Report - gempaqgiler.blogspot.hu/2013/08/23-ciri-ciri-ajaran-syiah.html

Report Overview

Submitted URL
gempaqgiler.blogspot.hu/2013/08/23-ciri-ciri-ajaran-syiah.html
IP
172.217.21.161
ASN
#15169 GOOGLE
Submitted
2022-11-30 07:56:18
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
w.sharethis.com	19320	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	671 B	18 kB	54.230.111.82
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.0 kB	28 kB	142.250.74.161
ssl.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	5.3 kB	142.250.74.131
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	1.1 kB	172.217.21.162
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.33.119.27
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
gempaqgiler.blogspot.hu	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	674 B	172.217.21.161
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.26.194
cdn.innity.net	28850	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	289 B	3.6 kB	23.32.97.102
4.bp.blogspot.com	11215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	86 kB	142.250.74.161
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	55 kB	34.120.237.76
tcr.tynt.com	75586	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	280 B	17 kB	172.64.151.83
l.sharethis.com	4794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	786 B	3.126.95.118
play.google.com	34	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.8 kB	142.250.74.78
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	164 kB	142.250.74.3
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.9 kB	104.18.32.68
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	948 B	33 kB	142.250.74.163
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	96 kB	172.217.21.174
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	54.230.245.39
ic.tynt.com	4300	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	678 B	299 B	67.202.105.34
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	21 kB	142.250.74.131
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	295 B	2.7 kB	31.13.72.12
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.3 kB	32 kB	142.250.74.132
lh3.googleusercontent.com	66	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.7 kB	107 kB	142.250.74.97
blogmalaya.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	581 B	209.59.191.64
developers.google.com	12980	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	237 B	172.217.21.174
partner.googleadservices.com	798	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	913 B	142.250.74.34
gempaqgiler.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	268 kB	142.250.74.161
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	13 kB	142.250.74.161
ws.sharethis.com	8159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	40 kB	54.230.111.82
count-server.sharethis.com	11699	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	503 B	714 B	54.230.111.73
de.tynt.com	1252	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	329 B	67.202.105.31
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.0 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	69 kB	142.250.74.73
as.innity.com	23995	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	520 B	582 B	159.138.232.14
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	531 B	5.0 kB	142.250.74.162
s4.histats.com	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	643 B	241 B	54.39.128.162
www.diveglobal.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	399 B	12 kB	188.114.96.1
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	318 B	31 kB	142.250.74.42
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	173 kB	216.58.207.194
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	32 kB	142.250.74.161
www.carimember.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	626 B	10 kB	85.208.116.194
s10.histats.com	15211	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	661 B	13 kB	46.105.201.240
accounts.google.com	81	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	3.4 kB	142.250.74.109

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-30	medium	gempaqgiler.blogspot.hu/2013/08/23-ciri-ciri-ajaran-syiah.html	Malware
2022-11-30	medium	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	Malware
2022-11-30	medium	gempaqgiler.blogspot.com/js/cookienotice.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (111)

	URL	Size	First Seen	Last Seen
	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	542 B	2023-03-08	2023-03-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:32 Last Seen2023-03-26 00:12:48 Times Seen227 Hash a94a19f795b1d4f6d1f70b667a2eae06 ba89d38db6bd30469fa42fe6d149536f6e74ed25 b8665f012aa5a1a22d5653b75ec290c442070ee6a21751507defd97819e73f23 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	55 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:17 Last Seen2023-03-11 23:53:02 Times Seen1 Hash c61ae987c0905d150f80bc6f3e7cc135 826a5f9142e58947410baa5df9b0126f0226ab97 32995e284ad49c05984d6dc2f96674229e731c01d030a38ba96e42c39a8082ae Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 0f33e12fa3290716d243f3162bb63cb0 32f9b00bfd7449ebd5382871d1c083db9c1b2b95 82c53629d9ff53cc334633ac037d1dc1f843008d6e1347ce784b9f255bacb42f Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=bm51tf	1.3 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=bm51tf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:14 Last Seen2023-03-11 23:52:43 Times Seen1 Hash 6fc6e71076dcc7daf327873ccb1ddde5 0ac9deb5f3cb2b474244022c1e7ea021d1ef5533 186a070e4d8964037ee07409cf386b835e720d2e1f1bb3add996ef481b4f7a94 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=i6Ko2d,fgj8Rb,XvDhNc,fgib1c	30 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=i6Ko2d,fgj8Rb,XvDhNc,fgib1c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-03-11 23:48:44 Times Seen1 Hash 4a6770ab5c1d21e60624f8e30fc1858a edcd70cfbd09c5e168362b73d48291dd7ee09521 54bc3f16ec137ee9eca4b1554a00fd64dc1925d0f033deaa41290c72076859c1 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	63 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:30 Times Seen30686 Hash 3ca9fc059879b598f3d6d3003cf130b3 d641a68a8bccf23c0fe85576609870d5f36cdd9d 3d2b5964246a6a054c9fb0a3a79e72b47de369280fd18b7e5e0bb42a441bb38b Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	661 B	2023-03-11	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 7361526b6f373161ea4f088923fdb7f6 f002e214d687bc7ae55b8042d464d57fd41da009 2c9e33ddc866fada099fd89812bb0f6f914575a6eff86a14c0d483546c2794dc Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/am=MxwAQQ/d=1/excm=_b,_r,_tp,commentformiframeview/ed=1/dg=0/wt=2/rs=AEy-KP3vKOwqQiFezR61Lh-sWP8cpNIb6g/m=_b,_tp,_r	180 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/am=MxwAQQ/d=1/excm=_b,_r,_tp,commentformiframeview/ed=1/dg=0/wt=2/rs=AEy-KP3vKOwqQiFezR61Lh-sWP8cpNIb6g/m=_b,_tp,_r IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:05:19 Last Seen2023-03-11 23:48:43 Times Seen1 Hash c51add1005048bbfc1d6161bbeb68125 2d09243f1e1db86dbc5483e00b18519aab901638 d3bafaac65220912f1385b7827f57ace7085c02c360ae81ea5f3fbf627865a85 Loading...

	adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com	107 B	2023-03-07	2024-02-03
Pretty URL adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-02-03 18:43:04 Times Seen27539 Hash d9c47f48660b656705d0ff86fc850de8 bceb9478f69cdfc2eb87ae6b80e95dbaac8b6769 a4a1824defec1084ca81d496ee77891684c26196924bdc4fc21dd3482ce15e14 Loading...

	ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js	10 kB	2023-03-07	2023-03-17
Pretty URL ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js IP 142.250.74.131 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 69c93809ee794c3e963df5e9aa5fe99d 53e4fac1a579d5cb826100d4dbe9e890385649ec 0d173137e6d7fab67e8e696fea473731e28fed08d552de686256d0d9dfa21275 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=RqjULd	12 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=RqjULd IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:14 Last Seen2023-03-11 23:52:28 Times Seen1 Hash 0739f7df466be64fdd1241142e1d5a31 07dd3d6bbda6faad7fd72661b99b96c2298e8611 34a37646eb787ba8af51661858aa353b8fef97553fab3138c131e38c87b809d1 Loading...

	www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js	17 kB	2023-03-08	2023-03-26
Pretty URL www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:26:24 Last Seen2023-03-26 03:01:41 Times Seen2 Hash f18def4ccec463cf908f91e7cba7f2c1 02d95f67edd84a44c82255ca7abcdbf7f4d0cee5 12b91cbf31131a10b1fc2aa05047c027caeac0d6e0ca5deadf418fff63d68082 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	20 B	2023-03-07	2024-04-23
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:20 Last Seen2024-04-23 16:24:56 Times Seen692 Hash b71836604ea3666ab39c3dbec00c7861 428747a3985b0d7ddae2140b06754b8a3de0bbbd fddb42c42ce14fb2b8f89bc7cfb426ecdceff3ab2a03b5ca023aef0688f254d7 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	282 B	2023-03-07	2024-04-07
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:09 Last Seen2024-04-07 06:49:22 Times Seen507 Hash b5138adee320c7ae47b72dab3167e9e3 7cebb9126c042eb28be7992a1f09e776ed70f9ac 3a8bcec777c30670b3cd623dbfd5682f0906f99bf5a41e84fa6a95856a02ec45 Loading...

	www.blogger.com/navbar.g?targetBlogID=8276956487562511376&blogName=Memang+Gempaq&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gempaqgiler.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=gempaqgiler.blogspot.com/&targetPostID=8578050546659905973&blogPostOrPageUrl=gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html&vt=9008574063914853970&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=23447460	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=8276956487562511376&blogName=Memang+Gempaq&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gempaqgiler.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=gempaqgiler.blogspot.com/&targetPostID=8578050546659905973&blogPostOrPageUrl=gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html&vt=9008574063914853970&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=23447460 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	www.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=8578050546659905973&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669794967062&_gfid=I0_1669794967062&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=33616081	421 B	2023-03-08	2023-05-24
Pretty URL www.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=8578050546659905973&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669794967062&_gfid=I0_1669794967062&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=33616081 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-05-24 23:13:49 Times Seen17 Hash 6f02e8b476a10599db6ab3d3fe0c31c0 6517efe5e96d3ea3337be75da95e2a85642306f5 5470fb03f4f8d7b9570d8663043f2bfce3254e7eab5bbf6e1ccf4fdf0dc15432 Loading...

	s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669794967307&@k0&@l1&@m23%20Ciri-Ciri%20Ajaran%20Syiah&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:-182636386&@b3:1669794967&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&@w	108 B	2023-03-11	2023-03-11
Pretty URL s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669794967307&@k0&@l1&@m23%20Ciri-Ciri%20Ajaran%20Syiah&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:-182636386&@b3:1669794967&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&@w IP 54.39.128.162 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 7d15a72a3e6e0d79080de43a7c33f34d e71ebe82d83123c5194bf61983210efaed3f69af e158f09611f6e3da3379ef8e25cb0dbecbd173aaab02a5b6eac356820e809c8f Loading...

	gempaqgiler.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-26
Pretty URL gempaqgiler.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-26 14:00:06 Times Seen113843 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	118 B	2023-03-08	2023-09-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-09-26 00:30:00 Times Seen48 Hash 9326639011b1406c0cd9afdf4c2bf0f3 7f836a75ed42761428f8f4661168fde1c9c3138f 70677a00d12fdb7de8dd8c46b9978b06c660e3db27ffaa6cdadcfc729bd34d8a Loading...

	gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999	724 kB	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999 IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash d2ee2ff136d0d24baa6ffd8aa50dd196 dd403e722468baf2d252ea7ec08a49080d885740 5d601b01c46b0dfafdbfb9101f5ca5389d222368bc4b8d3617f87ac9263fa32c Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	129 kB	2023-03-08	2023-11-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-11-05 00:33:19 Times Seen5 Hash ebaa2506c5b4b13ecfc737a1e3b7eb3d e75a7603d9e5016c0c774ab99d5c0b9b756e1a03 9e6d60f06b6332ed1831d9d501e602656f3c884480c6d7034542866281ea3086 Loading...

	count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&cb=stButtons.processCB&wd=true	216 B	2023-03-11	2023-03-11
Pretty URL count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&cb=stButtons.processCB&wd=true IP 54.230.111.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 410d47c97b96b81d7b5c3e241849ef5c 8fac29319fdcef04575e94e279b271c7690c1e6d bff6f422c287e3e7f4d62030dab8805605ae15abd50f25259d91e7763a1e0acf Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	69 B	2023-03-08	2024-04-13
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2024-04-13 12:31:25 Times Seen83 Hash 9801148df541a4214e51ef558337bad5 6e3247b1fabff49f5577f870addfc341f11c8973 898a4718d82c3236a3465e05ebdd5151236f61a5924c876266c879a9b3e5ed53 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	84 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:31 Times Seen30724 Hash 50371200cd5f1f923ab39ef2ef84f798 5a3bbc0639a7a75c53fc1ce7a8c7a0433f6b3285 6f32e65215e120986a7ab3e61b08961abcf448f7d1986d12f94dbab7ac2ccadc Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	6.1 kB	2023-03-07	2024-04-25
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:55:06 Last Seen2024-04-25 04:33:00 Times Seen113 Hash e66bafeecb2ff65a8cec442c0b18c027 3a017c55d04d56022317a8c1cb1882b2d2400466 a9413e19ea3ab9b9d01600907ee82abf185873afa2531d515647daf2cba96a7c Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes/exm=auth,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_2?le=scs	3.5 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes/exm=auth,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_2?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:44 Last Seen2023-03-11 23:51:20 Times Seen1 Hash c787ef958fd6610bf534c83026f9a858 bbd722c2f8ddd02675d62bc5335bd4e3e07f9139 b1a4c28ef7abd0d29c14da4ed56cb2e6ea01a25548733eebd37bcba67c76e85e Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	269 B	2023-03-07	2024-04-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 14:00:05 Times Seen28070 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-26
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 14:00:06 Times Seen48075 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	92 B	2023-03-08	2023-09-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-09-26 00:30:00 Times Seen52 Hash 2860ad787cb3f3bd5166d5d09e9f5b0a 85179ee09c8a15fa572b2406fe4f1e55cfcd6faa 128138e511fc090b27060c86aee86ef0de4e3c6377922ff6513066b1625c747a Loading...

	ws.sharethis.com/button/async-buttons.js	91 kB	2023-03-07	2023-05-06
Pretty URL ws.sharethis.com/button/async-buttons.js IP 54.230.111.82 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2023-05-06 00:03:01 Times Seen494 Hash 2398b6ceebd7fb89af7587915c24727d 66d6c454c5c51fc623d839fc147d1a7702592bf9 38bdaa6ffa7c071fd9af7eb4fc6e34125cbac8965ad71fb0e93a0d2140dd2842 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	864 B	2023-03-07	2023-11-22
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2023-11-22 14:56:24 Times Seen4689 Hash 7454e38fa6cde44ee932663aecc94c26 0f461cebf19b9bd4c738eff4aac7214c6d1eefc0 ccb6deb78c9a464300938c9cd2581ddb610ad8d4a1756f0d80361c04c014d9da Loading...

	googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html	9.7 kB	2023-03-08	2023-11-03
Pretty URL googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:45 Last Seen2023-11-03 08:02:11 Times Seen3 Hash 5ba05061c66d3e3a39f0573557899b0d f31c916b0c5ba50856c2d505c6a07ac2e3703dea 821afaa0abe5e4fb2292f52492b24ad0e290f7c43766602293856e911b5d1499 Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:23 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 82b37d5e95d1e985a554cf000e9bb15c 8973b2e12ea8de1b8a14c8b7ea3be6c1c25eae07 4c6520efed0ab3222ea84da3fb4d6cdc929353fdfa0ac12422253be3ffcf525a Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	604 B	2023-03-08	2024-04-13
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:56:52 Last Seen2024-04-13 12:31:25 Times Seen79 Hash 79b5f350278e7cf4f6d6fcbdba2a395b 481a3618c56fce8ff082a8c82fe54ac4fabf30a4 da532df1b9a9ab31b069f35909391615aa48f7c1b3fca7351437541d410040a1 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_1?le=scs	102 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:17 Last Seen2023-03-11 23:48:44 Times Seen1 Hash ef2165fdf4f52f8c7c8735c0b57407f7 7ebad26ec2359faabd6f1bc5e9fa4dcc118aec05 541c10b550bb3bef95c6816ccc83fbfdd9a5a34c1be39aa8ff5412c8444b978d Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	829 B	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 3271f09a5254e065003ebc1e2f24bd5f 036ea48f176a35dd8f404302627675dac6bf7e9b e38f86c9915cfd08fd8fb1a090186066f7d80aa0d3ea2d12f7723e00856bc45b Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	1.3 kB	2023-03-11	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash c4a41df38406de4f9464f439ad195717 9aec694627acaf3a39c0ebba26a8b3c22dd69fb2 c0e3f99f10c5169a2af7aeafdb3d598d4d87a75e5289eb3f82ab1f04597f5f04 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	1.7 kB	2023-03-08	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:32 Last Seen2024-04-26 11:40:25 Times Seen9067 Hash deaf0cb0a603ae39eb914c99686050ef cebb2876d8540e0f16c6dc1e39ff8bcd5c301b78 630686f5b9dde847c0e7a50d25a91004d1bce21abd1a58c2638998afc900cae9 Loading...

	apis.google.com/js/rpc:shindig_random.js?onload=init	18 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/js/rpc:shindig_random.js?onload=init IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:17 Last Seen2023-03-11 23:53:01 Times Seen1 Hash eaebeab1028b769231bfc3b2577d93d7 85e286818762ea0f2f69b921bc18b04728391093 55f3b09cbbfd0eb0b51f61f77f4f00fd49f2733726efef6113a03930e1d38109 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22:%22rgb(34,%2034,%2034)%22,%22backgroundColor%22:%22rgb(255,%20255,%20255)%22,%22unvisitedLinkColor%22:%22rgb(43,%20128,%2028)%22,%22fontFamily%22:%22Arial,%20Helvetica,%20sans-serif%22%7D	1.8 kB	2023-03-11	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22:%22rgb(34,%2034,%2034)%22,%22backgroundColor%22:%22rgb(255,%20255,%20255)%22,%22unvisitedLinkColor%22:%22rgb(43,%20128,%2028)%22,%22fontFamily%22:%22Arial,%20Helvetica,%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 4ea60f4eab23aa8d9af975c1b45b29de fe19ec5a367acec9af736aa9eb724560d1a73190 0525f0248e46aaa9cb7d5fb6f26b84189bd2514482a0b3d9c0bf718e7b76dd13 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	275 B	2023-03-07	2024-04-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-26 14:00:05 Times Seen57531 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	302 B	2023-03-07	2024-04-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 14:00:05 Times Seen28756 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	73 B	2023-03-07	2024-04-21
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:33 Last Seen2024-04-21 09:41:41 Times Seen1875 Hash d7260b80d32f71631980a7fd9ef3fbfe 8661ee9fa75500fc397a8e1dd83e1ff3cedfba63 e2a06e8848ae01254d49960b09b090166f5985f853306e8a121ef76d3a00e139 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	789 B	2023-03-07	2024-02-13
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.blogger.com/navbar.g?targetBlogID=8276956487562511376&blogName=Memang+Gempaq&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gempaqgiler.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=gempaqgiler.blogspot.com/&targetPostID=8578050546659905973&blogPostOrPageUrl=gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html&vt=9008574063914853970&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=23447460	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=8276956487562511376&blogName=Memang+Gempaq&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://gempaqgiler.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=gempaqgiler.blogspot.com/&targetPostID=8578050546659905973&blogPostOrPageUrl=gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html&vt=9008574063914853970&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=23447460 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=A4UTCb,VXdfxd	18 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=A4UTCb,VXdfxd IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:26 Last Seen2023-03-11 23:51:21 Times Seen1 Hash eaeb3756465537ebaf92bd05c9123304 575e0a0c9e033f419a95dce078d3bfec774d3ba7 70a8ca7eddf2278c4d4d37210c48ca4be7fba2204c6033c87af30e66dff73370 Loading...

	www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js	409 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash b2507198388fcc94ca9e94ed4c5561c5 8853fc86f1c616bd20a73e3e24442036fd90fd2f 02c7565a86d6d3a80295b85161d78fc88d8c79a0e314c0c7777570237a365ed0 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	173 B	2023-03-07	2024-04-21
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:16 Last Seen2024-04-21 06:40:10 Times Seen545 Hash d519a353e2bd32d7bd8fd4e5ee47eb79 988ee3f601c2bd2a879971e2a767bba14aa0a869 cb2ab7d03e4e886950434a454acb55f2834ff9d6c79a8fb7cac56e2a963e636d Loading...

	apis.google.com/js/plusone.js	55 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/js/plusone.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:17 Last Seen2023-03-11 23:53:02 Times Seen1 Hash a4bece00b52ca0d44160fe7a02cabddb b2ab847e582b5609e479a6d4c19577a2f664dfbd 4cc6846b69ba46bb297b9fdc8a711094d88a1a6b33f1a13297cbe154713d7c72 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	1.8 kB	2023-03-11	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 2fbe3e3e94ce1f044411548716e3def9 03ca5f170246ccd943cfadcd6456e5023eacb086 95e948bf63ba01279101a68a88c3a938413e9040c41f080354494f6d879d7439 Loading...

	s10.histats.com/js15.js	11 kB	2023-03-07	2023-05-05
Pretty URL s10.histats.com/js15.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:16 Last Seen2023-05-05 01:26:37 Times Seen825 Hash 4beb0b1c8bbca69316e6eadcd83b1bf0 602491c5f60960bf4ba7c3d2e600681a06ffcaa1 429e7004f3f8fbe42cacb984c36a9cda33efdacc100a276b12e82c6ab78bf7ec Loading...

	partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1	391 B	2023-03-11	2023-03-11
Pretty URL partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash 0a37f3141bc53dace88e728957fa6bfa 8a938a6b3d50a94ce862ee7e833ad52c3fcabd5c 11bd6cf10407dbefe0215fa19a17a6cc00d0f0b26ca7a9cbfe81df2c0e243f43 Loading...

	tcr.tynt.com/ti.js	46 kB	2023-03-07	2023-03-17
Pretty URL tcr.tynt.com/ti.js IP 172.64.151.83 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:54 Last Seen2023-03-17 12:36:22 Times Seen1 Hash 1681f42b74163a60a2ee6d6e6d75b24c e211b99d24ce657156c1fbeb31df6d5ce1a80409 b4917a5290466244353dc49caa11b14916816e7523850ff103fabb5484222e0a Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 14:00:47 Times Seen37092728 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=_b,_r,_tp/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=n73qwf,ws9Tlc,GkRiKb,e5qFLc,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,WzT7ae,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,S2r0ad,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,Z5uLle,I6YDgd,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,MdUzUe,BVgquf,ovKuLd,hKSk3e,yDVVkb,zbML3c,zr1jrb,KG2eXe,Uas9Hd,VwDzFe,ZDqTJc,eD1YLc,A7fCU,pjICDe	286 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=_b,_r,_tp/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=n73qwf,ws9Tlc,GkRiKb,e5qFLc,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,WzT7ae,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,S2r0ad,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,Z5uLle,I6YDgd,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,MdUzUe,BVgquf,ovKuLd,hKSk3e,yDVVkb,zbML3c,zr1jrb,KG2eXe,Uas9Hd,VwDzFe,ZDqTJc,eD1YLc,A7fCU,pjICDe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-03-11 23:48:44 Times Seen1 Hash 92ff976aea56002aa1477b677f1ab0e0 654b2e16e9d2610b9b2767e44491fe4592a3365e 302645afc571e1f5824edbdb02d26d25d4902b691851491cd37ae59a9121d8ff Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=pxq3x	16 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=pxq3x IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-03-11 23:48:44 Times Seen1 Hash 2cd57094a0df3602cf650c5c429455f7 03c800b755b1be9ccf801de56d3d7cdbcc45e2e5 e47cf1dbdeb1407db7e0e187d7335c6fbce2bf8a494f6414514f7c9ad8c6e4bb Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=YwHGTd	11 kB	2023-03-08	2023-03-11
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.ms.3NukLlLpgjk.es5.O/ck=boq-blogger.BloggerCommentUi.4b_cGPwM1uI.L.F4.O/am=MxwAQQ/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,Z5uLle,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP0hWTAxC_c6wlAIxOaor9AMat9H9g/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=YwHGTd IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:29:27 Last Seen2023-03-11 23:51:20 Times Seen1 Hash 2e3fc3058615d8fbf208abfa25b23b36 a205f1df8be12093caefa1c617a2584f04f47a2f 53c3f427d91579edaca219a6cd49f4302d6a1139c5ba9abed2c2f549a9410b27 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=3jyl9i8e5z4l	69 B	2023-03-07	2024-04-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=3jyl9i8e5z4l IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 13:53:02 Times Seen99568 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js	86 kB	2023-03-07	2024-04-26
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:40 Last Seen2024-04-26 10:40:43 Times Seen17868 Hash e85aed5c30d734f1e30646e030d7a817 b8dcaa1c866905c0bdb0b70c8e564ff1c3fe27ad 8f0a19ee8c606b35a10904951e0a27da1896eafe33c6e88cb7bcbe455f05a24a Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	76 B	2023-03-07	2024-04-25
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-25 16:04:21 Times Seen6113 Hash a8093c44c23e2bdbf9a41798d9048eef 6eabf882cd4278c882398d336b72d0f985f60609 f97d94641f24f898ebebc4617ad43654ab988969bf48b6f51dceb5c24a6e17ab Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	1.7 kB	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash ff0540717310f10c9b30c3138a08f754 725aa357d1cfa266e3f37493c31f867221198115 92d50ed47417585bda18142746ab16ad81f315506c87270a6a9780cd68713fe4 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	86 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 11:40:26 Times Seen9042 Hash ca62aeda78389ab3211271656e8eab92 1a72a954e7d5d653f4ebce44c81418cc5372facb 32a3478caba9994a9080b708949a982e77ed573b0ec204237ffdcd3dd4f7e927 Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	3.1 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:54 Last Seen2023-03-11 22:53:54 Times Seen1 Hash ca722fd03189e9efe8492674cb180f53 efd9b52fdeb800509a42db1307f36bac7a14b335 f337477e80271689056135676089ff73986c7b46c1e29e42194d89ffd7ec0271 Loading...

	www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu	1.0 kB	2023-03-08	2023-03-17
Pretty URL www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:32 Last Seen2023-03-17 22:17:08 Times Seen1 Hash 7e4f46060031b79611e6f45b53f2f125 4592e75395bdd73b846e729291993eabc293189b 8bd3bdce13c525170f9d40000e25a24f24db32564204da62ac4ef3a7e0cc0220 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	130 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:30 Times Seen30666 Hash b90579d967def1905d8e58bde1d6baa6 d90906655ce68eb39abb59c16153675683d53d5c f984f4834618294a8c88f19ce3af90459eb4eef60144b2b9cb6a79d12a4621d5 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_bubble/exm=auth,gapi_iframes,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_3?le=scs	28 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_bubble/exm=auth,gapi_iframes,plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_3?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-03-11 23:48:44 Times Seen1 Hash 6dae1c0b07707aa193d15b26554d7b26 d160068f8d3640e0cd942ae9e3ffadf0d0f56693 9a4d6a1ee6d1acf97ac2cdf07e4b290e52bdf352231ce04931b79dc891315453 Loading...

	cdn.innity.net/admanager.js	10 kB	2023-03-08	2023-10-05
Pretty URL cdn.innity.net/admanager.js IP 23.32.97.102 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:24 Last Seen2023-10-05 14:18:19 Times Seen169 Hash 929a60bf52481eef96b395b803cdd7cf feeb840bffbea23e0b14380bc2d729d26d4c5d2f 5ea9540f0eb6dcb569666cec5c2ee58a8ac9c9cc7be56dfbba0fe0ffa1fe3c42 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	17 B	2023-03-07	2024-04-20
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:15 Last Seen2024-04-20 22:30:51 Times Seen213 Hash f52528a06e8cc656fc1f7475e6c9ffc0 28ace03f1ae8063f704785abd47caa54f8fb35a3 b7970e499adf1395b9b1f60f99de4c53575b8971a895f29022e86ecb131b006f Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	136 B	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 19cd89b72b1051c4fde4d936d5a84769 13fedd48308d42414381ef9e3d862375c9e084e0 8a08102a91a5ea6e71414dce5f8d72a75135d97f0210ef83779afb1e3d9258ea Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	170 B	2023-03-08	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:05:19 Last Seen2023-03-11 23:48:44 Times Seen1 Hash f79947bdb63531a5af3b7c8f0c0a653a 80eec1d7fef458f7edb4056a3ab0cba0c2c7fd4a 5692d1715860ab6023d7a42ae4f1d1786bf1e7e921d8e2b0e4d2774a1ce5f67a Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	12 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:30 Times Seen30654 Hash e5b17204cd55d18a8a2a41824d9fec28 40e8060add70f00c034257f9d49a50dd799ba846 3d0c04a7592aa05499634991244c8d7cce5e5f8b7a414ef8b83d6442b6d52612 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	8.6 kB	2023-03-08	2023-03-17
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:31:12 Last Seen2023-03-17 22:17:08 Times Seen1 Hash ac086aab35e2974968fee4d32f6969ae 3604c2f821872fa6fdf0b1e9a39a100ddf60adba a19e6fe3f834df34c188e213a7627891869d0c27b806b7356f9775460ca270de Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	134 B	2023-03-07	2024-04-21
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-21 09:41:41 Times Seen6885 Hash df2d584bfac6174bc751168d315a7a86 98bea3c777878159d32ee8bb401bf1055b2dc2f7 421b0929cb2ee28f2df78e23aa97816ca8572b091fd63b8c37994d541f5f6ba9 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	7.1 kB	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash c2a527baf0c4e3af51532a6e1288469d 87334b30e76f5c5633b93866a27abb7118fd07ed c8ce71197bf65b2c84cee95ef20bf7f47adfa55f375cc666439e0c79c16e0f28 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	2.4 kB	2023-03-08	2023-09-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-09-26 00:30:00 Times Seen48 Hash 7bd02a6ac213dc61094a19f262f3c3fa 6f9200c2faebe681fd2d65cbc17e9c596a6d1bef 4825280b5313a7bade6b9d5f617c78d38a4d5018d274321a02bbb26a29f3173f Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	313 B	2023-03-08	2023-09-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-09-26 00:30:00 Times Seen52 Hash fd616a03c6cdb8d69be914699a0f99ea a4bda401aeada58751403e7d2554e7738d35b9d1 46d8c46e12c4b7b4c11c7d5240f4619d9d692b08f2399d390ec5db86cf0ecfea Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	43 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:30 Times Seen27315 Hash 5482bd576fe18ff505188b5fd74c4f43 a45df5d0e151738f6042507c1ebe4f47a8953ac1 6d265f94d2ec05109a8ec3d16726b901d9ab981ecc5a04ceb59c830d845e7aa0 Loading...

	de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r=	4 B	2023-03-07	2024-04-24
Pretty URL de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r= IP 67.202.105.31 ASN #32748 STEADFAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-24 03:12:14 Times Seen3075 Hash 350fd6ef6446635f7a8f608434a405ec a4b6c275ac2c80ec925b5c0c5c6abb79ba897356 d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	77 B	2023-03-07	2024-04-21
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-21 20:41:59 Times Seen8924 Hash f2ce051b9726657f82dcb6f75cd51ca9 7f3e6dcc1f61f2f8c1953f002cebf38107673535 1f4ddc2aa5caebd1c325b608d3e8daefa8f9c30911349fd06b2bca6d514d57a9 Loading...

	gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=relpostimgcuplik&max-results=50	407 kB	2023-03-11	2023-03-11
Pretty URL gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=relpostimgcuplik&max-results=50 IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 4889b54111e359509cdfbbb0fca4c6bd 68241dce69b7ae788e9b15d6d4ed193b8b4c70f1 fe03b1d4d3fd47e9371840f8c9d8550e976eaa1babfd32d36aec281b34f6bb52 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	122 B	2023-03-07	2024-04-21
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:16 Last Seen2024-04-21 15:57:54 Times Seen1273 Hash c223bd9538ff1ccb1ce685e37a6bcc23 24f363d1fcf7c39aace733c8d8b9dd5bd07a782b 39e4857113f0cbf16f6a5b3e717fac0bc245f23a4110f0aac521b4e78890fb35 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D	105 B	2023-03-07	2024-04-26
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22%3A%22rgb(34%2C%2034%2C%2034)%22%2C%22backgroundColor%22%3A%22rgb(255%2C%20255%2C%20255)%22%2C%22unvisitedLinkColor%22%3A%22rgb(43%2C%20128%2C%2028)%22%2C%22fontFamily%22%3A%22Arial%2C%20Helvetica%2C%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-26 13:43:31 Times Seen30623 Hash b47393a011801ae3c2e20bffd05ff81e 3e12884bf79d0b71a980f852b7577324b505dce4 bd5de7d4323c02ad258b93b291b368aa5a2dfb49f8ff1add3deca73fe6ad76a3 Loading...

	www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22:%22rgb(34,%2034,%2034)%22,%22backgroundColor%22:%22rgb(255,%20255,%20255)%22,%22unvisitedLinkColor%22:%22rgb(43,%20128,%2028)%22,%22fontFamily%22:%22Arial,%20Helvetica,%20sans-serif%22%7D	1.3 kB	2023-03-11	2023-03-11
Pretty URL www.blogger.com/comment/frame/8276956487562511376?po=8578050546659905973&hl=ms&blogspotRpcToken=7295926#%7B%22color%22:%22rgb(34,%2034,%2034)%22,%22backgroundColor%22:%22rgb(255,%20255,%20255)%22,%22unvisitedLinkColor%22:%22rgb(43,%20128,%2028)%22,%22fontFamily%22:%22Arial,%20Helvetica,%20sans-serif%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 017926b8f8b0bf176b00de3b3d0a7e73 419ca5fd27b5dea9644a8ea8ad92513068b14303 087a4104b5d40f31c7f2a3a1f6ab0c97d358ebdb9314138abe830b4e35b2bbe9 Loading...

	s10.histats.com/counters/cc_10.js	18 kB	2023-03-08	2023-05-05
Pretty URL s10.histats.com/counters/cc_10.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-05-05 00:54:43 Times Seen356 Hash 95708a956af350c689e63983dbe3b48b d2baf2a655e3b058dbf44a906bc7e219e0b68e7b ba1733b83b9223d40ed7c7367d58509df93138a0d4e1809320bb824d84447da0 Loading...

	w.sharethis.com/button/buttons.js	61 kB	2023-03-08	2023-03-13
Pretty URL w.sharethis.com/button/buttons.js IP 54.230.111.82 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:34 Last Seen2023-03-13 14:19:22 Times Seen1 Hash 02a88cd6c94e2fbe81714b293f362b4a f3fb10d6b1121d29e40e9527dfe16c880f247ecc 049ba97efd5e51f8dcaaf2383aae4b00bfbab1eb715124666ac72e3a9408d234 Loading...

	gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html	52 B	2023-03-07	2024-04-26
Pretty URL gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-26 10:54:36 Times Seen6578 Hash 6d48f89cb998f3bd2608a2249a390a16 9fac7a2a545c24358ed42ac6619918191ff01b95 012266fd23d78b3e873c75c6fa647fd6d9d5f494f3697fd3e252f7b82dc26080 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	145 kB	2023-03-11	2023-03-11
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 0b88127cdbe34d9b1d0c78da114df16d 5f4a5112d045a62cd2f98ae006394ac883074995 70a8a34f88ff03a4ac3048463934f6c5f48634ad7b6efbebd44681510ed277e8 Loading...

	www.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=8578050546659905973&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669794967062&_gfid=I0_1669794967062&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=33616081	1.9 kB	2023-03-08	2023-05-24
Pretty URL www.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=8578050546659905973&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1#id=I0_1669794967062&_gfid=I0_1669794967062&parent=http%3A%2F%2Fgempaqgiler.blogspot.com&pfname=&rpctoken=33616081 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:38:23 Last Seen2023-05-24 23:13:49 Times Seen16 Hash 6ce4adc798047fcb9928a8f635098502 2903061b43a6b29e3dfc25f7a5bfd0e363526ec8 cf6ada017518788b84157b8a7d2dab8abfc9a6feedd054ffdcce70b53f1b1b1f Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=3jyl9i8e5z4l	35 kB	2023-03-11	2023-03-11
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=3jyl9i8e5z4l IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash d60a297b08051dd7c023a22913cfcd49 8df24b65f817173d6dca7c7632c9231c1333eaa8 8d66fddb82d44f02fe0873fbfc0a62031ea01f6fc84f2667df5bcbbf138db707 Loading...

		Size	First Seen	Last Seen
	#1 Eval - e838c48a2ad3ca7b3611c5c2c8b63fe4	22 B	2023-03-08	2023-03-17
Pretty Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash e838c48a2ad3ca7b3611c5c2c8b63fe4 3e54acc073cfa8db68daf806991e34eeef26d115 d8fc182869d21957579c2a09eae263e41ab53e4c30c4ffa96d93584a64eb6f77 Loading...

	#2 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

	#3 Eval - b4bf8374a585b55fa5d4c4c995ff1ebc	19 kB	2023-03-11	2023-03-12
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-12 08:48:33 Times Seen1 Hash b4bf8374a585b55fa5d4c4c995ff1ebc b40465bc80350f7d6e49643f68406ea91851f55e c4a7e0906a83b1a9041049daf2e681a6e3b0878bbbd3ca076bbbd5f5cd299dca Loading...

	#4 Eval - b2c2041f8d99c45e0f21474fe4f8b7bc	17 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:03:01 Last Seen2024-04-26 01:51:27 Times Seen7451 Hash b2c2041f8d99c45e0f21474fe4f8b7bc 0b876666393469c726a2e3edbb29544c03a92154 17f5bfdbae6b35ae8bc3b27c069526d694021fe1e37a8027678e770fbb05e061 Loading...

	#5 Eval - 806f2d97105b300b4b5c594b860841ff	16 kB	2023-03-08	2023-03-17
Pretty Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash 806f2d97105b300b4b5c594b860841ff d89d7c7eea801d1e1ff172b2cbe554e4e3606ee2 ac67106da7775f013b7cb9730c8cde5cfa186d74c2bff74fe27579bb046366be Loading...

	#6 Eval - ae29ed92f6bcf000b77945d046e689b4	64 B	2023-03-08	2023-03-17
Pretty Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash ae29ed92f6bcf000b77945d046e689b4 a4d4bd1aa2d7a4fae1ef26244a5cb8f40d62ea91 14ed98b8b82987bce49c9e6a0f9b620434ec92ad83e9815037257823fe34071e Loading...

	#7 Eval - 15ed1e82ccce1234572b975d2729316c	2.7 kB	2023-03-08	2023-09-26
Pretty Observations First Seen2023-03-08 14:38:24 Last Seen2023-09-26 00:30:00 Times Seen48 Hash 15ed1e82ccce1234572b975d2729316c 907b3a1b2e22a16f261b17b60b4181a33c3a0f4c 1ec7064d5f39ae2e93166c7fb542bbb99958d6b927703019110405548c79531e Loading...

	#8 Eval - f7656e08f419dab0921bcffc274655f4	22 B	2023-03-08	2023-03-17
Pretty Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash f7656e08f419dab0921bcffc274655f4 5acf6b5d541b60f71be9ac794938821eb3bfbdcd c4e7ca158015332be1df536c970a209b44cb4744fae720ed1caaefdc87f37f93 Loading...

		Size	First Seen	Last Seen
	#1 Write - 0482474a9066a4d0cc01a61bf565352d	60 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 0482474a9066a4d0cc01a61bf565352d 49a87c1327ffadaaf62d5fc00448d31dc53357fd 29776b229d5da97c9bebaace537e8b10799ebe1952c244b166d2a1d3cc9957c1 Loading...

	#2 Write - 3edc0d2763802bd7634576cf780630fd	24 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-26 10:28:52 Times Seen10744 Hash 3edc0d2763802bd7634576cf780630fd 598d900dcdecd9064535e606bf7a0708d4bf0ec2 a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05 Loading...

	#3 Write - 7d63b3b9eac5a72b587e0da666877971	842 B	2023-03-09	2023-03-11
Pretty Observations First Seen2023-03-09 03:33:53 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 7d63b3b9eac5a72b587e0da666877971 0380a1977d08b0fecc2df8f6ee1fc1c639fcde55 f8f0855b406e513b8399f219988d587172119467d3ead59e004f21b8344c675a Loading...

	#4 Write - ce0f5961649f7936f93091e41dfdd5c0	862 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash ce0f5961649f7936f93091e41dfdd5c0 7209e1e25000850a54d3d3faea1baaab212146b5 9cd990f42fa6441997aab0167db789d0650502792a9e2bf7d6c4e8260f4feaaf Loading...

	#5 Write - 326b818136840761edfdf7553bbb033a	838 B	2023-03-11	2023-03-13
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-13 04:27:05 Times Seen1 Hash 326b818136840761edfdf7553bbb033a 74ab0bc0ee36efa879e3cab4209a7b7545a0e6a9 e2ecc4a8a13b5e4b4b413b8f2621d2c7f52584e6f39d9826e077675eb7d8002d Loading...

	#6 Write - a7cbb2d42e2a0d02e2f0b9e667ea384e	825 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 04:56:09 Last Seen2023-03-14 04:49:28 Times Seen1 Hash a7cbb2d42e2a0d02e2f0b9e667ea384e fcdbd09a2970f7a9888cbbfbf6b36637a7f8348d b402cc124eb64ba483597c7596fc294b7a87756f397b5e1317e2d3c8c22e21a8 Loading...

	#7 Write - f168e3b0f6ce96bc8aebe1167385ed5b	902 B	2023-03-11	2023-03-14
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-14 04:49:28 Times Seen1 Hash f168e3b0f6ce96bc8aebe1167385ed5b 09db20d4e5a2562a18de9b6c9929152690a29b1a 5aa8093ec896cb3e214aa036400e077f402e8a730d4d92a66634c934d7e22134 Loading...

	#8 Write - ab27cb408bb51c47b8e625f03db610a7	77 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:16 Last Seen2024-04-25 04:34:40 Times Seen1395 Hash ab27cb408bb51c47b8e625f03db610a7 3979411bfd2a5ba32a11b5300c9bcc782a4b7947 aa5040129e29d9fd5521128308150fb0db3e301800f50798324c13f9fc4d3b73 Loading...

	#9 Write - 81f92dea79a8de25e7e8668a0071ea6e	312 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 81f92dea79a8de25e7e8668a0071ea6e 3575bea19d070abbb72fc49da9e3250ae5d5540c a551fda86e94170cfb6e98f94223cd64ee4efc9ab6cebbce0c54aaafc8ecfb15 Loading...

	#10 Write - 98abe369e6d8e640674d367592f6f604	842 B	2023-03-11	2023-03-13
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-13 04:27:05 Times Seen1 Hash 98abe369e6d8e640674d367592f6f604 692362be32619fbad3536982ca8347563b19f825 f3511f65f43b7bbc3b4a167058d95f1fb53442129aa19aa29b0d317d2b6136d3 Loading...

	#11 Write - 901b59549210f807ae93022dfc41629c	869 B	2023-03-09	2023-03-11
Pretty Observations First Seen2023-03-09 03:33:53 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 901b59549210f807ae93022dfc41629c 8a327725e2576cc7636cb0fcd9710856a5c78921 c74881eb7765c58874b18666a6721cd50768186f4a04d7c42f2a12eab5f60831 Loading...

	#12 Write - da3069e44753a16dc2b6602e447e888e	936 B	2023-03-09	2023-03-14
Pretty Observations First Seen2023-03-09 03:33:53 Last Seen2023-03-14 04:49:28 Times Seen1 Hash da3069e44753a16dc2b6602e447e888e 29cbc690ba45b6ddb5890acb83dbdfc45a25e8f2 89ba5518540baf19b9e811d039a5992394dc7d65e10b78c4df04c409541bec37 Loading...

	#13 Write - 487641c6b6e109a39ab014429386aa55	876 B	2023-03-11	2023-03-13
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-13 04:27:05 Times Seen1 Hash 487641c6b6e109a39ab014429386aa55 16c7021a14e72fac64df0c36eb30ffc2cd7c9c61 9efb62fc55260a46c06eeb754047c2663d175bdc2da008284075b956cb8d10f3 Loading...

	#14 Write - 4152739296e3552eeeb9d8bdd066bd10	897 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 22:53:55 Last Seen2023-03-11 22:53:55 Times Seen1 Hash 4152739296e3552eeeb9d8bdd066bd10 729fbc9443f7d9f415f23f3c3dc9e8708371e261 0f6f4161dd1bd762f3ea0923275b22954d592727297a850428335a6c12b10bc8 Loading...

HTTP Transactions (165)

URL IP Response Size

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5654
Expires: Wed, 30 Nov 2022 09:30:20 GMT
Date: Wed, 30 Nov 2022 07:56:06 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4ed065cb23b5fca1a179dd73b3c5b7b2
4422eb24688f5e056fc1b18b127c7f63b1dbf5e0
b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6251
Cache-Control: max-age=101956
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:06 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 12:15:22 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5921
Expires: Wed, 30 Nov 2022 09:34:47 GMT
Date: Wed, 30 Nov 2022 07:56:06 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 07:19:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2186
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: qJ2VNqMRUtAFnYCN6Ps0lHoHzeKYNs4smneCwkzh9kov/rmCUjDS81lhE+S4uYB7METGCVdn5dw=
x-amz-request-id: 4BVGYGGQ11JTQCQM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 07:45:47 GMT
age: 619
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 07:56:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 07:11:14 GMT
cache-control: public,max-age=3600
age: 2692
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

gempaqgiler.blogspot.hu/2013/08/23-ciri-ciri-ajaran-syiah.html

172.217.21.161

302 Moved Temporarily

206 B

URL HTTP/1.1
gempaqgiler.blogspot.hu/2013/08/23-ciri-ciri-ajaran-syiah.html
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
206 B (206 bytes)
Hash
3baa9fb78fdc78ed1c9ad1094b39ecf7
4fccce98cd2b2ab75dcd6f41a6693a044f1adeef
230782825e72847905a14031d9885d192f39deb770266fd6fff9272578445275

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2013/08/23-ciri-ciri-ajaran-syiah.html HTTP/1.1
Host: gempaqgiler.blogspot.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Location: http://gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Wed, 30 Nov 2022 07:56:06 GMT
Expires: Wed, 30 Nov 2022 07:56:06 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 206
Server: GSE

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6254
Cache-Control: max-age=96896
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:06 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:51:02 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.161.26.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.26.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fSv5ifU4IQ7Ly/ApWHzjUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QqGgFcBgVZ6uWYf8LBqokfRorJY=

gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html

142.250.74.161

200 OK

35 kB

URL HTTP/1.1
gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (13950)
Size
35 kB (35382 bytes)
Hash
d17d9605c4eef37fab3253f39a96eac8
f17d6c7932a2427317cae1f8be48c4f3e54b5c84
d2803aca22a3bf6a37eed5f1a4b749992214af840b3b9f4abbad0888b27e7418

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /2013/08/23-ciri-ciri-ajaran-syiah.html HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Wed, 30 Nov 2022 07:56:06 GMT
Date: Wed, 30 Nov 2022 07:56:06 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"af6e034295aee465921bf5b48ef65f261ecb601325f867c5429d1bf31f4dc88e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 35382
Server: GSE

ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js

142.250.74.42

200 OK

30 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (65168)
Size
30 kB (30082 bytes)
Hash
ebaa24930d6b905fe00c9457484b78a9
f97496ee81148e264b3735464b8bfced1a8b2fad
b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614

HTTP Headers

GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 05:52:18 GMT
Expires: Fri, 24 Nov 2023 05:52:18 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 525829
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

w.sharethis.com/button/buttons.js

54.230.111.82

301 Moved Permanently

167 B

URL HTTP/1.1
w.sharethis.com/button/buttons.js
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Wed, 30 Nov 2022 07:56:07 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://w.sharethis.com/button/buttons.js
X-Cache: Redirect from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6sYyhC2pQjhHrfdTBDRs1UsGnwPTvWEsY5X-E6bDSqXJDNd8_CeESg==

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
663d7a15e6575b4513f2f419c6c7c091
c8a76ecc119f9b4b81a192720713377d2e521b34
ee7ad65e8b239c9f51bab0e58e8495bc6bc7144e40f55503f1084da047462ef8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

w.sharethis.com/button/buttons.js

54.230.111.82

200 OK

17 kB

URL HTTP/2
w.sharethis.com/button/buttons.js
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (60851), with no line terminators
Size
17 kB (16989 bytes)
Hash
6df1e6fb302d1bcb35d898105f0327de
2336688fde43d37fc38dbd842b76f728d7423034
3acec848060440ee2c01f063023d2cc0122ad46f1de910ca0738e6715a6c2e67

HTTP Headers

GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 16989
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Tue, 29 Nov 2022 02:30:12 GMT
cache-control: max-age=259200
expires: Fri, 02 Dec 2022 02:30:10 GMT
etag: W/"634f1855-edb3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Vr0ULYvIuGO5vopXG8nh-XxwAfjpIKv4N12aCX0zRgzS-E6vVoKv_g==
age: 105957
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

cdn.innity.net/admanager.js

23.32.97.102

200 OK

3.3 kB

URL HTTP/1.1
cdn.innity.net/admanager.js
IP
23.32.97.102:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (10252), with no line terminators
Size
3.3 kB (3250 bytes)
Hash
67f70474488554526256d7b6c332ab34
e4e77246c8564d7ed7983ed1b665f78a87d3d4ac
1c7447c854562f1cb49f51443725ecb7a1483cab2a5ff39382528236af20014f

HTTP Headers

GET /admanager.js HTTP/1.1
Host: cdn.innity.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Server: Apache
Last-Modified: Sat, 28 Aug 2021 09:22:10 GMT
ETag: "280c-5ca9b226f1480-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 3250
Content-Type: application/javascript
Unused62: 8096267
Cache-Control: max-age=86400
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Date: Wed, 30 Nov 2022 07:56:07 GMT
Connection: keep-alive
Vary: Accept-Encoding

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

142.250.74.73

200 OK

6.6 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/css
age: 64464
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b1a5da6636cd444028100566c55137cd
0c50a145e941e1aa6e3e2dede461248c67a789a2
bd83c87b7f38d37a7b443b4b7aa7f34b6c127070b332ac4f34d16aa17c6e301a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gempaqgiler.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
gempaqgiler.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Wed, 07 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 30 Nov 2022 04:52:29 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b1a5da6636cd444028100566c55137cd
0c50a145e941e1aa6e3e2dede461248c67a789a2
bd83c87b7f38d37a7b443b4b7aa7f34b6c127070b332ac4f34d16aa17c6e301a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
663d7a15e6575b4513f2f419c6c7c091
c8a76ecc119f9b4b81a192720713377d2e521b34
ee7ad65e8b239c9f51bab0e58e8495bc6bc7144e40f55503f1084da047462ef8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/2342155703-widgets.js

142.250.74.73

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56726 bytes)
Hash
1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b

HTTP Headers

GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 94358
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

216.58.207.194

200 OK

52 kB

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (4885)
Size
52 kB (51538 bytes)
Hash
b9f5f7d98ad2489e174572d90473aa4f
8b93ce7505fbbf427e705fa671f4812ac6d8cd68
d180ec4e0aa61af2c65407b390c0503f0ba5f3b900ad0d0d843239f3201cf03d

HTTP Headers

GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 10350550507620825397
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51538
X-XSS-Protection: 0

apis.google.com/js/plusone.js

172.217.21.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/plusone.js
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 30 Nov 2022 07:56:07 GMT
expires: Wed, 30 Nov 2022 07:56:07 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "34fae0e5dab49917"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

172.217.21.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Wed, 30 Nov 2022 07:56:07 GMT
expires: Wed, 30 Nov 2022 07:56:07 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/img/blogger_logo_round_35.png

142.250.74.73

200 OK

2.5 kB

URL HTTP/1.1
www.blogger.com/img/blogger_logo_round_35.png
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2531 bytes)
Hash
838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a

HTTP Headers

GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 16:32:42 GMT
Expires: Tue, 06 Dec 2022 16:32:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 23:54:53 GMT
Content-Type: image/png
Age: 55405

2.bp.blogspot.com/-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG

142.250.74.161

200 OK

3.8 kB

URL HTTP/1.1
2.bp.blogspot.com/-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.8 kB (3825 bytes)
Hash
da2e9832bba485626cce224fc35d9582
7dc0e557299885542601228093079ee4c649536a
edc2a3dcd609a1867326777b6a292f529073e13084cb6a8b525d9ce4de985b5d

HTTP Headers

GET /-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3cd8"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="doktor gtl.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 3825
X-XSS-Protection: 0

2.bp.blogspot.com/-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg

142.250.74.161

200 OK

3.3 kB

URL HTTP/1.1
2.bp.blogspot.com/-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.3 kB (3308 bytes)
Hash
de50d1dd0e89f2a112919529fd702752
4b7d3fdfe5f13f913ea147ff0c04d5d55029498d
72300702c233f10161f3645ed2e9703dd4b88436908014d569bfb04fb00071d7

HTTP Headers

GET /-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v40aa"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="doktor ani.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 3308
X-XSS-Protection: 0

2.bp.blogspot.com/-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg

142.250.74.161

200 OK

3.9 kB

URL HTTP/1.1
2.bp.blogspot.com/-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.9 kB (3854 bytes)
Hash
64d4165bc1719cc50f2f3605974d0ea7
cfd98db515937351114b510f2de0bb2abd054131
2a53b30f6f67d6df12929a8f27d0d0ec6555f0c226d3fda30c7a592691f687db

HTTP Headers

GET /-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="air-mani.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3854
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Thu, 24 Nov 2022 16:17:31 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "va49"
Content-Type: image/jpeg
Age: 0

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

51 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
51 kB (51072 bytes)
Hash
a5aeb8dce52dc81116cc434ff43d3f63
c74721ddc9b87ba5a9deb2a361f44c9293f928b7
333fbf33d55990f58551357644398b7b571c25cd56bc25ad3ea7270571f96118

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:33:12 GMT
expires: Wed, 29 Nov 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 66175
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

1.bp.blogspot.com/-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg

142.250.74.161

200 OK

3.4 kB

URL HTTP/1.1
1.bp.blogspot.com/-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.4 kB (3435 bytes)
Hash
e4b6359c29cebcdf0ac6c35db41071a0
269f3c586a3208edad1d0774d9a96fce6208a5c4
e1d85560f88693d5dd856fe4dbd69933b6acad8969ec7f8576a2bcfc8319ede8

HTTP Headers

GET /-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5164"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rogol di stesyen minyak.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 3435
X-XSS-Protection: 0

1.bp.blogspot.com/-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG

142.250.74.161

200 OK

3.1 kB

URL HTTP/1.1
1.bp.blogspot.com/-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.1 kB (3141 bytes)
Hash
901d20a054bd12aef91f6b03f19dce22
93e8c69a0c0830d056b9dc4a3f70152434a925d5
9744e0ece19c3948aa776091c066e2eef86e2535288ffb409320b0a34972fe42

HTTP Headers

GET /-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4e8c"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="sgt.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 3141
X-XSS-Protection: 0

1.bp.blogspot.com/-Dr4ghM5MgfE/UcuG1BVyyUI/AAAAAAAAM8s/-_Zc5Lw60hc/s72-c/bayi+kembar.jpg

142.250.74.161

200 OK

4.7 kB

URL HTTP/1.1
1.bp.blogspot.com/-Dr4ghM5MgfE/UcuG1BVyyUI/AAAAAAAAM8s/-_Zc5Lw60hc/s72-c/bayi+kembar.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.7 kB (4674 bytes)
Hash
40de9679f9b2fa6f430534720ed0adbc
a08d5584507fc3258b4064e26544560976b2f8f9
d3022ca45fefc6821f44cf8d3572bad9bb7936ed649a66044d3dd9cef7bafd68

HTTP Headers

GET /-Dr4ghM5MgfE/UcuG1BVyyUI/AAAAAAAAM8s/-_Zc5Lw60hc/s72-c/bayi+kembar.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bayi kembar.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4674
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Fri, 25 Nov 2022 04:32:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v33cc"
Content-Type: image/jpeg
Age: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
663d7a15e6575b4513f2f419c6c7c091
c8a76ecc119f9b4b81a192720713377d2e521b34
ee7ad65e8b239c9f51bab0e58e8495bc6bc7144e40f55503f1084da047462ef8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd528f6c2c45e38c52095a73a9cd8c68
dca2df874a830edac932136d474453c18d933024
4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

3.bp.blogspot.com/-yzLOvQY4qT8/UeiD5N-g4NI/AAAAAAAAOFs/nUwuIHwK-SE/s72-c/gt.jpg

142.250.74.161

200 OK

3.4 kB

URL HTTP/1.1
3.bp.blogspot.com/-yzLOvQY4qT8/UeiD5N-g4NI/AAAAAAAAOFs/nUwuIHwK-SE/s72-c/gt.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.4 kB (3420 bytes)
Hash
2032b56901163ea8f34a7a773ba8cfec
40bc352161f8b570903f64bb6f77b55e84629839
1c2f88284fea38d1ebfddf67d553f90317dd88719b326e4fdbb30462448c385c

HTTP Headers

GET /-yzLOvQY4qT8/UeiD5N-g4NI/AAAAAAAAOFs/nUwuIHwK-SE/s72-c/gt.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v385c"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gt.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 3420
X-XSS-Protection: 0

3.bp.blogspot.com/-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG

142.250.74.161

200 OK

2.9 kB

URL HTTP/1.1
3.bp.blogspot.com/-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.9 kB (2899 bytes)
Hash
8f36a1577f49c96c38d561823f94c0a0
0cae48ae752a6f4d83bae0e47937382204373a2e
8b1c4be21c4fe0922762d2462f5e8a9c1c5a0f258414652bf17a053d278bfa8d

HTTP Headers

GET /-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mainn.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2899
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Fri, 25 Nov 2022 04:32:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4ffe"
Content-Type: image/jpeg
Age: 0

blogmalaya.com/button/21c210cef37a05437cddbe1432299ad3.png

209.59.191.64

301 Moved Permanently

251 B

URL HTTP/1.1
blogmalaya.com/button/21c210cef37a05437cddbe1432299ad3.png
IP
209.59.191.64:0
ASN
#32244 LIQUIDWEB

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
251 B (251 bytes)
Hash
ded8c175bed627035ddb79fdafa8f23a
dfaa2f6b9b41c47757ca5808a0d1a9ebb1eea342
ece74dacb8d7324a71c88411adee2e85da1233f98a6ba78deb2b43ac772fa079

HTTP Headers

GET /button/21c210cef37a05437cddbe1432299ad3.png HTTP/1.1
Host: blogmalaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: Apache
Location: https://www.diveglobal.com/travel/malaysia/
Cache-Control: max-age=600
Expires: Wed, 30 Nov 2022 08:06:07 GMT
Content-Length: 251
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

3.bp.blogspot.com/-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
3.bp.blogspot.com/-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

2.bp.blogspot.com/-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png

142.250.74.161

404 Not Found

832 B

URL HTTP/1.1
2.bp.blogspot.com/-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Size
832 B (832 bytes)
Hash
596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615

HTTP Headers

GET /-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0

2.bp.blogspot.com/-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg

142.250.74.161

200 OK

3.5 kB

URL HTTP/1.1
2.bp.blogspot.com/-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.5 kB (3496 bytes)
Hash
187a760a69a4baff21cc2cbd68e8c8ee
353bbb6f4f40d581eb2836f98a46553b42c28eaa
6679e450549c9b7b8a58a5ab1cfcb9f1d24aed20674c262436ed19892476b34e

HTTP Headers

GET /-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="stim.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3496
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 07:56:07 GMT
Expires: Thu, 24 Nov 2022 16:17:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v311f"
Content-Type: image/jpeg
Age: 0

4.bp.blogspot.com/-O8ShKxlJ7_M/UfmSIxTyQkI/AAAAAAAAOb0/YDeg2brTrlo/s1600/ciri+syiah.jpg

142.250.74.161

200 OK

71 kB

URL HTTP/1.1
4.bp.blogspot.com/-O8ShKxlJ7_M/UfmSIxTyQkI/AAAAAAAAOb0/YDeg2brTrlo/s1600/ciri+syiah.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 428x633, components 3\012- data
Size
71 kB (70884 bytes)
Hash
6fc77af65b229019f9a25fe5b023725c
7fd115c09108586c9a17195bb4ab8895641f3db0
85714477cc8f391b3cf6b01388a3fe812e9e8088b2824de513d3fbb725dc09eb

HTTP Headers

GET /-O8ShKxlJ7_M/UfmSIxTyQkI/AAAAAAAAOb0/YDeg2brTrlo/s1600/ciri+syiah.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v39be"
Expires: Thu, 01 Dec 2022 07:56:07 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ciri syiah.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: fife
Content-Length: 70884
X-XSS-Protection: 0

www.carimember.com/banner.png

85.208.116.194

404 Not Found

4.8 kB

URL HTTP/1.1
www.carimember.com/banner.png
IP
85.208.116.194:0
ASN
#18978 ENZUINC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Size
4.8 kB (4837 bytes)
Hash
003039d2127216ae418bc159c62ca04c
9337fef90450d22340a9f661ac74617c70767f50
da1a604a8ed97cbe9feab8c1001a066083c34a6f95877dbbfbae6c21f973d8bd

HTTP Headers

GET /banner.png HTTP/1.1
Host: www.carimember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Date: Wed, 30 Nov 2022 07:56:07 GMT
Content-Length: 4837

gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=relpostimgcuplik&max-results=50

142.250.74.161

200 OK

82 kB

URL HTTP/1.1
gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (64880)
Size
82 kB (81464 bytes)
Hash
5cc35292facfdc5dddccb88c8b84544c
ccb9d1996b0b4bdf3672544bea868ea1e0eea911
14b79e9c0667672fd2aac8e770b8a7531417fc77df91c402e124399a947a8c0e

HTTP Headers

GET /feeds/posts/default/-/info%20agama?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html

HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"fcff65f11b334389ac400fe04517731ab92cf6a777e1a3065fdb843531f46658"
Date: Wed, 30 Nov 2022 07:56:07 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
Content-Encoding: gzip
Content-Length: 81464
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
befc9337444d378ed035c3f33121fc36
4e36412a1b0f062e0308b216322fa9954af2b92d
3bff21b677c4da5529b60e054f29b85d4a4d08e76d2d47d131c7307d598c4d36

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=85616
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:07 GMT
Etag: "6385b807-117"
Expires: Thu, 01 Dec 2022 07:43:03 GMT
Last-Modified: Tue, 29 Nov 2022 07:43:03 GMT
Server: nginx
Content-Length: 279

as.innity.com/synd/?cb=1669794966356&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&width=300&height=250&vpw=1268&vph=939&auction=6962f43-f0420e08

159.138.232.14

200 OK

0 B

URL HTTP/1.1
as.innity.com/synd/?cb=1669794966356&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&width=300&height=250&vpw=1268&vph=939&auction=6962f43-f0420e08
IP
159.138.232.14:0
ASN
#136907 HUAWEI CLOUDS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /synd/?cb=1669794966356&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&width=300&height=250&vpw=1268&vph=939&auction=6962f43-f0420e08 HTTP/1.1
Host: as.innity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:07 GMT
Server: Apache
Expires: Sat, 03 Sep 1983 02:00:00 GMT
Last-Modified: Wed, 30 Nov 2022 07:56:07 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
P3P: policyref=http://www.innity.com/p3p/p3p.xml,CP="CURa ADMa DEVa OUR BUS UNI COM NAV INT"
Set-Cookie: iUUID=c53246bac3f74d91533c290a012039b9; expires=Fri, 29-Nov-2024 07:56:07 GMT; Max-Age=63072000; path=/; SameSite=None; Secure; domain=innity.com
Content-Length: 0
Content-Type: text/javascript; charset=utf-8

gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999

142.250.74.161

200 OK

146 kB

URL HTTP/1.1
gempaqgiler.blogspot.com/feeds/posts/default/-/info%20agama?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text, with very long lines (64880)
Size
146 kB (146377 bytes)
Hash
ab0032608d767174e440050bdaca55e2
33d79a81c54e83c993260b64f8e12a15f5eed496
1fad94e3ec8045217b748a73cfd233846466bb7a6779a99b1fd4ae14f5501b38

HTTP Headers

GET /feeds/posts/default/-/info%20agama?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999 HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html

HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"453f74191505a40d0562085759417a56dde5f2466f478d56bff9e20af9b90321"
Date: Wed, 30 Nov 2022 07:56:07 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
Content-Encoding: gzip
Content-Length: 146377
X-Frame-Options: SAMEORIGIN

www.blogger.com/dyn-css/authorization.css?targetBlogID=8276956487562511376&zx=07a06a6d-6ccb-4cf3-9b34-93d5af8de23e

142.250.74.73

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=8276956487562511376&zx=07a06a6d-6ccb-4cf3-9b34-93d5af8de23e
IP
142.250.74.73:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=8276956487562511376&zx=07a06a6d-6ccb-4cf3-9b34-93d5af8de23e HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:07 GMT
last-modified: Wed, 30 Nov 2022 07:56:07 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

1.bp.blogspot.com/-c1gVs4fyt-k/UeqdMj9SJvI/AAAAAAAAOIc/YvQTgcmc2NQ/s72-c/bazar.jpg

142.250.74.161

200 OK

5.0 kB

URL HTTP/1.1
1.bp.blogspot.com/-c1gVs4fyt-k/UeqdMj9SJvI/AAAAAAAAOIc/YvQTgcmc2NQ/s72-c/bazar.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
5.0 kB (4991 bytes)
Hash
b3d20626b77b06b7df4824fba42b797b
8bded72093034ba00aec85c721e11be2b488a74b
fa6b4d3d06d6d63557c976e739e7ca6b58151b586e56318ab1bbf84b82cf493c

HTTP Headers

GET /-c1gVs4fyt-k/UeqdMj9SJvI/AAAAAAAAOIc/YvQTgcmc2NQ/s72-c/bazar.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3888"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bazar.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 4991
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

216.58.207.194

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 07:22:54 GMT
Expires: Wed, 14 Dec 2022 07:22:54 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 1994

googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html

142.250.74.162

200 OK

4.2 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Size
4.2 kB (4242 bytes)
Hash
2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345

HTTP Headers

GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Tue, 29 Nov 2022 11:45:52 GMT
expires: Tue, 13 Dec 2022 11:45:52 GMT
cache-control: public, max-age=1209600
age: 72616
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-HwWcTzjAQSA/U2IiDZTRYsI/AAAAAAAAUEQ/YO08VBbXWyo/s72-c/wanitah.JPG

142.250.74.161

200 OK

4.5 kB

URL HTTP/1.1
4.bp.blogspot.com/-HwWcTzjAQSA/U2IiDZTRYsI/AAAAAAAAUEQ/YO08VBbXWyo/s72-c/wanitah.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.5 kB (4494 bytes)
Hash
58f11c2aefd4ff32b9c3877762933ff2
61e24413e5515e8c4df450d853c84791f9d38e28
ce96da4dd7eb59f41a60d43aca7ac528056af00760bc885a13fa9c0a333a49d4

HTTP Headers

GET /-HwWcTzjAQSA/U2IiDZTRYsI/AAAAAAAAUEQ/YO08VBbXWyo/s72-c/wanitah.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5045"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wanitah.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 4494
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a67f152254e0a2cfaf6ba5e5e51d9ae4
6ddc5ee596d0469d4d5f0bbcd1918677019337b4
d786acd565665c5d7c3c43e1ec737a20f8ed2a2467bff7758cc9cbb199e602d5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

developers.google.com/

172.217.21.174

301 Moved Permanently

0 B

URL HTTP/1.1
developers.google.com/
IP
172.217.21.174:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 83a8fb4e9f84cf0fde9171b8e1615f75
Date: Wed, 30 Nov 2022 07:56:08 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0

pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com

216.58.207.194

200 OK

119 kB

URL HTTP/2
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (6148)
Size
119 kB (119174 bytes)
Hash
dd7e3fe4d9f17d3eefbaabbdb1e464aa
1600feb3466444a33a647fb4e5dc24391d8826d9
a6b0943d85f4f1cb9d0037c1ae892cfd592a442ac991863c8fb52d666e753572

HTTP Headers

GET /pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 30 Nov 2022 07:56:08 GMT
expires: Wed, 30 Nov 2022 07:56:08 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5275982403000160374
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

2.bp.blogspot.com/-ESlf1a5C0d8/U2GXEd6PZGI/AAAAAAAAUBs/-Yj59-lS4sg/s72-c/kjam.JPG

142.250.74.161

200 OK

4.3 kB

URL HTTP/1.1
2.bp.blogspot.com/-ESlf1a5C0d8/U2GXEd6PZGI/AAAAAAAAUBs/-Yj59-lS4sg/s72-c/kjam.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.3 kB (4329 bytes)
Hash
d9f487d5a299e7a063054a7df6548d73
dbc351fb49c2144ef496548b858d0f7b68678d38
910a836513b69fb3d2ec9a0805d8104d28bd42a11eed3b88c9f11e9c3decbfa3

HTTP Headers

GET /-ESlf1a5C0d8/U2GXEd6PZGI/AAAAAAAAUBs/-Yj59-lS4sg/s72-c/kjam.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v501c"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kjam.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 4329
X-XSS-Protection: 0

2.bp.blogspot.com/-4WW-nDsyQC4/UednkO6irsI/AAAAAAAAOCM/CJ-9IF2Qt4c/s72-c/sem.jpg

142.250.74.161

200 OK

3.1 kB

URL HTTP/1.1
2.bp.blogspot.com/-4WW-nDsyQC4/UednkO6irsI/AAAAAAAAOCM/CJ-9IF2Qt4c/s72-c/sem.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.1 kB (3085 bytes)
Hash
f6e42060833d96aa8696ef29a155cfbf
50187dd2b2a096d41d6e35601685319f55b4679f
ee83eedac4cfea77a8db361ead2757e2ae44664f2cbd75a1c2ba79c7e45d3107

HTTP Headers

GET /-4WW-nDsyQC4/UednkO6irsI/AAAAAAAAOCM/CJ-9IF2Qt4c/s72-c/sem.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3824"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="sem.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 3085
X-XSS-Protection: 0

3.bp.blogspot.com/-0WpkemEXr7U/UhSu8Ihx72I/AAAAAAAAO8M/gbCaPEyfoX4/s72-c/quran+syiah.jpg

142.250.74.161

200 OK

4.0 kB

URL HTTP/1.1
3.bp.blogspot.com/-0WpkemEXr7U/UhSu8Ihx72I/AAAAAAAAO8M/gbCaPEyfoX4/s72-c/quran+syiah.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.0 kB (3950 bytes)
Hash
95c7d841ffa6bb37b213e034ac8b3e22
c80078a78e1181b2e4515e4bfdaf7289cf9df10e
814da263afb7a32a12d186866f72f2dee65eaa288a9d7caba5e9aa8d51dea61d

HTTP Headers

GET /-0WpkemEXr7U/UhSu8Ihx72I/AAAAAAAAO8M/gbCaPEyfoX4/s72-c/quran+syiah.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3bc4"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="quran syiah.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 3950
X-XSS-Protection: 0

s10.histats.com/js15.js

46.105.201.240

200 OK

4.4 kB

URL HTTP/1.1
s10.histats.com/js15.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (11088), with no line terminators
Size
4.4 kB (4405 bytes)
Hash
688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5

HTTP Headers

GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
date: Wed, 30 Nov 2022 07:47:23 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 1006051610
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:3B9C_2E69C9F0:0050_63870C98_2BEC8:B09E
x-iplb-instance: 42306

4.bp.blogspot.com/-PEkjavg9Rg0/U5bl8t20peI/AAAAAAAAUxU/dz9aOQfWHVE/s72-c/cintakan+wanita+islam.jpg

142.250.74.161

200 OK

2.3 kB

URL HTTP/1.1
4.bp.blogspot.com/-PEkjavg9Rg0/U5bl8t20peI/AAAAAAAAUxU/dz9aOQfWHVE/s72-c/cintakan+wanita+islam.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.3 kB (2271 bytes)
Hash
07513e9ff0b3aa75ffc14618c8e4274f
ab1456442d436f04e5e416dddb7b6ab0e4512e53
1a7b39079939d44c7f81c674daa42b1abdacfdbd8eb8beff2f75cc4d0ace47dd

HTTP Headers

GET /-PEkjavg9Rg0/U5bl8t20peI/AAAAAAAAUxU/dz9aOQfWHVE/s72-c/cintakan+wanita+islam.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5316"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="cintakan wanita islam.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 2271
X-XSS-Protection: 0

4.bp.blogspot.com/-ht5ALWLnk-Q/UjZp8FAG7KI/AAAAAAAAP04/McFQGZ9R0xE/s72-c/mazhab.jpg

142.250.74.161

200 OK

4.5 kB

URL HTTP/1.1
4.bp.blogspot.com/-ht5ALWLnk-Q/UjZp8FAG7KI/AAAAAAAAP04/McFQGZ9R0xE/s72-c/mazhab.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.5 kB (4487 bytes)
Hash
3878f13d141c4b78c683dc6ad55939e0
399e55bb37cfd21a23d30dcdc540a0878af1bda5
e68f7353e8e477e1f56f883a7caca60b8f1ae8d9b14d921f2b2acf209234029f

HTTP Headers

GET /-ht5ALWLnk-Q/UjZp8FAG7KI/AAAAAAAAP04/McFQGZ9R0xE/s72-c/mazhab.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3f4f"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mazhab.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 4487
X-XSS-Protection: 0

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18410
Expires: Wed, 30 Nov 2022 13:02:58 GMT
Date: Wed, 30 Nov 2022 07:56:08 GMT
Connection: keep-alive

1.bp.blogspot.com/-toD7AoyDxL8/U3NMcoizpzI/AAAAAAAAUdU/xdWu4U3PMr4/s72-c/10+perkara+tentang+yahudi.jpg

142.250.74.161

200 OK

4.6 kB

URL HTTP/1.1
1.bp.blogspot.com/-toD7AoyDxL8/U3NMcoizpzI/AAAAAAAAUdU/xdWu4U3PMr4/s72-c/10+perkara+tentang+yahudi.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.6 kB (4585 bytes)
Hash
3c5dbd5ab6c7abe9acdf2d0061d0ac12
c979ffc4ddd9d6d350595fa4da3f2423309357dc
5b565465978baf19d33250d3bdab5fe875209e6b7b9ed331d1aa2eed2b9edcf2

HTTP Headers

GET /-toD7AoyDxL8/U3NMcoizpzI/AAAAAAAAUdU/xdWu4U3PMr4/s72-c/10+perkara+tentang+yahudi.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v51d6"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10 perkara tentang yahudi.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 4585
X-XSS-Protection: 0

1.bp.blogspot.com/-3erpw0Xyb5E/U1-5aq7lWLI/AAAAAAAAT-A/zyabqLk6D3U/s72-c/indou.jpg

142.250.74.161

200 OK

5.9 kB

URL HTTP/1.1
1.bp.blogspot.com/-3erpw0Xyb5E/U1-5aq7lWLI/AAAAAAAAT-A/zyabqLk6D3U/s72-c/indou.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
5.9 kB (5919 bytes)
Hash
c48debf8ca52d5c78c6205ceb4921c28
86c46ee6dbe0293eb6298a6a362f6aa9bb99adc2
b386665739ced0ab6b0e4c0cf75809455607d0c2c598f6072d7df627ebc2f2af

HTTP Headers

GET /-3erpw0Xyb5E/U1-5aq7lWLI/AAAAAAAAT-A/zyabqLk6D3U/s72-c/indou.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v4fe1"
Expires: Thu, 01 Dec 2022 07:56:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="indou.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Wed, 30 Nov 2022 07:56:08 GMT
Server: fife
Content-Length: 5919
X-XSS-Protection: 0

accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true

142.250.74.109

302 Found

479 B

URL HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP
142.250.74.109:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (534)
Size
479 B (479 bytes)
Hash
e197709e9493467a2a966cf15227415c
f01b5e9e7daf23cd0aa9fead4c945af092abc36f
08f0face2d94fffa30d0dde9e617f2ff77f05cb957e7b04cabb65c5bfb897fa3

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D8578050546659905973%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:08 GMT
location: https://www.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=8578050546659905973&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-SxIPD410ObqVLSdMdaRqfA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 479
server: GSE
set-cookie: __Host-GAPS=1:9VAJzc4YArswffj_FcrEZ2SMrtgeig:35LnNddPoDqFQN-v;Path=/;Expires=Fri, 29-Nov-2024 07:56:08 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10068 bytes)
Hash
f621857774e4b4adda95f58081644859
639165dc66d171b8266f22cd495181427112bc80
341fd33d3d9486079c182d60e21c355244b6597e6e09ba51ecee2e331b38ca2e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29e8368b-e5a8-4256-a456-b724e13819e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10068
x-amzn-requestid: 7f386e94-3c17-44a1-a36b-3d0eeff4623d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEQQoAMFihA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-5069acfd038ffb2c124b7bd8;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Bh6VQ3BLEXcZKHFyJxHVGQWVQm-w2s0786t8SQOcHQUaNvSFc1rg-A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:51 GMT
etag: "639165dc66d171b8266f22cd495181427112bc80"
content-type: image/jpeg
age: 36197
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7658 bytes)
Hash
536cd283dee06cf1ceb9e15e4850db92
47aafca572d34f9726a0174ac902178556e581d8
63a5acf87962da6656f828422545af0ccc0888f0a2a15ebd2160ffb3714e6241

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7658
x-amzn-requestid: e729e5b6-0c92-4ed3-b449-4a30d5bb4b89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEyEQSIAMFWsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1e-1bba7e9a2d15d66779b1896c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AuN9hTb4YydNZjvpnTGyE313wl-O3F_p4jC_NUSe8kr3RB_4AjOEMw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 35983
etag: "47aafca572d34f9726a0174ac902178556e581d8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8885 bytes)
Hash
8825a2c5c0d98323f489e0b816b7f1d8
05f46985ea4ace57460120876da8e19db08857b3
1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhIGGtloAMFxjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vOFoi7vW7NluI5wQB03BGh9efp_jvCoH1sUh4s1ubG_JAC6KcDkHxg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:15:52 GMT
age: 34816
etag: "05f46985ea4ace57460120876da8e19db08857b3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CJiSRzIK7-rQE81gaP2We0LhgKX1YmuJKEGYEqW34Bm1KMx6NB8yhQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:35:09 GMT
age: 33659
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7971 bytes)
Hash
9e135c29a8769eb12ef8c26f99097400
87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d
ce41ff79c382efc54aa2fd3ab64293d2d2b706a7f21585f4bd8bbcd9a3566126

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:58:15 GMT
age: 35873
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9330 bytes)
Hash
bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:00:54 GMT
age: 35714
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
cd528f6c2c45e38c52095a73a9cd8c68
dca2df874a830edac932136d474453c18d933024
4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__

142.250.74.109

200 OK

460 B

URL HTTP/2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP
142.250.74.109:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (673), with no line terminators
Size
460 B (460 bytes)
Hash
02d4168450de5197003a1a23973a4de5
957b1580d7efbfa6e3eca8065c4f62689ce40dcd
61e492a52b38f8713a32152dd09af0179f566df33a702183b8d6ffb6177b03b0

HTTP Headers

GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:08 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-hP5cw9V1Lw75403FpJgM_Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14bc2bf6e3158890bec81a596e3f6bf0
87b3b9b92320b230704454c03a21f8a468f1a05c
997e6f25a393a0e85f979b0f0b73451d988bc07d762517a78cc9d72c14c9d59d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com

172.217.21.162

200 OK

100 B

URL HTTP/2
adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
100 B (100 bytes)
Hash
917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac

HTTP Headers

GET /adsid/integrator.js?domain=gempaqgiler.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 07:56:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1

142.250.74.34

200 OK

250 B

URL HTTP/2
partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (391), with no line terminators
Size
250 B (250 bytes)
Hash
93d4fa9bebf71be5525a472e9d7a65de
f0d5dcbfbdad8bc31938802dd505a1cfbebfd34b
b0b6270eecda30d6416390f1a2953d6fc1784c3bdc0aa3f843910bbee5e36630

HTTP Headers

GET /gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 07:56:08 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14bc2bf6e3158890bec81a596e3f6bf0
87b3b9b92320b230704454c03a21f8a468f1a05c
997e6f25a393a0e85f979b0f0b73451d988bc07d762517a78cc9d72c14c9d59d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js

142.250.74.131

200 OK

4.3 kB

URL HTTP/2
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2267)
Size
4.3 kB (4294 bytes)
Hash
3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282

HTTP Headers

GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 08:48:19 GMT
expires: Wed, 29 Nov 2023 08:48:19 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 19 Nov 2022 03:11:36 GMT
content-type: text/javascript
age: 83269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.carimember.com/banner.png

85.208.116.194

404 Not Found

4.8 kB

URL HTTP/1.1
www.carimember.com/banner.png
IP
85.208.116.194:0
ASN
#18978 ENZUINC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Size
4.8 kB (4837 bytes)
Hash
003039d2127216ae418bc159c62ca04c
9337fef90450d22340a9f661ac74617c70767f50
da1a604a8ed97cbe9feab8c1001a066083c34a6f95877dbbfbae6c21f973d8bd

HTTP Headers

GET /banner.png HTTP/1.1
Host: www.carimember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Date: Wed, 30 Nov 2022 07:56:08 GMT
Content-Length: 4837

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ws.sharethis.com/button/async-buttons.js

54.230.111.82

200 OK

19 kB

URL HTTP/2
ws.sharethis.com/button/async-buttons.js
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65536), with no line terminators
Size
19 kB (18813 bytes)
Hash
0b3b7d06f8df8276ede0facec198706e
3e42fc6cacb95a5fa1b56c5b3984e8269752fbbe
342ffe242184c80ddf304e21db8b256ccb8aecb1f4bd9363802dcf2f36053837

HTTP Headers

GET /button/async-buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-length: 18813
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
cache-control: max-age=259200
date: Sun, 27 Nov 2022 21:42:44 GMT
expires: Wed, 30 Nov 2022 21:42:44 GMT
etag: W/"634f1895-16245"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 38H17nsa3PFx0Gyvy-9FyhE64NLxbXIOpXhtors61CloM4zNz0SWhw==
age: 209605
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

tcr.tynt.com/ti.js

172.64.151.83

200 OK

16 kB

URL HTTP/1.1
tcr.tynt.com/ti.js
IP
172.64.151.83:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1213)
Size
16 kB (16341 bytes)
Hash
a384492ef8f3bb035fc8ecba870e86d3
a6da9b212e2d640261cc1c1a5c98096aef5d8778
9232a4a99aa4630732414441f411afe936b0e95047f3d018e46c40f211fc1ede

HTTP Headers

GET /ti.js HTTP/1.1
Host: tcr.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 218737
Expires: Sat, 03 Dec 2022 07:56:09 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 7722065c6dd8b503-OSL

connect.facebook.net/en_US/all.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/1.1
connect.facebook.net/en_US/all.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1686 bytes)
Hash
66af95896a2ec7039112e14a889a6d88
a1019c877b741a8bfbf8840fa06dfa08f8ae5438
4cd5f9e1fc27f29b2c59c92f5cd7ade37d283b1416ba94351db0d838e57a730c

HTTP Headers

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: ca722fd03189e9efe8492674cb180f53
ETag: "14d6b2989b99ac3c0f8eac1ff1456ac4"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 30 Nov 2022 07:56:41 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: Zq+ViWouxwOREuFKiJptiA==
X-FB-Debug: WdI0ZP0fP02UzL2wONOBQowvgqlLSULFuYYQqkEjqpBVRJnwgvnfyPv9nzC5DJ4708qwlgkaG6Q2ZD2cnPl48w==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Wed, 30 Nov 2022 07:56:09 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686

ws.sharethis.com/button/css/buttons-secure.css

54.230.111.82

200 OK

3.9 kB

URL HTTP/2
ws.sharethis.com/button/css/buttons-secure.css
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (23158), with no line terminators
Size
3.9 kB (3851 bytes)
Hash
61da924a747e08c5f54a6cb31c724a48
8e49d971d6a667c3888a481b742e05cafcf72a43
54302324d4b6aa780466c869b9932504d0b1eaa7ef1df6c5481b35fb0625343a

HTTP Headers

GET /button/css/buttons-secure.css HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css
content-length: 3851
content-encoding: gzip
last-modified: Tue, 18 Oct 2022 21:20:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Tue, 29 Nov 2022 23:28:31 GMT
etag: W/"634f1895-5a76"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uu2Wt2TbOxHw3Am04p5NBWmAamYWrGd_Y__Ms3cnNYX4iZjOur0-VQ==
age: 30473
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

gempaqgiler.blogspot.com/favicon.ico

142.250.74.161

200 OK

290 B

URL HTTP/1.1
gempaqgiler.blogspot.com/favicon.ico
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
290 B (290 bytes)
Hash
4171c424740dfaeda72fccb8224b1983
26a2f9b2876dd7440b6fa47d0af3b691444a0c75
4b6cc0c3304cc4458171983765a5ee50cae1508a918b9e80795867d7a0cee51b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2013/08/23-ciri-ciri-ajaran-syiah.html
Cookie: HstCfa2361969=1669794967307; HstCla2361969=1669794967307; HstCmu2361969=1669794967307; HstPn2361969=1; HstPt2361969=1; HstCnv2361969=1; HstCns2361969=1

HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Wed, 30 Nov 2022 07:56:09 GMT
Date: Wed, 30 Nov 2022 07:56:09 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"af6e034295aee465921bf5b48ef65f261ecb601325f867c5429d1bf31f4dc88e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 290
Server: GSE

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c7740729b3e689d0f033aae372325c2
c6daa75cb90188534367ab0a3ef263a7f8b15ff8
077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5eb4bc66c926461f8e6c139d9ce29b80
150d5f074ae74a01af5e094d1a9208e7a171e067
25e38eee6284730798a0e4b6e9f8f57d8a430518bbbfd082f09e1979def81539

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25E38EEE6284730798A0E4B6E9F8F57D8A430518BBBFD082F09E1979DEF81539"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2723
Expires: Wed, 30 Nov 2022 08:41:32 GMT
Date: Wed, 30 Nov 2022 07:56:09 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c7740729b3e689d0f033aae372325c2
c6daa75cb90188534367ab0a3ef263a7f8b15ff8
077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg

142.250.74.161

200 OK

1.5 kB

URL HTTP/2
4.bp.blogspot.com/_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size
1.5 kB (1527 bytes)
Hash
bc889ff29990e318e8a7b196c6e3cfc3
c7f7eb1587eb0f08d0f0c545f2b2788098074d1a
51b2787dd0cbfaffd3660571c9eb924e04ecd7a58be0a5f7d28314e4c614ef61

HTTP Headers

GET /_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="t192.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1527
x-xss-protection: 0
date: Wed, 30 Nov 2022 07:56:09 GMT
expires: Fri, 25 Nov 2022 04:32:33 GMT
cache-control: public, max-age=86400, no-transform
etag: "v23"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

1.bp.blogspot.com/-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg

142.250.74.161

200 OK

2.2 kB

URL HTTP/2
1.bp.blogspot.com/-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size
2.2 kB (2194 bytes)
Hash
567a59874f8f7fff44f9cdea1a8ed5d3
fe177a9c1bf63a98e826de034f3908950391c909
426636310fc023de152148c7714c3eb837e9406113cf49394bb67687569e534f

HTTP Headers

GET /-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v94f"
expires: Thu, 01 Dec 2022 07:56:09 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="20150301_135416.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:09 GMT
server: fife
content-length: 2194
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c7740729b3e689d0f033aae372325c2
c6daa75cb90188534367ab0a3ef263a7f8b15ff8
077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c7740729b3e689d0f033aae372325c2
c6daa75cb90188534367ab0a3ef263a7f8b15ff8
077d3bf6932d231023142ad1deb36203e7f59f0fa3e3838f56852c781b1b959c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669794967307&@k0&@l1&@m23%20Ciri-Ciri%20Ajaran%20Syiah&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:-182636386&@b3:1669794967&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&@w

54.39.128.162

200 OK

108 B

URL HTTP/1.1
s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669794967307&@k0&@l1&@m23%20Ciri-Ciri%20Ajaran%20Syiah&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:-182636386&@b3:1669794967&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&@w
IP
54.39.128.162:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
108 B (108 bytes)
Hash
7d15a72a3e6e0d79080de43a7c33f34d
e71ebe82d83123c5194bf61983210efaed3f69af
e158f09611f6e3da3379ef8e25cb0dbecbd173aaab02a5b6eac356820e809c8f

HTTP Headers

GET /stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669794967307&@k0&@l1&@m23%20Ciri-Ciri%20Ajaran%20Syiah&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:-182636386&@b3:1669794967&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:09 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 108
Connection: close

2.bp.blogspot.com/-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG

142.250.74.161

200 OK

2.0 kB

URL HTTP/2
2.bp.blogspot.com/-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size
2.0 kB (2023 bytes)
Hash
5918f5a70496f0f5bd8f1d5dff254149
f404532bddff301da5eb102e3ee4fdcd06682039
f21e15c66c92957f899f9b574bebc494b87fa76da572d2cd48b3ff8f753b8ae7

HTTP Headers

GET /-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2f6"
expires: Thu, 01 Dec 2022 07:56:09 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="DSC02855%2B-%2BCopy.JPG"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:09 GMT
server: fife
content-length: 2023
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ws.sharethis.com/images/2017/facebook_counter.png

54.230.111.82

200 OK

2.4 kB

URL HTTP/2
ws.sharethis.com/images/2017/facebook_counter.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2423 bytes)
Hash
7ba4aa0077ecbfdad7b112b723bf3b89
8d85c1b4ca791a4a9010c304c3af620cdc2fac94
3488c49147b809d1e457c14a37bf3a79b0455fd159c121325e8f737eea45eb75

HTTP Headers

GET /images/2017/facebook_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2423
accept-ranges: bytes
cache-control: max-age=31536000
date: Wed, 28 Sep 2022 01:06:56 GMT
etag: "62bdf239-977"
expires: Thu, 28 Sep 2023 01:06:56 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0qAm_AkbLOj26Dhmbk6CcPdXxqo0MDT5F7WvRsanxY0IpFF2ruxQZg==
age: 5467753
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ws.sharethis.com/secure/images/bubble_arrow.png

54.230.111.82

200 OK

979 B

URL HTTP/2
ws.sharethis.com/secure/images/bubble_arrow.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 4 x 6, 8-bit colormap, non-interlaced\012- data
Size
979 B (979 bytes)
Hash
9466fb05cc9cae591337910debe1282e
03a3bc8a8c1a744dd1b283ad82fa392f01cafc09
516630dc137782b6ea784ed6891b487b8a2fff9be9ed921977008453039cc1fe

HTTP Headers

GET /secure/images/bubble_arrow.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/button/css/buttons-secure.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 979
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 08 Sep 2022 11:50:17 GMT
etag: "62bdf287-3d3"
expires: Fri, 08 Sep 2023 11:50:17 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1skVNF_uOSQJJW56NO64sCsT20UPwvt9yUmoDf32rws5Vx_rSGL0tw==
age: 7157152
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ws.sharethis.com/images/2017/twitter_counter.png

54.230.111.82

200 OK

2.5 kB

URL HTTP/2
ws.sharethis.com/images/2017/twitter_counter.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2478 bytes)
Hash
3f3b085b38e3d832d18351c78ac1a0e1
a5ecafc51f237b39afdbaabbb60e198bd4592f06
aeae37bae2130513ef8b5ea4fde8fd776b32ff8969b848b59399a63d9455e29a

HTTP Headers

GET /images/2017/twitter_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2478
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 01 Sep 2022 02:16:22 GMT
etag: "62bdf239-9ae"
expires: Fri, 01 Sep 2023 02:16:22 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: za9y3ZYIpUvzhw3KQgVGY1WsQUtv4kBE_XT8q4Xhzh3NGM9p09r3_w==
age: 7796387
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ws.sharethis.com/images/2017/linkedin_counter.png

54.230.111.82

200 OK

2.5 kB

URL HTTP/2
ws.sharethis.com/images/2017/linkedin_counter.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.5 kB (2529 bytes)
Hash
fe09cd7fe7814958b566642c4471e7ed
d3e649a373de39af33aa03ec2faa563c87630d5f
0e3f83554765fa48514ce0a169441466f92010d01cdc716003e02317bffc6993

HTTP Headers

GET /images/2017/linkedin_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2529
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 10 Sep 2022 05:10:33 GMT
etag: "62bdf239-9e1"
expires: Sun, 10 Sep 2023 05:10:33 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dF8n6uAqrqMZeQUam-S0CrfQafU-OBVUphDiv3KdIRTC_lqwGwvk2A==
age: 7008336
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ws.sharethis.com/images/2017/email_counter.png

54.230.111.82

200 OK

1.9 kB

URL HTTP/2
ws.sharethis.com/images/2017/email_counter.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
1.9 kB (1857 bytes)
Hash
661e3d497a53bf0c26f60db4dc3a4951
2d14d4e9c2d0af7945c247c9e81f191e47ab20cf
af6c4b21f7b4a51cf290db1dc17ff613cd7db54e14574587bebb6b9cf2a2082d

HTTP Headers

GET /images/2017/email_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 1857
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 24 Sep 2022 01:34:20 GMT
etag: "62bdf239-741"
expires: Sun, 24 Sep 2023 01:34:20 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vTH9_HAu-c9EOb_B-XQ8ufM9IhZoYrau9m58B9s9vFHitH4G9YnYJQ==
age: 5811709
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ws.sharethis.com/images/2017/sharethis_counter.png

54.230.111.82

200 OK

2.6 kB

URL HTTP/2
ws.sharethis.com/images/2017/sharethis_counter.png
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
2.6 kB (2648 bytes)
Hash
c0cbf421acb6c3a3cd615542054e0536
d56aa81a6df18e79a5ad752d4871a2948bf8ada6
4e2b38b4f0180fd5671604c482ae7b38eaa7d3b008099314bd261206045b0413

HTTP Headers

GET /images/2017/sharethis_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 2648
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 27 Aug 2022 01:42:05 GMT
etag: "62bdf239-a58"
expires: Sun, 27 Aug 2023 01:42:05 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6CwONMvs86kFuGLEaYCsCBz3IoP4WZJgfwesF2IGxW6YOmJIj9P5lg==
age: 8230444
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c3c6fcc1a6ec6e438b371359a220d437
646d2c502eb3579d0c394dbdd16ef10f60f43063
5e75d86847b64e661c218e63d1b4b2c4a9ade7506b3b50fce16dd39ebaa5c5fe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6309
Cache-Control: max-age=98366
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:09 GMT
Etag: "6385d132-1d7"
Expires: Thu, 01 Dec 2022 11:15:35 GMT
Last-Modified: Tue, 29 Nov 2022 09:30:26 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

s10.histats.com/counters/cc_10.js

46.105.201.240

200 OK

7.6 kB

URL HTTP/2
s10.histats.com/counters/cc_10.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (17833), with no line terminators
Size
7.6 kB (7570 bytes)
Hash
1d9460c984f25ea64e208b9ea21c492a
ec720873c6e352f435a40e0a6d11c878e451faa5
05a939636a8285b28ee6dce67902e97a148fa19288bc882cee6eb98ae74f1414

HTTP Headers

GET /counters/cc_10.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 07:55:17 GMT
etag: "-21747805"
last-modified: Thu, 16 Apr 2020 10:44:22 GMT
x-request-id: 1019872073
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 7570
X-Firefox-Spdy: h2

l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669794966250.50201&hostname=gempaqgiler.blogspot.com&location=%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&title=23%20Ciri-Ciri%20Ajaran%20Syiah&sop=false

3.126.95.118

204 No Content

0 B

URL HTTP/1.1
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669794966250.50201&hostname=gempaqgiler.blogspot.com&location=%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&title=23%20Ciri-Ciri%20Ajaran%20Syiah&sop=false
IP
3.126.95.118:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669794966250.50201&hostname=gempaqgiler.blogspot.com&location=%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&title=23%20Ciri-Ciri%20Ajaran%20Syiah&sop=false HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://gempaqgiler.blogspot.com
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://gempaqgiler.blogspot.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 30 Nov 2022 07:56:10 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive

3.126.95.118

204 No Content

0 B

URL HTTP/1.1
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669794966250.50201&hostname=gempaqgiler.blogspot.com&location=%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&title=23%20Ciri-Ciri%20Ajaran%20Syiah&sop=false&img_pview=true
IP
3.126.95.118:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669794966250.50201&hostname=gempaqgiler.blogspot.com&location=%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&title=23%20Ciri-Ciri%20Ajaran%20Syiah&sop=false&img_pview=true HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 30 Nov 2022 07:56:10 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive

www.diveglobal.com/travel/malaysia/

188.114.96.1

200 OK

12 kB

URL HTTP/2
www.diveglobal.com/travel/malaysia/
IP
188.114.96.1:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4537), with CRLF, LF line terminators
Size
12 kB (11450 bytes)
Hash
6a0c15c6995167a6b286638194879fc0
dbcf6c8f52afff9d22befd892d284e15d8704fca
559f2f637387aebd600abf1229eba15f1b973d7bfe4ce5f7a10fae02906a8423

HTTP Headers

GET /travel/malaysia/ HTTP/1.1
Host: www.diveglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 30 Nov 2022 07:56:13 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.37
link: <https://www.diveglobal.com/wp-json/>; rel="https://api.w.org/", <https://www.diveglobal.com/?p=286>; rel=shortlink
vary: Accept-Encoding,User-Agent
cache-control: max-age=86400
cf-cache-status: EXPIRED
last-modified: Mon, 28 Nov 2022 12:58:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJ7lAeygAPNc2Lfj6xjeGbBAWClXdVLh7qoBz72tHB08goo%2FN79%2BR3jjVzTkA7nhbfaWL7vIB%2FgkE6lVFhxxjoEW1e6F4UT7gJwSD1HnYL2SgRZk0Y%2F4PcLe1i95NIpb7IMsujc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7722065549efb505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

0 B

URL HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Wed, 30 Nov 2022 07:56:14 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+437; expires=Fri, 29-Nov-2024 07:56:14 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 30 Nov 2022 07:56:14 GMT
cache-control: private
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

142.250.74.78

200 OK

131 B

URL HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1558
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 30 Nov 2022 07:56:14 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+972; expires=Fri, 29-Nov-2024 07:56:14 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Wed, 30 Nov 2022 07:56:14 GMT
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
faf6f3bf12576d8fa29fb7848e4b5d16
6599ca097a83f4b9d655397f5cac739cefe200c0
569c5da24fc0cde9c4371466f2f64531c7964612d69984be2362179c6d1df4ea

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129680
Date: Wed, 30 Nov 2022 07:56:14 GMT
Etag: "63864bb0-1d7"
Expires: Thu, 01 Dec 2022 19:57:34 GMT
Last-Modified: Tue, 29 Nov 2022 18:13:04 GMT
Server: ECS (nyb/1D1B)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YzB9TEUiRLVAM-YcOSsl4u1nssO2Y7M1jUsd31Ge-zZXA9v4u0sHlA==
Age: 6270

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu

142.250.74.132

200 OK

665 B

URL HTTP/2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1034), with no line terminators
Size
665 B (665 bytes)
Hash
34e37af4d526255a20a2056cd5f4addf
bcac186d6a49539e69a3f67aa08d0188966f5623
51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634

HTTP Headers

GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Wed, 30 Nov 2022 07:56:14 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5f53eac27302554bb029ae36aa283c
2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa
a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5f53eac27302554bb029ae36aa283c
2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa
a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/s2/photos/public/AIbEiAIAAABECIXW7c_X0rWY7gEiC3ZjYXJkX3Bob3RvKig1NDhhMzE5ZDM5NzA5YzhiZWFkNDg5Y2Q1MGQ4NDY0NTMwMmI3ZDY2MAHrAsJslr1R_UFg-fH6u_FERrX2Jg

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECIXW7c_X0rWY7gEiC3ZjYXJkX3Bob3RvKig1NDhhMzE5ZDM5NzA5YzhiZWFkNDg5Y2Q1MGQ4NDY0NTMwMmI3ZDY2MAHrAsJslr1R_UFg-fH6u_FERrX2Jg
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECIXW7c_X0rWY7gEiC3ZjYXJkX3Bob3RvKig1NDhhMzE5ZDM5NzA5YzhiZWFkNDg5Y2Q1MGQ4NDY0NTMwMmI3ZDY2MAHrAsJslr1R_UFg-fH6u_FERrX2Jg HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_aOpTrN90Z_VIOPe-ejBDexZjDQrVJhL_dAaUFlA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-cfc9U_d9pHBLpVM0txhhwg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=XpEmU51XnxPNgXJQvhHprh15euBiq1zvKfjL9PwbgeFakRoZ2g_S4oBCxmnSSk88IAXOvl6XJR_GbqvraivvtLWe0qZeGEiGBTjW2uStnO1wKm5ObTMjKE0h1lNXaSqjo0MGUSU_tBM_KpzZLI-2oxLqoeIo70vCnwGMGvMPfeI; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECOCmweGhx7qb7QEiC3ZjYXJkX3Bob3RvKig5N2YxMzBjODMyN2UzNmJmNjkxNTQ2NjdkY2ZlYjQ4Mjk2NWU3MTI3MAHxj8R6JcrROlT0hWb0C2XiQbtFyA

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECOCmweGhx7qb7QEiC3ZjYXJkX3Bob3RvKig5N2YxMzBjODMyN2UzNmJmNjkxNTQ2NjdkY2ZlYjQ4Mjk2NWU3MTI3MAHxj8R6JcrROlT0hWb0C2XiQbtFyA
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECOCmweGhx7qb7QEiC3ZjYXJkX3Bob3RvKig5N2YxMzBjODMyN2UzNmJmNjkxNTQ2NjdkY2ZlYjQ4Mjk2NWU3MTI3MAHxj8R6JcrROlT0hWb0C2XiQbtFyA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8YC_YyjHR50gJ2UyYbUtO5HC9NErKmBsi2oi_Uyg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: script-src 'nonce-6RGB41sdfwUZXnVj8KAqVA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=JemvxyctKhQNbibMf5Mvdfr74kRnvytvQcDUvQA1evRwf_DyEMP-Q5CIxKyQPp5ue0KS3ipnDiaJlJCiCxKQWEVYKwUYSKVRDRSyHVpBh5LGGTi-YcSFFtpJBTy9wR1n0q4l568YYO7sKhLgdAJrQXHwTV1aI56_c26-zRfzKlQ; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCIbwu6jMt5fkIyILdmNhcmRfcGhvdG8qKDQ5OTY1N2ZjNzc1ZTU3ZmY4ZjgxMzI3ZjkxNTFjYTgwMWMxZjk3ZjUwAQzlscY6zaOrnnbKvpxlegmxFZH0

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCIbwu6jMt5fkIyILdmNhcmRfcGhvdG8qKDQ5OTY1N2ZjNzc1ZTU3ZmY4ZjgxMzI3ZjkxNTFjYTgwMWMxZjk3ZjUwAQzlscY6zaOrnnbKvpxlegmxFZH0
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCIbwu6jMt5fkIyILdmNhcmRfcGhvdG8qKDQ5OTY1N2ZjNzc1ZTU3ZmY4ZjgxMzI3ZjkxNTFjYTgwMWMxZjk3ZjUwAQzlscY6zaOrnnbKvpxlegmxFZH0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu85Czo5FGmYESV00yf31nogn1X9VaUzpmK-dcPIig=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
content-security-policy: script-src 'nonce-igwddXwcRMWWfpyoXKPAAQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=uctVvnkARJAJTzLNUnTWSuriUIqoqNqrFsBXJm7JHMQVDqdX7x_QMliapom7AQtkpfYJFeRHAIXTkubAyUeaBascUMwk2uuqe8obdw-K8zAGf2vCCm-JBkYar4a-sG9Up0qRB0aMOfpXLFE2NJW6gRjyHZaX4rgktSobK8E6i38; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECLSej83Q8qbBzwEiC3ZjYXJkX3Bob3RvKihhYjIyMzhkNDhkYjhhYjNjNjYxM2VlNGEzZjdmZGQ0NDUwOWM5Y2EwMAGKRNgAslfgNpObeMuTfD-vramf2g

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECLSej83Q8qbBzwEiC3ZjYXJkX3Bob3RvKihhYjIyMzhkNDhkYjhhYjNjNjYxM2VlNGEzZjdmZGQ0NDUwOWM5Y2EwMAGKRNgAslfgNpObeMuTfD-vramf2g
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECLSej83Q8qbBzwEiC3ZjYXJkX3Bob3RvKihhYjIyMzhkNDhkYjhhYjNjNjYxM2VlNGEzZjdmZGQ0NDUwOWM5Y2EwMAGKRNgAslfgNpObeMuTfD-vramf2g HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-SNgDim5iLWV2fuSR5q8b-hJpBto74Zyh5z4u4=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce-T6jWHHepJPwXxoNYuErd4w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist, require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=OM9oa-YQ6_OKPV-433ADIYdoPhm7gWckpZc_jeRb9jlgk1So16eQkwh277yMT1sxPru-22QWvAZ5fAqpPQpnKNcmdHPT5dplNpWjn_KyKNXqs4ryd_EWUNce_VhohvCBlEA-TBatFzmhiAaGVJ18b1HFLM8MkCG0N3FrO_xJfOo; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCJS6oIjk3MSUMiILdmNhcmRfcGhvdG8qKDllMWRlNmRjODk2ZTMyNDQ3ZTUzODVhMTQzNzgwZjkyY2FmNjI1MTgwAY89104PHlvdLS_nkFn2moCIa33F

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCJS6oIjk3MSUMiILdmNhcmRfcGhvdG8qKDllMWRlNmRjODk2ZTMyNDQ3ZTUzODVhMTQzNzgwZjkyY2FmNjI1MTgwAY89104PHlvdLS_nkFn2moCIa33F
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCJS6oIjk3MSUMiILdmNhcmRfcGhvdG8qKDllMWRlNmRjODk2ZTMyNDQ3ZTUzODVhMTQzNzgwZjkyY2FmNjI1MTgwAY89104PHlvdLS_nkFn2moCIa33F HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_P87edlKOJtYxppRxLytfjsnd-CcKww1gHFSqgrA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-gtdR5PXVZBsFEVQ96OCC5g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=TmtCpU8F761I0DhpoBwRVtehZ3wCpjgv_wPxJRKaTU0la5JuCEidZafDkYeOh-u1Rc2XeTbVgil02ufUs30nrpCSirNJ2kx58kkHuPh_QdI9RPl1GeGRptEC5L_lVqtDPd7wfq0HUWyffDNUpR0EFcnjeV_fgFRVwuYzQwsSHsg; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5f53eac27302554bb029ae36aa283c
2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa
a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/s2/photos/public/AIbEiAIAAABECL_w9cWVlYKzqQEiC3ZjYXJkX3Bob3RvKigwNWFiNTA2ODQwMGIzY2RhOGZkNDRkYzQ5NWEwYzBmMWIyYjYyYWFiMAHy44GzBU6qHWo1kFvaMAEqmDPDVw

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECL_w9cWVlYKzqQEiC3ZjYXJkX3Bob3RvKigwNWFiNTA2ODQwMGIzY2RhOGZkNDRkYzQ5NWEwYzBmMWIyYjYyYWFiMAHy44GzBU6qHWo1kFvaMAEqmDPDVw
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECL_w9cWVlYKzqQEiC3ZjYXJkX3Bob3RvKigwNWFiNTA2ODQwMGIzY2RhOGZkNDRkYzQ5NWEwYzBmMWIyYjYyYWFiMAHy44GzBU6qHWo1kFvaMAEqmDPDVw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-xsKB9blI5ZAy4SFuIP4GT-3ZtJyJCpMW44hgNVg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-xX1SgBa_yy_gKfpW-DzVXg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=LX1WpL_GlqrO6yBiwuvGl9-zJMFAmULzjzZFBaqJStrOF2Se7NuikNXVsa7oDm9TQHCivlHaFVJyIa8rk28YEaal6GxfsTrPLmey7MlF6RwgzKO4uSdMWFe-4nA5buNbUo6tY7mI4r82tziJlE0A03qqTrhcMKjW57rI41ySOGE; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECKfJ5K-t1uOJhQEiC3ZjYXJkX3Bob3RvKigwYTJkYmQxYzQwNTc3NGFlYzZmNmI5MjNkNmU2YTc5MGU3MGUyZWVkMAESIoAtnGX3OPzAkmpX-dWyHsf7aw

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECKfJ5K-t1uOJhQEiC3ZjYXJkX3Bob3RvKigwYTJkYmQxYzQwNTc3NGFlYzZmNmI5MjNkNmU2YTc5MGU3MGUyZWVkMAESIoAtnGX3OPzAkmpX-dWyHsf7aw
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECKfJ5K-t1uOJhQEiC3ZjYXJkX3Bob3RvKigwYTJkYmQxYzQwNTc3NGFlYzZmNmI5MjNkNmU2YTc5MGU3MGUyZWVkMAESIoAtnGX3OPzAkmpX-dWyHsf7aw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9F-_Yb3oxwg6mbQIYdn9LisDNnzjH8LQkDx5m9=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-776VyaJzTMfbtRpXsvGoBg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=i6_fmt7k5n1YHoa86zhd4Un29o74QoKtOZgh9pbloaR5i11dLp7WVpIFVZkUzuZZotJvk3XQsmPoy62b1-cH5jT1QS9XKAUC8UoeBQyvLfZN45fH9tueGD1E6NCU8drGB5rwFbLf7WAj-7D-5W_0QzxGEVVDCPb5rBhmc2kpH_I; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCOiTjfet8Km2HyILdmNhcmRfcGhvdG8qKDNmMDYzMjYyYzdiYTQ4ZTYyZjVkNGI1YmM0ZTc3Y2IzZDA0NTk5NTIwAVCvr_wwFFE7RsKazMUjeT-GuiGn

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCOiTjfet8Km2HyILdmNhcmRfcGhvdG8qKDNmMDYzMjYyYzdiYTQ4ZTYyZjVkNGI1YmM0ZTc3Y2IzZDA0NTk5NTIwAVCvr_wwFFE7RsKazMUjeT-GuiGn
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCOiTjfet8Km2HyILdmNhcmRfcGhvdG8qKDNmMDYzMjYyYzdiYTQ4ZTYyZjVkNGI1YmM0ZTc3Y2IzZDA0NTk5NTIwAVCvr_wwFFE7RsKazMUjeT-GuiGn HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_S-tGMiamXKCwGjq6TnO_58YrFf3PlxHjrmWuWdAc=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-uEBH0kJM5vAyYYcWAimPjA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=fsiiLZ20XJx3h6jKUEnnPmBL119T4elN4nF4EssM1C4ZnrLyD8J3kwcOcIFopGgpaH-79q06AVcYIEWr8PVesjYxm8qj7YNPZRXCgt2QpnqNhKrvcvMgvF_plT1n8tDMr0v5H7e39g93W7jjkG4KuJWrcZPnkpi8P-nl3IPzZTI; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCN67-tz5x-agECILdmNhcmRfcGhvdG8qKGNlN2QzOGFkYmFiNjUyYjQzYWEwZjI3NzFkODZiZDQwODZlNDE4ZDUwAa_UqZHe39AVovp3B4z4TrYWkCsU

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCN67-tz5x-agECILdmNhcmRfcGhvdG8qKGNlN2QzOGFkYmFiNjUyYjQzYWEwZjI3NzFkODZiZDQwODZlNDE4ZDUwAa_UqZHe39AVovp3B4z4TrYWkCsU
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCN67-tz5x-agECILdmNhcmRfcGhvdG8qKGNlN2QzOGFkYmFiNjUyYjQzYWEwZjI3NzFkODZiZDQwODZlNDE4ZDUwAa_UqZHe39AVovp3B4z4TrYWkCsU HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-c0T_ECQLYjOHvhXhiPSrcRPa9Nc7rjEgQs3IR=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-9L_trh32j0ny0OpxiJGpMQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=HMlUYEgv2q3UD258LKM6FDUqrrb5b0c_gN-I5F1X4Fxz7hjRbBJtAn-ScDrJVbsyrAznRiaNv6OxQSE5lTp6ZF1ajJPx7v4bAg1d2uVkSWu_2q5wlcFDGp47yq8Vu5xE7Vv1LTL_McHfkfSzcMlRMimS3IZeALzR5CK1dq_DrTk; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECJemosSA8YuZ6wEiC3ZjYXJkX3Bob3RvKigyNzcxNmM2N2M5YmY1YTVmMWE5NmVjMDViOGM5MDJkMjU4YWNjNzdhMAEM1Q0mre1i_gRfr724NCyUi2Y1Dw

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECJemosSA8YuZ6wEiC3ZjYXJkX3Bob3RvKigyNzcxNmM2N2M5YmY1YTVmMWE5NmVjMDViOGM5MDJkMjU4YWNjNzdhMAEM1Q0mre1i_gRfr724NCyUi2Y1Dw
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECJemosSA8YuZ6wEiC3ZjYXJkX3Bob3RvKigyNzcxNmM2N2M5YmY1YTVmMWE5NmVjMDViOGM5MDJkMjU4YWNjNzdhMAEM1Q0mre1i_gRfr724NCyUi2Y1Dw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu9mk3zhGRUm7GZyl6QQXTbR64e18PZd4GcuteGv=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-YV5BLVLt_rVvMqXYLLG1Gw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=kAm71z-zMVDogM1kOd8VQTkucH9qeldt_pqsNrueyYzKnEC89yqKTcuAuuybWGoZyDPMSweWLOeaIUY2aHU1cOxpNU5UDOAyifkqiTySrXe7zR_lYAuvv8bxT8vC2R0QcqdYyU1ZbSFSKJa0CGnJD9DA692dST1LPLQpbYcBOu4; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCJ-Vi4PV57TePyILdmNhcmRfcGhvdG8qKDlhYjY1MmZiNmExZTk4OGQ4OGE2Zjg4NmRmN2NiZmQzYmFjNDY4NmMwAaK8P0VEAG5R7Gd4FOHkHklR7UHX

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCJ-Vi4PV57TePyILdmNhcmRfcGhvdG8qKDlhYjY1MmZiNmExZTk4OGQ4OGE2Zjg4NmRmN2NiZmQzYmFjNDY4NmMwAaK8P0VEAG5R7Gd4FOHkHklR7UHX
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCJ-Vi4PV57TePyILdmNhcmRfcGhvdG8qKDlhYjY1MmZiNmExZTk4OGQ4OGE2Zjg4NmRmN2NiZmQzYmFjNDY4NmMwAaK8P0VEAG5R7Gd4FOHkHklR7UHX HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-WcnvVlxqdtYt9js94iUo-w' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=gxDvCAzGahAVscu1HEWMXo1Ffa9j9hoiQUW9EDiSUN6qZFSK_hTomx_bh8a05JNFcRO1j77Q344fdkYxUxCwznzZq4CDEXlU4PNC_yEaLON0q1JYuF5haJ9tpq8UeK9XsnWzaIgQI8itTKqLuT5mx03XzFWmmupNyppgF_flfdc; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCJrBz6avtf2WVCILdmNhcmRfcGhvdG8qKDY3N2YzODdhZjY0YzYwMWY4YzRmYTYzOGRlZjA1NjExNGY1NjI3NWQwAdc6pb9iy0dSCYkVCExtl_7fpUyI

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCJrBz6avtf2WVCILdmNhcmRfcGhvdG8qKDY3N2YzODdhZjY0YzYwMWY4YzRmYTYzOGRlZjA1NjExNGY1NjI3NWQwAdc6pb9iy0dSCYkVCExtl_7fpUyI
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCJrBz6avtf2WVCILdmNhcmRfcGhvdG8qKDY3N2YzODdhZjY0YzYwMWY4YzRmYTYzOGRlZjA1NjExNGY1NjI3NWQwAdc6pb9iy0dSCYkVCExtl_7fpUyI HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8bbjNHRpsNjv9JQDHKAuX7_38sjojO_lCPCS8uaQ=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-7sVTEUZ5GncTIfyeVL0m7A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=uMP9jTS64DJtOkGJUD26n9gzsm_adhPRGvUvndQDWGRS7ICNsgwmNLVrKC0q25wfKgQFH0eZiOlj-bnDYZnZ9xR2lxZT1T3xTSsT3eTMTrTuaVVQ2vTyoV-28ozMIC5s8FjcyF0AxQL_ARNkhPOFoGLuPtbUp8n64OFKNXfn8RA; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABDCPnAvszut-nHBCILdmNhcmRfcGhvdG8qKGYzYmVjNmJkNjY2NTZjODI2NzI2OWVlZmI2Y2M1NGJkYmQ4NDU4ZjgwAW6kQDqu9PtAP_WjjHTwn4gxBW1T

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABDCPnAvszut-nHBCILdmNhcmRfcGhvdG8qKGYzYmVjNmJkNjY2NTZjODI2NzI2OWVlZmI2Y2M1NGJkYmQ4NDU4ZjgwAW6kQDqu9PtAP_WjjHTwn4gxBW1T
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABDCPnAvszut-nHBCILdmNhcmRfcGhvdG8qKGYzYmVjNmJkNjY2NTZjODI2NzI2OWVlZmI2Y2M1NGJkYmQ4NDU4ZjgwAW6kQDqu9PtAP_WjjHTwn4gxBW1T HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-otI__QgAH_5lk85EW5-gmg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=g48NpeWgauGsi_pWYJ-IvjBhmqfcycSE2OjzgF-_OwlJTxwVK3WvIumk97fXocXVColv1N6YPtzrABh41QlQFrSEHTKQnzG6ur3HkloLgG4I8xGFJ0IIO0R0Wt47acP6kF-UrMOR30pSD0WMQ00J5-6w9Fco_4nVsWWNc6FGpDU; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECO2ylpKGh5ntzgEiC3ZjYXJkX3Bob3RvKihjNjUyZWI3OGMzYjM5YjUxNjg1YmY2YTVhODU2MTczMDFkNjcxNGIxMAGJ6oLp8jpFeahb4kXhLfEovY-b1w

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECO2ylpKGh5ntzgEiC3ZjYXJkX3Bob3RvKihjNjUyZWI3OGMzYjM5YjUxNjg1YmY2YTVhODU2MTczMDFkNjcxNGIxMAGJ6oLp8jpFeahb4kXhLfEovY-b1w
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECO2ylpKGh5ntzgEiC3ZjYXJkX3Bob3RvKihjNjUyZWI3OGMzYjM5YjUxNjg1YmY2YTVhODU2MTczMDFkNjcxNGIxMAGJ6oLp8jpFeahb4kXhLfEovY-b1w HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-Z9itcjLnKP9sgx0UeBPomg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=kR8N8B9wojDXg_zBCqaR2pVlKcQwZYjzbGWHebkRECHhfoy7tIJC5OUmdrMh0DBY9EC6cdOCDLguOtLhE62HvQzIoWwUPf05AnXphanhfR7LJ-BsTRZumvssvrQcyJK6puIHudLkb30caDL2Bnjcyi4hWkzYvLR8qNEPFuhkA5o; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/s2/photos/public/AIbEiAIAAABECL-czJrTipXcqwEiC3ZjYXJkX3Bob3RvKig1ZDg5MjQzM2I4ZWZjYzJkZTE1MGEzY2Q4NmFiZDRkZmNmYjNmNzliMAH-65LcE_e627dWUDQmY5iuCePydA

142.250.74.132

302 Found

0 B

URL HTTP/2
www.google.com/s2/photos/public/AIbEiAIAAABECL-czJrTipXcqwEiC3ZjYXJkX3Bob3RvKig1ZDg5MjQzM2I4ZWZjYzJkZTE1MGEzY2Q4NmFiZDRkZmNmYjNmNzliMAH-65LcE_e627dWUDQmY5iuCePydA
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /s2/photos/public/AIbEiAIAAABECL-czJrTipXcqwEiC3ZjYXJkX3Bob3RvKig1ZDg5MjQzM2I4ZWZjYzJkZTE1MGEzY2Q4NmFiZDRkZmNmYjNmNzliMAH-65LcE_e627dWUDQmY5iuCePydA HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: application/binary
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 07:56:14 GMT
location: https://lh3.googleusercontent.com/a-/ACNPEu82fxQokHAJkWAH8YtVHwKc6m45ffi7JkASjsI-Zg=s96-p
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
report-to: {"group":"SocialGraphPhotosSouffle","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SocialGraphPhotosSouffle/external"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport, script-src 'nonce-AZEAe3ZIR9nxMFaXPomEYA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /s2/_/SocialGraphPhotosSouffle/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /s2/_/SocialGraphPhotosSouffle/cspreport/allowlist
cross-origin-opener-policy: same-origin; report-to="SocialGraphPhotosSouffle"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=HHzVFopKy3Yf982PIR_lpxUosyHM3q3e_JDVRymCJpiPadzTCcmsyNL_paGWsTnEhP2WnoWzZmAeb1ZBkyIV8mOWyYhIAlrPvTW6u_RzDClGfGePPvPC33YA9gq3bO58ZyNyvd3ko554CELEYNzw82T3L4QSnSdaS1DmRW-Txf0; expires=Thu, 01-Jun-2023 07:56:14 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu_aOpTrN90Z_VIOPe-ejBDexZjDQrVJhL_dAaUFlA=s96-p

142.250.74.97

200 OK

3.1 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu_aOpTrN90Z_VIOPe-ejBDexZjDQrVJhL_dAaUFlA=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
3.1 kB (3147 bytes)
Hash
5aa7d61e62b13cf142c4c71db455c3da
20e6aaf86d3b7f90613dfc48fbc9799d09b24a91
7e5244a6a00da83043b5a55ca32e7f7995728fdce52e7aa7e9c8ed045f70e4dc

HTTP Headers

GET /a-/ACNPEu_aOpTrN90Z_VIOPe-ejBDexZjDQrVJhL_dAaUFlA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v28f3"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 3147
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu85Czo5FGmYESV00yf31nogn1X9VaUzpmK-dcPIig=s96-p

142.250.74.97

200 OK

4.2 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu85Czo5FGmYESV00yf31nogn1X9VaUzpmK-dcPIig=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
4.2 kB (4196 bytes)
Hash
64cf22441901b6a63e450c0cb9041cad
60b15514c05c73881473b38804f5780bd5112b74
7a6ddc262e548b5d6dc5ad9cddad87058c3e3fd5947efd512572fdd8a145d17c

HTTP Headers

GET /a-/ACNPEu85Czo5FGmYESV00yf31nogn1X9VaUzpmK-dcPIig=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v7df"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 4196
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js

142.250.74.3

200 OK

163 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (730)
Size
163 kB (162976 bytes)
Hash
79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6

HTTP Headers

GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 132377
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu8YC_YyjHR50gJ2UyYbUtO5HC9NErKmBsi2oi_Uyg=s96-p

142.250.74.97

200 OK

4.1 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu8YC_YyjHR50gJ2UyYbUtO5HC9NErKmBsi2oi_Uyg=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
4.1 kB (4122 bytes)
Hash
0f8cf9d61a93cf314946714b95138aa0
bf225a2be53ae090fab2e919d68cf8dd831c21ce
c67eced7d1976d515911e44e33cf684c158a046b2b04f552d704e510a9adcd61

HTTP Headers

GET /a-/ACNPEu8YC_YyjHR50gJ2UyYbUtO5HC9NErKmBsi2oi_Uyg=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4122
x-xss-protection: 0
date: Wed, 30 Nov 2022 07:56:14 GMT
expires: Wed, 30 Nov 2022 08:33:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3a1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu_P87edlKOJtYxppRxLytfjsnd-CcKww1gHFSqgrA=s96-p

142.250.74.97

200 OK

9.5 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu_P87edlKOJtYxppRxLytfjsnd-CcKww1gHFSqgrA=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 96 x 96, 8-bit/color RGB, non-interlaced\012- data
Size
9.5 kB (9467 bytes)
Hash
959445c5b2b431b18049b60669e63508
b850a751f30d6ccb918f3105d5780503e232dd75
72115a3f915760b5628fb098ebfbcb128640fda7cf428489b909eafd435ce210

HTTP Headers

GET /a-/ACNPEu_P87edlKOJtYxppRxLytfjsnd-CcKww1gHFSqgrA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v211"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 9467
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu9F-_Yb3oxwg6mbQIYdn9LisDNnzjH8LQkDx5m9=s96-p

142.250.74.97

200 OK

6.5 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu9F-_Yb3oxwg6mbQIYdn9LisDNnzjH8LQkDx5m9=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
6.5 kB (6488 bytes)
Hash
7e93595a7ae2304e724932f03ded045b
c850ca37ca4b765f39b0a83a3b5d8e5da64ce5a3
02c220d4149658b166fd4c76d6d91fb6e89c13ee8b111dbc0db7e550e38bc737

HTTP Headers

GET /a-/ACNPEu9F-_Yb3oxwg6mbQIYdn9LisDNnzjH8LQkDx5m9=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2e"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 6488
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu_S-tGMiamXKCwGjq6TnO_58YrFf3PlxHjrmWuWdAc=s96-p

142.250.74.97

200 OK

15 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu_S-tGMiamXKCwGjq6TnO_58YrFf3PlxHjrmWuWdAc=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 96 x 96, 8-bit/color RGB, non-interlaced\012- data
Size
15 kB (14703 bytes)
Hash
b5d222fc7f994024cdcdc7aef806c274
90400605befdf7ccb6968aa496477c778327bf54
5480072aeb3154c5bb566106f96d3405225f4e85ef816836b72b551713336dc2

HTTP Headers

GET /a-/ACNPEu_S-tGMiamXKCwGjq6TnO_58YrFf3PlxHjrmWuWdAc=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vb295"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 14703
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p

142.250.74.97

200 OK

4.4 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
4.4 kB (4413 bytes)
Hash
a027b35f849a0b073db11ea5c33cd12b
7f487126454ab093e5f01abaab9759c84fe69f94
bc4ff644928107cfb6aa2d98a406e299ad08ef82235f84cb1f73e3962f1b8409

HTTP Headers

GET /a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v20f1"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 4413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p

142.250.74.97

200 OK

5.3 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
5.3 kB (5297 bytes)
Hash
80c564df329e549362b28d88721a4a1f
aae26c7a038cb320293bf8d2aefb43be41ce80d7
d55eb8f260e75438c37445d7c775cfe93328e499afb7f01cc0bae2a0516fd7af

HTTP Headers

GET /a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v20e"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 5297
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p

142.250.74.97

200 OK

6.1 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
6.1 kB (6065 bytes)
Hash
59e5a5ad642ad62be33f8ff654388130
a9035355c7bbeebb3ed192ab9413c4fd247b5439
aefe5132a0185427d287e0990304898d826ba8b330d36512872a09e12694dc80

HTTP Headers

GET /a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "ve36"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 6065
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5f53eac27302554bb029ae36aa283c
2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa
a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 07:56:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&cb=stButtons.processCB&wd=true

54.230.111.73

200 OK

216 B

URL HTTP/2
count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&cb=stButtons.processCB&wd=true
IP
54.230.111.73:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
216 B (216 bytes)
Hash
410d47c97b96b81d7b5c3e241849ef5c
8fac29319fdcef04575e94e279b271c7690c1e6d
bff6f422c287e3e7f4d62030dab8805605ae15abd50f25259d91e7763a1e0acf

HTTP Headers

GET /v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html&cb=stButtons.processCB&wd=true HTTP/1.1
Host: count-server.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript
content-length: 216
date: Wed, 30 Nov 2022 07:56:14 GMT
cache-control: public, max-age=86400
etag: 410d47c97b96b81d7b5c3e241849ef5c
apigw-requestid: cZ7oxgvLoAMEZ-Q=
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GVN--cEwQrrMqQbuPOvDLoMdB4S48lOS1U6uNulM45qfErKao_fqHg==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2

lh3.googleusercontent.com/p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE

142.250.74.97

404 Not Found

904 B

URL HTTP/2
lh3.googleusercontent.com/p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 45 x 45, 8-bit colormap, non-interlaced\012- data
Size
904 B (904 bytes)
Hash
288ba721beee9352ca47b2a130423c86
5dd28e65cfc52620335ca1a10be532ed9e44ff14
6ee738d016e2e0d81bb5da04d1c97a4b33d9ec9f3bfc3cee450b33d1dd997cc4

HTTP Headers

GET /p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9b7502862b847fab779159f4a93f36b3
5c965ad315b05988499fbc01ff0c02dfc488ea8b
5fdc96148b88f35128f54ad482e3fa998c2ea3ec1ffe79057fd4157fa7c1ab2b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 11:33:40 GMT
Expires: Sun, 04 Dec 2022 11:33:39 GMT
Etag: "5c965ad315b05988499fbc01ff0c02dfc488ea8b"
Cache-Control: max-age=358044,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722067dfeb5b517-OSL

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9b7502862b847fab779159f4a93f36b3
5c965ad315b05988499fbc01ff0c02dfc488ea8b
5fdc96148b88f35128f54ad482e3fa998c2ea3ec1ffe79057fd4157fa7c1ab2b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 11:33:40 GMT
Expires: Sun, 04 Dec 2022 11:33:39 GMT
Etag: "5c965ad315b05988499fbc01ff0c02dfc488ea8b"
Cache-Control: max-age=358044,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722067d3b0d0b4d-OSL

lh3.googleusercontent.com/p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ

142.250.74.97

200 OK

4.3 kB

URL HTTP/2
lh3.googleusercontent.com/p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Size
4.3 kB (4308 bytes)
Hash
0c303d5b431ddc18b366dd87c5f01189
eceba0b2aee7339f788ecabeadb3ba5750be1318
aaafc2a58fe40b8f36471449dd6d2136bfe797dcaa4963069343fc80ce61e2de

HTTP Headers

GET /p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v3183"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 4308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu-SNgDim5iLWV2fuSR5q8b-hJpBto74Zyh5z4u4=s96-p

142.250.74.97

200 OK

6.6 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu-SNgDim5iLWV2fuSR5q8b-hJpBto74Zyh5z4u4=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
6.6 kB (6554 bytes)
Hash
0e20da9f6ca6c662be4794102065b2ec
e9e005d5b230dd60bac0ddae2de6bbcef3110c85
580e65b9fee6276f06a2ca55a263d31ceccbc31dcabfd5b3bc692c7fdd925a86

HTTP Headers

GET /a-/ACNPEu-SNgDim5iLWV2fuSR5q8b-hJpBto74Zyh5z4u4=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1c6"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 6554
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu-c0T_ECQLYjOHvhXhiPSrcRPa9Nc7rjEgQs3IR=s96-p

142.250.74.97

200 OK

5.7 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu-c0T_ECQLYjOHvhXhiPSrcRPa9Nc7rjEgQs3IR=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
5.7 kB (5650 bytes)
Hash
bef05fd83d2a8b6e27f609d229670a46
92870c78dc07ed81db81effd67b1c1bdd319e780
a72aadbec43894f22de6738adf0b09b53b450d0bb58dd8441067d9777f7e3033

HTTP Headers

GET /a-/ACNPEu-c0T_ECQLYjOHvhXhiPSrcRPa9Nc7rjEgQs3IR=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 5650
x-xss-protection: 0
date: Wed, 30 Nov 2022 07:56:14 GMT
expires: Thu, 01 Dec 2022 00:05:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1a"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r=

67.202.105.31

200 OK

4 B

URL HTTP/2
de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r=
IP
67.202.105.31:0
ASN
#32748 STEADFAST

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179

HTTP Headers

GET /deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 01 Dec 2022 07:56:14 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Wed, 30 Nov 2022 07:56:14 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
9b7502862b847fab779159f4a93f36b3
5c965ad315b05988499fbc01ff0c02dfc488ea8b
5fdc96148b88f35128f54ad482e3fa998c2ea3ec1ffe79057fd4157fa7c1ab2b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 07:56:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 11:33:40 GMT
Expires: Sun, 04 Dec 2022 11:33:39 GMT
Etag: "5c965ad315b05988499fbc01ff0c02dfc488ea8b"
Cache-Control: max-age=358044,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7722067e2d93b500-OSL

lh3.googleusercontent.com/a-/ACNPEu82fxQokHAJkWAH8YtVHwKc6m45ffi7JkASjsI-Zg=s96-p

142.250.74.97

200 OK

4.2 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu82fxQokHAJkWAH8YtVHwKc6m45ffi7JkASjsI-Zg=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
4.2 kB (4216 bytes)
Hash
2b3772e9dac92f87082fd97447bbbd60
1cccbd9b9be2628dcedd95e2a39f5a336f86ffb1
f0cd12749d19a48d1725e89007582a4d73fe2f05073cfae51a2ef0340c8c6ad6

HTTP Headers

GET /a-/ACNPEu82fxQokHAJkWAH8YtVHwKc6m45ffi7JkASjsI-Zg=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2767"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 4216
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu9mk3zhGRUm7GZyl6QQXTbR64e18PZd4GcuteGv=s96-p

142.250.74.97

200 OK

5.8 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu9mk3zhGRUm7GZyl6QQXTbR64e18PZd4GcuteGv=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
5.8 kB (5764 bytes)
Hash
d4ad2e470645acf5199e80c4021bcf00
31fdcb92a67394c50ccaa970b237066ee4cab56b
7b325188f72788de820ed06e9d78e60c4532027cb1c7c7fa0065641b1c188117

HTTP Headers

GET /a-/ACNPEu9mk3zhGRUm7GZyl6QQXTbR64e18PZd4GcuteGv=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6e"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 5764
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/a-/ACNPEu8bbjNHRpsNjv9JQDHKAuX7_38sjojO_lCPCS8uaQ=s96-p

142.250.74.97

200 OK

5.6 kB

URL HTTP/2
lh3.googleusercontent.com/a-/ACNPEu8bbjNHRpsNjv9JQDHKAuX7_38sjojO_lCPCS8uaQ=s96-p
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Size
5.6 kB (5608 bytes)
Hash
41ee4800e2a827bc74a0a9162fbdc0eb
a239922ad101eb68a587b9d5facaaf7fbc366362
a57d127f9d4133de920b1d8454a7b2cd06c178d3cc9149505135f24a8a514631

HTTP Headers

GET /a-/ACNPEu8bbjNHRpsNjv9JQDHKAuX7_38sjojO_lCPCS8uaQ=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2ea8"
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 5608
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg

142.250.74.97

200 OK

5.4 kB

URL HTTP/2
lh3.googleusercontent.com/p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg
IP
142.250.74.97:0
ASN
#15169 GOOGLE

File type
PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Size
5.4 kB (5431 bytes)
Hash
7b15d53e8b6421cc0832f0a15fbcf455
d2c744bfbb18f4430e7441db2ec78f313a1cbca1
ca1321b6ef7083fff3dab5ec94d5fc9b9ee69632dd0f46ec2a3a92a67be92df9

HTTP Headers

GET /p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v408"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Wed, 30 Nov 2022 07:56:14 GMT
server: fife
content-length: 5431
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669794968063&dn=TI&iso=0&img=http%3A%2F%2F4.bp.blogspot.com%2F-O8ShKxlJ7_M%2FUfmSIxTyQkI%2FAAAAAAAAOb0%2FYDeg2brTrlo%2Fs72-c%2Fciri%2Bsyiah.jpg&t=23%20Ciri-Ciri%20Ajaran%20Syiah&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html

67.202.105.34

204 No Content

0 B

URL HTTP/2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669794968063&dn=TI&iso=0&img=http%3A%2F%2F4.bp.blogspot.com%2F-O8ShKxlJ7_M%2FUfmSIxTyQkI%2FAAAAAAAAOb0%2FYDeg2brTrlo%2Fs72-c%2Fciri%2Bsyiah.jpg&t=23%20Ciri-Ciri%20Ajaran%20Syiah&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html
IP
67.202.105.34:0
ASN
#32748 STEADFAST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669794968063&dn=TI&iso=0&img=http%3A%2F%2F4.bp.blogspot.com%2F-O8ShKxlJ7_M%2FUfmSIxTyQkI%2FAAAAAAAAOb0%2FYDeg2brTrlo%2Fs72-c%2Fciri%2Bsyiah.jpg&t=23%20Ciri-Ciri%20Ajaran%20Syiah&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2013%2F08%2F23-ciri-ciri-ajaran-syiah.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 30 Nov 2022 07:56:14 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 12:31:58 GMT
expires: Sun, 26 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 329056
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.163

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 468598
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (111)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations