firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 09:57:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bnoPyK26wiGFq0xMK-WZ38KOQh8NfB_4hTQL2Om2J7wMY3a67IsWSA==
Age: 2193
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash adb43321efa5cd1662993b701ff25fa4
1299dcea7e9c59d9f22f39d69025484fe71098c1
2c25a6717245be3746f1412af9dd1c351e12dbb93e8e08c3ddcdacf35e419514
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C25A6717245BE3746F1412AF9DD1C351E12DBB93E8E08C3DDCDACF35E419514"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6012
Expires: Mon, 19 Sep 2022 12:14:23 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u9lyfEpgxkYUfv_lXqPvLgQ5HQ94DwVK52cr__X0EVDCeCM7Ne6bww==
age: 21538
X-Firefox-Spdy: h2
arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
142.250.74.161200 OK 16 kB URL HTTP/1.1 arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4965)
Hash 4174e7866f7540a812378f9f7cb17119
1f595d4e9b8221605be286976d8286f173f73952
0a6901e6b12f832fdc7060d1e775a62194be5c2a69ffb95c617cb9934134ca06
GET /2012/03/membuat-klik-kanan-tidak-berfungsi-di.html HTTP/1.1
Host: arifinzyt.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Mon, 19 Sep 2022 10:34:11 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 17 Aug 2022 03:22:13 GMT
ETag: W/"eae0c9d5dc604c46d017903b1fcc71a1514e729324e8acdd818450862c4c0b3a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 16386
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash eb31154df0d02f97b5fe592f94fcbaad
5b1f09eb698e207316d82009c1c50bd39242bd74
2948d7776a875106e772dc470299556124a221fd1447b95341695144bc66cea7
GET /uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1610
Date: Mon, 19 Sep 2022 10:34:11 GMT
arifinzyt.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 arifinzyt.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: arifinzyt.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Mon, 19 Sep 2022 10:34:11 GMT
Expires: Mon, 26 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 19 Sep 2022 09:51:07 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
fonts.googleapis.com/css?family=Electrolize
142.250.74.10200 OK 273 B URL HTTP/1.1 fonts.googleapis.com/css?family=Electrolize
IP 142.250.74.10:0
Hash 8681230d463bb81b4f805f29ace70c40
4db6c800fa38edff3ce4af77d766c80022da2922
75a9c5bc63287ceeeb135af55e6ca34c1ed2eaff82a133b0e20d357c2ee4d9d7
GET /css?family=Electrolize HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 19 Sep 2022 10:34:11 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Rancho
142.250.74.10200 OK 263 B URL HTTP/1.1 fonts.googleapis.com/css?family=Rancho
IP 142.250.74.10:0
Hash f6dbb3fd092065be7547bbd10b792ff7
21a0f25fbd38cf0baee90176b8aa5af95446f85d
b17ee14f15de90609a48a3c25742414005ef8836474a900f1a74bba068acc308
GET /css?family=Rancho HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 19 Sep 2022 10:34:11 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Metamorphous
142.250.74.10200 OK 344 B URL HTTP/1.1 fonts.googleapis.com/css?family=Metamorphous
IP 142.250.74.10:0
Hash 12298000998cba1ce580f291f41f797b
f970b9cdd3dd887ed5db4343b1c7d0c247c49c86
2abe8559794198a1ae91fad6c1031e09dcbc76dd6abd9f5f991c25b924d61721
GET /css?family=Metamorphous HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Mon, 19 Sep 2022 10:34:11 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
172.217.21.170200 OK 25 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 24715
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Sep 2022 07:18:48 GMT
Expires: Fri, 15 Sep 2023 07:18:48 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 357323
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
172.217.21.170200 OK 20 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (39660)
Hash 6ad9e9100f68042a634e403e56e3744a
3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a
GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 19926
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 16 Sep 2022 08:39:25 GMT
Expires: Sat, 16 Sep 2023 08:39:25 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 266086
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
172.217.21.170200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP 172.217.21.170:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 18351732b1849ba758e98884e186b3c8
d735af8661eda41ff4ffbf76e6a284a0e2deb81c
bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Sep 2022 08:25:28 GMT
Expires: Thu, 14 Sep 2023 08:25:28 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 439723
www.google.com/jsapi/?key=internal-sample
142.250.74.164301 Moved Permanently 257 B URL HTTP/1.1 www.google.com/jsapi/?key=internal-sample
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9431a3f2c13caa3fd123b2410ca5fc9b
d4c833329f3c9a928347db13a4d19879b69544a3
0be5b362fd03568b83ae38fc6610f30667fe1514dced815ffb257d54c431873b
GET /jsapi/?key=internal-sample HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://www.gstatic.com/charts/loader.js?key=internal-sample
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Expires: Mon, 19 Sep 2022 11:04:11 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 257
X-XSS-Protection: 0
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js
172.217.21.170200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6.1/jquery.min.js
IP 172.217.21.170:0
File type HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32764)
Hash 34fb740c21fb2f4be218932988fe68f2
2e2ee722aa0902a96a2ed3bd1f51ab762b666b9f
9e0ec1faab0c671db34a814b74946659d86ec455b89b4efd638806a146cfa51a
GET /ajax/libs/jquery/1.6.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 09:55:34 GMT
expires: Fri, 15 Sep 2023 09:55:34 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 347917
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 52c37c4d77fac06c9ae0bb67cb75d833
9889a71e2e46b87368c8b1182ec3eb376ee0b895
2b8b4de98acde6db4158743bf1c3cd63ff4396bdc4916c12cf82b18bcac4dfbc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 394bcb7d2d03225cc35ac7afed1ca636
f9527034abeec236e7ffacc23473930958e04224
0254137487ef4a909a8c18cd47f5080e989796a5e1fe7873950617953a58c8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh4.googleusercontent.com/_9W8681AXnyo/TW9AUSl_OKI/AAAAAAAAAQ8/nQzsIeLacQY/equalizer.gif
142.250.74.1200 OK 857 B URL HTTP/2 lh4.googleusercontent.com/_9W8681AXnyo/TW9AUSl_OKI/AAAAAAAAAQ8/nQzsIeLacQY/equalizer.gif
IP 142.250.74.1:0
File type GIF image data, version 89a, 88 x 34\012- data
Hash 471d069d95692fc38337a322baf8d351
fec4c6261288483d67c20be63867d38fdecf17d3
8cecee63513a3d8adcba25463f31e2c9b06e310808b7a72f4ecf1092ed5464d5
GET /_9W8681AXnyo/TW9AUSl_OKI/AAAAAAAAAQ8/nQzsIeLacQY/equalizer.gif HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5c3"
expires: Tue, 20 Sep 2022 10:34:11 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="equalizer.gif"
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:34:11 GMT
server: fife
content-length: 857
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.201200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.201:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 06:04:47 GMT
expires: Fri, 15 Sep 2023 06:04:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Sep 2022 01:57:07 GMT
content-type: text/css
age: 361764
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 394bcb7d2d03225cc35ac7afed1ca636
f9527034abeec236e7ffacc23473930958e04224
0254137487ef4a909a8c18cd47f5080e989796a5e1fe7873950617953a58c8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Mon, 19 Sep 2022 10:34:11 GMT
expires: Mon, 19 Sep 2022 10:34:11 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eaa8b4aa123f9dd7237c5c51d2f848d9
1082f5f6ef7229ec76f94f3d236f273b26294563
d1ad33dae2fcab5c7d66875f0e7a01cc30e0b3a031606917fa5448c54f84e20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/3753684042-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/3753684042-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 9310029f33929201831992bd74c13953
092fc9b60b0fcc7e24b80eb89f40178e91effb98
ed0ad17efb3c922e7bc8feffa0a5718d2ad226c44f2bb183b6ad163684f3b982
GET /static/v1/widgets/3753684042-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57039
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 01:53:41 GMT
expires: Fri, 15 Sep 2023 01:53:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Sep 2022 20:54:17 GMT
content-type: text/javascript
age: 376830
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/charts/loader.js?key=internal-sample
142.250.74.163200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js?key=internal-sample
IP 142.250.74.163:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js?key=internal-sample HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:34:11 GMT
expires: Mon, 19 Sep 2022 11:34:11 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ca3ab7a8411ba9c6350d504e65a95cc6
8b39f564b1b1cb1d262cb57b41a4bb5de331087f
cb51d72baec3c84ac94d419aab6d291b7596a9098525471fdb3fbbb6d34aa3db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/electrolize/v14/cIf5Ma1dtE0zSiGSiED7AXEBuI8.woff2
142.250.74.163200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/electrolize/v14/cIf5Ma1dtE0zSiGSiED7AXEBuI8.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16640, version 1.0\012- data
Hash 1b3df41156ccf0f62b80664f7c3cd774
59c6e60675741bbd275639e2d45378131cb720a1
57372a1755d4bcf0ef24324877c9faa91df87a56bee288bcc40118affb28e410
GET /s/electrolize/v14/cIf5Ma1dtE0zSiGSiED7AXEBuI8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://arifinzyt.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16640
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 17 Sep 2022 14:27:03 GMT
Expires: Sun, 17 Sep 2023 14:27:03 GMT
Cache-Control: public, max-age=31536000
Age: 158828
Last-Modified: Thu, 21 Apr 2022 16:24:52 GMT
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 394bcb7d2d03225cc35ac7afed1ca636
f9527034abeec236e7ffacc23473930958e04224
0254137487ef4a909a8c18cd47f5080e989796a5e1fe7873950617953a58c8d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2
142.250.74.163200 OK 23 kB URL HTTP/1.1 fonts.gstatic.com/s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 23100, version 1.0\012- data
Hash 63f7001df33da71a26c8e90cd9aea4e2
3af20c96203f771ffc01e56620d6172042757c8d
8254a00416dd6f08b633e72eaa427edbc4142a5046ed83914ea7796ec946d670
GET /s/metamorphous/v18/Wnz8HA03aAXcC39ZEX5y133EOyqs.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://arifinzyt.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 23100
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Sep 2022 23:20:57 GMT
Expires: Fri, 15 Sep 2023 23:20:57 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 26 Apr 2022 14:37:41 GMT
Content-Type: font/woff2
Age: 299594
3.bp.blogspot.com/-9a_SKZbBz-8/UOytZMF1DVI/AAAAAAAAC4s/h20dKS6SgjM/s000/postheadericonge.png
142.250.74.161200 OK 2.7 kB URL HTTP/1.1 3.bp.blogspot.com/-9a_SKZbBz-8/UOytZMF1DVI/AAAAAAAAC4s/h20dKS6SgjM/s000/postheadericonge.png
IP 142.250.74.161:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a8036b4e38c1e38cd3ff0e97985bf46
d5bc9dd626931c6a40e5083330c08af7cb06d5a4
7cd9f51d4b9eb9aeb01ff5245f0f5bed5f04b7564f4120a902c42cb3d599c0e3
GET /-9a_SKZbBz-8/UOytZMF1DVI/AAAAAAAAC4s/h20dKS6SgjM/s000/postheadericonge.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb8b"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="postheadericonge.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 2736
X-XSS-Protection: 0
www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js
142.250.74.164404 Not Found 1.6 kB URL HTTP/1.1 www.google.com/uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash eb31154df0d02f97b5fe592f94fcbaad
5b1f09eb698e207316d82009c1c50bd39242bd74
2948d7776a875106e772dc470299556124a221fd1447b95341695144bc66cea7
GET /uds/solutions/dynamicfeed/gfdynamicfeedcontrol.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1610
Date: Mon, 19 Sep 2022 10:34:11 GMT
1.bp.blogspot.com/_a378mcmEc38/TTuYWW8eUDI/AAAAAAAACiY/0l7adR3sksE/s200/klik.jpg
142.250.74.161200 OK 11 kB URL HTTP/1.1 1.bp.blogspot.com/_a378mcmEc38/TTuYWW8eUDI/AAAAAAAACiY/0l7adR3sksE/s200/klik.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x200, components 3\012- data
Hash 4e71f6180c35e51dc00e4d818764efc2
0722449bf461dba2d172d710acf6b5c572dff08e
834b2d7a5ad728d1e6dfcf6a58cecac1eb6f7c76bb47810322a51dba26928ad4
GET /_a378mcmEc38/TTuYWW8eUDI/AAAAAAAACiY/0l7adR3sksE/s200/klik.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2de8"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="klik.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 11308
X-XSS-Protection: 0
4.bp.blogspot.com/-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png
142.250.74.161200 OK 786 B URL HTTP/1.1 4.bp.blogspot.com/-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png
IP 142.250.74.161:0
File type PNG image data, 477 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 06b6d13eee01203d692a7a574e80fb92
c1cbd8f6f096e0f4d3abacce2b9d9e0c8306aa87
5ddf879434a1d1e679c195ef4412bcfc760260194c30c7ea4adeec13bcaaaf5f
GET /-7Fdqy2FxXto/UOytYsl7koI/AAAAAAAAC4k/0oTBMBiHj-M/s000/logobox.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb89"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logobox.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 786
X-XSS-Protection: 0
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 138 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Size 138 kB (138078 bytes)
Hash 981ee7d0bdcf393395a45abb8f331d7b
e44a49850c24d515cd1a65cb0cb33f6a41f50d4c
ece2e5f00c78e53694894b630c8c13582b27e94eec9ab4647abaacf7cf9e2c6c
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 10:34:11 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+020; expires=Wed, 18-Sep-2024 10:34:11 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-Lr_fIqnT5jA/UOytdRirSdI/AAAAAAAAC5k/Bxyhoddgw8w/s000/sasuke-uchiha-naruto-7178-1920x1080.jpg
142.250.74.161200 OK 299 kB URL HTTP/1.1 2.bp.blogspot.com/-Lr_fIqnT5jA/UOytdRirSdI/AAAAAAAAC5k/Bxyhoddgw8w/s000/sasuke-uchiha-naruto-7178-1920x1080.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1920x1080, components 3\012- data
Size 299 kB (299424 bytes)
Hash 1245f284e1054ed6cab26692ae84ace2
64ee260c9e77be158a470e30048770f1007862cc
9a0eb8b06ed637c4d906d00bd63a3b5203a9ab140010cff6434907c15c9b5d2c
GET /-Lr_fIqnT5jA/UOytdRirSdI/AAAAAAAAC5k/Bxyhoddgw8w/s000/sasuke-uchiha-naruto-7178-1920x1080.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb99"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="sasuke-uchiha-naruto-7178-1920x1080.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 299424
X-XSS-Protection: 0
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 09:56:16 GMT
expires: Mon, 19 Sep 2022 10:56:16 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
age: 2275
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pr.prchecker.info/getpr.php?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2
67.227.215.171301 Moved Permanently 306 B URL HTTP/1.1 pr.prchecker.info/getpr.php?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2
IP 67.227.215.171:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2cbf1ec6b29f8cfb484ed73adb84c4d1
0a8320ff0f396750cdbbdfc917623a7f29b3a29c
8312b9796d2c1fc5aa9bc119c0abc122f39d195f6aae05f1c1f6e88b86bc0112
GET /getpr.php?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2 HTTP/1.1
Host: pr.prchecker.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 19 Sep 2022 10:34:11 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 306
Connection: keep-alive
Location: https://pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2
Expires: Fri, 18 Nov 2022 10:34:11 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
fonts.gstatic.com/s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2
142.250.74.163200 OK 20 kB URL HTTP/1.1 fonts.gstatic.com/s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20540, version 1.0\012- data
Hash 7de3315082ccf61c77635e1b1aec8dcd
c82cbdd870334e973e38dcea26a99b88dc86b1b4
d7ac978e6a882c1fd3827df0b4d1aaa8d520e413fce6e5071a392279a2cc1d0c
GET /s/rancho/v17/46kulbzmXjLaqZRVam_h.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://arifinzyt.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 20540
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 18 Sep 2022 02:22:44 GMT
Expires: Mon, 18 Sep 2023 02:22:44 GMT
Cache-Control: public, max-age=31536000
Age: 115887
Last-Modified: Tue, 19 Apr 2022 20:04:28 GMT
Content-Type: font/woff2
4.bp.blogspot.com/-ako7EL6O0_g/UOytZWK4kDI/AAAAAAAAC40/QnKnWYoW0Ho/s000/j3nclockve5.png
142.250.74.161200 OK 499 B URL HTTP/1.1 4.bp.blogspot.com/-ako7EL6O0_g/UOytZWK4kDI/AAAAAAAAC40/QnKnWYoW0Ho/s000/j3nclockve5.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 269fcafb578a1ba01db1a560ec0062b6
02238fce278c06253f99dec3aeba08f00c130538
60676ea6d509d7a9e8328a7714f40362a23490ac796105b460ebabf792033f4f
GET /-ako7EL6O0_g/UOytZWK4kDI/AAAAAAAAC40/QnKnWYoW0Ho/s000/j3nclockve5.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb8d"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="j3nclockve5.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 499
X-XSS-Protection: 0
1.bp.blogspot.com/-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg
142.250.74.161200 OK 805 B URL HTTP/1.1 1.bp.blogspot.com/-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 29x28, components 3\012- data
Hash 442c1f8d37221591d89ff6ae9d4ca877
5c12879cf98b18b943915dae3a6ca7a96a9b1416
27c1f296963d0156abbca14372459e4ddc9e78d07036f692da2c7a01e8fc025c
GET /-nUWj1hHCZ50/UOytbmUU16I/AAAAAAAAC5U/ILOBtFlhKuU/s000/narutofnew-h2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vb95"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="narutofnew-h2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 805
X-XSS-Protection: 0
www.blogger.com/img/logo-16.png
216.58.207.201200 OK 279 B URL HTTP/1.1 www.blogger.com/img/logo-16.png
IP 216.58.207.201:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 279
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Sep 2022 17:02:03 GMT
Expires: Thu, 22 Sep 2022 17:02:03 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 14 Sep 2022 22:02:43 GMT
Content-Type: image/png
Age: 322328
hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
172.67.177.179302 Found 302 B URL HTTP/1.1 hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
IP 172.67.177.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1a8b4dde50d9f246e623a388543fbdd3
aa32b1884ddcc64104bdaf0f556bee9e2beafe7f
8525322ce48b034de3bd3894836f56a504d99b2887c8946e3e8097936e39d5ba
GET /counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0 HTTP/1.1
Host: hitwebcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 302 Found
Date: Mon, 19 Sep 2022 10:34:11 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nOuZqmqJmv5wgksRPa8VvCF5tksp09OdUN9%2FkMkJihRjQPT3%2FgnFwVZE67ogj%2BUat299GNStntksDfjcfVJrgRvxk6x97br8TUfKlRmAslN85hZe2JWImyiwP7KFAFvlGr7QQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74d1aaddde281bfa-OSL
alt-svc: h2=":443"; ma=60
s04.flagcounter.com/count/pnP4/bg_FFFFFF/txt_000000/border_CCCCCC/columns_2/maxflags_12/viewers_0/labels_0/pageviews_0/flags_0/
66.154.110.218200 OK 9.7 kB URL HTTP/1.1 s04.flagcounter.com/count/pnP4/bg_FFFFFF/txt_000000/border_CCCCCC/columns_2/maxflags_12/viewers_0/labels_0/pageviews_0/flags_0/
IP 66.154.110.218:0
ASN #8100 ASN-QUADRANET-GLOBAL
File type PNG image data, 150 x 129, 8-bit/color RGB, non-interlaced\012- data
Hash daaddaa7814efe518574b5641c347dda
49538ff3dda56f3e12cae73cbe33da12814f8ad4
282c64de6786c266625d45c9f98056d275e1a851d78b319ced611cb44535fdb4
GET /count/pnP4/bg_FFFFFF/txt_000000/border_CCCCCC/columns_2/maxflags_12/viewers_0/labels_0/pageviews_0/flags_0/ HTTP/1.1
Host: s04.flagcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:34:12 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Pragma: no-cache
Cache-control: no-cache
Connection: close
Transfer-Encoding: chunked
Content-Type: image/png
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.NEcMNFo_uHU.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpBEFoOXr5xH6ZY0S3SgVQOXOLskQ/m=el_main
142.250.74.74200 OK 94 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.NEcMNFo_uHU.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpBEFoOXr5xH6ZY0S3SgVQOXOLskQ/m=el_main
IP 142.250.74.74:0
File type ASCII text, with very long lines (1613)
Hash 18aefe5ec21f3778ce3318002805140e
219365ad9a30dc86c628f26e2ffa748c9847a617
6a5fc910fcdbed9e79fc5449c97c6c4454ae4f8327e66232f6aee051d14989a3
GET /_/translate_http/_/js/k=translate_http.tr.no.NEcMNFo_uHU.O/d=1/exm=el_conf/ed=1/rs=AN8SPfpBEFoOXr5xH6ZY0S3SgVQOXOLskQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 93873
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:35:03 GMT
expires: Fri, 15 Sep 2023 17:35:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 05:13:28 GMT
content-type: text/javascript; charset=UTF-8
age: 320348
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s10.histats.com/js15.js
46.105.201.240200 OK 4.4 kB IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11088), with no line terminators
Hash 688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5
GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
date: Mon, 19 Sep 2022 10:26:38 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 467337661
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:7A15_2E69C9F0:0050_632845A3_08AF:24C50
x-iplb-instance: 32088
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 61636159a506d59a49b050710036426a
f4720a6924fbf9869242e093b1e033daee7c5e84
200b53d25385ff647c0d5bf41299df75c26067da76e369995d359c95748e681d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.4shared.com/embed/530010195/8df7eefd/preview.swf
74.117.178.93302 Found 0 B URL HTTP/1.1 www.4shared.com/embed/530010195/8df7eefd/preview.swf
IP 74.117.178.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/530010195/8df7eefd/preview.swf HTTP/1.1
Host: www.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 302 Found
Server: 571
Set-Cookie: day1host=h; Domain=.4shared.com; Expires=Tue, 20-Sep-2022 10:34:11 GMT; Path=/
Location: http://www.4shared.com/linkerror.jsp?cau=del
Content-Length: 0
Date: Mon, 19 Sep 2022 10:34:11 GMT
1.bp.blogspot.com/-2AP2MequuU4/UHgMSX9JMyI/AAAAAAAAAHU/8Kk7qoZIsD8/s80/581499_471245446249269_320745489_n.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/1.1 1.bp.blogspot.com/-2AP2MequuU4/UHgMSX9JMyI/AAAAAAAAAHU/8Kk7qoZIsD8/s80/581499_471245446249269_320745489_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 64x80, components 3\012- data
Hash b78b1c95ef101b26b8512d8952decce6
a81115cf3e0fdbf17172bc456db627462755f18b
51f01eee47a61e128b8ba0e60a5982a02d265fcf72e9282e172144d96b489c05
GET /-2AP2MequuU4/UHgMSX9JMyI/AAAAAAAAAHU/8Kk7qoZIsD8/s80/581499_471245446249269_320745489_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v75"
Expires: Tue, 20 Sep 2022 10:34:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="581499_471245446249269_320745489_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:11 GMT
Server: fife
Content-Length: 2720
X-XSS-Protection: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da683e2c0404a82b6adfd37dd0bc6fad
f4ff810e2bec10026da55aeeaabf5be6d982dea0
ede451e4663a1c6a766b98c41d60468b09ba85ce839905422d28841dfa643346
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDE451E4663A1C6A766B98C41D60468B09BA85CE839905422D28841DFA643346"
Last-Modified: Sun, 18 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20096
Expires: Mon, 19 Sep 2022 16:09:08 GMT
Date: Mon, 19 Sep 2022 10:34:12 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
216.58.207.237302 Found 475 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Hash 51ecf6d8b1ea69e4d4b8caef6d947d69
e16a65c405015e9966bc0a96ee7968958705d7b0
2bb95bf4de3fa64cf0b4646c6faf3532bd738985890ef366ab0529c25734a977
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8207240112500844564%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D6391164557757703303%26origin%3Dhttp://arifinzyt.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.z9QjrzsHcOc.O/d%253D1/rs%253DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 19 Sep 2022 10:34:11 GMT
location: https://www.blogger.com/followers.g?blogID=8207240112500844564&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=6391164557757703303&origin=http%3A%2F%2Farifinzyt.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Hu0UHB2EzOml3bOzbCjKug' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 475
server: GSE
set-cookie: __Host-GAPS=1:v9LiM7B07umslaZf-46KSWMvUiLtYw:9Up144ahHBoR6Dd9;Path=/;Expires=Wed, 18-Sep-2024 10:34:11 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4908
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:12 GMT
Last-Modified: Mon, 19 Sep 2022 09:12:24 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
www.4shared.com/linkerror.jsp?cau=del
74.117.178.93302 Found 0 B URL HTTP/1.1 www.4shared.com/linkerror.jsp?cau=del
IP 74.117.178.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /linkerror.jsp?cau=del HTTP/1.1
Host: www.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Found
Server: 294
Set-Cookie: day1host=h; Domain=.4shared.com; Expires=Tue, 20-Sep-2022 10:34:11 GMT; Path=/
Location: http://e.4shared.com/linkerror.jsp?cau=del
Content-Length: 0
Date: Mon, 19 Sep 2022 10:34:11 GMT
pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2
67.227.215.171200 OK 540 B URL HTTP/2 pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2
IP 67.227.215.171:0
File type GIF image data, version 89a, 88 x 31\012- data
Hash afd64d43a8c06c152fe67941177db715
f06d4df5495c6af63cbf20831f05e5c8a0694556
6f5bbc9fc3d49ff3d9d1bf094bb57b2c9cc51ddcd6c67d28d7b914669f715032
GET /buts/image2.gif?codex=aHR0cDovL2FyaWZpbnp5dC5ibG9nc3BvdC5jb20=&tag=2 HTTP/1.1
Host: pr.prchecker.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:11 GMT
content-type: image/gif
content-length: 540
last-modified: Mon, 21 Jun 2021 15:56:55 GMT
expires: Fri, 18 Nov 2022 10:34:11 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
lh6.ggpht.com/_QwvI2Zom950/S9fhkXEpk6I/AAAAAAAAAjQ/dgyU6sG0tXU/s128/Teori%20Ngeblog%20CURSOR%205.gif
216.58.211.1200 OK 712 B URL HTTP/1.1 lh6.ggpht.com/_QwvI2Zom950/S9fhkXEpk6I/AAAAAAAAAjQ/dgyU6sG0tXU/s128/Teori%20Ngeblog%20CURSOR%205.gif
IP 216.58.211.1:0
File type GIF image data, version 89a, 30 x 32\012- data
Hash 076c305c89d8b7b1f3f5a00b199e9128
c69bdb2c238af0a56660315c146dbf84b5f35c1e
bc33e495760c6d0e6554649d28582557c92540aec97241e266476d16a1aa4c69
GET /_QwvI2Zom950/S9fhkXEpk6I/AAAAAAAAAjQ/dgyU6sG0tXU/s128/Teori%20Ngeblog%20CURSOR%205.gif HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3a1"
Expires: Tue, 20 Sep 2022 10:34:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Teori Ngeblog CURSOR 5.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 10:34:12 GMT
Server: fife
Content-Length: 712
X-XSS-Protection: 0
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rzb9XlumnOTKF2X1TbMUkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y99EHERt0vW2zSkdHj+Z7JLqnRo=
e.4shared.com/linkerror.jsp?cau=del
199.101.134.236200 OK 11 kB URL HTTP/1.1 e.4shared.com/linkerror.jsp?cau=del
IP 199.101.134.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1847), with CRLF, LF line terminators
Hash 2b9db194826f92674b31d1512abf034a
68bb6afc5cf137376ca6a954c82c2c63df47aa7c
e5a39ff17c145c821ba5a80ac2da886e8be6bed88f1b7d500e5fd49769ec327a
GET /linkerror.jsp?cau=del HTTP/1.1
Host: e.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: 517
Set-Cookie: day1host=h; Domain=.4shared.com; Expires=Tue, 20-Sep-2022 10:34:12 GMT; Path=/
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache
Vary: *
Content-Encoding: gzip
Content-Type: text/html;charset=UTF-8
Content-Length: 11388
Date: Mon, 19 Sep 2022 10:34:12 GMT
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
142.250.74.106200 OK 1.4 kB URL HTTP/2 translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP 142.250.74.106:0
Hash 3ad547ec47ef63d87eff80e53d6dd861
20cd334266b4bc9b47966d5487f0a2b2d41db765
c9b9dc1b30d38db2a72068eb7d8a5d1af32006b64263cab5e89f500f62856ea3
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Mon, 19 Sep 2022 10:34:12 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Mon, 19 Sep 2022 10:34:12 GMT
set-cookie: NID=511=M--nnl84Su1S_C00xW5mdnKqN0lYI0QlTaKNo1t-WOYMLaG3sp8X4Y8mWRNw_xTaoOglIvCBiM8W4QurIxtfSwO7y6l47BF7fQsnKvC0Gjq-cl1rRWBhdmh8L3WxXJNUp1swHllU_blT0cHLTzL-926_UxTiFKsMn6P_HgB1xIc; expires=Tue, 21-Mar-2023 10:34:12 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+288; expires=Wed, 18-Sep-2024 10:34:12 GMT; path=/; domain=.googleapis.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=explicit
142.250.74.164200 OK 558 B URL HTTP/1.1 www.google.com/recaptcha/api.js?render=explicit
IP 142.250.74.164:0
File type ASCII text, with very long lines (851), with no line terminators
Hash 58fd593d18d5c6bfaf765ffaf5480cb8
e1dd96fac86d1abd80fe8af8be0d3fe68afe13d7
115be613e8ceb246aaabfbf493c00fb703c23c0652148c0bdd94781c50fc7f37
GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200 OK
Expires: Mon, 19 Sep 2022 10:34:12 GMT
Date: Mon, 19 Sep 2022 10:34:12 GMT
Cache-Control: private, max-age=300
Content-Type: text/javascript; charset=UTF-8
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 558
Server: GSE
arifinzyt.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDHg6Z4RGQzhimCPx4UaA4ZMENIsUFbsrlBxzRMfUjaMdAI-1fhnddmOiRVr_OifmI3pdY7MIgpcfSe1Uks2r6R5ps9hQ
142.250.74.161200 OK 229 B URL HTTP/1.1 arifinzyt.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDHg6Z4RGQzhimCPx4UaA4ZMENIsUFbsrlBxzRMfUjaMdAI-1fhnddmOiRVr_OifmI3pdY7MIgpcfSe1Uks2r6R5ps9hQ
IP 142.250.74.161:0
File type JSON data\012- , ASCII text, with very long lines (388), with no line terminators
Hash c5260527c21be5ad93761f538f1dab8f
69bb2fb00492b644fed710687ba6dd80710cbed5
6cb25caf52b6ae3e23c5f8da17d0cf49b37a5ec0b531277b6565a688c53e8d1e
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmDHg6Z4RGQzhimCPx4UaA4ZMENIsUFbsrlBxzRMfUjaMdAI-1fhnddmOiRVr_OifmI3pdY7MIgpcfSe1Uks2r6R5ps9hQ HTTP/1.1
Host: arifinzyt.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
Cookie: HstCfa1831673=1663583632587; HstCla1831673=1663583632587; HstCmu1831673=1663583632587; HstPn1831673=1; HstPt1831673=1; HstCnv1831673=1; HstCns1831673=1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 19 Sep 2022 10:34:12 GMT
Expires: Mon, 19 Sep 2022 10:34:12 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 229
Server: GSE
aj1090.online/dc9e97fb.js
212.124.124.230200 14 kB URL HTTP/1.1 aj1090.online/dc9e97fb.js
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type ASCII text, with very long lines (37292), with no line terminators
Hash ea82bd8f23f965b006230ec86b07054d
c2e73bcdcc6b81cc195af9f824a73c77385fbe36
f306b81dd2d2260c38713bc566043ea399d0ff4ea3467a02622b2f24e6e45416
GET /dc9e97fb.js HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200
accept-ranges: bytes
etag: "086fba488bb204138b0f7becc751bf094"
content-type: application/javascript
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 19 Sep 2022 10:34:11 GMT
www4.clustrmaps.com/counter/map.js
172.67.26.162301 Moved Permanently 185 B URL HTTP/1.1 www4.clustrmaps.com/counter/map.js
IP 172.67.26.162:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a107aba61c93cdf7882a9c6750a4b8fc
8b9bea8c8373e3f0386e14134443c1873e3cf219
69758c97903bb258a8ccdea130baf19bb258861c475667b5320454d143bcbd3a
GET /counter/map.js HTTP/1.1
Host: www4.clustrmaps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Mon, 19 Sep 2022 10:34:12 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: http://clustrmaps.com/counter/map.js
Cache-Control: max-age=1800
CF-Cache-Status: EXPIRED
Set-Cookie: __cflb=02DiuG7P9ht1hwNUmckP7z8exG1gkXfLX1hrmt48aGbdE; SameSite=Lax; path=/; expires=Tue, 20-Sep-22 09:34:12 GMT; HttpOnly
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d1aae52e88b50f-OSL
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f97943e2a413ee6daa433b445f9b2f95
61e9eb7785635389eccdad1907077d06e0129a7d
f643edc1b092744931b1c983ec80ff7e2d51774dd398b644fd1b712bdb230863
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F643EDC1B092744931B1C983EC80FF7E2D51774DD398B644FD1B712BDB230863"
Last-Modified: Sat, 17 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3182
Expires: Mon, 19 Sep 2022 11:27:15 GMT
Date: Mon, 19 Sep 2022 10:34:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d6ffcd34ebb9c5735324c443c4f6c1c
05f11f097726b8c635078be3230646ef1dfc5c3f
8b0a865aeb8bc0c51bb6d8695f769c62dfa91a0ba1119d551ef13f384fa3034f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B0A865AEB8BC0C51BB6D8695F769C62DFA91A0BA1119D551EF13F384FA3034F"
Last-Modified: Fri, 16 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7835
Expires: Mon, 19 Sep 2022 12:44:48 GMT
Date: Mon, 19 Sep 2022 10:34:13 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:12 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:13 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
3.bp.blogspot.com/-w1UfPhGwDOg/T59PmdMErEI/AAAAAAAAAA4/G77RVmG2HDs/s45-c/jansen%25252Bmanullang%25252Bganteng.jpg
142.250.74.161200 OK 2.4 kB URL HTTP/2 3.bp.blogspot.com/-w1UfPhGwDOg/T59PmdMErEI/AAAAAAAAAA4/G77RVmG2HDs/s45-c/jansen%25252Bmanullang%25252Bganteng.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4dd26a0c25b429270f710632f8da3ae6
714a8660fb84ecf9878a954436bd0122512e70c6
bde2530cf49cd8750eae507dc27de1dcee16ca56f3a06c97b911010bc6b36c0a
GET /-w1UfPhGwDOg/T59PmdMErEI/AAAAAAAAAA4/G77RVmG2HDs/s45-c/jansen%25252Bmanullang%25252Bganteng.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="jansen%2Bmanullang%2Bganteng.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2410
x-xss-protection: 0
date: Mon, 19 Sep 2022 10:34:13 GMT
expires: Sat, 17 Sep 2022 20:25:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "ve"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 07566e7f0afe22aa412420cd4521193c
0d7ad3ad7187052880bd11576a49d5ce88faaf6a
f33d32e8d07bd001bf1205deadf439ea3009de7341719f33c1798d41faa71876
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s4.histats.com/stats/1831673.php?1831673&@f16&@g1&@h1&@i1&@j1663583632587&@k0&@l1&@mMembuat%20Klik%20Kanan%20Tidak%20Berfungsi%20di%20Blog%20%7C%20Revoluzine&@n0&@o1000&@q0&@r0&@s302&@ten-US&@u1280&@b1:-97545673&@b3:1663583633&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Farifinzyt.blogspot.com%2F2012%2F03%2Fmembuat-klik-kanan-tidak-berfungsi-di.html&@w
158.69.251.190200 OK 99 B URL HTTP/1.1 s4.histats.com/stats/1831673.php?1831673&@f16&@g1&@h1&@i1&@j1663583632587&@k0&@l1&@mMembuat%20Klik%20Kanan%20Tidak%20Berfungsi%20di%20Blog%20%7C%20Revoluzine&@n0&@o1000&@q0&@r0&@s302&@ten-US&@u1280&@b1:-97545673&@b3:1663583633&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Farifinzyt.blogspot.com%2F2012%2F03%2Fmembuat-klik-kanan-tidak-berfungsi-di.html&@w
IP 158.69.251.190:0
File type ASCII text, with no line terminators
Hash 89e47f7a4fb07b26f503e31851ead238
340bce475e0d2e9725c469253c0d324e2925420f
7cba2c5ea312fb03984b9668241e28e16622a8a175cf76a83cf9bd5635f147bb
GET /stats/1831673.php?1831673&@f16&@g1&@h1&@i1&@j1663583632587&@k0&@l1&@mMembuat%20Klik%20Kanan%20Tidak%20Berfungsi%20di%20Blog%20%7C%20Revoluzine&@n0&@o1000&@q0&@r0&@s302&@ten-US&@u1280&@b1:-97545673&@b3:1663583633&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Farifinzyt.blogspot.com%2F2012%2F03%2Fmembuat-klik-kanan-tidak-berfungsi-di.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:34:13 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 99
Connection: close
www.hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
172.67.177.179200 OK 1.2 kB URL HTTP/2 www.hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
IP 172.67.177.179:0
File type PNG image data, 100 x 24, 8-bit colormap, non-interlaced\012- data
Hash 77c53bb9551907c4fef1db7150173add
b33db5ecf210e345be4f92e7ff6728e86a6d1f2d
10a2c104a6e41d142546f0c5aec70863e04a7cf944701460252bbc435632280a
GET /counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0 HTTP/1.1
Host: www.hitwebcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:34:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BA411RH7ZbGLddXTA2a8n22JptK6bQGagWJZLNNdiaUKzYoOWjj8ekvt9GhSFzj6ofY67GzLBexhU6h4b8muS6EqhSX%2BIwXfs9wJYILr3%2FN0w4Jg3hvmz%2Fy4OCtco%2FCoEhjggh2agfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d1aae26d930b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s10.histats.com/counters/cc_302.js
46.105.201.240200 OK 12 kB URL HTTP/2 s10.histats.com/counters/cc_302.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (22878), with no line terminators
Hash fc0e1f20b68bccaaabc3094c35bb35ca
088531237105c5cf02116bfd0440ca815784b8c8
594f02adfe71612be25a7f4d5f5b29de393ffe9e2d7825fed21d7ea15f2172d4
GET /counters/cc_302.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:09:30 GMT
etag: "500332889"
last-modified: Thu, 16 Apr 2020 10:45:32 GMT
x-request-id: 105940482
content-type: text/javascript
content-encoding: br
x-grace: full
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 11499
X-Firefox-Spdy: h2
clustrmaps.com/counter/map.js
104.22.62.219200 OK 22 kB URL HTTP/1.1 clustrmaps.com/counter/map.js
IP 104.22.62.219:0
File type C source, ASCII text, with very long lines (32025)
Hash 4abbb65b97d12e3898caf81fe35a8924
dd3b2bf3f332c9680e376ca9c2d3bcf1b47ccaf9
77bfc3784766576fcd5f98fd4f6874c16e18752e9e09e7b6a72207d50088f596
GET /counter/map.js HTTP/1.1
Host: clustrmaps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:34:13 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
Last-Modified: Fri, 07 Aug 2020 11:07:24 GMT
CF-Cache-Status: BYPASS
Set-Cookie: PHPSESSID=7e2g99sor52rks067limtt1tb7; path=/
__cflb=02DiuHcKAbFByoMNpCmpxhfkjjqvkJqKUtrgQ4irepnje; SameSite=Lax; path=/; expires=Tue, 20-Sep-22 09:34:13 GMT; HttpOnly
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d1aae6a922b50b-OSL
Content-Encoding: gzip
code.jquery.com/jquery-1.12.4.min.js
69.16.175.10200 OK 34 kB URL HTTP/2 code.jquery.com/jquery-1.12.4.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32077)
Hash fc7624613c4e25843694cdb7fa956f05
7765bb4016ae929e22be579ccde505b94c2a63c1
49c97d70ef48bfdc1d7b96271b5613bb099b2c040ebdf5624962aea92ff428ae
GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Sep 2022 10:34:13 GMT
content-encoding: gzip
content-length: 33738
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-17b8b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1663583653.dop205.sk1.t,1663583653.cds214.sk1.hn,1663583653.cds251.sk1.c
X-Firefox-Spdy: h2
4.bp.blogspot.com/-K_Vx2f9TIGY/UHgMj_GOUQI/AAAAAAAAAH4/oCq5R_Y9quc/s45-c/581499_471245446249269_320745489_n.jpg
142.250.74.161200 OK 1.6 kB URL HTTP/2 4.bp.blogspot.com/-K_Vx2f9TIGY/UHgMj_GOUQI/AAAAAAAAAH4/oCq5R_Y9quc/s45-c/581499_471245446249269_320745489_n.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash fda3ff404facf782a1d75dcc17147e0a
4319f57f53127c92105c6913c02d3f207bdaa966
d59febda7ed2117787bc28c9c68646a943250a5a203cff77cce5817c531cbcc0
GET /-K_Vx2f9TIGY/UHgMj_GOUQI/AAAAAAAAAH4/oCq5R_Y9quc/s45-c/581499_471245446249269_320745489_n.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v7e"
expires: Tue, 20 Sep 2022 10:34:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="581499_471245446249269_320745489_n.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 19 Sep 2022 10:34:13 GMT
server: fife
content-length: 1621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9315
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 10:34:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9315
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 10:34:13 GMT
Connection: keep-alive
static.4shared.com/css/common_n.css?ver=1189333293
204.155.149.41200 OK 6.0 kB URL HTTP/2 static.4shared.com/css/common_n.css?ver=1189333293
IP 204.155.149.41:0
Hash 87bf8641b79aca329ca42c54b1680edd
14feb0ea9121d2524bbd05f256b8cda8bfe3e94e
2e1dbb39f172ef6c3c0efed0459ebf4e97c3140f80b9f67a2b3bbe09e0248c39
GET /css/common_n.css?ver=1189333293 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5b7c"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9315
Expires: Mon, 19 Sep 2022 13:09:28 GMT
Date: Mon, 19 Sep 2022 10:34:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d9fd171b51b27aa84e06e7d5a40116e
a81660dcace8f232018ce9a6d027b271d1f8a863
2c80ffd2c0c451c61623a677d1b17e8e58a40a0a7bdb5ef1cac2610bb0a7e0a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc97d270b-72af-4a6b-ae64-123f7b52851e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: 8af37b3f-bacb-4f13-a539-0a8a1e2c7fe8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrN_VHdooAMF8cQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63279061-083f90a5264568d85ce86e5a;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:40:49 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tPeWvkV7t7BSrnTA0G2Sf_KmuH5M4azBRhaeNuuaeiOW7zB4RhM_mw==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:51:50 GMT
age: 45743
etag: "a81660dcace8f232018ce9a6d027b271d1f8a863"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da8b8819fc21dcfb224ce0e7ecdc6772
e460ad4376cd118a6fe8b6b050af9398117d9531
9d0cf5fe17040e6c494d1596c24f01501babff37c95caa47d048b5e1aefa7697
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6582596-5079-44f5-a869-65c8766f7d1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9901
x-amzn-requestid: e1792a3b-1893-48a6-8d01-463050259dc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YiGMYE3IoAMFgvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6323ea4f-42ab13411e65943538101b11;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 03:15:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: XmcyJv7bahHB4wMjFmgvh2fEkJJYLPhRrISZ_DczSErdEQjXIxWUvg==
via: 1.1 0800f067ff646622f3e8e507cb9b52e8.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 03:58:21 GMT
age: 23752
etag: "e460ad4376cd118a6fe8b6b050af9398117d9531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RWcHVQkq3COqcWuVRgOdpVDi7VFrdjpu4q-NU0D3iod1B58xF4K_Yw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:51:55 GMT
age: 45738
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87bddc1f919e51c976d5377040861ea6
f5bf6c28f20414c7dd3ac1098defc46d3d68fd99
28541ca828b6358c8e6081e9f2022e7ad18a8adcb3df09a3fa079f32c08fcda6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F779fe432-124a-4d1a-8abf-cfb5054b48fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10721
x-amzn-requestid: fadb4327-7392-42be-9167-16dd28876400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeIqeEg2IAMF-XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632254a9-45261b545b58382717b63418;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:24:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5nlB_PBHKyP0p9rF3pJiwnoiSXxYvRSVLDNPcg9x_2i-N04HaRH8fA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 04:31:06 GMT
age: 21787
etag: "f5bf6c28f20414c7dd3ac1098defc46d3d68fd99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:51:43 GMT
age: 45750
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b174f977a78acf5f28935f44cac702d
7deb4e0fc838bcfffb532ff1f92f4036b35571f2
7e87fe13d3127a1c8e89f72c1455349d9edcb89eeb2a9b103d191095ddc69751
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e998cc5-16fd-41d0-80c4-f7b6ce93932c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5570
x-amzn-requestid: a20f5fb2-9c4a-4124-bc27-6b7cf99c5a73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn64FEKXoAMFbzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263e99-0edcfdf505c4467b31355e71;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:39:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Jp6TEMqaAAIs3jUsysER2sqaEob7LrzeR0vwp5I-gWSZsPxaFW4Vlg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:49:39 GMT
age: 45874
etag: "7deb4e0fc838bcfffb532ff1f92f4036b35571f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.4shared.com/css/osfix/linux.css?ver=261096195
204.155.149.41200 OK 10 B URL HTTP/2 static.4shared.com/css/osfix/linux.css?ver=261096195
IP 204.155.149.41:0
File type ASCII text, with no line terminators
Hash b08d0e63537a9987896af356e934a3fa
6bd96761e4c1845c700c6e63c937591a55d4edea
d7aaa9268192b42a1ddc69e3c7fba2576589670e42fe034b4af63e44cc8fff4a
GET /css/osfix/linux.css?ver=261096195 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
content-length: 10
etag: "a"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/js/includeAntiFrameScript.js?ver=173554956
204.155.149.41200 OK 172 B URL HTTP/2 static.4shared.com/js/includeAntiFrameScript.js?ver=173554956
IP 204.155.149.41:0
Hash 67058927b4a9439fdb5c58f6603331ca
4d1cdc3d3f49be85775348eb25d298fac88fde34
c798ba900f3ae174ed3bf2c8ef116b7921420ebf1358dc9ea996876510d348cf
GET /js/includeAntiFrameScript.js?ver=173554956 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
content-length: 172
etag: "ac"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/js/d1/linkerror.js?ver=364326407
204.155.149.41200 OK 149 B URL HTTP/2 static.4shared.com/js/d1/linkerror.js?ver=364326407
IP 204.155.149.41:0
Hash b3f8bb1d4b65a82fc05023d5c1584a2b
82bcaeff397beebcb5683045c6f1570da67641e8
7aea2e1e27b64e5cca5dd5daf7c95dd2056195547bd6b661bc97404fae21363e
GET /js/d1/linkerror.js?ver=364326407 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
content-length: 149
etag: "95"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
e.4shared.com/linkerror.jsp?cau=del
199.101.134.236200 OK 11 kB URL HTTP/1.1 e.4shared.com/linkerror.jsp?cau=del
IP 199.101.134.236:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1847), with CRLF, LF line terminators
Hash a1266b689807dcfb4dd902f50a635dc1
0d42d5206be1d6ba13c584c77ca28b0c0b1144f7
db88c42101a89f0be5fad3c3d1655c05c7dd53bff6a5bb6d83b295e588a52c47
GET /linkerror.jsp?cau=del HTTP/1.1
Host: e.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/linkerror.jsp?cau=del
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: 518
Set-Cookie: day1host=h; Domain=.4shared.com; Expires=Tue, 20-Sep-2022 10:34:13 GMT; Path=/
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache
Vary: *
Content-Encoding: gzip
Content-Type: text/html;charset=UTF-8
Content-Length: 11376
Date: Mon, 19 Sep 2022 10:34:13 GMT
www.google.com/recaptcha/api.js?render=explicit
142.250.74.164200 OK 558 B URL HTTP/1.1 www.google.com/recaptcha/api.js?render=explicit
IP 142.250.74.164:0
File type ASCII text, with very long lines (851), with no line terminators
Hash 58fd593d18d5c6bfaf765ffaf5480cb8
e1dd96fac86d1abd80fe8af8be0d3fe68afe13d7
115be613e8ceb246aaabfbf493c00fb703c23c0652148c0bdd94781c50fc7f37
GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200 OK
Expires: Mon, 19 Sep 2022 10:34:14 GMT
Date: Mon, 19 Sep 2022 10:34:14 GMT
Cache-Control: private, max-age=300
Content-Type: text/javascript; charset=UTF-8
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 558
Server: GSE
static.4shared.com/js/AjaxSuggestion.js?ver=1732030193
204.155.149.41200 OK 16 kB URL HTTP/2 static.4shared.com/js/AjaxSuggestion.js?ver=1732030193
IP 204.155.149.41:0
File type ASCII text, with very long lines (37292)
Hash b6cbc8b72f44683cea2fe029b215a328
c78d82fdd151c5eb751237a09a4d11f147bf46a3
728fdd8099db86a359209f337b503a3b57f4b39a63e020737a96beffd6264221
GET /js/AjaxSuggestion.js?ver=1732030193 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2244"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f97943e2a413ee6daa433b445f9b2f95
61e9eb7785635389eccdad1907077d06e0129a7d
f643edc1b092744931b1c983ec80ff7e2d51774dd398b644fd1b712bdb230863
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F643EDC1B092744931B1C983EC80FF7E2D51774DD398B644FD1B712BDB230863"
Last-Modified: Sat, 17 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3181
Expires: Mon, 19 Sep 2022 11:27:15 GMT
Date: Mon, 19 Sep 2022 10:34:14 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash ef7b3c1ba18cf1a91f93c1fa24aca976
cc64fd2ff5e55c9346b55aa7e14084cc405da44d
3adaff6a2e730a03cf8230b43f1e15130e10516ff4eea410cd96e84b72376887
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 10:34:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:47:56 GMT
Expires: Mon, 19 Sep 2022 20:47:56 GMT
ETag: "cc64fd2ff5e55c9346b55aa7e14084cc405da44d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
static.4shared.com/css/osfix/linux.css?ver=261096195
204.155.146.95200 OK 10 B URL HTTP/2 static.4shared.com/css/osfix/linux.css?ver=261096195
IP 204.155.146.95:0
File type ASCII text, with no line terminators
Hash b08d0e63537a9987896af356e934a3fa
6bd96761e4c1845c700c6e63c937591a55d4edea
d7aaa9268192b42a1ddc69e3c7fba2576589670e42fe034b4af63e44cc8fff4a
GET /css/osfix/linux.css?ver=261096195 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
content-length: 10
etag: "a"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/css/popup_n.css?ver=2128089298
204.155.149.41200 OK 1.2 kB URL HTTP/2 static.4shared.com/css/popup_n.css?ver=2128089298
IP 204.155.149.41:0
Hash de95c29f19719afd26583cf8ce034a4e
ebfe255ebfc5d537f7456011b89db510aec5df5c
f8460b05f7678be97e0517def01ee8ca61475fb6642b23816f7b3a7d13a2c929
GET /css/popup_n.css?ver=2128089298 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"988"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/ui/elements.css?ver=-1689671951
204.155.149.41200 OK 3.3 kB URL HTTP/2 static.4shared.com/css/ui/elements.css?ver=-1689671951
IP 204.155.149.41:0
Hash b2a1fa1c7129c7f4d25f04f4c60f48e5
0d383e67765bd271c34bd8a0ad9a82488cba69cd
d10464494ed33c68d1a4bda42ebff3bfffe5277e1c064943633b86aef051c534
GET /css/ui/elements.css?ver=-1689671951 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"599c"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
seeptoag.net/zone?pub=0&zone_id=3461303&is_mobile=false&domain=e.4shared.com&var=&ymid=&var_3=
139.45.197.250200 OK 887 B URL HTTP/2 seeptoag.net/zone?pub=0&zone_id=3461303&is_mobile=false&domain=e.4shared.com&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (886)
Hash 7eb8a37edf11a171b726043646782278
dfc74b77753c6ca2bc1d95935e1f04d993c482a9
920734baabc4b5ba71068838efd86556d7cd59ec61b9fb6c8d0d18b43f8c90b5
GET /zone?pub=0&zone_id=3461303&is_mobile=false&domain=e.4shared.com&var=&ymid=&var_3= HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://e.4shared.com/
Origin: http://e.4shared.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: application/json; charset=utf-8
content-length: 887
x-trace-id: 054a18a0a3468feac31bd899fc7210e4
access-control-allow-origin: http://e.4shared.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
aj1090.online/zUh4KLB30Y8fJAdIXN0lv_nny8Udsp1O9CjYZGgBI4VkOfvL8qWeWS-a8F8-7t030Fv0McQuGh13aE7Td75mi7Q_Un28CXZdvx87eUveuRYVQVJfaiJLk4AancXbh0GBMt-ZbWD-2wHOiTI-zYrDnGB2jeYEd2RZC5pGWj1JDA3IVnGzv-nXjhewr4z_CwhSscCTa2ld-uxfSO0IicaO6kx8nmfU6XZnEIQ9LM2zhdR0r11H-hhdOWZVvStDXOLGT8yZ33JQJUeUO3qcIoa6AwH1m1wJGdDLNZ3_agRt4l9bmobva8JO7TBj5bPVcASRCx3Jdo0scTcPJV_JNr5GnF2QR4zv5MpimBJTeHkZ0b4yq3nCnk-hoA7szFHrCjTxzBsec57AoW5pna4KItm-2GEHJPvyG76f3rxUl6b0huPsLKHhU4G9cUNlYX3sAsqJ5YIrJQIqkYRAnpK2I7goLjMgbajozilRawKfOMz52BKNRAr6xbKWBNlNRPT-wH-feO2Ku9QZkmKwMGO_K6cBaM3yzuyQcEZeiOJ8dQZNyuqY33_uyyjpEgvjoR648o4sdnUSuvQCPsQTGi7KYxDCrTfkU8uxGkds2xbiIogNKV4tlCKLd4lmYYdsa78fE8daH1lPTc4V_X78zcWYG-pkRQeq1fJbhtr-GOd673X4NFhGwuy6CZnFNKGc1kD8641cS-zGbYn9Dp08h2gsxoDEhL9f_H0Ww8i1XRMtid83avoIWJ2168uOxCYcZ09dbpz0Vbki-dXMU1upYniLVOq0xug?
212.124.124.230403 0 B URL HTTP/1.1 aj1090.online/zUh4KLB30Y8fJAdIXN0lv_nny8Udsp1O9CjYZGgBI4VkOfvL8qWeWS-a8F8-7t030Fv0McQuGh13aE7Td75mi7Q_Un28CXZdvx87eUveuRYVQVJfaiJLk4AancXbh0GBMt-ZbWD-2wHOiTI-zYrDnGB2jeYEd2RZC5pGWj1JDA3IVnGzv-nXjhewr4z_CwhSscCTa2ld-uxfSO0IicaO6kx8nmfU6XZnEIQ9LM2zhdR0r11H-hhdOWZVvStDXOLGT8yZ33JQJUeUO3qcIoa6AwH1m1wJGdDLNZ3_agRt4l9bmobva8JO7TBj5bPVcASRCx3Jdo0scTcPJV_JNr5GnF2QR4zv5MpimBJTeHkZ0b4yq3nCnk-hoA7szFHrCjTxzBsec57AoW5pna4KItm-2GEHJPvyG76f3rxUl6b0huPsLKHhU4G9cUNlYX3sAsqJ5YIrJQIqkYRAnpK2I7goLjMgbajozilRawKfOMz52BKNRAr6xbKWBNlNRPT-wH-feO2Ku9QZkmKwMGO_K6cBaM3yzuyQcEZeiOJ8dQZNyuqY33_uyyjpEgvjoR648o4sdnUSuvQCPsQTGi7KYxDCrTfkU8uxGkds2xbiIogNKV4tlCKLd4lmYYdsa78fE8daH1lPTc4V_X78zcWYG-pkRQeq1fJbhtr-GOd673X4NFhGwuy6CZnFNKGc1kD8641cS-zGbYn9Dp08h2gsxoDEhL9f_H0Ww8i1XRMtid83avoIWJ2168uOxCYcZ09dbpz0Vbki-dXMU1upYniLVOq0xug?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zUh4KLB30Y8fJAdIXN0lv_nny8Udsp1O9CjYZGgBI4VkOfvL8qWeWS-a8F8-7t030Fv0McQuGh13aE7Td75mi7Q_Un28CXZdvx87eUveuRYVQVJfaiJLk4AancXbh0GBMt-ZbWD-2wHOiTI-zYrDnGB2jeYEd2RZC5pGWj1JDA3IVnGzv-nXjhewr4z_CwhSscCTa2ld-uxfSO0IicaO6kx8nmfU6XZnEIQ9LM2zhdR0r11H-hhdOWZVvStDXOLGT8yZ33JQJUeUO3qcIoa6AwH1m1wJGdDLNZ3_agRt4l9bmobva8JO7TBj5bPVcASRCx3Jdo0scTcPJV_JNr5GnF2QR4zv5MpimBJTeHkZ0b4yq3nCnk-hoA7szFHrCjTxzBsec57AoW5pna4KItm-2GEHJPvyG76f3rxUl6b0huPsLKHhU4G9cUNlYX3sAsqJ5YIrJQIqkYRAnpK2I7goLjMgbajozilRawKfOMz52BKNRAr6xbKWBNlNRPT-wH-feO2Ku9QZkmKwMGO_K6cBaM3yzuyQcEZeiOJ8dQZNyuqY33_uyyjpEgvjoR648o4sdnUSuvQCPsQTGi7KYxDCrTfkU8uxGkds2xbiIogNKV4tlCKLd4lmYYdsa78fE8daH1lPTc4V_X78zcWYG-pkRQeq1fJbhtr-GOd673X4NFhGwuy6CZnFNKGc1kD8641cS-zGbYn9Dp08h2gsxoDEhL9f_H0Ww8i1XRMtid83avoIWJ2168uOxCYcZ09dbpz0Vbki-dXMU1upYniLVOq0xug? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 403
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CUR ADM OUR NOR STA NID"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
content-type: application/json;charset=UTF-8
content-length: 0
date: Mon, 19 Sep 2022 10:34:15 GMT
static.4shared.com/images/header_logo.png?8935067551
204.155.146.95200 OK 1.1 kB URL HTTP/2 static.4shared.com/images/header_logo.png?8935067551
IP 204.155.146.95:0
File type PNG image data, 128 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash eae153b3c8dd645ad34e3c51c540e07a
79e6134ff6b5181f327935cffa012fb8e485d5df
8aa7d42d37387889d2cab961f2e4fb83229d582f3c738aa062b5e31919f4c546
GET /images/header_logo.png?8935067551 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: image/png
content-length: 1092
etag: "444"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/images/icon_search.png?2569931080
204.155.146.95200 OK 1.3 kB URL HTTP/2 static.4shared.com/images/icon_search.png?2569931080
IP 204.155.146.95:0
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 09905245e6e2b8810a519fe34383b2f4
11ef673ef38c01109de816fb51d5696ee7274c00
538c9dbd6ed119bf7fb5c98967e05a865258dbbaaebb825b9fca1691d839f081
GET /images/icon_search.png?2569931080 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: image/png
content-length: 1313
etag: "521"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/css/common_n.css?ver=1189333293
204.155.146.95200 OK 8.0 kB URL HTTP/2 static.4shared.com/css/common_n.css?ver=1189333293
IP 204.155.146.95:0
Hash d70f750f5987db7f409266a68e33b9f4
a17129dc17f2ed553da42a6325f2b8a674842c9f
544e7d17da3f0606da681f7bcc2f57b0bf16bc128f4c23d8805f0be113f5de96
GET /css/common_n.css?ver=1189333293 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5b7c"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/images/footer_logo.png?7487956398
204.155.146.95200 OK 1.0 kB URL HTTP/2 static.4shared.com/images/footer_logo.png?7487956398
IP 204.155.146.95:0
File type PNG image data, 128 x 27, 8-bit/color RGBA, non-interlaced\012- data
Hash 1d091b9d5ecbc6ebf23d972a54edc97d
a460f1655b7c7b70f1cef522fc841f184492f180
43164179829349a19890eaa72af202c03e326fc7c48ee8390d4e20b6e049f767
GET /images/footer_logo.png?7487956398 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: image/png
content-length: 1030
etag: "406"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/images/icon_footer_language_world.png?9180538325
204.155.146.95200 OK 1.3 kB URL HTTP/2 static.4shared.com/images/icon_footer_language_world.png?9180538325
IP 204.155.146.95:0
File type PNG image data, 18 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash 48b1b1caeb96691736b7af999ffae55c
1996b746947656745a980d2c3bb5d7f8935a9bcc
bb00cab38691d8535ccecc7f97b607ea0edda1bd530d22762bab2877dd6d86d3
GET /images/icon_footer_language_world.png?9180538325 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: image/png
content-length: 1329
etag: "531"
cache-control: max-age=31536000, public
accept-ranges: bytes
X-Firefox-Spdy: h2
static.4shared.com/css/themes/account/icons.css?ver=-1203004047
204.155.146.95200 OK 9.5 kB URL HTTP/2 static.4shared.com/css/themes/account/icons.css?ver=-1203004047
IP 204.155.146.95:0
Hash 8921d679055a158757cb18f3816bc25c
4c069086a9d53182df290d130b7c228338a4e3ec
b1aa8523c32b620de9351e201c11e3abea7227f046cd0e41b42d678d86749d73
GET /css/themes/account/icons.css?ver=-1203004047 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"cfae"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
aj1090.online/z4qR9Z2LoSYoTt3CqvDI7IvrayGF131QPRCINXKWUXzOBh2xpvJzDnZjs5WtdKfePTLw-CKckGt6R6FmMYDrWLCjw2dciaowxYehFAEsDtLFNCzuIbW3L8otkqTA7Ru5t2poqVVTZS9CP9_KnfHmggCeCScbivYgjBWvHTIaRSZPHInYm3qADWGkAANI7fhisPhx7H9GWHLC4W-dbsFUTFxKZIM6ncfNyntFjvSUTyEgpq4JSq5tZiKAzL4GSVk-RLOp4o6LNbs1OS11bFBoyWXO38Gm2hlfitfmzfRQ0jNJ7LOeFQZyrV9zJ_vatwm8ZKfIiA6_nmA_L-nYI7Q8H5e-sjJar3WIeg7WO3nPLUxlNrSzs5Yv_b2B3cGyucp9Yfr3L0A4fgUircJ83CXGzNAxgS0aDCHrGSqxyXaovX8Z8vezBx_3UXo9bpeHGMhf6n530JIsJljgjXTJlROWzbev-XgdQI55eKdpq76w63TpXAHP3RgpNr5A7UWTMb9Z03gQqm2M0SJeQ9gYrUTmTPLHCCDkzCk6NABab6ZHJZJqLyjHV_NK6ymr4mvkD8R9gflVyRB8jkFtj9xZYTZTMW5rCywV9DXHy9w_OfpcOx_10yqF-YLVLQ3UHmwzWDgLRramI3mKNxGj4usllAmiLWY2tk8TE38IZEkaA67_7w5yDIwrt_F_NJMZmoCbjtoXCSO-J_ndNdRjrFn8mMZUJXA4ZrQ48EdMDkA2EvrSH7mxOy9De-LH0Gte9pRIKBbw1-8Mo0noZAqhQzHeGOKhruw?
212.124.124.230403 0 B URL HTTP/1.1 aj1090.online/z4qR9Z2LoSYoTt3CqvDI7IvrayGF131QPRCINXKWUXzOBh2xpvJzDnZjs5WtdKfePTLw-CKckGt6R6FmMYDrWLCjw2dciaowxYehFAEsDtLFNCzuIbW3L8otkqTA7Ru5t2poqVVTZS9CP9_KnfHmggCeCScbivYgjBWvHTIaRSZPHInYm3qADWGkAANI7fhisPhx7H9GWHLC4W-dbsFUTFxKZIM6ncfNyntFjvSUTyEgpq4JSq5tZiKAzL4GSVk-RLOp4o6LNbs1OS11bFBoyWXO38Gm2hlfitfmzfRQ0jNJ7LOeFQZyrV9zJ_vatwm8ZKfIiA6_nmA_L-nYI7Q8H5e-sjJar3WIeg7WO3nPLUxlNrSzs5Yv_b2B3cGyucp9Yfr3L0A4fgUircJ83CXGzNAxgS0aDCHrGSqxyXaovX8Z8vezBx_3UXo9bpeHGMhf6n530JIsJljgjXTJlROWzbev-XgdQI55eKdpq76w63TpXAHP3RgpNr5A7UWTMb9Z03gQqm2M0SJeQ9gYrUTmTPLHCCDkzCk6NABab6ZHJZJqLyjHV_NK6ymr4mvkD8R9gflVyRB8jkFtj9xZYTZTMW5rCywV9DXHy9w_OfpcOx_10yqF-YLVLQ3UHmwzWDgLRramI3mKNxGj4usllAmiLWY2tk8TE38IZEkaA67_7w5yDIwrt_F_NJMZmoCbjtoXCSO-J_ndNdRjrFn8mMZUJXA4ZrQ48EdMDkA2EvrSH7mxOy9De-LH0Gte9pRIKBbw1-8Mo0noZAqhQzHeGOKhruw?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /z4qR9Z2LoSYoTt3CqvDI7IvrayGF131QPRCINXKWUXzOBh2xpvJzDnZjs5WtdKfePTLw-CKckGt6R6FmMYDrWLCjw2dciaowxYehFAEsDtLFNCzuIbW3L8otkqTA7Ru5t2poqVVTZS9CP9_KnfHmggCeCScbivYgjBWvHTIaRSZPHInYm3qADWGkAANI7fhisPhx7H9GWHLC4W-dbsFUTFxKZIM6ncfNyntFjvSUTyEgpq4JSq5tZiKAzL4GSVk-RLOp4o6LNbs1OS11bFBoyWXO38Gm2hlfitfmzfRQ0jNJ7LOeFQZyrV9zJ_vatwm8ZKfIiA6_nmA_L-nYI7Q8H5e-sjJar3WIeg7WO3nPLUxlNrSzs5Yv_b2B3cGyucp9Yfr3L0A4fgUircJ83CXGzNAxgS0aDCHrGSqxyXaovX8Z8vezBx_3UXo9bpeHGMhf6n530JIsJljgjXTJlROWzbev-XgdQI55eKdpq76w63TpXAHP3RgpNr5A7UWTMb9Z03gQqm2M0SJeQ9gYrUTmTPLHCCDkzCk6NABab6ZHJZJqLyjHV_NK6ymr4mvkD8R9gflVyRB8jkFtj9xZYTZTMW5rCywV9DXHy9w_OfpcOx_10yqF-YLVLQ3UHmwzWDgLRramI3mKNxGj4usllAmiLWY2tk8TE38IZEkaA67_7w5yDIwrt_F_NJMZmoCbjtoXCSO-J_ndNdRjrFn8mMZUJXA4ZrQ48EdMDkA2EvrSH7mxOy9De-LH0Gte9pRIKBbw1-8Mo0noZAqhQzHeGOKhruw? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 403
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CUR ADM OUR NOR STA NID"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
content-type: application/json;charset=UTF-8
content-length: 0
date: Mon, 19 Sep 2022 10:34:15 GMT
aj1090.online/zmOTGnUFmBEkkaKOSU0npxe_3igfO-cfFzZUy5Hob2i9hF_UvOE8bfkzelsVlC9jj8P-g6NhxChbI3r_CaYSzAPGYfR4VuRJSvNEpsWWIwqSf44fxwmllhyPvqa04678TFKPtSmSRPmFvnlY2HWDPYkCMyBAOUhrt9VugpJCB8fXigd6-JmD_mpcWtYp_WVhZwrgOzZNU0elmtMtMxMi85_f8PJF_IDu8LHeKoyuXbq9F9vmS39ZCIBfmlSVhNpc6UKHwb1FVPTgZ3e9jGAjTXtoDFo0POL8Ba3GNaWsERHs1udMgfbWOQeQJbEJOKdQLSlvvshMPF_hOInYJ8rVVYW9wH6Ig6fCU5AekpPTMEYPZjvrBgnXTYheMIPsypKFse3Zz7-7Tz5d-3miRQiIsdn9AUoH37sCISWGjGzF7xfMYKL3_YVIi5lAw0kjpoueGi1_Hs_tfpmGr2ScsmMOQ879NfSSLc0G1Y1zTT1L2xbtSMB-jrl4YkC6_5eyVVKkL5RTT2D6qwaZvr_jV2qKIuMwicqCcrc2bk-6e8LF3fFEP9gjZkp2li2Jg5kcapT5omOSpZlHUIlsi-4Y6z7CiaXLakZ_L_GOFR4CZ8QOZ5_yJZLwfDlHiu4lxHzzLY24oKlV9FjEY8XiGnAY8jsTgx0fEbIAAfldSTyza1lLxNr9OUUc5VSRkzBTYU2H7QYhzPhRexgWl31tRHGxSdExittx11PszTkuelNdx-EXKHaVIPAZc84aD--X4ETsQEJT7AZYtNz0pXgkDmXGAbats7w?
212.124.124.230200 786 B URL HTTP/1.1 aj1090.online/zmOTGnUFmBEkkaKOSU0npxe_3igfO-cfFzZUy5Hob2i9hF_UvOE8bfkzelsVlC9jj8P-g6NhxChbI3r_CaYSzAPGYfR4VuRJSvNEpsWWIwqSf44fxwmllhyPvqa04678TFKPtSmSRPmFvnlY2HWDPYkCMyBAOUhrt9VugpJCB8fXigd6-JmD_mpcWtYp_WVhZwrgOzZNU0elmtMtMxMi85_f8PJF_IDu8LHeKoyuXbq9F9vmS39ZCIBfmlSVhNpc6UKHwb1FVPTgZ3e9jGAjTXtoDFo0POL8Ba3GNaWsERHs1udMgfbWOQeQJbEJOKdQLSlvvshMPF_hOInYJ8rVVYW9wH6Ig6fCU5AekpPTMEYPZjvrBgnXTYheMIPsypKFse3Zz7-7Tz5d-3miRQiIsdn9AUoH37sCISWGjGzF7xfMYKL3_YVIi5lAw0kjpoueGi1_Hs_tfpmGr2ScsmMOQ879NfSSLc0G1Y1zTT1L2xbtSMB-jrl4YkC6_5eyVVKkL5RTT2D6qwaZvr_jV2qKIuMwicqCcrc2bk-6e8LF3fFEP9gjZkp2li2Jg5kcapT5omOSpZlHUIlsi-4Y6z7CiaXLakZ_L_GOFR4CZ8QOZ5_yJZLwfDlHiu4lxHzzLY24oKlV9FjEY8XiGnAY8jsTgx0fEbIAAfldSTyza1lLxNr9OUUc5VSRkzBTYU2H7QYhzPhRexgWl31tRHGxSdExittx11PszTkuelNdx-EXKHaVIPAZc84aD--X4ETsQEJT7AZYtNz0pXgkDmXGAbats7w?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type JSON data\012- HTML document, ASCII text, with very long lines (786), with no line terminators
Hash 5825f179879f1546a9e9e99bc87ce504
e5ecf19d6bcf17e53c426d0a9a3dcdd275c669ac
29afd4c17e484299cda158bbbb6e7eafd1ef41cb6ff026b990c9531f881b3832
POST /zmOTGnUFmBEkkaKOSU0npxe_3igfO-cfFzZUy5Hob2i9hF_UvOE8bfkzelsVlC9jj8P-g6NhxChbI3r_CaYSzAPGYfR4VuRJSvNEpsWWIwqSf44fxwmllhyPvqa04678TFKPtSmSRPmFvnlY2HWDPYkCMyBAOUhrt9VugpJCB8fXigd6-JmD_mpcWtYp_WVhZwrgOzZNU0elmtMtMxMi85_f8PJF_IDu8LHeKoyuXbq9F9vmS39ZCIBfmlSVhNpc6UKHwb1FVPTgZ3e9jGAjTXtoDFo0POL8Ba3GNaWsERHs1udMgfbWOQeQJbEJOKdQLSlvvshMPF_hOInYJ8rVVYW9wH6Ig6fCU5AekpPTMEYPZjvrBgnXTYheMIPsypKFse3Zz7-7Tz5d-3miRQiIsdn9AUoH37sCISWGjGzF7xfMYKL3_YVIi5lAw0kjpoueGi1_Hs_tfpmGr2ScsmMOQ879NfSSLc0G1Y1zTT1L2xbtSMB-jrl4YkC6_5eyVVKkL5RTT2D6qwaZvr_jV2qKIuMwicqCcrc2bk-6e8LF3fFEP9gjZkp2li2Jg5kcapT5omOSpZlHUIlsi-4Y6z7CiaXLakZ_L_GOFR4CZ8QOZ5_yJZLwfDlHiu4lxHzzLY24oKlV9FjEY8XiGnAY8jsTgx0fEbIAAfldSTyza1lLxNr9OUUc5VSRkzBTYU2H7QYhzPhRexgWl31tRHGxSdExittx11PszTkuelNdx-EXKHaVIPAZc84aD--X4ETsQEJT7AZYtNz0pXgkDmXGAbats7w? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
set-cookie: UUID=d9ad096f-675b-53c4-ae3f-46b70aecc2fb; Domain=.aj1090.online; Expires=Wed, 18-Sep-2024 10:34:15 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 786
date: Mon, 19 Sep 2022 10:34:15 GMT
static.4shared.com/js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403
204.155.149.41200 OK 14 kB URL HTTP/2 static.4shared.com/js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403
IP 204.155.149.41:0
Hash 8bce7bde676a0843c37383d5880035a5
504e9f880ac02da88843252349fe16efbd8ad6e7
42cc0a6411704d591ffa4796b85315f98ffe839f68d9b8cb47edbda5e33306ac
GET /js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"90b5"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/ld.js?ver=139638503
204.155.149.41200 OK 3.9 kB URL HTTP/2 static.4shared.com/js/ld.js?ver=139638503
IP 204.155.149.41:0
Hash 9d6eddd048bd8b78744854bf8f75fbd9
a96719f19bbde61005834066c5a42c399b6511cb
52b2f4f820de21b8b6ccffb357144914e9654875404be4cfa1ac69f20ca2de0e
GET /js/ld.js?ver=139638503 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"250"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/pageDownload1/downloadWithoutCommon.css?ver=-1518945247
204.155.149.41200 OK 27 kB URL HTTP/2 static.4shared.com/css/pageDownload1/downloadWithoutCommon.css?ver=-1518945247
IP 204.155.149.41:0
Hash fa457558a1dbd6b50e946ced3b40879a
2f7a127367333dec2de530dbfbb3d7edee0e37f0
8742937866ee076eb51ae026bf5395f0e2d531ecc9f505b0cef42b867bb392f2
GET /css/pageDownload1/downloadWithoutCommon.css?ver=-1518945247 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1a515"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
seeptoag.net/pfe/current/universal.min.js?v=3.1.394
139.45.197.250200 OK 48 kB URL HTTP/2 seeptoag.net/pfe/current/universal.min.js?v=3.1.394
IP 139.45.197.250:0
Hash 4fff8f9f07e23abe30eadbb35ece664d
a33753bb1f3efd08ebc5196114be663eb933d189
3555b46e1ae1157ed2f2e85912c83f9e3fadcea217a4c39bb435aae3d2900ae9
GET /pfe/current/universal.min.js?v=3.1.394 HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://e.4shared.com/
Origin: http://e.4shared.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:36:49 GMT
etag: W/"632451c1-1fafa"
access-control-allow-origin: http://e.4shared.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/tips.js?ver=775574541
204.155.146.95200 OK 3.4 kB URL HTTP/2 static.4shared.com/js/tips.js?ver=775574541
IP 204.155.146.95:0
Hash 36725fe52a93b90d905701951d4e5b2c
66f2d68f1a156bf895c98a24450f141a84ca96a7
9de4ea425ab42cd3b5197ef6fdbc8d9b7ebd1bd45861595ba29b99968f23e68d
GET /js/tips.js?ver=775574541 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"3f5"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
aj1090.online/zS1b1Jy9eZ5EQaMJ7BEAtqL9Kati9RFEVHQ__dplBqmifzkQytMEulG2OkoV1I2536XeL5qGz-xQQsffa_eRGbagvJ1D87L3jGOEEC7nSg2eHD3SFNrUwf3elB3azN59TVGvXCJuXx_Q55Fd_ZBOth5I4MxTrjKRFwJI_sfN_wpS4umUdMAR05bt5X57_NArhxf1X5nI-c-wyXjZIGKhX7mgKQHuJonGFunGqwlfEHdeY99P7A221MnMoYZPpfMoTaOS5uaoND28P8oteFL_KGEaNt_BhWW7TreB4CvDger_9lg-P1TSDQqopkPGkcbDp7aJL1K_bfkqwDrdPfM6LC1cAJjvYOmwnheUXFOknalGmsKn_H7v8IVxYypmSa8waTiqZrjAhK5mk9fnGBXyDpBcZtZ03BCRb_fhG2gTiTzckOPeK-jG-DCQecIQ3R9rGyoW7SUtelhto4OYaazKrIeZCrId1Rv_QBi4OWj7PVbu-lT-fyVkRAUCsnmwzhgfn3iyAWfTVRXSGdxojuxQMxtAkGRZ2iMn8ncbj0d6CEFVOnzdJGkkR47GrZwRqsa8eS3fB80VRB569LHPmL_4GOH9VMWiWTnaCoO2IQ_5hoRey4mLwZ0lr69-OSioGEn-8ISKHdcmEbcnTYgdqxt2St-0IIRScBmH34mZeInGbFzDnDImyMrK9FO9F8CiZZ3UMzJW7dU6_Q_pL2ltqy2C8ibSQgvNuH9wdXQzipaLZtwouTuF23EtUsYrnqK0PP3Uox15OFl_u7AVVmCGCbaFrug?
212.124.124.230200 787 B URL HTTP/1.1 aj1090.online/zS1b1Jy9eZ5EQaMJ7BEAtqL9Kati9RFEVHQ__dplBqmifzkQytMEulG2OkoV1I2536XeL5qGz-xQQsffa_eRGbagvJ1D87L3jGOEEC7nSg2eHD3SFNrUwf3elB3azN59TVGvXCJuXx_Q55Fd_ZBOth5I4MxTrjKRFwJI_sfN_wpS4umUdMAR05bt5X57_NArhxf1X5nI-c-wyXjZIGKhX7mgKQHuJonGFunGqwlfEHdeY99P7A221MnMoYZPpfMoTaOS5uaoND28P8oteFL_KGEaNt_BhWW7TreB4CvDger_9lg-P1TSDQqopkPGkcbDp7aJL1K_bfkqwDrdPfM6LC1cAJjvYOmwnheUXFOknalGmsKn_H7v8IVxYypmSa8waTiqZrjAhK5mk9fnGBXyDpBcZtZ03BCRb_fhG2gTiTzckOPeK-jG-DCQecIQ3R9rGyoW7SUtelhto4OYaazKrIeZCrId1Rv_QBi4OWj7PVbu-lT-fyVkRAUCsnmwzhgfn3iyAWfTVRXSGdxojuxQMxtAkGRZ2iMn8ncbj0d6CEFVOnzdJGkkR47GrZwRqsa8eS3fB80VRB569LHPmL_4GOH9VMWiWTnaCoO2IQ_5hoRey4mLwZ0lr69-OSioGEn-8ISKHdcmEbcnTYgdqxt2St-0IIRScBmH34mZeInGbFzDnDImyMrK9FO9F8CiZZ3UMzJW7dU6_Q_pL2ltqy2C8ibSQgvNuH9wdXQzipaLZtwouTuF23EtUsYrnqK0PP3Uox15OFl_u7AVVmCGCbaFrug?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type JSON data\012- HTML document, ASCII text, with very long lines (787), with no line terminators
Hash 2955720f72e3fb59548e26dd4d668095
8df7caf69dea1c56fd81aaf6f9fc2863039dddcd
b3505b927f6347b49044bcaae66dd10cdf72683b1b87546e93922bea7e113af8
POST /zS1b1Jy9eZ5EQaMJ7BEAtqL9Kati9RFEVHQ__dplBqmifzkQytMEulG2OkoV1I2536XeL5qGz-xQQsffa_eRGbagvJ1D87L3jGOEEC7nSg2eHD3SFNrUwf3elB3azN59TVGvXCJuXx_Q55Fd_ZBOth5I4MxTrjKRFwJI_sfN_wpS4umUdMAR05bt5X57_NArhxf1X5nI-c-wyXjZIGKhX7mgKQHuJonGFunGqwlfEHdeY99P7A221MnMoYZPpfMoTaOS5uaoND28P8oteFL_KGEaNt_BhWW7TreB4CvDger_9lg-P1TSDQqopkPGkcbDp7aJL1K_bfkqwDrdPfM6LC1cAJjvYOmwnheUXFOknalGmsKn_H7v8IVxYypmSa8waTiqZrjAhK5mk9fnGBXyDpBcZtZ03BCRb_fhG2gTiTzckOPeK-jG-DCQecIQ3R9rGyoW7SUtelhto4OYaazKrIeZCrId1Rv_QBi4OWj7PVbu-lT-fyVkRAUCsnmwzhgfn3iyAWfTVRXSGdxojuxQMxtAkGRZ2iMn8ncbj0d6CEFVOnzdJGkkR47GrZwRqsa8eS3fB80VRB569LHPmL_4GOH9VMWiWTnaCoO2IQ_5hoRey4mLwZ0lr69-OSioGEn-8ISKHdcmEbcnTYgdqxt2St-0IIRScBmH34mZeInGbFzDnDImyMrK9FO9F8CiZZ3UMzJW7dU6_Q_pL2ltqy2C8ibSQgvNuH9wdXQzipaLZtwouTuF23EtUsYrnqK0PP3Uox15OFl_u7AVVmCGCbaFrug? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
set-cookie: UUID=d9ad096f-675b-53c4-ae3f-46b70aecc2fb; Domain=.aj1090.online; Expires=Wed, 18-Sep-2024 10:34:15 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 787
date: Mon, 19 Sep 2022 10:34:15 GMT
aj1090.online/zH3-ihtvW7dQhFcN51LmhidvV2h3wWjZqbw-QudV6sOkmOclO3er1ckoYfx0WXb8QLXAXcj6bGz8h2UkeHqUTM5zlbvrmS0L0YHt-Rl6vf2xxm53V_jBWWgIanxTO4ZFLtNYhwtYmrPr9d2bijNAq3Y6urPVSr_8u39Epab-TDGG_afrl1SYRiLLN0x-oETciBVvP497xkAMLxQ8VZjDtJ84h2WF0OxbISSxRqyGJPRGrVHPsVFdCLYNYpg7Zvf8qo8UTp1sUT1jzqKA4FjORv85zkWRe1S4eX93cdhMd_KCpUk8g2VqMaU8Fd3aLdNk-oJtpxpL9sgrexEpszgFk5UnySaIdIyCOHk2PGpUouNVj8u-V-ctVugEgW0T6tULOatPtV9kpVM3IxONxlI54dWnhkvzG4BTvLdxEgliURj-qI4meO0bw3V75bmvOsugNNIbAnW97wSjY8KNm-gXIorYRBJ9mdPwlI8lrckpSZuXTF4zHW1gS6W1IL20iU-dInsiRvm1Zc33lEfn0zDqf7aXylmrb7wQ7NtvcaP36Wj_6L7ijV27Jl11-o6zTza9Ms0BQi2LaSHeWruB_nhKgWB8iwCdAZOR_EtJBG57-knfikcYAtDZpkShnH5IH-5MjhvkmNPTM8AfiBbaAr_wnzndRj09pgk1IKROwtCs5k6pg84JvR54ibmskBdxNhxaP6vsCkP6KJDKQh8CdjYX7DI9XGrTrC6HLPmSJ9P6y57ptcYBPZrekyryFMTfajro7kwAOA53VTJlTyXTRbPtt7w?
212.124.124.230200 787 B URL HTTP/1.1 aj1090.online/zH3-ihtvW7dQhFcN51LmhidvV2h3wWjZqbw-QudV6sOkmOclO3er1ckoYfx0WXb8QLXAXcj6bGz8h2UkeHqUTM5zlbvrmS0L0YHt-Rl6vf2xxm53V_jBWWgIanxTO4ZFLtNYhwtYmrPr9d2bijNAq3Y6urPVSr_8u39Epab-TDGG_afrl1SYRiLLN0x-oETciBVvP497xkAMLxQ8VZjDtJ84h2WF0OxbISSxRqyGJPRGrVHPsVFdCLYNYpg7Zvf8qo8UTp1sUT1jzqKA4FjORv85zkWRe1S4eX93cdhMd_KCpUk8g2VqMaU8Fd3aLdNk-oJtpxpL9sgrexEpszgFk5UnySaIdIyCOHk2PGpUouNVj8u-V-ctVugEgW0T6tULOatPtV9kpVM3IxONxlI54dWnhkvzG4BTvLdxEgliURj-qI4meO0bw3V75bmvOsugNNIbAnW97wSjY8KNm-gXIorYRBJ9mdPwlI8lrckpSZuXTF4zHW1gS6W1IL20iU-dInsiRvm1Zc33lEfn0zDqf7aXylmrb7wQ7NtvcaP36Wj_6L7ijV27Jl11-o6zTza9Ms0BQi2LaSHeWruB_nhKgWB8iwCdAZOR_EtJBG57-knfikcYAtDZpkShnH5IH-5MjhvkmNPTM8AfiBbaAr_wnzndRj09pgk1IKROwtCs5k6pg84JvR54ibmskBdxNhxaP6vsCkP6KJDKQh8CdjYX7DI9XGrTrC6HLPmSJ9P6y57ptcYBPZrekyryFMTfajro7kwAOA53VTJlTyXTRbPtt7w?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type JSON data\012- HTML document, ASCII text, with very long lines (787), with no line terminators
Hash 90614303adf36ff0e40fe47a258f8543
e7c295aecb05de2c13a4086500e42729cfddb9b2
a9660796c078baf9b451b2ac33e21a3874f089ca3c142f4bcce67257c41c35b9
POST /zH3-ihtvW7dQhFcN51LmhidvV2h3wWjZqbw-QudV6sOkmOclO3er1ckoYfx0WXb8QLXAXcj6bGz8h2UkeHqUTM5zlbvrmS0L0YHt-Rl6vf2xxm53V_jBWWgIanxTO4ZFLtNYhwtYmrPr9d2bijNAq3Y6urPVSr_8u39Epab-TDGG_afrl1SYRiLLN0x-oETciBVvP497xkAMLxQ8VZjDtJ84h2WF0OxbISSxRqyGJPRGrVHPsVFdCLYNYpg7Zvf8qo8UTp1sUT1jzqKA4FjORv85zkWRe1S4eX93cdhMd_KCpUk8g2VqMaU8Fd3aLdNk-oJtpxpL9sgrexEpszgFk5UnySaIdIyCOHk2PGpUouNVj8u-V-ctVugEgW0T6tULOatPtV9kpVM3IxONxlI54dWnhkvzG4BTvLdxEgliURj-qI4meO0bw3V75bmvOsugNNIbAnW97wSjY8KNm-gXIorYRBJ9mdPwlI8lrckpSZuXTF4zHW1gS6W1IL20iU-dInsiRvm1Zc33lEfn0zDqf7aXylmrb7wQ7NtvcaP36Wj_6L7ijV27Jl11-o6zTza9Ms0BQi2LaSHeWruB_nhKgWB8iwCdAZOR_EtJBG57-knfikcYAtDZpkShnH5IH-5MjhvkmNPTM8AfiBbaAr_wnzndRj09pgk1IKROwtCs5k6pg84JvR54ibmskBdxNhxaP6vsCkP6KJDKQh8CdjYX7DI9XGrTrC6HLPmSJ9P6y57ptcYBPZrekyryFMTfajro7kwAOA53VTJlTyXTRbPtt7w? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
set-cookie: UUID=d9ad096f-675b-53c4-ae3f-46b70aecc2fb; Domain=.aj1090.online; Expires=Wed, 18-Sep-2024 10:34:15 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 787
date: Mon, 19 Sep 2022 10:34:15 GMT
aj1090.online/zYusEoK0EkpsRh7N3Z0ORaLgzH_GgAp04VpTK__B0ZlS9VUSkHbkkHYGMXNoEX4Ky8L--n8B38IT7zJ8okGe59JcDqXAIABTAjt6KdaolB64ipV_NiWZBAD2tYCuv7X_Cq1QnpjNfw45DnUHH44FfVaRzd2Aff9EFzHySjdNpXDKcOKfVmFSumL3iUE-326_fxqJ3IU7gDhrMyLTfk9t97hkjsIR82gGC1fHoXr0sOIX_rTdYQ2ol07pk7ZkVv3dnYHjBNxImZHlhfUMuSIAw73shGoSlguvCnxwwdk3cfdop6awUfr86ZT7X83sCnpdOTG8eGwIG9seoENiXFRU37xp8PFzVkXCl3I2THeA88qNwY1lRyCRU4zaV0igTTYUjXRjdoWz4TsF2gVPnht-Jg_e3dGxWelh15aXnLAn8QwvjSW6a06Sym-wDEYVWhlOBiQ2f2gdd89xpHO724bHseCwHrFy8Wki3SiqjlP1FtHyYWcOVfGlciaw6JdCuufdQbAFr4k-yh-3hJVPGF33BYH6wXNbBhAcURoUk1jK1KlSKwZadIHbguL-uXjNPgkcfbeGju_2IfaG7KwhmwX5v2M9L7uWbd-pq-Cc2HNmCAv3nblWdCC0k8F7bszvYRooIy-YDJ2MS-mjl5h105tTd_EpHP6_Jbx28wytWIrcMK4R385oBAxQH8zwxI5scq8U5UfPMwRiOnspRxW7J3aJ5aUGitO6aDZVwX4Ykvn2GeF9ClLOs9_XyiZ0KOthqYTyF5N2C89HxJChSmnTQP65r6Q?
212.124.124.230200 1.0 kB URL HTTP/1.1 aj1090.online/zYusEoK0EkpsRh7N3Z0ORaLgzH_GgAp04VpTK__B0ZlS9VUSkHbkkHYGMXNoEX4Ky8L--n8B38IT7zJ8okGe59JcDqXAIABTAjt6KdaolB64ipV_NiWZBAD2tYCuv7X_Cq1QnpjNfw45DnUHH44FfVaRzd2Aff9EFzHySjdNpXDKcOKfVmFSumL3iUE-326_fxqJ3IU7gDhrMyLTfk9t97hkjsIR82gGC1fHoXr0sOIX_rTdYQ2ol07pk7ZkVv3dnYHjBNxImZHlhfUMuSIAw73shGoSlguvCnxwwdk3cfdop6awUfr86ZT7X83sCnpdOTG8eGwIG9seoENiXFRU37xp8PFzVkXCl3I2THeA88qNwY1lRyCRU4zaV0igTTYUjXRjdoWz4TsF2gVPnht-Jg_e3dGxWelh15aXnLAn8QwvjSW6a06Sym-wDEYVWhlOBiQ2f2gdd89xpHO724bHseCwHrFy8Wki3SiqjlP1FtHyYWcOVfGlciaw6JdCuufdQbAFr4k-yh-3hJVPGF33BYH6wXNbBhAcURoUk1jK1KlSKwZadIHbguL-uXjNPgkcfbeGju_2IfaG7KwhmwX5v2M9L7uWbd-pq-Cc2HNmCAv3nblWdCC0k8F7bszvYRooIy-YDJ2MS-mjl5h105tTd_EpHP6_Jbx28wytWIrcMK4R385oBAxQH8zwxI5scq8U5UfPMwRiOnspRxW7J3aJ5aUGitO6aDZVwX4Ykvn2GeF9ClLOs9_XyiZ0KOthqYTyF5N2C89HxJChSmnTQP65r6Q?
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type JSON data\012- HTML document, ASCII text, with very long lines (1003), with no line terminators
Hash b52e850b5f7ff35972a795de54bd7cef
5d434f9cfcc8b94bbf568dd533af699e48ff7e71
f341626a94345ea778674f34db25771e4edae17ebac1f7886d975bc4a3b12181
POST /zYusEoK0EkpsRh7N3Z0ORaLgzH_GgAp04VpTK__B0ZlS9VUSkHbkkHYGMXNoEX4Ky8L--n8B38IT7zJ8okGe59JcDqXAIABTAjt6KdaolB64ipV_NiWZBAD2tYCuv7X_Cq1QnpjNfw45DnUHH44FfVaRzd2Aff9EFzHySjdNpXDKcOKfVmFSumL3iUE-326_fxqJ3IU7gDhrMyLTfk9t97hkjsIR82gGC1fHoXr0sOIX_rTdYQ2ol07pk7ZkVv3dnYHjBNxImZHlhfUMuSIAw73shGoSlguvCnxwwdk3cfdop6awUfr86ZT7X83sCnpdOTG8eGwIG9seoENiXFRU37xp8PFzVkXCl3I2THeA88qNwY1lRyCRU4zaV0igTTYUjXRjdoWz4TsF2gVPnht-Jg_e3dGxWelh15aXnLAn8QwvjSW6a06Sym-wDEYVWhlOBiQ2f2gdd89xpHO724bHseCwHrFy8Wki3SiqjlP1FtHyYWcOVfGlciaw6JdCuufdQbAFr4k-yh-3hJVPGF33BYH6wXNbBhAcURoUk1jK1KlSKwZadIHbguL-uXjNPgkcfbeGju_2IfaG7KwhmwX5v2M9L7uWbd-pq-Cc2HNmCAv3nblWdCC0k8F7bszvYRooIy-YDJ2MS-mjl5h105tTd_EpHP6_Jbx28wytWIrcMK4R385oBAxQH8zwxI5scq8U5UfPMwRiOnspRxW7J3aJ5aUGitO6aDZVwX4Ykvn2GeF9ClLOs9_XyiZ0KOthqYTyF5N2C89HxJChSmnTQP65r6Q? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://e.4shared.com
set-cookie: UUID=d9ad096f-675b-53c4-ae3f-46b70aecc2fb; Domain=.aj1090.online; Expires=Wed, 18-Sep-2024 10:34:15 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 1003
date: Mon, 19 Sep 2022 10:34:15 GMT
www.jscount.com/a/4/28b1a41b/z?ref=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&url=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&rand=0.43598521627907616
204.155.149.132200 OK 43 B URL HTTP/1.1 www.jscount.com/a/4/28b1a41b/z?ref=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&url=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&rand=0.43598521627907616
IP 204.155.149.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /a/4/28b1a41b/z?ref=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&url=http%3A//e.4shared.com/linkerror.jsp%3Fcau%3Ddel&rand=0.43598521627907616 HTTP/1.1
Host: www.jscount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:34:15 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache-Coyote/1.1
srvF: 204.155.149.132
srvB: 10.1.3.43:8080
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a9323cf0781cad0d5ac23f0c81c105b1
772d0218be53da9f875bb96a287c904976c296da
5c808b03cd8dd26275f12a850d8a36b467246c1461ea65a4c717acb04f2ca722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/analytics.js
142.250.74.40200 OK 20 kB URL HTTP/2 ssl.google-analytics.com/analytics.js
IP 142.250.74.40:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 19 Sep 2022 09:12:04 GMT
expires: Mon, 19 Sep 2022 11:12:04 GMT
cache-control: public, max-age=7200
age: 4931
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (581)
Size 158 kB (157726 bytes)
Hash 6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 449806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e.4shared.com/favicon.ico
199.101.134.236200 OK 1.2 kB URL HTTP/1.1 e.4shared.com/favicon.ico
IP 199.101.134.236:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3868e5a72e0e67d5835ec019ad73eae7
5140f1662c47c393b276e656d35c5c45408b7128
3e789ea36eb344f98c830f099cbda8fce03cc3618e2130d272e915a7f8ab2eb7
GET /favicon.ico HTTP/1.1
Host: e.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/linkerror.jsp?cau=del
Cookie: day1host=h
HTTP/1.1 200 OK
Server: 573
Accept-Ranges: bytes
ETag: W/"1150-1493818900000"
Last-Modified: Wed, 03 May 2017 13:41:40 GMT
Content-Type: image/x-icon;charset=UTF-8
Content-Length: 1150
Date: Mon, 19 Sep 2022 10:34:15 GMT
www.google-analytics.com/j/collect?v=1&_v=j96&a=1412046919&t=pageview&_s=1&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAEABAAAAAC~&jid=1903073555&gjid=1611461595&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&_r=1&_slc=1&z=1548025852
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=1412046919&t=pageview&_s=1&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAEABAAAAAC~&jid=1903073555&gjid=1611461595&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&_r=1&_slc=1&z=1548025852
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j96&a=1412046919&t=pageview&_s=1&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEDAAEABAAAAAC~&jid=1903073555&gjid=1611461595&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&_r=1&_slc=1&z=1548025852 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://e.4shared.com
date: Mon, 19 Sep 2022 10:34:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.validate.min.js?ver=-1447866770
204.155.149.41200 OK 8.4 kB URL HTTP/2 static.4shared.com/js/plugins/jquery.validate.min.js?ver=-1447866770
IP 204.155.149.41:0
File type Unicode text, UTF-8 text, with very long lines (22552)
Hash 32bf52855a385b486e495c656cb6e2f8
210a2577674ec0059dde530c6df9ad7d2c5d7f0a
ca3ded7d3de66dd480039c001ab027c7f8081fe91ba796d5f3a96039d5653115
GET /js/plugins/jquery.validate.min.js?ver=-1447866770 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"58a2"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
seeptoag.net/custom
139.45.197.250200 OK 0 B IP 139.45.197.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
OPTIONS /custom HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://e.4shared.com/
Origin: http://e.4shared.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: http://e.4shared.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
seeptoag.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Phishing
POST /custom HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://e.4shared.com/
Content-Type: application/json
Origin: http://e.4shared.com
Content-Length: 392
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 9e0757070b6be2156d5c9f9a6e09fcae
access-control-allow-origin: http://e.4shared.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
seeptoag.net/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
Analyzer Verdict Alert fortinet Phishing
POST /custom HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://e.4shared.com/
Content-Type: application/json
Origin: http://e.4shared.com
Content-Length: 383
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:15 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: c9249ffb5b0f57f80f5dedafac01e9f5
access-control-allow-origin: http://e.4shared.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
aj1090.online/zIV4hzIPn3OGXZKTD_YV36XFNPGZpOqULyUlji4X2b91rxX1Yqz3jd5K5hHb467EJiBG5GyFjqLYBGKv4gX6f841msNCeZXox9mFJjlVDgTwjYAOU9P--rpC5lM4KFAeJRqyaiKl6z9CXn9JJxuvmK12icigbBoKaeXnvoB353VaTqpsQeSm1uWDfS3szk32lTx9Ta81uaEEU70IFP5ZpB9Jz5mui-kfwjPTOEOA32WeJdBRgjDi75CnsnLjPKJDnw-bMeFOSoC76EvkKw10AOly-Z6UjUl2Tsb5GXnFamdq1s7aSEoPEihRoyzIQatwiIUobmzMY2xjH7ZDA6vl13-fL-P0u-8dwv4oGHN_ZUlL3Wr8u728BTCjVuy8pXZxAZaJVNBiS2lkIWRt_33pZHPSMHSa3O2Lx4rjcn65cDmswgsC9YvQyn_XjU9IkizAH538MeCTkOLH3fM2JMO5zPApbJpPsVeUEjVS4KCBF8_F5IR_YGWowBlc9yt-xgUTDv44VZrwXD7ZsnDyotZQG1ijVoOC7J_lgHTPPdEsWCOJnRfWsCIinZ3p2cOfp?DC=DO
212.124.124.230200 49 B URL HTTP/1.1 aj1090.online/zIV4hzIPn3OGXZKTD_YV36XFNPGZpOqULyUlji4X2b91rxX1Yqz3jd5K5hHb467EJiBG5GyFjqLYBGKv4gX6f841msNCeZXox9mFJjlVDgTwjYAOU9P--rpC5lM4KFAeJRqyaiKl6z9CXn9JJxuvmK12icigbBoKaeXnvoB353VaTqpsQeSm1uWDfS3szk32lTx9Ta81uaEEU70IFP5ZpB9Jz5mui-kfwjPTOEOA32WeJdBRgjDi75CnsnLjPKJDnw-bMeFOSoC76EvkKw10AOly-Z6UjUl2Tsb5GXnFamdq1s7aSEoPEihRoyzIQatwiIUobmzMY2xjH7ZDA6vl13-fL-P0u-8dwv4oGHN_ZUlL3Wr8u728BTCjVuy8pXZxAZaJVNBiS2lkIWRt_33pZHPSMHSa3O2Lx4rjcn65cDmswgsC9YvQyn_XjU9IkizAH538MeCTkOLH3fM2JMO5zPApbJpPsVeUEjVS4KCBF8_F5IR_YGWowBlc9yt-xgUTDv44VZrwXD7ZsnDyotZQG1ijVoOC7J_lgHTPPdEsWCOJnRfWsCIinZ3p2cOfp?DC=DO
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /zIV4hzIPn3OGXZKTD_YV36XFNPGZpOqULyUlji4X2b91rxX1Yqz3jd5K5hHb467EJiBG5GyFjqLYBGKv4gX6f841msNCeZXox9mFJjlVDgTwjYAOU9P--rpC5lM4KFAeJRqyaiKl6z9CXn9JJxuvmK12icigbBoKaeXnvoB353VaTqpsQeSm1uWDfS3szk32lTx9Ta81uaEEU70IFP5ZpB9Jz5mui-kfwjPTOEOA32WeJdBRgjDi75CnsnLjPKJDnw-bMeFOSoC76EvkKw10AOly-Z6UjUl2Tsb5GXnFamdq1s7aSEoPEihRoyzIQatwiIUobmzMY2xjH7ZDA6vl13-fL-P0u-8dwv4oGHN_ZUlL3Wr8u728BTCjVuy8pXZxAZaJVNBiS2lkIWRt_33pZHPSMHSa3O2Lx4rjcn65cDmswgsC9YvQyn_XjU9IkizAH538MeCTkOLH3fM2JMO5zPApbJpPsVeUEjVS4KCBF8_F5IR_YGWowBlc9yt-xgUTDv44VZrwXD7ZsnDyotZQG1ijVoOC7J_lgHTPPdEsWCOJnRfWsCIinZ3p2cOfp?DC=DO HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"49-1654593402000"
last-modified: Tue, 07 Jun 2022 09:16:42 GMT
content-type: image/gif
content-length: 49
date: Mon, 19 Sep 2022 10:34:15 GMT
aj1090.online/zJ1dbss699fxI4WGY_xRZSFqVY07fbfqEPMmX-JzTYUTEONqWmh8jQIfpy9IKpI6jE1mlcYskavBaFSTCtGoTR2W8cXkrgz-lrrgk10ZIprgAob-jwwbRXVWkrm4Ln6H3UcbRBxvn34ZUyp8Wj6jeBI65XWU-N-9lLsyzK6Mu77pIqTu9eYmOroE3z1oPAw1hwUD5M0PVIlGxM3T5Kar3Sc3sESHD2eTl5fcwYWhxGiCv4Nzt8G5zK-GbV_2IXkfEkgCh8IYsRV8eJypMzkUbTYEN1QxX1m1CNOR_U9qky92erdLWWcFYj9Pr7Y7xXW6h9fdLJ0DPpP25BgsPo0beJ3P2JYMLailUKTxA9xSE0B8JA-gaW9gf1Tg1Az1JN-ruvkFYVET1nuvj3G-w6IwPjkKHk6piuVIsz4PMRYwLn4VySqx48jHHeM7OFG0DwoekL4eBRGZIbkpJ3a4CL69wgEjSTrtjc89Yeo_KUM6EGvn7EAOzQPHuD_fNZ06vfHBa4dh9fsVApRw4J7QFy_hovZ_kMHOEcRzwjZcIvDf3vSoDT2GZazZPfiMaZOyw?DC=DO
212.124.124.230200 49 B URL HTTP/1.1 aj1090.online/zJ1dbss699fxI4WGY_xRZSFqVY07fbfqEPMmX-JzTYUTEONqWmh8jQIfpy9IKpI6jE1mlcYskavBaFSTCtGoTR2W8cXkrgz-lrrgk10ZIprgAob-jwwbRXVWkrm4Ln6H3UcbRBxvn34ZUyp8Wj6jeBI65XWU-N-9lLsyzK6Mu77pIqTu9eYmOroE3z1oPAw1hwUD5M0PVIlGxM3T5Kar3Sc3sESHD2eTl5fcwYWhxGiCv4Nzt8G5zK-GbV_2IXkfEkgCh8IYsRV8eJypMzkUbTYEN1QxX1m1CNOR_U9qky92erdLWWcFYj9Pr7Y7xXW6h9fdLJ0DPpP25BgsPo0beJ3P2JYMLailUKTxA9xSE0B8JA-gaW9gf1Tg1Az1JN-ruvkFYVET1nuvj3G-w6IwPjkKHk6piuVIsz4PMRYwLn4VySqx48jHHeM7OFG0DwoekL4eBRGZIbkpJ3a4CL69wgEjSTrtjc89Yeo_KUM6EGvn7EAOzQPHuD_fNZ06vfHBa4dh9fsVApRw4J7QFy_hovZ_kMHOEcRzwjZcIvDf3vSoDT2GZazZPfiMaZOyw?DC=DO
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /zJ1dbss699fxI4WGY_xRZSFqVY07fbfqEPMmX-JzTYUTEONqWmh8jQIfpy9IKpI6jE1mlcYskavBaFSTCtGoTR2W8cXkrgz-lrrgk10ZIprgAob-jwwbRXVWkrm4Ln6H3UcbRBxvn34ZUyp8Wj6jeBI65XWU-N-9lLsyzK6Mu77pIqTu9eYmOroE3z1oPAw1hwUD5M0PVIlGxM3T5Kar3Sc3sESHD2eTl5fcwYWhxGiCv4Nzt8G5zK-GbV_2IXkfEkgCh8IYsRV8eJypMzkUbTYEN1QxX1m1CNOR_U9qky92erdLWWcFYj9Pr7Y7xXW6h9fdLJ0DPpP25BgsPo0beJ3P2JYMLailUKTxA9xSE0B8JA-gaW9gf1Tg1Az1JN-ruvkFYVET1nuvj3G-w6IwPjkKHk6piuVIsz4PMRYwLn4VySqx48jHHeM7OFG0DwoekL4eBRGZIbkpJ3a4CL69wgEjSTrtjc89Yeo_KUM6EGvn7EAOzQPHuD_fNZ06vfHBa4dh9fsVApRw4J7QFy_hovZ_kMHOEcRzwjZcIvDf3vSoDT2GZazZPfiMaZOyw?DC=DO HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"49-1654593402000"
last-modified: Tue, 07 Jun 2022 09:16:42 GMT
content-type: image/gif
content-length: 49
date: Mon, 19 Sep 2022 10:34:15 GMT
aj1090.online/zHxqIiJMF6FBh-RUnD7c2xF_yIm8qrhtuZOz3elVz_VFM6WudeSLQVHS8STplzDNQufvwNVT7JEa14LIbkOmAKgAly-81BaBq2sz5iyUavzOk69bIVbEi59gsxQAVo_B16yHpNo1urQkTCZAD5FdC96zoTGJRKy1zjEY10xYtecuhudYAzrb4anX6wXGJ5CJ6fNu-gcaEdUEmNPzbSGc8JZBxx1p4Ec-cxGh2WJO25tFbDgtiah-2UHTnfaWgEMRMaQZN6iYpewtTZXY2DS-kSC6Doq8Y1p2LaBDaFKyTxXl7Ozer5j68xzP0HNTlIrUHfMHa0w5-D7RoOuimhRvr2WWEKj7nAtEd2-98WxW8quVxASysUePpSjnS_Jky6_GvwdOrDI8I2xvc45CB4wRds4QVv3Tvy8RAaLNcUiZYpcLWvm3P0iUYbN92aQMnzxd92mPcPRNankHw8qA4-7B3-0bLo_6TK8TlXQqzehsnkx5g6IojGpjyXy22ch8F5qSISTYgc4tz1ANhk5TWsEHgpGym9nqTsm6GlX67bGs59h-F_yugGNXjPEkF3r4N?DC=DO
212.124.124.230200 49 B URL HTTP/1.1 aj1090.online/zHxqIiJMF6FBh-RUnD7c2xF_yIm8qrhtuZOz3elVz_VFM6WudeSLQVHS8STplzDNQufvwNVT7JEa14LIbkOmAKgAly-81BaBq2sz5iyUavzOk69bIVbEi59gsxQAVo_B16yHpNo1urQkTCZAD5FdC96zoTGJRKy1zjEY10xYtecuhudYAzrb4anX6wXGJ5CJ6fNu-gcaEdUEmNPzbSGc8JZBxx1p4Ec-cxGh2WJO25tFbDgtiah-2UHTnfaWgEMRMaQZN6iYpewtTZXY2DS-kSC6Doq8Y1p2LaBDaFKyTxXl7Ozer5j68xzP0HNTlIrUHfMHa0w5-D7RoOuimhRvr2WWEKj7nAtEd2-98WxW8quVxASysUePpSjnS_Jky6_GvwdOrDI8I2xvc45CB4wRds4QVv3Tvy8RAaLNcUiZYpcLWvm3P0iUYbN92aQMnzxd92mPcPRNankHw8qA4-7B3-0bLo_6TK8TlXQqzehsnkx5g6IojGpjyXy22ch8F5qSISTYgc4tz1ANhk5TWsEHgpGym9nqTsm6GlX67bGs59h-F_yugGNXjPEkF3r4N?DC=DO
IP 212.124.124.230:0
ASN #47328 True Records Inc.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /zHxqIiJMF6FBh-RUnD7c2xF_yIm8qrhtuZOz3elVz_VFM6WudeSLQVHS8STplzDNQufvwNVT7JEa14LIbkOmAKgAly-81BaBq2sz5iyUavzOk69bIVbEi59gsxQAVo_B16yHpNo1urQkTCZAD5FdC96zoTGJRKy1zjEY10xYtecuhudYAzrb4anX6wXGJ5CJ6fNu-gcaEdUEmNPzbSGc8JZBxx1p4Ec-cxGh2WJO25tFbDgtiah-2UHTnfaWgEMRMaQZN6iYpewtTZXY2DS-kSC6Doq8Y1p2LaBDaFKyTxXl7Ozer5j68xzP0HNTlIrUHfMHa0w5-D7RoOuimhRvr2WWEKj7nAtEd2-98WxW8quVxASysUePpSjnS_Jky6_GvwdOrDI8I2xvc45CB4wRds4QVv3Tvy8RAaLNcUiZYpcLWvm3P0iUYbN92aQMnzxd92mPcPRNankHw8qA4-7B3-0bLo_6TK8TlXQqzehsnkx5g6IojGpjyXy22ch8F5qSISTYgc4tz1ANhk5TWsEHgpGym9nqTsm6GlX67bGs59h-F_yugGNXjPEkF3r4N?DC=DO HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"49-1654593402000"
last-modified: Tue, 07 Jun 2022 09:16:42 GMT
content-type: image/gif
content-length: 49
date: Mon, 19 Sep 2022 10:34:15 GMT
static.4shared.com/themes/default.css?ver=-94547178
204.155.149.41200 OK 6.2 kB URL HTTP/2 static.4shared.com/themes/default.css?ver=-94547178
IP 204.155.149.41:0
Hash ef3c90a5f44273dca88d190376b16aff
348e6bc87af92e3ee6471452684af76fb7c1b8ea
8d1d68358f7577714b35ee87b71f5219e19614c39e1dc3f1a0c7f336b103d8d6
GET /themes/default.css?ver=-94547178 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"9b8"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/relativeScript.js?ver=-798805249
204.155.149.41200 OK 9.7 kB URL HTTP/2 static.4shared.com/js/relativeScript.js?ver=-798805249
IP 204.155.149.41:0
Hash 25788315bcf8f555fdbc45d6659c5fbc
7112cddacffffbb7821d6d64c8938c95ddc70db6
0c63f12e328bc57ca4af3ef158f27664b6641642ea36b8d45af1d8dc0d798180
GET /js/relativeScript.js?ver=-798805249 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"10bf"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f0747f732f05e110f9fe9938de620d3
d4e9a55014187d0d2af174e5c27d03cc10c6cb05
32a866308c9d930c425a8ced1974039a409528cb4a0bd07bfbe4d8cd39be9742
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.4shared.com/css/ui/media-queries.css?ver=984185307
204.155.149.41200 OK 94 kB URL HTTP/2 static.4shared.com/css/ui/media-queries.css?ver=984185307
IP 204.155.149.41:0
Hash fd1efdc04b09e6aaec2d17369820c385
6bdbe65d2bd551f9493849096b2e1e40c6cb5766
a11630866769ff1b004febdaddb7e6a58f9d40d3a4102b79ea586bfa9be32d5d
GET /css/ui/media-queries.css?ver=984185307 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"4326"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/reloadBackground.js?ver=1591064902
204.155.149.41200 OK 3.7 kB URL HTTP/2 static.4shared.com/js/reloadBackground.js?ver=1591064902
IP 204.155.149.41:0
Hash 4134474580a980cf2e0eb38e2cb27c11
b9b4abbbe95467288c0b18c7a0928cacad48e79c
98b0bce98bd3e54c2885622dc447eae86be191ac50211afd99b53d70baee5601
GET /js/reloadBackground.js?ver=1591064902 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5e7"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-9944716694200882
142.250.74.130200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-9944716694200882
IP 142.250.74.130:0
File type ASCII text, with very long lines (2903)
Hash 978cf23d58e824edd50c1b8fe17f0957
16faa5d4ef32214c3ec71808c6578b4167b95db2
c6a3ee2a75e70d6b107a5cb75fa30a795d2f45b40230e334109737a84bf653ba
GET /pagead/js/adsbygoogle.js?client=ca-pub-9944716694200882 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://e.4shared.com
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Mon, 19 Sep 2022 10:34:16 GMT
expires: Mon, 19 Sep 2022 10:34:16 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4237134889170960442
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 58006
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6f0747f732f05e110f9fe9938de620d3
d4e9a55014187d0d2af174e5c27d03cc10c6cb05
32a866308c9d930c425a8ced1974039a409528cb4a0bd07bfbe4d8cd39be9742
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220914/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220914/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220914/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 19 Sep 2022 03:52:54 GMT
expires: Mon, 03 Oct 2022 03:52:54 GMT
cache-control: public, max-age=1209600
age: 24082
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5cd63cb6d6ee0c229d42c30cea96385b
39b42291f5264020f2bb6f40bff517618aae0bcd
078d712d379fb57dce7db2075f83a1f4c65571e520f2cdbeccac3ddc008b05a4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 56433b6932f28a949ac82fec1caa9e99
017c5a1ccc0f6e68fd60a9d0658c0526b81b4156
a6fe9208db3d30b3a81378a59aa588480ab2080c33f1d0921752c2dfdc76d1fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=e.4shared.com&callback=_gfp_s_&client=ca-pub-9944716694200882
172.217.21.162200 OK 202 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=e.4shared.com&callback=_gfp_s_&client=ca-pub-9944716694200882
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash c0690d843b819d25c32951e3713de421
464f0db9eada8d44b94500a6ccb65772380ecbd9
981f9d5ccda7d03eb33b41aa789d7c14091e214eae36dcc522161caef9f0e8f5
GET /gampad/cookie.js?domain=e.4shared.com&callback=_gfp_s_&client=ca-pub-9944716694200882 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:34:16 GMT
server: cafe
cache-control: private
content-length: 202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=e.4shared.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=e.4shared.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=e.4shared.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:34:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=e.4shared.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=e.4shared.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=e.4shared.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Sep 2022 10:34:16 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.validate.min.js?ver=-1447866770
204.155.146.95200 OK 7.8 kB URL HTTP/2 static.4shared.com/js/plugins/jquery.validate.min.js?ver=-1447866770
IP 204.155.146.95:0
Hash 498325c75c9be54df68b9944c4c64ad0
025b26c0350bb4fa73c50a400cd94c28dccca52d
30124c04d4c8ae47e9094e698efdbe0dbcaa7bb13b4eb5f7282c6c565dfa1d7e
GET /js/plugins/jquery.validate.min.js?ver=-1447866770 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"58a2"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fd6f5d48a8eb6a76f7c699a235f6ed95
6dfe5af37fa0c7a6ed073d73d8be6e23ec4e1cc4
a7239c791a93ecf634d1afef2a09feae30f46decdbfa039403bd10394e444d56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.4shared.com/js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403
204.155.146.95200 OK 9.9 kB URL HTTP/2 static.4shared.com/js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403
IP 204.155.146.95:0
Hash 7d656d9622f9ab54def87eacd33a30e5
9562a61fc38071126d7ed5f5147afd77af926050
c5b848996e4f2a05f75644d37524043eb37cec5c6dcf29407261eb9fcc559c25
GET /js/plugins/bootstrap/js/bootstrap.min.js?ver=1454307403 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"90b5"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/themes/default.css?ver=-94547178
204.155.146.95200 OK 848 B URL HTTP/2 static.4shared.com/themes/default.css?ver=-94547178
IP 204.155.146.95:0
Hash 96c72d0b336bfd44bd7d92d82a1e9320
83e2008f0fd25daf8ce319c651cf2700d65052b7
25568749d3009a82bbcfeaf70695f16c155d3c0a149acd4e32a7994496fb69c3
GET /themes/default.css?ver=-94547178 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"9b8"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j96&a=1412046919&t=timing&_s=2&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=2623&pdt=2&dns=1&rrt=0&srt=129&tcp=123&dit=1512&clt=1581&_gst=1513&_gbt=1890&_u=IEDAAEABAAAAAC~&jid=&gjid=&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&z=1202649283
142.250.74.174200 OK 35 B URL HTTP/1.1 www.google-analytics.com/collect?v=1&_v=j96&a=1412046919&t=timing&_s=2&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=2623&pdt=2&dns=1&rrt=0&srt=129&tcp=123&dit=1512&clt=1581&_gst=1513&_gbt=1890&_u=IEDAAEABAAAAAC~&jid=&gjid=&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&z=1202649283
IP 142.250.74.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j96&a=1412046919&t=timing&_s=2&dl=http%3A%2F%2Fe.4shared.com%2Flinkerror.jsp%3Fcau%3Ddel&ul=en-us&de=UTF-8&dt=4shared.com%20-%20free%20file%20sharing%20and%20storage&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&plt=2623&pdt=2&dns=1&rrt=0&srt=129&tcp=123&dit=1512&clt=1581&_gst=1513&_gbt=1890&_u=IEDAAEABAAAAAC~&jid=&gjid=&cid=704884544.1663583636&tid=UA-306602-1&_gid=1933447579.1663583636&z=1202649283 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://e.4shared.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Pragma: no-cache
X-Content-Type-Options: nosniff
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
Date: Mon, 19 Sep 2022 05:47:25 GMT
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Age: 17211
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eed36599724b02c61736ef5cebf3040b
aaa01755f0e96615159e0880b9d2e9c7dbe54a0c
017e0bc6c0ca49c88b0e21e1bf3be45c4c83974dc4ba5d90b6057310a5ff8fce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 19 Sep 2022 10:34:16 GMT
expires: Mon, 19 Sep 2022 10:34:16 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4ee5c6443c11da4a5cf7ea801cd0c62f
e742a7ee1cbedf1a23a82361f3873dbc165f927c
e3682e49ed03efcf590a500154380807b54433f8344923e9017994bdf0d46924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 10:34:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash f29d9062b09f26b51b8ff89532b6459b
acacb010b57162a2dc67cc727336b9e430542596
4836170099fd7839937d8b9efd158aad21094f162b4b7c116bd525fe9209f839
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 19 Sep 2022 10:34:16 GMT
date: Mon, 19 Sep 2022 10:34:16 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-hCepOXVYtABBSHNEqcWgfg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.4shared.com/js/ld.js?ver=139638503
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/ld.js?ver=139638503
IP 204.155.146.95:0
GET /js/ld.js?ver=139638503 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"250"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/captcha.js?ver=1799712776
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/captcha.js?ver=1799712776
IP 204.155.146.95:0
GET /js/captcha.js?ver=1799712776 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"846"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
arifinzyt.blogspot.com/2012/03/url
142.250.74.161404 Not Found 0 B URL HTTP/1.1 arifinzyt.blogspot.com/2012/03/url
IP 142.250.74.161:0
GET /2012/03/url HTTP/1.1
Host: arifinzyt.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 14651
Server: GSE
static.4shared.com/js/header.js?ver=-1803071847
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/header.js?ver=-1803071847
IP 204.155.149.41:0
GET /js/header.js?ver=-1803071847 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"381f"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/common.css?ver=-1718006158
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/css/common.css?ver=-1718006158
IP 204.155.149.41:0
GET /css/common.css?ver=-1718006158 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"6289"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.localStorage.js?ver=1720368027
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.localStorage.js?ver=1720368027
IP 204.155.146.95:0
GET /js/plugins/jquery.localStorage.js?ver=1720368027 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1352"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
IP 204.155.146.95:0
GET /js/plugins/jquery.cycle.all.min.js?ver=-713535238 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"7124"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/utils.js?ver=1230697711
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/utils.js?ver=1230697711
IP 204.155.149.41:0
GET /js/utils.js?ver=1230697711 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"64f1"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
seeptoag.net/pfe/current/tag.min.js?z=3461303
139.45.197.250200 OK 0 B URL HTTP/2 seeptoag.net/pfe/current/tag.min.js?z=3461303
IP 139.45.197.250:0
GET /pfe/current/tag.min.js?z=3461303 HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:36:49 GMT
etag: W/"632451c1-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/PopupModule.js?ver=-1437295376
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/PopupModule.js?ver=-1437295376
IP 204.155.149.41:0
GET /js/PopupModule.js?ver=-1437295376 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"151a"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/tipTip.css?ver=1396815821
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/css/tipTip.css?ver=1396815821
IP 204.155.149.41:0
GET /css/tipTip.css?ver=1396815821 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"839"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/ui/elements.css?ver=-1689671951
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/css/ui/elements.css?ver=-1689671951
IP 204.155.146.95:0
GET /css/ui/elements.css?ver=-1689671951 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"599c"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/Events.js?ver=2120478973
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/Events.js?ver=2120478973
IP 204.155.149.41:0
GET /js/Events.js?ver=2120478973 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5ce"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/jquery/jquery-migrate-1.2.1.js?ver=-551622522
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/jquery/jquery-migrate-1.2.1.js?ver=-551622522
IP 204.155.146.95:0
GET /js/jquery/jquery-migrate-1.2.1.js?ver=-551622522 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"40e9"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/json2.js?ver=-2138552661
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/json2.js?ver=-2138552661
IP 204.155.149.41:0
GET /js/plugins/json2.js?ver=-2138552661 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4485"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/headerSearch.js?ver=-562895585
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/headerSearch.js?ver=-562895585
IP 204.155.149.41:0
GET /js/headerSearch.js?ver=-562895585 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2618"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/purchaseStats.js?ver=824748598
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/purchaseStats.js?ver=824748598
IP 204.155.149.41:0
GET /js/purchaseStats.js?ver=824748598 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"229"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/bootstrap/css/bootstrap.min.css?ver=-1235434608
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/bootstrap/css/bootstrap.min.css?ver=-1235434608
IP 204.155.149.41:0
GET /js/plugins/bootstrap/css/bootstrap.min.css?ver=-1235434608 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"1d970"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
IP 204.155.149.41:0
GET /css/headerAndFooterResponsive.css?ver=-1724683969 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"a000"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/captcha.js?ver=1799712776
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/captcha.js?ver=1799712776
IP 204.155.149.41:0
GET /js/captcha.js?ver=1799712776 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"846"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/headerSearch.js?ver=-562895585
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/headerSearch.js?ver=-562895585
IP 204.155.146.95:0
GET /js/headerSearch.js?ver=-562895585 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2618"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/common.css?ver=-1718006158
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/css/common.css?ver=-1718006158
IP 204.155.146.95:0
GET /css/common.css?ver=-1718006158 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"6289"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/AjaxSuggestion.js?ver=1732030193
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/AjaxSuggestion.js?ver=1732030193
IP 204.155.146.95:0
GET /js/AjaxSuggestion.js?ver=1732030193 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"2244"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.jsonWithError.js?ver=-1354420552
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.jsonWithError.js?ver=-1354420552
IP 204.155.149.41:0
GET /js/plugins/jquery.jsonWithError.js?ver=-1354420552 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6d1"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
clustrmaps.com/widget_call_home.js?callback=jQuery1124045443850825775667_1663583634227&old_code=true&d=http%3A%2F%2Farifinzyt.blogspot.com&u=1054660&w=300&t=m&_=1663583634228
104.22.62.219200 OK 0 B URL HTTP/1.1 clustrmaps.com/widget_call_home.js?callback=jQuery1124045443850825775667_1663583634227&old_code=true&d=http%3A%2F%2Farifinzyt.blogspot.com&u=1054660&w=300&t=m&_=1663583634228
IP 104.22.62.219:0
GET /widget_call_home.js?callback=jQuery1124045443850825775667_1663583634227&old_code=true&d=http%3A%2F%2Farifinzyt.blogspot.com&u=1054660&w=300&t=m&_=1663583634228 HTTP/1.1
Host: clustrmaps.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 10:34:13 GMT
Content-Type: text/plain;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.9
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Frame-Options: DENY
CF-Cache-Status: DYNAMIC
Set-Cookie: PHPSESSID=tnqs01sfeje58i670kqlr35ctv; path=/
__cflb=02DiuHcKAbFByoMNpCmq9XYDUEEr4TV2HidQHWXB8aBSU; SameSite=Lax; path=/; expires=Tue, 20-Sep-22 09:34:13 GMT; HttpOnly
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74d1aaea4e9cb50b-OSL
Content-Encoding: gzip
static.4shared.com/js/purchaseStats.js?ver=824748598
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/purchaseStats.js?ver=824748598
IP 204.155.146.95:0
GET /js/purchaseStats.js?ver=824748598 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"229"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.mousewheel.js?ver=2047993325
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.mousewheel.js?ver=2047993325
IP 204.155.146.95:0
GET /js/plugins/jquery.mousewheel.js?ver=2047993325 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1cdb"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/relativeScript.js?ver=-798805249
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/relativeScript.js?ver=-798805249
IP 204.155.146.95:0
GET /js/relativeScript.js?ver=-798805249 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"10bf"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
seeptoag.net/pfe/current/tag.min.js?z=3461303
139.45.197.250200 OK 0 B URL HTTP/2 seeptoag.net/pfe/current/tag.min.js?z=3461303
IP 139.45.197.250:0
GET /pfe/current/tag.min.js?z=3461303 HTTP/1.1
Host: seeptoag.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
last-modified: Fri, 16 Sep 2022 10:36:49 GMT
etag: W/"632451c1-39be"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/notifyBlock.css?ver=439758551
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/css/notifyBlock.css?ver=439758551
IP 204.155.149.41:0
GET /css/notifyBlock.css?ver=439758551 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"3c8"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
172.67.177.179301 Moved Permanently 0 B URL HTTP/2 hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
IP 172.67.177.179:0
GET /counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0 HTTP/1.1
Host: hitwebcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://arifinzyt.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Mon, 19 Sep 2022 10:34:12 GMT
content-type: text/html; charset=iso-8859-1
location: https://www.hitwebcounter.com/counter/counter.php?page=4627463&style=0011&nbdigits=5&type=page&initCount=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j1R9f1aMTSFFhs5tT52nsmYU%2FQnn%2BoIKFWgFGlt8Sir04ob3gzOq3Em0vVobSnYizkn%2FN7SBfQbPReJLoDF0Jb%2Bad5SDBIMJ6ta2HWPPtRBGEV%2F6G0fC5hhDa%2Bo3CRaRV8nyuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74d1aadfab210b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.4shared.com/js/jquery/jquery-ui-1.8.24.js?ver=-1410140803
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/jquery/jquery-ui-1.8.24.js?ver=-1410140803
IP 204.155.149.41:0
GET /js/jquery/jquery-ui-1.8.24.js?ver=-1410140803 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6514a"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/Events.js?ver=2120478973
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/Events.js?ver=2120478973
IP 204.155.146.95:0
GET /js/Events.js?ver=2120478973 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5ce"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/jquery/jquery-migrate-1.2.1.js?ver=-551622522
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/jquery/jquery-migrate-1.2.1.js?ver=-551622522
IP 204.155.149.41:0
GET /js/jquery/jquery-migrate-1.2.1.js?ver=-551622522 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"40e9"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/authScripts.js?ver=442800931
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/authScripts.js?ver=442800931
IP 204.155.149.41:0
GET /js/authScripts.js?ver=442800931 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"269a"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/cookie.js?ver=891093458
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/cookie.js?ver=891093458
IP 204.155.149.41:0
GET /js/cookie.js?ver=891093458 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"383"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/tipTip.css?ver=1396815821
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/css/tipTip.css?ver=1396815821
IP 204.155.146.95:0
GET /css/tipTip.css?ver=1396815821 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"839"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/notifyBlock.js?ver=-1839329555
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/notifyBlock.js?ver=-1839329555
IP 204.155.149.41:0
GET /js/notifyBlock.js?ver=-1839329555 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"fae"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/css/headerAndFooterResponsive.css?ver=-1724683969
IP 204.155.146.95:0
GET /css/headerAndFooterResponsive.css?ver=-1724683969 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"a000"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/auth-popup.css?ver=-1770157089
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/auth-popup.css?ver=-1770157089
IP 204.155.149.41:0
GET /auth-popup.css?ver=-1770157089 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"3352"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
arifinzyt.blogspot.com/2012/03/URL
142.250.74.161404 Not Found 0 B URL HTTP/1.1 arifinzyt.blogspot.com/2012/03/URL
IP 142.250.74.161:0
GET /2012/03/URL HTTP/1.1
Host: arifinzyt.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/2012/03/membuat-klik-kanan-tidak-berfungsi-di.html
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 19 Sep 2022 10:34:11 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 14654
Server: GSE
static.4shared.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
IP 204.155.149.41:0
GET /js/plugins/jquery.cycle.all.min.js?ver=-713535238 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"7124"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.jsonWithError.js?ver=-1354420552
204.155.146.95200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.jsonWithError.js?ver=-1354420552
IP 204.155.146.95:0
GET /js/plugins/jquery.jsonWithError.js?ver=-1354420552 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Cookie: _ga=GA1.2.361413891.1654532833
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:14 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6d1"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/jquery/jquery-1.9.1.js?ver=-150635016
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/jquery/jquery-1.9.1.js?ver=-150635016
IP 204.155.149.41:0
GET /js/jquery/jquery-1.9.1.js?ver=-150635016 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"41877"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.likenaruto.com/wp-content/themes/likenaruto/images/favicon.ico
3.130.253.23404 Not Found 0 B URL HTTP/1.0 cdn.likenaruto.com/wp-content/themes/likenaruto/images/favicon.ico
IP 3.130.253.23:0
GET /wp-content/themes/likenaruto/images/favicon.ico HTTP/1.1
Host: cdn.likenaruto.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://arifinzyt.blogspot.com/
HTTP/1.0 404 Not Found
cache-control: no-cache
content-type: text/html
x-reason: MediaRequest
static.4shared.com/js/tips.js?ver=775574541
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/tips.js?ver=775574541
IP 204.155.149.41:0
GET /js/tips.js?ver=775574541 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"3f5"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.slimscroll.min.js?ver=899909646
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.slimscroll.min.js?ver=899909646
IP 204.155.149.41:0
GET /js/plugins/jquery.slimscroll.min.js?ver=899909646 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"12f0"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.tipTip.js?ver=-735031947
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.tipTip.js?ver=-735031947
IP 204.155.149.41:0
GET /js/plugins/jquery.tipTip.js?ver=-735031947 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1ba4"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/favicon.js?ver=-1389416187
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/favicon.js?ver=-1389416187
IP 204.155.149.41:0
GET /js/plugins/favicon.js?ver=-1389416187 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"d4c"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/login_fnc.js?ver=-736399152
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/login_fnc.js?ver=-736399152
IP 204.155.149.41:0
GET /js/login_fnc.js?ver=-736399152 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"b37"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/smallPlugins.js?ver=-1491964040
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/smallPlugins.js?ver=-1491964040
IP 204.155.149.41:0
GET /js/smallPlugins.js?ver=-1491964040 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"7d8"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.placeholder.patch.js?ver=1939222451
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.placeholder.patch.js?ver=1939222451
IP 204.155.149.41:0
GET /js/plugins/jquery.placeholder.patch.js?ver=1939222451 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"a4e"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.mousewheel.js?ver=2047993325
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.mousewheel.js?ver=2047993325
IP 204.155.149.41:0
GET /js/plugins/jquery.mousewheel.js?ver=2047993325 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1cdb"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.cookie.js?ver=-933942167
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.cookie.js?ver=-933942167
IP 204.155.149.41:0
GET /js/plugins/jquery.cookie.js?ver=-933942167 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"7b0"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2
static.4shared.com/js/plugins/jquery.localStorage.js?ver=1720368027
204.155.149.41200 OK 0 B URL HTTP/2 static.4shared.com/js/plugins/jquery.localStorage.js?ver=1720368027
IP 204.155.149.41:0
GET /js/plugins/jquery.localStorage.js?ver=1720368027 HTTP/1.1
Host: static.4shared.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://e.4shared.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 10:34:13 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"1352"
cache-control: max-age=31536000, public
content-encoding: gzip
X-Firefox-Spdy: h2