1eef83a51466c1e45a66659a3b54fc76208164ea553c9196952cb23034a3dbc8bae7ecbea372462479e3290002f6001d7933e87ad9ab11c460b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
14beeea5e90d8be71eb00faa0afac3e2

SHA1
1e48754ef33a73fd66d566c21d2917706bdf1754

SHA256
b54fc92da86310f862d65bf6f33a5a5e4d4e471371644e458b5de8e5a3767697

SHA512
f49be1fedeac1b9501fd5d187386f02b3adea5a98ceae407d07393ceabfddea3048a0aa645e8efe6d40e238b01e57b60efd292579e13600a103fbf1c40eb57b5

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
8ef83fc72792ab481eae59b4564680ae

SHA1
26baceac98ee5aff6b6f37ea5b2301e24e8546fa

SHA256
4f1e5f62e40030510eb55ac4a9c651a407dc87de79ba2336729b4b46cdac2be1

SHA512
234ca92c530c1af4990ef8ff0b788060f6b0f48f6796e307a1a9612469a34835351375f9f3b0867b9a5c2b32d8a434f185af9796acd98cbbdf868b153ff11c7b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cd1f1573add5dca801aa348f96aa9aaf

SHA1
4f8ad164256e9d9d56cd3f236f62f47029d1ef72

SHA256
ff99e7e6c0759d8e80a3381ce8464cffe613937c12297a56b7500d77c2e224e4

SHA512
f46d618b7be41a2f4d8722e86ca4553ef513fce51778b80187d61eff9dc9572ee74f19fabc246513c9715bd279350e792cf9b75d256b9f2535eafab2654db238

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
18273047f66d6b5c4aee74d602cd7f67

SHA1
7a95c55798508edc69295508167e3402b98327f4

SHA256
740a39d9d6129b6c860108e835593709bad74da22c754cd77cff0f3114b9c064

SHA512
c817f1bc561c8f1e3db4cd30cbaa1f3f59256e8a03355a6d06c8a8d62c669f6c25e84e19751a9d23c6233ee3d75a5521b25bda971531cea5f07c9699c380c48b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
858ffa6851fd7f8eaea6ff61bb25e195

SHA1
a573b3e4e99603f47f70758f69e3f3c829101198

SHA256
dbba3e7dcc8d26db25b7694e7904bc684d276783eab7534e86635f16f3bee71c

SHA512
6d702010ef63aa2a55e6a61a0401dc93adada0e4a9e1d86fbd477fd88fcdebd13bdf9de3b80da177ef98de39c5be353b02bb62e1d88eab42e95f8136b511aaf0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
5659481ee888bc4c4c21faaf098e87f1

SHA1
1322c1c531dcc176e690fe93d3f54877db9b126d

SHA256
cb23b46cb9da4ce0d1a1883e71f15d8652e226b48070f95a12d0de6212664587

SHA512
72269080be5725b2abfb341f2c04cce849126599cf1fa1fff5ff004c2a9378c6bf12b1910f786df9c50ce46e29268c363b5bf9e98f2f71817b6d817c3b551203

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1f01da4083f489048c08fed44dfa6c72

SHA1
c25af81f3aa46c94523a7b937be92e3f8972480e

SHA256
370eb38e9c11a3d17affb65887378f5e42f5d5bb31856be133d0448fad216580

SHA512
eea275b7cab68f4775cde258c0538ceafe3aae27da01e2a4166ccbf2f3a17356f67029d632c7e149798cd745df8a91c9e19cc93dc9e205c4f2bd4258060dd9d1

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
ab687fad90cc27522abdbbf4b0b26663

SHA1
54c586a260e1570310ea3f7f8a675b4bc2aa41a5

SHA256
50080882bea15c34d9f64d57277605aa03e0bb8f72f116243416d3fc3c8ae7ba

SHA512
75aa1a4499ea7a34aa1b15c11ca52cc8e1c0be04041b18a109b82eb39c17f4fb14831fd969943450d096d751c6fdedf2c9a4dbff6e41f8772797bbeb1e228275

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
cca6c4c459bb8680b023a9512e79e7b5

SHA1
7419d76b151a2ff382759a5db4ec3dd7e98ff87c

SHA256
11ebe3ea615440210d96e39deddf5bdb786139dd96946d0b99a54a2dce8de99d

SHA512
4e307278fe13f7ffba6877ce70479547fd6d92d2c96edb28cccfd38647536c2d29fc630b9f678c4b07ab2f19909fdbe1c07c6b74df2361ca428d92c6af0d1b8d

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
69d9818788c92dbcc6a817fa1aba4df2

SHA1
930850c11e325c3ce65a8a446e1524558a026a9b

SHA256
516fe07e8c6fe38836fea0551a850b9f1877f250cd55c813c0f23ae3284a4a41

SHA512
10e69436865e9b8fbe2c3cb6af59b93ab9eda4296120fefa8c6fa9cebf50f2aa1d193cc27e7bdafcb04475ffc5fc8fb54b638e497cf289a712b4cd207dd67436

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
1f07a012263a37cd04a5e31405990564

SHA1
bb0c41b5e60c53c7b401f2f10c8ba3cc5791d2e0

SHA256
afbaeadf56b31da4649937407ebcca238f73726f754b946e00ffe5b9533abeaf

SHA512
5b12a82c1bfda59947d1c50f28df6f4e6be5b38c3424dd774fd799fa8cfb755844e36d3d325c64b2fb0facaf1020d651a37f24e0500266f5ae5a7a64019574d0

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
125c913495ca8d0c55403db4971a6c9d

SHA1
af3dc7a45b4b60112d46676121b706f216de4e1f

SHA256
ead22631bb550524fdbb48d0ec003b200f470f3dda274269a9da5588958ab67e

SHA512
1dc26d20e24afe3cf18790c7a0726c3d1ce9d30a6dda5c11e87d920f1ea09b495203e4dabd467dca1796d2105040f23f11338cd731d29096768ba71071e03660

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
fafa93fd8c31dcdead90294b72f3c307

SHA1
c6878af6cf3296bd1549151f8c74b328e3a72933

SHA256
c264e10d026e9b18d144e9c8646c75ff1adce1a7a50ec05680412aa763eaf486

SHA512
9f3b3293f413c61b32317d1d73e9ca290abfb7d62d4e0081f73292b40517a823aac30c4990517cbb71c8707c17682f6c13f532a8edb3c320237ceb6fb017efbb

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
7297c93afc364f8c8acf27b1d29af0e8

SHA1
51669309a8f709efeb9f691599aff27fec2f7204

SHA256
a0aae3875cd21d1c8f6a78e7d1491310e05954a2b18e6d95c6740babfa075075

SHA512
d572d16cf9bdf57ef67376a3d77658fd9a8830cc9e927ab88e8e2460b442feb10e2c9e1c1f014adf8aba6f4a3a4b4a03bfdcde3daed641dae820e9c96da40454

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

Filesize
344B

MD5
c0589331d0f4e5fc4a34e9a7056c0dd2

SHA1
8feaefa7dce9ca78c8ba1380fdc422c04f416988

SHA256
d62f7bd11a71a3d53b3615c2d34db8c8bd1c7949a3262d84f6e555c4000f8b7d

SHA512
b5be2ee0bf2bf85bd18e80be98dbb65d067301176c736efa278b89d91ace03c5ca1e20e382a39ccebff36ece69f7579ce864db2bcfe98863be796cd7d0c6adf8

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CAF4703619713E3F18D8A9D5D88D6288_A7725538C46DE2D0088EE44974E2CEBA

Filesize
392B

MD5
9614afdf6b10c4f43df241b38c8729af

SHA1
1159499db21ed3aa55bd8826be57e6f357fd8121

SHA256
d9414170028e3cc26ad3a05b62d69546030646711f2ebb0f36f0da271590e01b

SHA512
c8125d1cdf4a4567bc354a8f39109205fb599d4bb3133fede18d9493ef597da00b400db3061b1c469760bf4e89cb93b93b84edfe9bd69c8529136742960ac36e

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F07644E38ED7C9F37D11EEC6D4335E02_02C4C6ED250727F9B08935C0A9565568

Filesize
406B

MD5
8c79aaa231126a08d39808677968bda8

SHA1
0e1b7f7308700685e23a7847a6ba94238140ba55

SHA256
d259944f0482731a25780e4201f17fa90bdfe4581b56932e418aaf031edf6da8

SHA512
4907a56e2f184a71558d0c0e9dd1c8c9608cfbfab964f9e00a6b64335769ac869d276e5ad97bd2365ded692668f74e2bc73c614d5917878c9c933584cf78fe3b

Download Submit
C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\F0ACCF77CDCBFF39F6191887F6D2D357

Filesize
242B

MD5
5d54d19b0f5d07e4aa7eac58920adf30

SHA1
beb03ece4bf942fa96fe99b4697d5b0545a2f7f9

SHA256
8fb6a3de439db40ab4e4c64205362af2f9c5901e1bbf4efb4a03259e7d75f5b7

SHA512
44a2494c53ab9c5f131b67bb886105d86b023e9d466c91a7d225edd42a637effa1ad888edc80e8798719280c6ff259c382db7b547a8a00350ff78ac8f6e6b413

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\1430438[1].jpg

Filesize
1KB

MD5
1fcb266df3fd6e3a2863fa7316af5301

SHA1
5b12f9555534858e0a423f7ad448df53e01ce070

SHA256
0afc2ba47a74cfa3466da63a67a6595525613a7797bc6a81fb6f956f832234d6

SHA512
b002341d7a5f5f5c857129b67249e94cee6439f130de8abd0d61552f4189c98733c80bf53b0bf5596c882ec9790445d219cd8d040ca129dcea7ff806e52c4ae1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\1956515[1].jpg

Filesize
2KB

MD5
60275cabc81632c9fcfeeff1a2882d45

SHA1
29eb0b0513a8ae52d1526f5e6ad88828b162b6b4

SHA256
c2450f17e3c76b7faa57cb54117175c1d555497f4bffca2721f7fe10fb8a876b

SHA512
f0ea1b3051a53f57d260f7676a8e98760d5f59f443c20a17a7d60896a7638b2153c6553d35bae17a58138594a6bec4bc0e8c573079e48c90b3e560f498b7de1d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\bn311009[1].JPG

Filesize
2KB

MD5
df1739a8fb7481c124aa5db607bd914b

SHA1
5dd5ef87aec29a90b3187718f4f64d543ee7c148

SHA256
91114dfe7fbc00474cbe514565950f88d193c68f1e196496fd49e7247be9a83f

SHA512
8d24d75baa663847b6fc675f3558c8628bf476057c3ab760bef5dfe0ca4dfaa75fb5773ad814ad88d30152728d3232704fe18b7380c0cc16a66213a405d32446

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\cb=gapi[2].js

Filesize
46KB

MD5
a601783b430a8f930e3f10d74cf5094c

SHA1
79528fe1bcb67c3c25d6d813a9ff57a4c7eb8050

SHA256
8c94a9da768e6bec7c897a8ee08c1b95191970f3f3091a891ad472d6bf5305cb

SHA512
63d97e76d40f989969d0e11c13deac217adf5c45ec3d93c80169b9292bdda5fb585aa91673ba15a06fd33a350d16d73856c0aa52ac093fc52456e303b86aa6ff

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\673IEUYT\pbn1[1].JPG

Filesize
1KB

MD5
4f7aed609f8de80b8fba8fdbacaa86ca

SHA1
05b872cd2fd527644fea8fdc6bfb1d092b6acfa7

SHA256
0130e62cf2da6e8195e6af8d240e8f7eb93eb172d2152b0864f282f79dcf7a74

SHA512
1cedf9ff4d324acccf6638cae1737ca9c25bdaf2ef1051aba5f2f6bff6c59586039011954d3f7f5c735d471582aeb2528d471ce9837ce1d4ec81813b286d2e9b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\U1_2593_redimensionar[1].JPG

Filesize
1KB

MD5
3cc5fabdce4409ecd24735af7eb2f0f6

SHA1
5471865f6374d5e820f12d0ec5f4a678c58dddba

SHA256
256e0ba5f6e53d187162aa222845e164e35d6bb4121a09440ea278e3e5ca17d5

SHA512
edf77f9ccc698426994ab5c381a989e556fe57eb305d4c666051622c8d2fe8bf4bc6f1fa5251a844a63bd548c3adcfee77a404c1631528ef5871bdc7705057ed

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\cb=gapi[1].js

Filesize
133KB

MD5
4d1bd282f5a3799d4e2880cf69af9269

SHA1
2ede61be138a7beaa7d6214aa278479dce258adb

SHA256
5e075152b65966c0c6fcd3ee7d9f62550981a7bb4ed47611f4286c16e0d79693

SHA512
615556b06959aae4229b228cd023f15526256311b5e06dc3c1b122dcbe1ff2f01863e09f5b86f600bcee885f180b5148e7813fde76d877b3e4a114a73169c349

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\errorPageStrings[1]

Filesize
2KB

MD5
e3e4a98353f119b80b323302f26b78fa

SHA1
20ee35a370cdd3a8a7d04b506410300fd0a6a864

SHA256
9466d620dc57835a2475f8f71e304f54aee7160e134ba160baae0f19e5e71e66

SHA512
d8e4d73c76804a5abebd5dbc3a86dcdb6e73107b873175a8de67332c113fb7c4899890bf7972e467866fa4cd100a7e2a10a770e5a9c41cbf23b54351b771dcee

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\followers[1].htm

Filesize
4KB

MD5
f64f65bb4b0c5356cbaf0a6ea1988b36

SHA1
ba456b954d2308829a03e13a05eb07fedb0e2703

SHA256
bb718aff628cdf45e42a09dcf573b0b9ac19340607aedcd02da0e68caf639847

SHA512
af79481d852a85e375affb7e19b5f7e813f173a8bcbdc3313b52d36900420f49f8a50dafe03aa5d83bc32a5f4418427fa72346c3fcb93132318fc80d70c4cc2a

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\httpErrorPagesScripts[2]

Filesize
8KB

MD5
3f57b781cb3ef114dd0b665151571b7b

SHA1
ce6a63f996df3a1cccb81720e21204b825e0238c

SHA256
46e019fa34465f4ed096a9665d1827b54553931ad82e98be01edb1ddbc94d3ad

SHA512
8cbf4ef582332ae7ea605f910ad6f8a4bc28513482409fa84f08943a72cac2cf0fa32b6af4c20c697e1fac2c5ba16b5a64a23af0c11eefbf69625b8f9f90c8fa

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\island_by_piddling-d3274p4[1].jpg

Filesize
1KB

MD5
5b9ed2e570bfcca08c52e03a743f3b79

SHA1
034d6df34edfdd5b8732f6c9a9ad33d820b427bf

SHA256
0a7aca819530c73c43d19cd331b5091217db3cc56d005c67f52346ac61cae360

SHA512
175f794476989adff98691daf18224dbc83574e773e43916d360d47befc673059c6cdda65f00a31a365d205a9636457668ee0d0ee38d157a447ff7e04f1231e9

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\navbar[1].htm

Filesize
6KB

MD5
d43cfcc94924b5a3d746e8ffaf0e0fc5

SHA1
6f6e9e607044066b920f37e8cae8a3999b683463

SHA256
1eb4072fb80a123447c63ec7eee48d3fad9dd392a5a91915b7fddc6639afb30d

SHA512
d52a96a9056faaa50820d0b1322aa598581cebf6ecff1e92bdc0ea25320f924a441dfca04798f394b3b047dc3a503e177d798a1898e84ceedabeb56d0ab7154c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\normal_Sumisas_157[1].jpg

Filesize
2KB

MD5
c6542186029fdd2a5d626f52d279495b

SHA1
c74e5588d49b9e808e360ba56879d5d7281f0d92

SHA256
36cd4ef83571355bcdfaeec07b0ce263167716bfcdc6621b4bd588b1bb21922d

SHA512
5aa7aca7ff5e5b00fc8e00eded7dbfd6d0a8a1ab2d79fb184f65f09972c3aa2fc506280867ecf4f9c2fe4d9cc3ccb5d3feb3fa602c9600b3faf7340156408240

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\suenos[1].jpg

Filesize
3KB

MD5
13949d24cd9206213e1b460e1d5ca862

SHA1
b22bb53e3d8eb66ff7546a43890b13456c9ba633

SHA256
96731254b2c165186c3c33c04d2ab6a435d41c4b7e0c96117df0c1e8b9a10014

SHA512
d729e2228209917bc2edfe6ca2089a165e3ca16cfd441cfeeb4246343833aa056edbd4973f7886eb6371236f16300490c02ef602f54d541646ed90b51b2529a7

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\902LKC6A\tumblr_m47srys3q31qgvnq9o1_500[1].jpg

Filesize
3KB

MD5
2e47fa3fbbdbc2dbb777b0ddcc3a74cd

SHA1
7faaaabf05340e9653021609f6bd6665b4e1d7d3

SHA256
de9a1f6b5fdf2acac199b81f36ba6e511f1f9d60b08c9650aa9a7226d10385ad

SHA512
843d44f6dcaaddf305c4c93a354cdc31a0f98916bf8c57c0f8cc44245860ea7ff56ca198f8494864ffc68ba1f29d50bccbdf949e03d6afb288ba134e6d3fea81

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\6[1].jpg

Filesize
1KB

MD5
11ea0ce52cc59d2e1e27b92f1e75153a

SHA1
273c4c07448a89532b753e9f2ffb2cfe32625387

SHA256
e16176bb4bc08709324ce93679ab388538c71b14e79fa499fa6b21f1c257345d

SHA512
3054e43fda35e5dd1b11d1393a461ce5b36af3d4119814dbc36feb44582dabce7223e667d7768a9ce860d49744a5f9c67474a4555434cbe4f190c78600ea9ee1

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\arrow_down[1].gif

Filesize
56B

MD5
3b2441ef107848e00feb754f18dfe880

SHA1
8098172ecdec9b8554172f028e91c7a30352bfde

SHA256
ebe34389aa08d8f4494fc8c0c7e8a90029e7092d9b857ca635fa493999716675

SHA512
6bd089121f9d60150ce194805e48ddca7e05337eda40413f0f7a9a4a7eb51ffb69ad04d1045b3a8bf9704c7e7bf6606703f1ccc431ad2f734fa4b3eff0072e54

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\arrow_right[1].gif

Filesize
62B

MD5
4f97031eaa2c107d45635065b8105dbb

SHA1
42bda037423c40045f7852bdace0e657dd94ecbf

SHA256
fb57165d255438328c270b4fd85a6873c65f61a6ba64eedcd2dbade61386edf4

SHA512
cee33327bc5f5f34aa392ab2ba3df755348f1279ec10cf18da4119f3a5884b5a4304228b8c0fa2d35b81ed166874efebaba1503d5685cd089ba5a4e86898b99d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\batas[1].gif

Filesize
35B

MD5
5b5bc61d7b5c90d91dd6a9e681481e2f

SHA1
773779311ddb80233f5700f60e4b675f96c9c0f3

SHA256
dbe40fa96687ac16e7d79ce7d0cada9b5fbda6a3021a79c0681e8396211c04a0

SHA512
e3d8144000a16673bd6f2a7bf9c2385047aae4f1aecaeacb32a505c6964a701b7dacfeb91f5e446f2630e2e670b66eaff98fa7de53132f6156487f640b8e896b

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\dcd3c6cf6215d8558bfdd47276147a27[1].jpg

Filesize
2KB

MD5
5ec5d7ab3652a793bbd9e1054b7a66f8

SHA1
70a3a485f627e7de1c4e306a1f7fd589b49b399f

SHA256
6fc3e263a70e49790b170ff1a968b132cb989ec53fbc7d98cd963c7a9b675d71

SHA512
f51ed5a184308a74bfe5e02cd3831600e4dce841f1f2aa939359d3ac0a8653c6e9b03a3d63d3ef22df1bc84e99a89a72e42c86937e0145464b28fd76384e654d

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\dnserrordiagoff[1]

Filesize
1KB

MD5
47f581b112d58eda23ea8b2e08cf0ff0

SHA1
6ec1df5eaec1439573aef0fb96dabfc953305e5b

SHA256
b1c947d00db5fce43314c56c663dbeae0ffa13407c9c16225c17ccefc3afa928

SHA512
187383eef3d646091e9f68eff680a11c7947b3d9b54a78cc6de4a04629d7037e9c97673ac054a6f1cf591235c110ca181a6b69ecba0e5032168f56f4486fff92

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\farfalle_3[1].jpg

Filesize
3KB

MD5
58c6b92a13e678474b5a304fc36842a3

SHA1
88ad57d67902277911b3dd16b821bc2644884173

SHA256
eba89984b468abce06aa8a4b0b35c8f69beb325674cd34914b02904950516003

SHA512
0181bf9bad08dcc83bb082ad0074a874e9c0ee0449d94c1a7f58147712fc090154b8961da07aff98172ff1e2fab3d799703c2fa0ad88a63b03fde9f6d27748e0

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\IFGNZ1XG\icon18_wrench_allbkg[1].png

Filesize
475B

MD5
f617effe6d96c15acfea8b2e8aae551f

SHA1
6d676af11ad2e84b620cce4d5992b657cb2d8ab6

SHA256
d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b

SHA512
3189a6281ad065848afc700a47bea885cd3905dae11ccb28b88c81d3b28f73f4dfa2d5d1883bb9325dc7729a32aa29b7d1181ae5752df00f6931624b50571986

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\124887373-widget_css_bundle[1].css

Filesize
33KB

MD5
430d0f52546401d2f8c037bb84952ebc

SHA1
446c9de67e5cc8c01e2108494fa0055693dc6993

SHA256
fbbb7e598e30407bfbc0e1415bff3127bf07ff9282937b87330bac620e919696

SHA512
6b9f3d0332aedc15d05e0f574e8710678898355cca6b16ec452fc9c3fc80cd4a7e7b45361f0a4f7faf55edc5f6c0c76efbf235b022a895e3aa5a06a4bc843830

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\ILG_4[1].jpg

Filesize
2KB

MD5
3df24c78707b63465144aabbd9181e86

SHA1
40d74c78f8340049342e24f11740cf8c3db8d419

SHA256
94ac3849e8fb1f68c4ede8caeaecf8aa8a22a7dc8f38c9effd7bbd94224cd05c

SHA512
dac29a77abf7ac9cf719c662bc98b7c0a4ab846f7c26c3139067dfc7f5cc2356b18dccf45a74c6a3edc103e70a992345fab6c8114beb0c17c4bbe9de5f79aaa4

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\NewErrorPageTemplate[1]

Filesize
1KB

MD5
cdf81e591d9cbfb47a7f97a2bcdb70b9

SHA1
8f12010dfaacdecad77b70a3e781c707cf328496

SHA256
204d95c6fb161368c795bb63e538fe0b11f9e406494bb5758b3b0d60c5f651bd

SHA512
977dcc2c6488acaf0e5970cef1a7a72c9f9dc6bb82da54f057e0853c8e939e4ab01b163eb7a5058e093a8bc44ecad9d06880fdc883e67e28ac67fee4d070a4cc

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\followers[1].htm

Filesize
547B

MD5
361902196316dd68fbcaa995d8f16c4b

SHA1
8c06fae94f28dac539cda86f4eb67696a5a7b32a

SHA256
f40eb56ab3f0f431ad51c8757f6b0d44ae8fcdf4282ae2a5db2d4671fd5d7b53

SHA512
02b438239af0ea6588d6a0834789da8a4905fa64e54c0a33a57b3e786f354d973c3f70788e23a651a31437c23e72717be36cbf98da08f17c7d3789d4c1c88954

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\jquery-2.1.1[1].js

Filesize
241KB

MD5
7403060950f4a13be3b3dfde0490ee05

SHA1
8d55aabf2b76486cc311fdc553a3613cad46aa3f

SHA256
140ff438eaaede046f1ceba27579d16dc980595709391873fa9bf74d7dbe53ac

SHA512
ee8d83b5a07a12e0308ceca7f3abf84041d014d0572748ec967e64af79af6f123b6c2335cf5a68b5551cc28042b7828d010870ed54a69c80e9e843a1c4d233cf

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\jquery-ui.min[1].js

Filesize
232KB

MD5
e436a692a06f26c45eca6061e44095ea

SHA1
f9a30c981cb03c5bfa2ecad82bd2e450e8b9491b

SHA256
7846b5904b602bd64bea1eb4557c03b09dabc580b07f18b8d1567d1345f0a040

SHA512
1b09a98336cbc0c8ff0f535a457a3db3cd3902e4a724bb2e56563648ed1a36201dd84e63f45dcea80bb6edfe80a17db388379417386dec76341fb9eadbafa88c

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\no image[1].jpg

Filesize
7KB

MD5
a82453e3ab5e55248df6eb1aff7bcf53

SHA1
97eaf55ff924d8b10a878969a3852ed1d1de85a3

SHA256
880ab904e173d6b7f55cb37e96b4001ab47ff366b52f1af088bfcbaabfbea6d7

SHA512
146635766b55562b4bd47bef6363ec50690ffa2b98f29b85edcc1b90a5942ef15a1d62de5b0e4fcd77799db8d3c73f1cc3d49fc85330147dd9b166219b5c7fd2

Download Submit
C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OOWQLMJV\platform_gapi.iframes.style.common[1].js

Filesize
54KB

MD5
7ef4bc18139bcdbdd14c5b58b0955a67

SHA1
afe44fd9a877f81a3c36f571c0fc934324c6cbd7

SHA256
192bc707852c5986f930528442d88a79e5bcf4513aacc2b722a3c5e964501838

SHA512
6c2920e80e4d5059588a32f75bc2b5dcc19f8d68224c0935d74f9fbf49476ca5b1ce43c279768f3d36871dfcec39f36db3fcad559c2f93cc540154cdbb04dec2

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab402E.tmp

Filesize
65KB

MD5
ac05d27423a85adc1622c714f2cb6184

SHA1
b0fe2b1abddb97837ea0195be70ab2ff14d43198

SHA256
c6456e12e5e53287a547af4103e0397cb9697e466cf75844312dc296d43d144d

SHA512
6d0ef9050e41fbae680e0e59dd0f90b6ac7fea5579ef5708b69d5da33a0ece7e8b16574b58b17b64a34cc34a4ffc22b4a62c1ece61f36c4a11a0665e0536b90d

Download Submit
C:\Users\Admin\AppData\Local\Temp\Cab40FB.tmp

Filesize
68KB

MD5
29f65ba8e88c063813cc50a4ea544e93

SHA1
05a7040d5c127e68c25d81cc51271ffb8bef3568

SHA256
1ed81fa8dfb6999a9fedc6e779138ffd99568992e22d300acd181a6d2c8de184

SHA512
e29b2e92c496245bed3372578074407e8ef8882906ce10c35b3c8deebfefe01b5fd7f3030acaa693e175f4b7aca6cd7d8d10ae1c731b09c5fa19035e005de3aa

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar402F.tmp

Filesize
171KB

MD5
9c0c641c06238516f27941aa1166d427

SHA1
64cd549fb8cf014fcd9312aa7a5b023847b6c977

SHA256
4276af3669a141a59388bc56a87f6614d9a9bdddf560636c264219a7eb11256f

SHA512
936ed0c0b0a7ff8e606b1cc4175a1f9b3699748ccbba1c3aff96203033d2e9edabf090e5148370df42fbfc4e31d7229493706ff24f19ff42ff7bef74a6baad06

Download Submit
C:\Users\Admin\AppData\Local\Temp\Tar4131.tmp

Filesize
177KB

MD5
435a9ac180383f9fa094131b173a2f7b

SHA1
76944ea657a9db94f9a4bef38f88c46ed4166983

SHA256
67dc37ed50b8e63272b49a254a6039ee225974f1d767bb83eb1fd80e759a7c34

SHA512
1a6b277611959720a9c71114957620517ad94541302f164eb872bd322292a952409bafb8bc2ac793b16ad5f25d83f8594ccff2b7834e3c2b2b941e6fc84c009a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request