sdftyujklvbn.blogspot.in/p/elegan.html
142.250.74.161302 Moved Temporarily 190 B URL HTTP/1.1 sdftyujklvbn.blogspot.in/p/elegan.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 187ad108f23028891bdc18687af52711
b06b6927ac6859d4f4fe3dfc121ed63c335da8f2
af2dea51d9b92ee51c64b136a698767b9f280f294343aecae25b5dd279d3e356
Analyzer Verdict Alert fortinet Malware
GET /p/elegan.html HTTP/1.1
Host: sdftyujklvbn.blogspot.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://sdftyujklvbn.blogspot.com/p/elegan.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 26 Nov 2022 13:17:14 GMT
Expires: Sat, 26 Nov 2022 13:17:14 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 190
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13804
Expires: Sat, 26 Nov 2022 17:07:18 GMT
Date: Sat, 26 Nov 2022 13:17:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6502
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:14 GMT
Last-Modified: Sat, 26 Nov 2022 11:28:52 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8003
Expires: Sat, 26 Nov 2022 15:30:37 GMT
Date: Sat, 26 Nov 2022 13:17:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 12:17:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3582
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qwZSw2XBZdmS/siXtZkY535D7l/fOlfUVM91kAuJu+4tj2MKUND4FxoXSTVgOdD2p5TGD5i6TzE=
x-amz-request-id: D7CV976E50A3D382
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 12:41:12 GMT
age: 2162
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 13:17:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 13:11:12 GMT
cache-control: public,max-age=3600
age: 362
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis:500
142.250.74.10200 OK 401 B URL HTTP/1.1 fonts.googleapis.com/css?family=Dosis:500
IP 142.250.74.10:0
Hash 0ba391dc87ca47bb9c2ed7d01fb2275c
5e9765f34277bb6654a4996b854b8f7707a6ae7a
64a6608aa1c2a94ac018852051dbcc708cea3d845c8993cb38adea0dbc9efb1d
GET /css?family=Dosis:500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 13:17:15 GMT
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.74200 OK 34 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.74:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33845
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 22:23:54 GMT
Expires: Fri, 24 Nov 2023 22:23:54 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 140001
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
content-type: text/css
age: 319477
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6145
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Last-Modified: Sat, 26 Nov 2022 11:34:50 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
sdftyujklvbn.blogspot.com/p/elegan.html
142.250.74.161200 OK 84 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/p/elegan.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5993)
Hash 251a8002cc32790b477975cf65e119ba
184f22ad1cb143f0db448ca8fde8c82674055c5a
0b573a9dc0f77fab1b6b698d76766c256c7a85840879e6894805032f46c528b1
Analyzer Verdict Alert fortinet Malware
GET /p/elegan.html HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 26 Nov 2022 13:17:14 GMT
Date: Sat, 26 Nov 2022 13:17:14 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
ETag: W/"9f87db7dc8e7492a6c02801447357ea70133074a25b47ce505a602a9f281dbf5"
X-Robots-Tag: all
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 83863
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123308 Permanent Redirect 171 B URL HTTP/1.1 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/300/addthis_widget.js
Date: Sat, 26 Nov 2022 13:17:15 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 422112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sdftyujklvbn.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 02:48:16 GMT
Expires: Thu, 01 Dec 2022 02:48:16 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 24 Nov 2022 00:53:02 GMT
Content-Type: text/javascript
Age: 210539
2.bp.blogspot.com/-ZR4K-HMQn2o/VK0ztsUCGUI/AAAAAAAAXgE/UVzDafIf2j8/s1600/pusat%2Bkenari%2Blokal%2Bterbaik%2Bterbesar%2Btermurah%2Bse%2Bindonesia.jpg
142.250.74.161200 OK 67 kB URL HTTP/1.1 2.bp.blogspot.com/-ZR4K-HMQn2o/VK0ztsUCGUI/AAAAAAAAXgE/UVzDafIf2j8/s1600/pusat%2Bkenari%2Blokal%2Bterbaik%2Bterbesar%2Btermurah%2Bse%2Bindonesia.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 640x480, components 3\012- data
Hash 25af48fd7afea10f48359d5c0d2f4adf
a99eff96b0f1ba417f405df8e8ad7aa4a9805efc
935f5782b0cb61df5deeb08e69a357c28a1f4100e4174f5fe6a39211823f41db
GET /-ZR4K-HMQn2o/VK0ztsUCGUI/AAAAAAAAXgE/UVzDafIf2j8/s1600/pusat%2Bkenari%2Blokal%2Bterbaik%2Bterbesar%2Btermurah%2Bse%2Bindonesia.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="pusat kenari lokal terbaik terbesar termurah se indonesia.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 67223
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:29:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5e02"
Content-Type: image/jpeg
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f575aee4f3f9ed92647e6efd5d92b195
ed485eaa177873f0cb7f42817c6d0a4435cf3a76
ef7c5f6de7d3e3c93a6863c1e6525d172fe699807f79ea3183d69dece05f0009
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.firebase.com/v0/firebase.js
151.101.65.195200 OK 24 kB URL HTTP/2 cdn.firebase.com/v0/firebase.js
IP 151.101.65.195:0
File type ASCII text, with very long lines (1829)
Hash cb1ef176cd4227000c4c09846f103c06
9fd791ae13589a6d56b642291c69049f5533550a
d183c3e524e2c62ce8278731568b37635eb5aeb09b082c9b6c88ccabc6983841
GET /v0/firebase.js HTTP/1.1
Host: cdn.firebase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public,max-age=432000
content-encoding: br
content-type: application/javascript
etag: "16af03cf134a042390c20240c4c8580c6a855f81d65e5f55e65313f1931e9183-br"
last-modified: Wed, 15 Jul 2020 22:46:44 GMT
strict-transport-security: max-age=31556926
accept-ranges: bytes
date: Sat, 26 Nov 2022 13:17:15 GMT
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1669468635.269519,VS0,VE0
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23597
X-Firefox-Spdy: h2
tickochancodes.googlecode.com/svn/trunk/jquery.masonry.min.js
64.233.164.82404 Not Found 1.6 kB URL HTTP/1.1 tickochancodes.googlecode.com/svn/trunk/jquery.masonry.min.js
IP 64.233.164.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c9a74f532c2879951b4fbb92d749fdd1
11e15192726c6d366d5743480ef829204c5264c9
2e78b8b292fff658d38e20d12c4716a04472905afcb0fb527f9d663be50682f0
GET /svn/trunk/jquery.masonry.min.js HTTP/1.1
Host: tickochancodes.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1592
Date: Sat, 26 Nov 2022 13:17:15 GMT
tickochancodes.googlecode.com/svn/trunk/post.brick.js
64.233.164.82404 Not Found 1.6 kB URL HTTP/1.1 tickochancodes.googlecode.com/svn/trunk/post.brick.js
IP 64.233.164.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c646d22ce9f475dbcb547c73a19c990d
e8f9faed05abf26a013166d24113c038c5ba882c
788751d83b80a9e5d8589921de16d704795b9698ac6f9443502b756b183c606c
GET /svn/trunk/post.brick.js HTTP/1.1
Host: tickochancodes.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1584
Date: Sat, 26 Nov 2022 13:17:15 GMT
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116388 bytes)
Hash fef08c9f8bacc1b0eed3950dbe7d0f87
e9a3b98cad1e2d58eab1e2cbaa51cb979dc45075
55b3d5b3acd46444cc1844a676c75ba25209ce371065791cd4fbdc9da60aea34
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sdftyujklvbn.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
server: nginx/1.15.8
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116388
date: Sat, 26 Nov 2022 13:17:15 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 13:17:15 GMT
expires: Sat, 26 Nov 2022 13:17:15 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 26 Nov 2022 12:41:08 GMT
expires: Sat, 26 Nov 2022 14:41:08 GMT
cache-control: public, max-age=7200
age: 2167
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/NixXNlSfsH0
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/NixXNlSfsH0
IP 142.250.74.3:0
Hash f72ae9ce0f7945aabee486a08f94ce6b
c8bac7e51d633c8d3449552e4e2ae2b85e06a50a
0cbea4c82423f95ed9709dcb6d4f47abe9a89077acbbad3be038e46b39a5d9b1
POST /s/gts1d4/NixXNlSfsH0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=5400093&t=pageview&_s=1&dl=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&ul=en-us&de=UTF-8&dt=Elegan%20-%20Yube%20Blog%20%3A)&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=786042757&gjid=1156203698&cid=1059108196.1669468635&tid=UA-21579226-2&_gid=453613981.1669468635&_r=1&_slc=1&z=922681830
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=5400093&t=pageview&_s=1&dl=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&ul=en-us&de=UTF-8&dt=Elegan%20-%20Yube%20Blog%20%3A)&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=786042757&gjid=1156203698&cid=1059108196.1669468635&tid=UA-21579226-2&_gid=453613981.1669468635&_r=1&_slc=1&z=922681830
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=5400093&t=pageview&_s=1&dl=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&ul=en-us&de=UTF-8&dt=Elegan%20-%20Yube%20Blog%20%3A)&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=786042757&gjid=1156203698&cid=1059108196.1669468635&tid=UA-21579226-2&_gid=453613981.1669468635&_r=1&_slc=1&z=922681830 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://sdftyujklvbn.blogspot.com
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://sdftyujklvbn.blogspot.com
date: Sat, 26 Nov 2022 13:17:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.187.71.185101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.71.185:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YX7j8oykSaGhBC43NiGhjQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GX2vXemXC1M7YdQsK7xGNtpGeaQ=
sdftyujklvbn.blogspot.com/feeds/posts/default/-/Fun/?alt=json-in-script&callback=dropdownposts&max-results=7
142.250.74.161200 OK 5.5 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/feeds/posts/default/-/Fun/?alt=json-in-script&callback=dropdownposts&max-results=7
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (30754)
Hash 9e366f53b07de43c75075cfad29c22ab
6a520bd10548e4468258cf87ca8e86e0284543a4
4356d51bcb1191ead2fd597ddfc63b8554811e877c9d2c8b6c87f078eec5c1d4
GET /feeds/posts/default/-/Fun/?alt=json-in-script&callback=dropdownposts&max-results=7 HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"ab9bd5feed744ad6cd586198cf209c68feb4969e479b6bd353168448fbb0f1bf"
Date: Sat, 26 Nov 2022 13:17:15 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
Content-Encoding: gzip
Content-Length: 5514
X-Frame-Options: SAMEORIGIN
sdftyujklvbn.blogspot.com/feeds/posts/default/-/Unik%20Menarik%20Asyik/?alt=json-in-script&callback=dropdownposts&max-results=7
142.250.74.161200 OK 10 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/feeds/posts/default/-/Unik%20Menarik%20Asyik/?alt=json-in-script&callback=dropdownposts&max-results=7
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (43753)
Hash e91f1c792dbfcf123aa0d12a1153db08
4fd66ba00dc8b55f2a1d596020fc35cecc390499
033085c554e0694ee82ef7f10d24192766a5ece01138198344d90db9e0341747
GET /feeds/posts/default/-/Unik%20Menarik%20Asyik/?alt=json-in-script&callback=dropdownposts&max-results=7 HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"61baf358763a92cb6407724f48031d82d6b738f9ecb90391d92f46336325567a"
Date: Sat, 26 Nov 2022 13:17:15 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
Content-Encoding: gzip
Content-Length: 10035
X-Frame-Options: SAMEORIGIN
sdftyujklvbn.blogspot.com/feeds/posts/default/?alt=json-in-script&callback=dropdownposts&max-results=7
142.250.74.161200 OK 12 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/feeds/posts/default/?alt=json-in-script&callback=dropdownposts&max-results=7
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (49647)
Hash acad9f24c56f7c29cd5ffe85ff6d41d4
f895151a8eb7ef76c09d6c19563106c7005f2e41
04ebeefaefc5beaeef27a20b14ef27bafa2382c09f393047d0e519a67caf66a8
GET /feeds/posts/default/?alt=json-in-script&callback=dropdownposts&max-results=7 HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"9a42093395d682a36fde6c46cc15e0037f6ff862fa49aa77b08f0d30e801be4d"
Date: Sat, 26 Nov 2022 13:17:15 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
Content-Encoding: gzip
Content-Length: 12238
X-Frame-Options: SAMEORIGIN
sdftyujklvbn.blogspot.com/feeds/posts/default/-/WOW/?alt=json-in-script&callback=dropdownposts&max-results=7
142.250.74.161200 OK 16 kB URL HTTP/1.1 sdftyujklvbn.blogspot.com/feeds/posts/default/-/WOW/?alt=json-in-script&callback=dropdownposts&max-results=7
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (61279)
Hash d9cb6be3453b0e5d881d1de997b78757
b2bb01511d7a3eef742fea89262a04da48394ac1
3c6554ac1c74fde8cfd3c7d6788a67955ae710a310d63ab13cbb626f14466581
GET /feeds/posts/default/-/WOW/?alt=json-in-script&callback=dropdownposts&max-results=7 HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"a78bbc9b543a8cba0aa1d6fafb1301f4336abb79c99ec00a78c56219a131fd8a"
Date: Sat, 26 Nov 2022 13:17:15 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
Content-Encoding: gzip
Content-Length: 15678
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/--bLm59uJj9g/U5sWvkOGnBI/AAAAAAAAXQw/t2OcAcUGhJY/s72-c/inspirasi+membeli+waktu.jpg
142.250.74.161200 OK 2.2 kB URL HTTP/1.1 1.bp.blogspot.com/--bLm59uJj9g/U5sWvkOGnBI/AAAAAAAAXQw/t2OcAcUGhJY/s72-c/inspirasi+membeli+waktu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2738377d00ffc1e9ee6da52fb5f60e56
ec40370106fc056b295c8615c1436a4d129ca620
2b642e48eed80daa60d9ae7acf488ccca9d6eff34121e88575e19d8e611ea478
GET /--bLm59uJj9g/U5sWvkOGnBI/AAAAAAAAXQw/t2OcAcUGhJY/s72-c/inspirasi+membeli+waktu.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="inspirasi membeli waktu.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2199
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5d0d"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-UHnvNg8pTVg/U5Lah-J6zXI/AAAAAAAAXQA/_JK306J5mck/s72-c/5.jpg
142.250.74.161200 OK 2.4 kB URL HTTP/1.1 4.bp.blogspot.com/-UHnvNg8pTVg/U5Lah-J6zXI/AAAAAAAAXQA/_JK306J5mck/s72-c/5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 211d67eba75051875b4a2b2e748a4b98
f3fc4e56f65802c1202cab3642353bc2a4047e69
84290d4bfc2d453a6725daba8a1bbf769f9ed03168b13cd16486ca64db25888d
GET /-UHnvNg8pTVg/U5Lah-J6zXI/AAAAAAAAXQA/_JK306J5mck/s72-c/5.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="5.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2357
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5d01"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-OO4JhlROVlY/U4S4DHs3_0I/AAAAAAAAXNc/0o_XRieF5A0/s72-c/sad+story.jpg
142.250.74.161200 OK 2.8 kB URL HTTP/1.1 1.bp.blogspot.com/-OO4JhlROVlY/U4S4DHs3_0I/AAAAAAAAXNc/0o_XRieF5A0/s72-c/sad+story.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1345393436454db3f389c0c784e32e79
1389119dab24c7d0e0c4adea0c1519f213c39cc8
8cc445faf33c9d314265a40c19cd1bc91a05f6a883c2b39f20c3c6effe5b4b4f
GET /-OO4JhlROVlY/U4S4DHs3_0I/AAAAAAAAXNc/0o_XRieF5A0/s72-c/sad+story.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="sad story.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2848
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5cd8"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-jruNNcAtENk/U4dghrCgFII/AAAAAAAAXOM/dBay17X0eF8/s72-c/12+keajaiban+kabah+-+sdftyujklvbn+blogspot+com.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 2.bp.blogspot.com/-jruNNcAtENk/U4dghrCgFII/AAAAAAAAXOM/dBay17X0eF8/s72-c/12+keajaiban+kabah+-+sdftyujklvbn+blogspot+com.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6349763107f1b1432db1967b1585fd1d
616a88c67f3157f003b5c5ccd08c65602b6a65cd
e0420da7ff7773f2c6c44755d3ce10f635b690e03cb7a5f8a8349230c71feb0b
GET /-jruNNcAtENk/U4dghrCgFII/AAAAAAAAXOM/dBay17X0eF8/s72-c/12+keajaiban+kabah+-+sdftyujklvbn+blogspot+com.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="12 keajaiban kabah - sdftyujklvbn blogspot com.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3409
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5ce3"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-dsCL9VurtcE/U4nzUyrTICI/AAAAAAAAXOo/Ddq-bfc9qJQ/s72-c/sebab+yang+berakibat+sdftyujklvbn+blogspot+com.jpg
142.250.74.161200 OK 4.1 kB URL HTTP/1.1 1.bp.blogspot.com/-dsCL9VurtcE/U4nzUyrTICI/AAAAAAAAXOo/Ddq-bfc9qJQ/s72-c/sebab+yang+berakibat+sdftyujklvbn+blogspot+com.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3a70bd5708559b358f9a482bc3de6a5f
24acd876b01a9323209191dcdf85502879da8901
ddd736c19a7b625fc370924ec8267fdf4c3c3719654c291f05aaa1dc244f3562
GET /-dsCL9VurtcE/U4nzUyrTICI/AAAAAAAAXOo/Ddq-bfc9qJQ/s72-c/sebab+yang+berakibat+sdftyujklvbn+blogspot+com.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="sebab yang berakibat sdftyujklvbn blogspot com.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4133
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5ceb"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-wL5Tyn16Aos/U4IPhvXCaZI/AAAAAAAAXNM/j1ZRC4G6Sfk/s72-c/Cinta+Sejati+Dua+Ekor+Cicak+-+sdftyujklvbn+blogspot+com.jpg
142.250.74.161200 OK 3.2 kB URL HTTP/1.1 2.bp.blogspot.com/-wL5Tyn16Aos/U4IPhvXCaZI/AAAAAAAAXNM/j1ZRC4G6Sfk/s72-c/Cinta+Sejati+Dua+Ekor+Cicak+-+sdftyujklvbn+blogspot+com.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9857a76425016c369e2ab42de59e8a3a
b4012c48b442e962452c32a22dd1809393085e6d
ac946b82671cfcbb43795cb9b5e0f4cc2b22382e2a212484ecd6fe6cb46c907d
GET /-wL5Tyn16Aos/U4IPhvXCaZI/AAAAAAAAXNM/j1ZRC4G6Sfk/s72-c/Cinta+Sejati+Dua+Ekor+Cicak+-+sdftyujklvbn+blogspot+com.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Cinta Sejati Dua Ekor Cicak - sdftyujklvbn blogspot com.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3246
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5cd4"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-aOnLeZV9tZc/Utqbq-6gXrI/AAAAAAAAWx8/XNxTRRQzN18/s72-c/Nasib+cewek+ini+terancam+jika+pilih+Farhat+Abbas+di+pilpres+2014.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 4.bp.blogspot.com/-aOnLeZV9tZc/Utqbq-6gXrI/AAAAAAAAWx8/XNxTRRQzN18/s72-c/Nasib+cewek+ini+terancam+jika+pilih+Farhat+Abbas+di+pilpres+2014.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 614ee99da5aae0ac99647b3396ac5347
330cbd7bebb76c7f874f440293c7861aa1f6ef70
9424a83de869afd7c4530be63b0fc214b16993161c9db2727923876a57b1f2a6
GET /-aOnLeZV9tZc/Utqbq-6gXrI/AAAAAAAAWx8/XNxTRRQzN18/s72-c/Nasib+cewek+ini+terancam+jika+pilih+Farhat+Abbas+di+pilpres+2014.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Nasib cewek ini terancam jika pilih Farhat Abbas di pilpres 2014.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3414
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:09 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v6495"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-B3czcMZwEGU/U2tlionLWPI/AAAAAAAAXMs/LtGYCFLTGVo/s72-c/motivasi+filosofi+matematika+plus+minus.jpg
142.250.74.161200 OK 2.9 kB URL HTTP/1.1 2.bp.blogspot.com/-B3czcMZwEGU/U2tlionLWPI/AAAAAAAAXMs/LtGYCFLTGVo/s72-c/motivasi+filosofi+matematika+plus+minus.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b7665f1fefbd3deefc0762319c865e9b
e00aaea3117ea48b95e7586a38c9b99595f87d19
bee897a934f0a865bf24b4b56a9e6caeeea73b5c2b664e7cdb1a020b937b533d
GET /-B3czcMZwEGU/U2tlionLWPI/AAAAAAAAXMs/LtGYCFLTGVo/s72-c/motivasi+filosofi+matematika+plus+minus.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="motivasi filosofi matematika plus minus.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2922
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5ccc"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-QvFdZw_NYfo/Utkn7CpDPkI/AAAAAAAAWv8/qUc_hlNy590/s72-c/Pejuang+Indonesia+ini+jadi+bahan+olok+olokan+media+online.jpg
142.250.74.161200 OK 4.7 kB URL HTTP/1.1 2.bp.blogspot.com/-QvFdZw_NYfo/Utkn7CpDPkI/AAAAAAAAWv8/qUc_hlNy590/s72-c/Pejuang+Indonesia+ini+jadi+bahan+olok+olokan+media+online.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 4d5d8b98189a82d906656a6a0f9c68c5
4a206ccdb5cff3b8284fa5e000ed94c765f9ddee
97f4edda4c659e143deae407942551a7eca51a4cc89941fd5589b037dd6b5d2c
GET /-QvFdZw_NYfo/Utkn7CpDPkI/AAAAAAAAWv8/qUc_hlNy590/s72-c/Pejuang+Indonesia+ini+jadi+bahan+olok+olokan+media+online.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Pejuang Indonesia ini jadi bahan olok olokan media online.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4725
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b00"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-Z0tkX7YxQRA/Uv9fljbenYI/AAAAAAAAW4I/F-JUPH-hE6E/s72-c/USA+Gemeter+Gempur+NKRI.jpg
142.250.74.161200 OK 5.0 kB URL HTTP/1.1 4.bp.blogspot.com/-Z0tkX7YxQRA/Uv9fljbenYI/AAAAAAAAW4I/F-JUPH-hE6E/s72-c/USA+Gemeter+Gempur+NKRI.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c3910f5a8c67bbac8f82355c44b03bd2
5a82cc6fe334b847fcb1e5a71e3dc73b62886df1
d6a566f436f19b55df6dbd373d9bc3e0d42e30230e94bbf22600937a90d8f398
GET /-Z0tkX7YxQRA/Uv9fljbenYI/AAAAAAAAW4I/F-JUPH-hE6E/s72-c/USA+Gemeter+Gempur+NKRI.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="USA Gemeter Gempur NKRI.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4999
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:09 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5e6c"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-9WeNxJNehCI/UtPUelcsKvI/AAAAAAAAWrk/hQZH_E1XPWc/s72-c/Indonesia+yang+paling+jelas+di+Trofi+Piala+Dunia.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 4.bp.blogspot.com/-9WeNxJNehCI/UtPUelcsKvI/AAAAAAAAWrk/hQZH_E1XPWc/s72-c/Indonesia+yang+paling+jelas+di+Trofi+Piala+Dunia.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 12dd80c1f32543318cda9ddc8bfc6a38
ea37c58022dff97ca3e2c8d091ba2b9dd5cb1086
06452e2aaf6d9c45d662d9408d4c92e133e19027c612002ddff6cf54a460002e
GET /-9WeNxJNehCI/UtPUelcsKvI/AAAAAAAAWrk/hQZH_E1XPWc/s72-c/Indonesia+yang+paling+jelas+di+Trofi+Piala+Dunia.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Indonesia yang paling jelas di Trofi Piala Dunia.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4541
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5abb"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-kraQnC5LJDs/Uu40QQ8cdyI/AAAAAAAAW1Y/idKYpcFCjmw/s72-c/Manusia+Hanya+Bertahan+4+Tahun+Jika+Koloni+Lebah+Punah.jpg
142.250.74.161200 OK 6.4 kB URL HTTP/1.1 2.bp.blogspot.com/-kraQnC5LJDs/Uu40QQ8cdyI/AAAAAAAAW1Y/idKYpcFCjmw/s72-c/Manusia+Hanya+Bertahan+4+Tahun+Jika+Koloni+Lebah+Punah.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6336a92b0c159b39b33849ea6208ebf6
30f736d9d455d5632a69a56b5e084ad5d915ae41
cda9c8af088b19eae3f526e0587249fc19d7fa3c23c782059f3ef074746be8ee
GET /-kraQnC5LJDs/Uu40QQ8cdyI/AAAAAAAAW1Y/idKYpcFCjmw/s72-c/Manusia+Hanya+Bertahan+4+Tahun+Jika+Koloni+Lebah+Punah.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Manusia Hanya Bertahan 4 Tahun Jika Koloni Lebah Punah.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 6439
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:08 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b57"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-fo9tKoLfmD0/Utf_o6GiiLI/AAAAAAAAWto/_oWDuI8halk/s72-c/Bocah+15+Tahun+Ini+Temukan+Tes+Deteksi+Kanker.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/1.1 4.bp.blogspot.com/-fo9tKoLfmD0/Utf_o6GiiLI/AAAAAAAAWto/_oWDuI8halk/s72-c/Bocah+15+Tahun+Ini+Temukan+Tes+Deteksi+Kanker.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 911d0cb01ca0e70c169a4997f4c340ac
7406f0d1e0c1f8968db3731ea8dfa166c75f9749
1795804ab3c1208baf9e4201a8de86184f92d2b10e7bcbcc5a7c44651cc38f77
GET /-fo9tKoLfmD0/Utf_o6GiiLI/AAAAAAAAWto/_oWDuI8halk/s72-c/Bocah+15+Tahun+Ini+Temukan+Tes+Deteksi+Kanker.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Bocah 15 Tahun Ini Temukan Tes Deteksi Kanker.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2736
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5add"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-sANgDOjvIHk/UswrulIs14I/AAAAAAAAWqQ/R7E708VP70c/s72-c/Dua+Pemuda+Ini+Rekam+UFO+Saat+Melintasi+Monas.jpg
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 1.bp.blogspot.com/-sANgDOjvIHk/UswrulIs14I/AAAAAAAAWqQ/R7E708VP70c/s72-c/Dua+Pemuda+Ini+Rekam+UFO+Saat+Melintasi+Monas.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2bac8a6f8edab741b7f19d3922d8ff80
fd21801359c23f4bfe72a373c7631d478bf32c02
b229b34925a59379677379faf02485c8a12ef3414bfc2684e12fac9396b4d73e
GET /-sANgDOjvIHk/UswrulIs14I/AAAAAAAAWqQ/R7E708VP70c/s72-c/Dua+Pemuda+Ini+Rekam+UFO+Saat+Melintasi+Monas.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Dua Pemuda Ini Rekam UFO Saat Melintasi Monas.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1956
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5aa5"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-c5rqX85MAFo/Utf9Ei6zW8I/AAAAAAAAWtY/oC2Q8P6o1Gw/s72-c/RS+Jiwa+ini+siapkan+Kamar+VIP+bagi+caleg+gagal.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 4.bp.blogspot.com/-c5rqX85MAFo/Utf9Ei6zW8I/AAAAAAAAWtY/oC2Q8P6o1Gw/s72-c/RS+Jiwa+ini+siapkan+Kamar+VIP+bagi+caleg+gagal.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0e42699f4188843dc4040e1aad33a2a4
28b1162d766694c5ba7fd5fa25d84c1069744f5b
b94ca09231852a387a21aff826feb3b9fe90a0d05f392d1c0f9d7dd2288513c2
GET /-c5rqX85MAFo/Utf9Ei6zW8I/AAAAAAAAWtY/oC2Q8P6o1Gw/s72-c/RS+Jiwa+ini+siapkan+Kamar+VIP+bagi+caleg+gagal.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="RS Jiwa ini siapkan Kamar VIP bagi caleg gagal.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3110
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5ad7"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-RmOwk3OygBg/UsVuD09Tv2I/AAAAAAAAWmw/wE4UwBsTYyE/s72-c/Foto+Salut,+Binatang+Saja+Taat+Rambu+Lalu+Lintas.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 2.bp.blogspot.com/-RmOwk3OygBg/UsVuD09Tv2I/AAAAAAAAWmw/wE4UwBsTYyE/s72-c/Foto+Salut,+Binatang+Saja+Taat+Rambu+Lalu+Lintas.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9b069e7c0847a0fe7e0cee570fed77dc
3fb8a52e7508d4fb7f9b9b79f47a2a1b00ece773
6e45bcaa068f8859cd05a7a76c7bc7410f82235bb937312210c0901338e6f442
GET /-RmOwk3OygBg/UsVuD09Tv2I/AAAAAAAAWmw/wE4UwBsTYyE/s72-c/Foto+Salut,+Binatang+Saja+Taat+Rambu+Lalu+Lintas.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Foto Salut, Binatang Saja Taat Rambu Lalu Lintas.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3606
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5d3c"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-5o_9fAnKFcQ/UsTviEpI-BI/AAAAAAAAWmE/9oUPajMwpqw/s72-c/Baru+4+Tahun,+Bocah+Ini+Sudah+Setara+Einsten+dan+Bill+Gates!.jpg
142.250.74.161200 OK 4.7 kB URL HTTP/1.1 2.bp.blogspot.com/-5o_9fAnKFcQ/UsTviEpI-BI/AAAAAAAAWmE/9oUPajMwpqw/s72-c/Baru+4+Tahun,+Bocah+Ini+Sudah+Setara+Einsten+dan+Bill+Gates!.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a87db4e1aebaf2ade6299a7d4be8706e
078a4794a9a24386f82e42a4a24c71dcedcfc877
57fcdbf1f6048f82fafe1aaafb4ecfaedf7e6a8dabf28f49222b2d4f77d49181
GET /-5o_9fAnKFcQ/UsTviEpI-BI/AAAAAAAAWmE/9oUPajMwpqw/s72-c/Baru+4+Tahun,+Bocah+Ini+Sudah+Setara+Einsten+dan+Bill+Gates!.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Baru 4 Tahun, Bocah Ini Sudah Setara Einsten dan Bill Gates!.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4705
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a62"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-JzpPTIvVo-g/UsvqBgd2ToI/AAAAAAAAWqA/abofQJJ4O4Q/s72-c/Siswa+SD+ini+Pilih+Nikah+Ketimbang+UN+2.jpg
142.250.74.161200 OK 2.3 kB URL HTTP/1.1 1.bp.blogspot.com/-JzpPTIvVo-g/UsvqBgd2ToI/AAAAAAAAWqA/abofQJJ4O4Q/s72-c/Siswa+SD+ini+Pilih+Nikah+Ketimbang+UN+2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5b75032efeb075376c608fc7729366f4
109b7bc55e0871a31e8a823e0d49fad923915b59
ba4e03243e3c69db6a604099ca1d9b9ecb8d67ad986c2f500fa97968627fe959
GET /-JzpPTIvVo-g/UsvqBgd2ToI/AAAAAAAAWqA/abofQJJ4O4Q/s72-c/Siswa+SD+ini+Pilih+Nikah+Ketimbang+UN+2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Siswa SD ini Pilih Nikah Ketimbang UN 2.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2266
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5aa1"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-wzKvV8muXaE/Uw9VbmVEl0I/AAAAAAAAXH8/pLycQCnCpRE/s72-c/1779270_523117667807573_571734771_n.png
142.250.74.161200 OK 10 kB URL HTTP/1.1 4.bp.blogspot.com/-wzKvV8muXaE/Uw9VbmVEl0I/AAAAAAAAXH8/pLycQCnCpRE/s72-c/1779270_523117667807573_571734771_n.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 98b91bf80a09798b85b7b1f7ec44ffe1
cd4e3fc22ccea43c97d661067d17652f9bca4c26
39bdbe4320a9df34c9a2b0cabc0cacec06425f274b665bafa5338b00bccbc809
GET /-wzKvV8muXaE/Uw9VbmVEl0I/AAAAAAAAXH8/pLycQCnCpRE/s72-c/1779270_523117667807573_571734771_n.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="1779270_523117667807573_571734771_n.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 10017
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5c80"
Content-Type: image/png
Age: 0
tickochancodes.googlecode.com/svn/trunk/jquery.masonry.min.js
64.233.164.82404 Not Found 1.6 kB URL HTTP/1.1 tickochancodes.googlecode.com/svn/trunk/jquery.masonry.min.js
IP 64.233.164.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c9a74f532c2879951b4fbb92d749fdd1
11e15192726c6d366d5743480ef829204c5264c9
2e78b8b292fff658d38e20d12c4716a04472905afcb0fb527f9d663be50682f0
GET /svn/trunk/jquery.masonry.min.js HTTP/1.1
Host: tickochancodes.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1592
Date: Sat, 26 Nov 2022 13:17:15 GMT
1.bp.blogspot.com/-kfDKTl5TsVY/UwjhgkHHCcI/AAAAAAAAXFE/LxhexJo2wT0/s72-c/arti+goyang+kepala+india.png
142.250.74.161200 OK 9.9 kB URL HTTP/1.1 1.bp.blogspot.com/-kfDKTl5TsVY/UwjhgkHHCcI/AAAAAAAAXFE/LxhexJo2wT0/s72-c/arti+goyang+kepala+india.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 632fd096ed3e1ae2dfd344eb40f30c62
ae01a2a85b16d0ff3502cd414b19948a67b19f60
1f92491e70ca85129a219d4e1e4014050dda334532209b66eee018fdadda3cbb
GET /-kfDKTl5TsVY/UwjhgkHHCcI/AAAAAAAAXFE/LxhexJo2wT0/s72-c/arti+goyang+kepala+india.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="arti goyang kepala india.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 9918
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5c52"
Content-Type: image/png
Age: 0
4.bp.blogspot.com/-4p8EdB_LHcU/Uw9R5Bw9mgI/AAAAAAAAXHw/VUStXzhun4I/s72-c/Viral_loop.png
142.250.74.161200 OK 4.8 kB URL HTTP/1.1 4.bp.blogspot.com/-4p8EdB_LHcU/Uw9R5Bw9mgI/AAAAAAAAXHw/VUStXzhun4I/s72-c/Viral_loop.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 5d4630c1e73de49c78ea2a6ae3a88267
deb7e9cbc49a20f92dff5fdd22ff02e2f042be98
ab202ea665c65928a68f3de007e9feb8d832a22c60feaf7c1a31d122d4d5465b
GET /-4p8EdB_LHcU/Uw9R5Bw9mgI/AAAAAAAAXHw/VUStXzhun4I/s72-c/Viral_loop.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Viral_loop.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4813
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5c7d"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-NUuPfvKY9HY/Usj90ezRAmI/AAAAAAAAWos/R7KRmpK1Gfg/s72-c/Taman+di+Bandung+Ini+Khusus+Para+Jomblo.jpg
142.250.74.161200 OK 4.2 kB URL HTTP/1.1 3.bp.blogspot.com/-NUuPfvKY9HY/Usj90ezRAmI/AAAAAAAAWos/R7KRmpK1Gfg/s72-c/Taman+di+Bandung+Ini+Khusus+Para+Jomblo.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2f581767ef17ebbd886e378dfd39a640
ee0699de5b19d0b616e4d5f79773af4e4e496aea
2ac7b212e98907c1afdd571185ebf0fe8600d1c9695778bed4622f289f7a529c
GET /-NUuPfvKY9HY/Usj90ezRAmI/AAAAAAAAWos/R7KRmpK1Gfg/s72-c/Taman+di+Bandung+Ini+Khusus+Para+Jomblo.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Taman di Bandung Ini Khusus Para Jomblo.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4187
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a8d"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-ik-iAsL-l7o/UwDVAtnUpMI/AAAAAAAAW6E/GO9B--pODfk/s72-c/4+elemen+-+sdftyujklvbn.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/1.1 1.bp.blogspot.com/-ik-iAsL-l7o/UwDVAtnUpMI/AAAAAAAAW6E/GO9B--pODfk/s72-c/4+elemen+-+sdftyujklvbn.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9802a26a3ef0d662717b220407ac8c16
34d22eef9b79a06f0de39a97b4d749f7f8a0aa5d
4ca5a5d0223c40324ed67f24c2c291d146227e11843ad2a1063c1636bdd83201
GET /-ik-iAsL-l7o/UwDVAtnUpMI/AAAAAAAAW6E/GO9B--pODfk/s72-c/4+elemen+-+sdftyujklvbn.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4 elemen - sdftyujklvbn.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4434
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5e6b"
Content-Type: image/jpeg
Age: 0
fonts.gstatic.com/s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJBbMl2xME.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJBbMl2xME.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15776, version 1.0\012- data
Hash 7ccc4bb7bf6194800b38feeb3148d166
f6ebc68b119d454df4b149e5d40077eadc2cee83
e5e1c4cbf1f4a89bc9b0f4c1b9096385655ade3824c7cc09b9eadcfa2d698691
GET /s/dosis/v27/HhyJU5sn9vOmLxNkIwRSjTVNWLEJBbMl2xME.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sdftyujklvbn.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15776
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 16:51:04 GMT
Expires: Thu, 23 Nov 2023 16:51:04 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 11 Jul 2022 20:56:44 GMT
Content-Type: font/woff2
Age: 246371
tickochancodes.googlecode.com/svn/trunk/post.brick.js
64.233.164.82404 Not Found 1.6 kB URL HTTP/1.1 tickochancodes.googlecode.com/svn/trunk/post.brick.js
IP 64.233.164.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash c646d22ce9f475dbcb547c73a19c990d
e8f9faed05abf26a013166d24113c038c5ba882c
788751d83b80a9e5d8589921de16d704795b9698ac6f9443502b756b183c606c
GET /svn/trunk/post.brick.js HTTP/1.1
Host: tickochancodes.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1584
Date: Sat, 26 Nov 2022 13:17:15 GMT
linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js
142.250.74.142404 Not Found 1.6 kB URL HTTP/1.1 linkhelp.clients.google.com/tbproxy/lh/wm/fixurl.js
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 0b02a4da37cd1ac7c801d559dcb4dc73
fc9a3031e9b3db05632566fe2fb47643bc1479c9
010fd897349586ad9bffabe5b3f581d792c0ccb1ec8d2419d9f3fa7b9de3e214
GET /tbproxy/lh/wm/fixurl.js HTTP/1.1
Host: linkhelp.clients.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1584
Date: Sat, 26 Nov 2022 13:17:15 GMT
3.bp.blogspot.com/-1464B2zDBgk/UsAfs7mMjII/AAAAAAAAWjE/pect0A5k1vY/s72-c/Terungkap+Gadis+Penenun+di+Pecahan+Rp+5.000.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 3.bp.blogspot.com/-1464B2zDBgk/UsAfs7mMjII/AAAAAAAAWjE/pect0A5k1vY/s72-c/Terungkap+Gadis+Penenun+di+Pecahan+Rp+5.000.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 53d22381ab9d8a3b420cc242a03365c9
8682fe24fae37a573ef3453cc30ff9d8d479a82f
9650397d0193bb2a2678efc771f716087d7ee10ba2e21d663ac806fb1ee28e99
GET /-1464B2zDBgk/UsAfs7mMjII/AAAAAAAAWjE/pect0A5k1vY/s72-c/Terungkap+Gadis+Penenun+di+Pecahan+Rp+5.000.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Terungkap Gadis Penenun di Pecahan Rp 5.000.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3145
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:09 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v6495"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-IvdghYCD5TA/UwIleJDUJqI/AAAAAAAAW7U/C6GQC9piGcI/s72-c/anak+sd+ikut+valentin+thepopoh.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/1.1 3.bp.blogspot.com/-IvdghYCD5TA/UwIleJDUJqI/AAAAAAAAW7U/C6GQC9piGcI/s72-c/anak+sd+ikut+valentin+thepopoh.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 4cd30776ca9aafa603f537cdd2eaa8e9
baf19d4ba65cac903fd596724279b7d03f446626
70490ae76ea7199cf715abd3e8ae41ff1c5eeef85ce9c736506935d825f3e59f
GET /-IvdghYCD5TA/UwIleJDUJqI/AAAAAAAAW7U/C6GQC9piGcI/s72-c/anak+sd+ikut+valentin+thepopoh.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="anak sd ikut valentin thepopoh.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4415
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:11 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5bb6"
Content-Type: image/jpeg
Age: 0
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
31.13.72.36301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 26 Nov 2022 13:17:15 GMT
Connection: keep-alive
Content-Length: 0
3.bp.blogspot.com/-YJDLFC-Vfc4/Uwjn3hq5ptI/AAAAAAAAXFU/X1yWpRcmguw/s1600/kenari+merah+asli.jpg
142.250.74.161200 OK 87 kB URL HTTP/1.1 3.bp.blogspot.com/-YJDLFC-Vfc4/Uwjn3hq5ptI/AAAAAAAAXFU/X1yWpRcmguw/s1600/kenari+merah+asli.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1024x768, components 3\012- data
Hash 1a49c63d830d3259f09c7d6dc543ae47
54991664e845bec4b8c9413cdac8fad9ca1ca736
dffc17daabdb428869ef3d5956415edd53d86d095514cea6c55d65fa5a121a5b
GET /-YJDLFC-Vfc4/Uwjn3hq5ptI/AAAAAAAAXFU/X1yWpRcmguw/s1600/kenari+merah+asli.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kenari merah asli.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 86968
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:16 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5c56"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-W4nLdB6VOGg/Ut0m_JBETXI/AAAAAAAAW0M/84qpOQX3xm8/s72-c/Nasib+Mobil+Mahal+Sport+Ketika+Banjir.jpg
142.250.74.161200 OK 4.8 kB URL HTTP/1.1 3.bp.blogspot.com/-W4nLdB6VOGg/Ut0m_JBETXI/AAAAAAAAW0M/84qpOQX3xm8/s72-c/Nasib+Mobil+Mahal+Sport+Ketika+Banjir.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f68ec93359e5c3b5da412cb80a3abd3e
3178f631ced5170122146e52fb1c61c1cec7f5e2
f0720f56ed2bc39c961c4cbefc2d7ef07c7f519c2ddf3c9c5cc404ced2c4b863
GET /-W4nLdB6VOGg/Ut0m_JBETXI/AAAAAAAAW0M/84qpOQX3xm8/s72-c/Nasib+Mobil+Mahal+Sport+Ketika+Banjir.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Nasib Mobil Mahal Sport Ketika Banjir.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4754
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 13:17:15 GMT
Expires: Thu, 24 Nov 2022 07:30:13 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5b44"
Content-Type: image/jpeg
Age: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6399
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:15 GMT
Last-Modified: Sat, 26 Nov 2022 11:30:36 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fgaransingakak%2F&layout=standard&show_faces=true&width=53&action=like&colorscheme=light&height=80 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://sdftyujklvbn.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 3KUUW7ga49B8M4X1gKPInu5qZ1KU/kJpjs02njCsE8hoSk22laqRRRJvAr2WzoCnDPtfESB3EQhxAtbIKix6Cg==
content-length: 0
date: Sat, 26 Nov 2022 13:17:15 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/5EXjxzFGjgM
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/5EXjxzFGjgM
IP 142.250.74.3:0
Hash 409491f498c0f79ddca0e56159d380c3
7231cb4f426e30c7fd2273d23ebfbae87ec1918f
e50302c6220b9b52e223dd3e6dd2880d961247484dfe212f902e69c430a79989
POST /s/gts1d4int/5EXjxzFGjgM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6400
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:16 GMT
Last-Modified: Sat, 26 Nov 2022 11:30:36 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Sat, 26 Nov 2022 13:17:16 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=39266
date: Sat, 26 Nov 2022 13:17:16 GMT
X-Firefox-Spdy: h2
connect.facebook.net/en_GB/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_GB/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash f4d999baf2397da102c48abdfb585db1
b16ee10bfa3659796b91b683542c8c7711b20621
052587ba9e04d7d67f065bdaf67f1d7eec78f3133d96cdf87e9d014042b9378e
GET /en_GB/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 74dc1372e89a9a52bb8038b1d2b259e6
ETag: "8f03e19b1ece4d122fa18be44b4bc5e0"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 26 Nov 2022 13:25:09 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: 9NmZuvI5faECxIq9+1hdsQ==
X-FB-Debug: Q5vnKaoitu5y3+JtMF2GePJ/2cxCEmEExBe0hlDFy7mqqS3Pw4LH0T+qRs7REwbBCVJxUl5wgXwfeGjUPCJ1HA==
X-FB-TRIP-ID: 2050670934
Date: Sat, 26 Nov 2022 13:17:16 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1689
widgets.amung.us/small.js
104.22.75.171200 OK 3.5 kB URL HTTP/1.1 widgets.amung.us/small.js
IP 104.22.75.171:0
File type ASCII text, with very long lines (8560), with no line terminators
Hash 08283f674ed2a3a87b0ca0b64950ef28
1d6018c4a9104d337726cfe9f67b43ff37acc0cb
442e1c2e9e1692d86c6c4df3c68167fbddb4ec4ec7fa90258fd683f5a5f3578d
GET /small.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 13:17:16 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Fri, 11 Nov 2022 22:14:26 GMT
etag: W/"636ec942-2170"
expires: Sun, 27 Nov 2022 12:27:44 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 2972
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7702e7400f0b0a23-ARN
yube.firebaseio.com/.ws?v=5
34.120.160.131101 Switching Protocols 0 B URL HTTP/1.1 yube.firebaseio.com/.ws?v=5
IP 34.120.160.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5 HTTP/1.1
Host: yube.firebaseio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: http://sdftyujklvbn.blogspot.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Y2Y3CP/swfhkVJoQ22J1eA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Sat, 26 Nov 2022 13:17:16 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QMdeYIGLbU3bJVPUXKXMDa6VACc=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
sdftyujklvbn.blogspot.com/favicon.ico
142.250.74.161200 OK 655 B URL HTTP/1.1 sdftyujklvbn.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 525cf1255c718af9b966d8a3cadc63e5
e6ac432d89203cf5ccf90f4d4a71a1245d6c054f
156c6b4223d0789f332a5dac144e3df739c333054c3aa2b3d8f55426c06a37b0
GET /favicon.ico HTTP/1.1
Host: sdftyujklvbn.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/p/elegan.html
Cookie: _ga=GA1.3.1059108196.1669468635; _gid=GA1.3.453613981.1669468635; _gat_blogger=1; __atuvc=1%7C47; __atuvs=638211db39577085000
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Date: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 26 Nov 2022 10:47:14 GMT
ETag: W/"9f87db7dc8e7492a6c02801447357ea70133074a25b47ce505a602a9f281dbf5"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 655
Server: GSE
m.addthis.com/live/red_lojson/300lo.json?si=638211dbe73e5249&bkl=0&bl=1&pdt=1078&sid=638211dbe73e5249&pub=ra-587f4b67a094a959&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sdftyujklvbn.blogspot.com&fp=p%2Felegan.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Unik%20Pake%20Banget%20%3A)%3A%20Elegan%2CUnik%2CLucu%2CMenarik!&colc=1669468636022&jsl=1&uvs=638211db39577085000&skipb=1&callback=addthis.cbs.jsonp__331182437944240070
23.38.200.123200 OK 90 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=638211dbe73e5249&bkl=0&bl=1&pdt=1078&sid=638211dbe73e5249&pub=ra-587f4b67a094a959&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sdftyujklvbn.blogspot.com&fp=p%2Felegan.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Unik%20Pake%20Banget%20%3A)%3A%20Elegan%2CUnik%2CLucu%2CMenarik!&colc=1669468636022&jsl=1&uvs=638211db39577085000&skipb=1&callback=addthis.cbs.jsonp__331182437944240070
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 18989ae87704c38f5b59951b541eaa0d
47bcb4de81e462606e3cb38b400380d45a0bf5a2
94a6780dd72f4a6180a262652658b9978cd2a4f23148febe76dd5317a8595b6b
GET /live/red_lojson/300lo.json?si=638211dbe73e5249&bkl=0&bl=1&pdt=1078&sid=638211dbe73e5249&pub=ra-587f4b67a094a959&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=sdftyujklvbn.blogspot.com&fp=p%2Felegan.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Unik%20Pake%20Banget%20%3A)%3A%20Elegan%2CUnik%2CLucu%2CMenarik!&colc=1669468636022&jsl=1&uvs=638211db39577085000&skipb=1&callback=addthis.cbs.jsonp__331182437944240070 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 90
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Sat, 26 Nov 2022 13:17:16 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-587f4b67a094a959/_ate.track.config_resp
23.38.200.123200 OK 154 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-587f4b67a094a959/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 1798455c51e19a1de93e52339a502e8d
a0457d200050e575fe5fce342ef18826773a19a2
3f695eaf6f5245ffc8385edd6ed3d174509a3faedc9b9e14e4bffb1f0a881fb0
GET /live/boost/ra-587f4b67a094a959/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
etag: 659743217
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 154
cache-control: public, max-age=55, s-maxage=86400
date: Sat, 26 Nov 2022 13:17:16 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
st.chatango.com/js/gz/emb.js
208.93.230.26200 OK 24 kB URL HTTP/1.1 st.chatango.com/js/gz/emb.js
IP 208.93.230.26:0
File type ASCII text, with very long lines (1651)
Hash 805df181036cf9e5d8afe0106e6742bd
d724decdd99a4ad9e94ed1995c385cad56d1aa1d
c8fb96eb9b2d14e8d0e359963ddd7a9cc8f1b2bb8e475d431a40d81a6bc0956e
GET /js/gz/emb.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 13:17:16 GMT
Content-Type: application/x-javascript
Content-Length: 23805
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Expires: Sat, 26 Nov 2022 13:17:16 GMT
Cache-Control: max-age=0
Content-Encoding: gzip
Accept-Ranges: bytes
s7.addthis.com/static/floating-css.80f181915fa0449e1ef6.js
23.38.200.123200 OK 815 B URL HTTP/2 s7.addthis.com/static/floating-css.80f181915fa0449e1ef6.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (3759), with no line terminators
Hash a8b55cdb4e7a8126b02dc3d57693e64c
396854011fd100fd82d4d37481b5ea17d2c9f272
c9179b817975ec14fa26e33789112cc299fbc9d7d7f21a951283158a27cb35ce
GET /static/floating-css.80f181915fa0449e1ef6.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-eaf"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 815
date: Sat, 26 Nov 2022 13:17:16 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
connect.facebook.net/en_GB/all.js?hash=845f1554805b9f1167287e19ea535402
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_GB/all.js?hash=845f1554805b9f1167287e19ea535402
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash c4c989336a7a5b90cef45bc895019188
683dcbfbd36039da042300a8ca54525f4ba0c644
113f233cebd6a02daa41603f18eeb5fe0f66c7c4df48830729c4a153a8ae1ec9
GET /en_GB/all.js?hash=845f1554805b9f1167287e19ea535402 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sdftyujklvbn.blogspot.com
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 22f597eaf63bcd0e2ebfa6f2865ba5d4
etag: "e27aa59bb0470b055b060b899d11bdb0"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 26 Nov 2023 12:25:07 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: xMmJM2p6W5DO9FvIlQGRiA==
x-fb-debug: iCQ7T3MPVFSH45XAJ2rGDAYC5e9hfFC22a5Qs5LzzgknngRJt5mwCq8E3oxRFh5lEnESc4IMj3pz1QO5jKvuTA==
priority: u=3,i
content-length: 88235
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 13:17:16 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=sdftyujklvbn.blogspot.com&_ss=4o338mznzn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=203r&_cb=_dtspv.c
172.64.163.7200 OK 104 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=sdftyujklvbn.blogspot.com&_ss=4o338mznzn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=203r&_cb=_dtspv.c
IP 172.64.163.7:0
File type ASCII text, with no line terminators
Hash 266d010c94d58039f095fa11f420f941
ebef3c130082280c7571dd08d7edf6e9a29da474
319e579d40a34bff3fb5f8b2ead797e85c696cdf92468bffa80ce9bacd34113f
GET /pv/?_a=v&_h=sdftyujklvbn.blogspot.com&_ss=4o338mznzn&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=203r&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Cookie: m=1; oa=1; df=1669468636
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:16 GMT
content-type: application/javascript
x-t: 0.136
x-c: 0
expires: Sat, 26 Nov 2022 13:17:15 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TCJyK77GX8FBrDpl7iQUfJMVKD31aa0RQXStzQjMRPyQjMyV4EdzHCw74j12%2FiZqVT5aIhEDTNbW9GlVsFU%2FTiCg6ZICNe32EBrRY0aDatp2I%2F6Xk%2BznSS%2FDjAWKknAN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7702e74229d5889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16618
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 13:17:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16618
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 13:17:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16618
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 13:17:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16618
Expires: Sat, 26 Nov 2022 17:54:14 GMT
Date: Sat, 26 Nov 2022 13:17:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0f860248042a8499ffb1701a880b2ba
845842c789e6e97fd1687e668d446bbb8309ffc7
9eca5258c7b6e4e145ca6576a3f3791f1324714404ffd7a56a61961f81e7bd44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad04f54-f199-4bc1-a785-cf5c76640147.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11150
x-amzn-requestid: 0b773c28-feda-41a2-9de6-8b559bd773eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVC5EukoAMFxfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813545-3bfe118939abc352072c5af1;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RBv0V5RyDoApQfc5QIHFxVzmasUJvYZ6X4-kTTfI9UhtdjUWitlkJA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "845842c789e6e97fd1687e668d446bbb8309ffc7"
content-type: image/jpeg
age: 55852
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 56020
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -6kE-HDfLIQMtzuaOuArCjtxgpQUgxMrpjcT7pDIdY7CDlJNK1GZWA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
age: 55852
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 21830
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93728079-c686-4b9a-9313-1cc6778793d2.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93728079-c686-4b9a-9313-1cc6778793d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 96437d0cb1ceaffa77124f0dcfeb38cf
3f4a47cdd9ea3bbd20fec37e4a9dbfa9af2acc50
89244601b0a4bc150033e52dc56cf0fbe2846ebba7532c477146258a70783e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93728079-c686-4b9a-9313-1cc6778793d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7799
x-amzn-requestid: 4b3bf619-fb69-4cfe-b8e7-7de4ea127853
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXADFOvoAMFXQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813866-77f561ae3496d84c75541300;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:49:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mxC9qkJyuCX0NOEgkK3Z0LWPpxbTcFIvkrDAJ6KBnMFLHToB50AEFg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:02:20 GMT
age: 54896
etag: "3f4a47cdd9ea3bbd20fec37e4a9dbfa9af2acc50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 53047
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 24bbb1799a4197ca54d07a718929c244
306e1db159c6462ac16527788f772c0615f3741d
5f3ac2e0666918f3c4a525d1d0e811059b5f5143c10883e8c9dd8726938f3797
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 13:17:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 23:33:45 GMT
Expires: Wed, 30 Nov 2022 23:33:44 GMT
Etag: "306e1db159c6462ac16527788f772c0615f3741d"
Cache-Control: max-age=381987,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7702e744ffcfb500-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7ed62c1afe1b8a6fce26c8c183b55214
069e85ac6c3d06b9d1885ba98b6781922ed665ff
70d884d1da314e6d45e06c0e3b242d19f87977729ab6aafb017335d3061a45eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 13:17:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 06:12:19 GMT
Expires: Sat, 03 Dec 2022 06:12:18 GMT
Etag: "069e85ac6c3d06b9d1885ba98b6781922ed665ff"
Cache-Control: max-age=578700,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7702e746da1db500-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 7ed62c1afe1b8a6fce26c8c183b55214
069e85ac6c3d06b9d1885ba98b6781922ed665ff
70d884d1da314e6d45e06c0e3b242d19f87977729ab6aafb017335d3061a45eb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 13:17:17 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 06:12:19 GMT
Expires: Sat, 03 Dec 2022 06:12:18 GMT
Etag: "069e85ac6c3d06b9d1885ba98b6781922ed665ff"
Cache-Control: max-age=578700,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7702e746d8ccb4fa-OSL
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:17 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
st.chatango.com/cfg/nc/r.json?c667210020000051236727273
208.93.230.26200 OK 20 B URL HTTP/1.1 st.chatango.com/cfg/nc/r.json?c667210020000051236727273
IP 208.93.230.26:0
File type JSON data\012- , ASCII text
Hash 4b3e762cf64b26396adead3f3611a76c
893c563f825c4b4bdf3cef86fef6222829d9dfd7
fbcb52aa5b5af5183d2787df206bc50a2a057fb4f04d004fa95072ed42beb3d0
GET /cfg/nc/r.json?c667210020000051236727273 HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sdftyujklvbn.blogspot.com
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 13:17:17 GMT
Content-Type: application/octet-stream
Content-Length: 20
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store, must-revalidate
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)&cu=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:17 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!x34vbqv924y4&dn=TC&cc=1&r=
67.202.105.33200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!x34vbqv924y4&dn=TC&cc=1&r=
IP 67.202.105.33:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!x34vbqv924y4&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 13:17:17 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Sat, 26 Nov 2022 13:17:16 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A)
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan&t=Elegan%20-%20Yube%20Blog%20%3A) HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:17 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:17 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg&ct=Elegan HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:17 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-XMFsprkB8WE%2FUsIm9kyKo6I%2FAAAAAAAAWk0%2F7aNf4-i2wMU%2Fs1600%2Fthumb.jpg HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:18 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!x34vbqv924y4&lm=0&ts=1669468637027&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 26 Nov 2022 13:17:18 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
st.chatango.com/h5/gz/r1109221504/id.html
208.93.230.26200 OK 224 kB URL HTTP/1.1 st.chatango.com/h5/gz/r1109221504/id.html
IP 208.93.230.26:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (54430), with CRLF, LF line terminators
Size 224 kB (224208 bytes)
Hash b5e55978fc6de5b845040e267bfa4de0
6fd166bb4fc22482e5c2b7ceca0e165ce2277a96
b246b03701578765cdfc5fde2324acb491a9ca1b279d84119a98e537799800a0
GET /h5/gz/r1109221504/id.html HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 13:17:17 GMT
Content-Type: text/html
Content-Length: 224208
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Expires: Sun, 26 Nov 2023 13:17:17 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
P3P: CP="Chatango does not have a P3P policy. Please see our privacy policy: http://chatango.com/page?full_privacy"
Accept-Ranges: bytes
cdn.taboola.com/libtrc/chatango-network/loader.js
151.101.85.44200 OK 21 kB URL HTTP/2 cdn.taboola.com/libtrc/chatango-network/loader.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Hash 074b30401ef553aa2be82eadb2d82315
c7376c00a68e6fd061689b90f157f2f2d337737c
968b55c5b34b8379500e053efbd29834b1e298930eaa1d41de8269d3c5edc518
GET /libtrc/chatango-network/loader.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aJhrYst/Z+d8O0WfcLnasxTsR8Aro3h5VaGDhfADCVA6ibZqndvdBcoGDHsfwruamPU5tPpa/A0=
x-amz-request-id: 7JP2HPK2N1M7G6AE
last-modified: Thu, 24 Nov 2022 11:15:04 GMT
etag: "5a7fbe65c4ee6b6cb4a3cbc65a9679bc"
x-amz-version-id: 5PUygg8bqmATdCu1ymnMnYOKeXBCYm80
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Sat, 26 Nov 2022 13:17:18 GMT
via: 1.1 varnish
age: 72
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669468638.439571,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 84
content-length: 21381
X-Firefox-Spdy: h2
st.chatango.com/js/gz/r1109221504/CollapsedViewModule.js
208.93.230.26200 OK 3.5 kB URL HTTP/1.1 st.chatango.com/js/gz/r1109221504/CollapsedViewModule.js
IP 208.93.230.26:0
File type ASCII text, with very long lines (800)
Hash bfa08a2ce760198d81893f3e6dab8e39
d637ff4a3eb897746bdfac9fd8b5bf7c9ce1ea59
742b8b35a5e0593a095202ed49fa19d35bf2d0af3335b4dcb7542a57229e4c5f
GET /js/gz/r1109221504/CollapsedViewModule.js HTTP/1.1
Host: st.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/h5/gz/r1109221504/id.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 13:17:18 GMT
Content-Type: application/x-javascript
Content-Length: 3508
Last-Modified: Wed, 09 Nov 2022 23:08:23 GMT
Connection: keep-alive
Expires: Sun, 26 Nov 2023 13:17:18 GMT
Cache-Control: max-age=31536000
Content-Encoding: gzip
Accept-Ranges: bytes
cdn.taboola.com/libtrc/impl.20221124-3-RELEASE.js
151.101.85.44200 OK 147 kB URL HTTP/2 cdn.taboola.com/libtrc/impl.20221124-3-RELEASE.js
IP 151.101.85.44:0
File type ASCII text, with very long lines (65509)
Size 147 kB (146642 bytes)
Hash 3050e0701b831671635744943e6b2cfc
b607f968e9b1224d9e266b3c352ba93d81b3d508
23a0d988d9f6d486c8ff64488cfe45ad098d31b1b8aa0368f554fd0429cf6dc1
GET /libtrc/impl.20221124-3-RELEASE.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: LRQ6iAIE4qlOGT+4Aa4qcXF5mav1dYbmkTF8Tr/F684sFgjhX2igbmTLFQjQ5uQ+fOyT09vI5YM=
x-amz-request-id: AWMM5KXX4BB1DSQS
last-modified: Thu, 24 Nov 2022 10:45:55 GMT
etag: "3050e0701b831671635744943e6b2cfc"
content-encoding: br
x-amz-version-id: m908zDE.aY_GttR3lwFHQ_YgZ94gsCA5
content-type: application/javascript
accept-ranges: bytes
date: Sat, 26 Nov 2022 13:17:18 GMT
via: 1.1 varnish
age: 9081
x-served-by: cache-bma1657-BMA
x-cache: HIT
x-cache-hits: 93433
x-timer: S1669468639.720398,VS0,VE0
cache-control: private,max-age=31536000
vary: Accept-Encoding
abp: 15
server: AmazonS3-br
content-length: 146642
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669468638738&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr1109221504%2Fid.html&c8=&c9=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2F
143.204.55.25204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669468638738&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr1109221504%2Fid.html&c8=&c9=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2F
IP 143.204.55.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=7&c2=34354936&c3=1&cs_it=b3&cv=3.8.0.210223&ns__t=1669468638738&ns_c=windows-1252&ns_if=1&c7=https%3A%2F%2Fst.chatango.com%2Fh5%2Fgz%2Fr1109221504%2Fid.html&c8=&c9=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2F HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 13:17:18 GMT
set-cookie: UID=18180de31bb44e2c8f02fb11669468638; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OsdqZXRb4KEYc-FWYVbXSAcgwhdvujgOcqGpUn1KK0wziQ1-sf0khQ==
X-Firefox-Spdy: h2
trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=13%3A17%3A18.860&type=usage&msg=rtus&llvl=2&id=5485&cv=20221124-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
141.226.228.48204 No Content 0 B URL HTTP/2 trc-events.taboola.com/chatango-chatango1/log/2/debug?tim=13%3A17%3A18.860&type=usage&msg=rtus&llvl=2&id=5485&cv=20221124-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /chatango-chatango1/log/2/debug?tim=13%3A17%3A18.860&type=usage&msg=rtus&llvl=2&id=5485&cv=20221124-3-RELEASE<=deflated&file=rtus.js&method=injectRtus&position=default&extraData=%7B%7D HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Sat, 26 Nov 2022 13:17:19 GMT
x-fastly-to-nlb-rtt: 22224
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e221c48ca23d0627cfc0cd7907f5bee1
b3f3af6074a05d3bddf023bd5dbbf88bb8d5686e
b91f260251b5c2f217f96a3b79f7e32ccfe843d5e9919664153e07802f55026a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 506
Cache-Control: max-age=165473
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:19 GMT
Etag: "6381f347-139"
Expires: Mon, 28 Nov 2022 11:15:12 GMT
Last-Modified: Sat, 26 Nov 2022 11:06:47 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
ust.chatango.com/groupinfo/y/u/yubeblog/gprofile.xml
208.93.230.22200 OK 99 B URL HTTP/1.1 ust.chatango.com/groupinfo/y/u/yubeblog/gprofile.xml
IP 208.93.230.22:0
File type XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with no line terminators
Hash 892777b9af9911f9d3d01c45c4f9966b
041680c7080e34a34dde17b7ff6b995e7167035c
52add9edf9a0d6a2942c97bf4cb31462a9c521768c5e9a00ac8a049358a764ea
GET /groupinfo/y/u/yubeblog/gprofile.xml HTTP/1.1
Host: ust.chatango.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://st.chatango.com
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 13:17:19 GMT
Content-Type: text/xml
Content-Length: 99
Last-Modified: Mon, 20 Jan 2014 19:17:23 GMT
Connection: keep-alive
Expires: Sat, 26 Nov 2022 13:17:19 GMT
Cache-Control: max-age=0
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 2f430e776295c8a092ddc55a2884da0a
e3f281f24cba695cffbadec33c5e84345cb85197
0b3dae016bcce1949ee52c22d6082e9a8e5477bf307cd629c45a55bbdd55f05b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 439
Cache-Control: max-age=102793
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:19 GMT
Etag: "6380feb2-139"
Expires: Sun, 27 Nov 2022 17:50:32 GMT
Last-Modified: Fri, 25 Nov 2022 17:43:14 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
gum.criteo.com/syncframe?origin=rtus&topUrl=sdftyujklvbn.blogspot.com
178.250.2.146200 OK 5.1 kB URL HTTP/2 gum.criteo.com/syncframe?origin=rtus&topUrl=sdftyujklvbn.blogspot.com
IP 178.250.2.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13465)
Hash c15cfa8a65d67c5f07603cb16d83f1f4
1b90cf00abcb65fb14f16631c9fdc1a56bc2c3a0
28c30c136bbbb031d3b871f25c4128fdb688f8c7dd37d34a1d4351ac0a8b1aef
GET /syncframe?origin=rtus&topUrl=sdftyujklvbn.blogspot.com HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:19 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=ab9760f2-7310-4dc6-bb0c-d410c94cb1b9; expires=Thu, 21 Dec 2023 13:17:19 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 739269
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ff560baeb6bc6d7906a8853513f84137
0972af7b02c7cca877f685229665931cb760d759
872744168a0fbb4c3b4b462fa44bc28d26128efcca87e5b8415dfd5d5dab8123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2106
Cache-Control: max-age=163128
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:19 GMT
Etag: "6381e3dd-13a"
Expires: Mon, 28 Nov 2022 10:36:07 GMT
Last-Modified: Sat, 26 Nov 2022 10:01:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 314
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash ff560baeb6bc6d7906a8853513f84137
0972af7b02c7cca877f685229665931cb760d759
872744168a0fbb4c3b4b462fa44bc28d26128efcca87e5b8415dfd5d5dab8123
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2106
Cache-Control: max-age=163128
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:19 GMT
Etag: "6381e3dd-13a"
Expires: Mon, 28 Nov 2022 10:36:07 GMT
Last-Modified: Sat, 26 Nov 2022 10:01:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 314
ag.gbc.criteo.com/newidsd
185.235.84.220200 OK 377 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.220:0
File type JSON data\012- , ASCII text, with very long lines (436), with no line terminators
Hash dde4c99e1d771c81e69bb6474c4366e3
ecdea53c9a2eb2be5071c12f50ec1305a93c14e2
52b48c599598e2f0242cbad1387970bcc905eb8cc707944dfa0eff283e0b559b
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:19 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 90229
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash bc7f5eacdca1b1a971cfb58becd49e1b
24937864e6c62bbab23af4814a26ac927ec09490
a43a78417b08b86b38c64f97588aa742aef93c46cf7fd063463c400a07faaf0b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4436
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 13:17:20 GMT
Etag: "6381bde6-13a"
Last-Modified: Sat, 26 Nov 2022 12:03:24 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 314
csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
178.250.2.150200 OK 43 B URL HTTP/2 csm.nl.eu.criteo.net/iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1
IP 178.250.2.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.72.Events.StartInit~1&entry=c~Idfs.Rtus.72.Events.SyncframeDropped~1&entry=c~Idfs.Rtus.72.Origin.FromSyncframeBundle~1&entry=c~Idfs.Rtus.72.Headers.Bundle~1&entry=c~Idfs.Rtus.72.Events.InitiateFetch~1 HTTP/1.1
Host: csm.nl.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:20 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=72&r=2&j=TRC.getRTUS
IP 178.250.2.146:0
GET /sync?c=72&r=2&j=TRC.getRTUS HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://st.chatango.com/
x-crto-bundle: IL6kL19YUDZoMnhidzRkTTA0TjclMkJ6TFVYM08zbHd3SUdYS3F1T2pzZ3ZhJTJGbmpsVTgyTmpVU2FMJTJCY0FMaHNrM0JRaFc4VlF2aXJEQ0dMWlUlMkJ4TWNtQklRSGVzZzdQd3VMJTJGaWlubU1kczRyMWtPaFdwWGV3OWpxSklqWjB4M0ZDQ3ZPRTd4dU5qTnlITGxqaTRwcmVIJTJGNWtBTVVmSGRIWUJqZ1diNjZGZ1RpZjlveHclM0Q
Origin: https://st.chatango.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:20 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://st.chatango.com
server-processing-duration-in-ticks: 1970262
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&j=
172.64.163.7200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&j=
IP 172.64.163.7:0
GET /i/?l=http%3A%2F%2Fsdftyujklvbn.blogspot.com%2Fp%2Felegan.html&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:16 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 26-Nov-2022 14:40:36 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sat, 26-Nov-2022 17:17:16 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1669468636; Domain=dtscout.com; Expires=Mon, 06-Mar-2023 13:17:16 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.761
expires: Sat, 26 Nov 2022 13:17:15 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bKJc7tG9IggMvvyc936FwJjL2%2FDydiVAWc9kQNPLs9mKrIaMRmIsEnsUFV9hPFaxo11LEspn5Z1Plr7ePbmBmOjnpjTm0PO1czMTuI0tifmfn1Xoybz7oICFTnmbEmyk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7702e740cec6889e-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 0 B IP 172.64.151.83:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sdftyujklvbn.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:17 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 165142
expires: Tue, 29 Nov 2022 13:17:17 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7702e745498fb509-OSL
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=1GrTuF80M0RITmhlJTJCZkMwOUJGQlhaMUN2czk1S2U5bDhzY1lidTklMkJZRHF2JTJGeGw3eWc4dG1mZ1dGZFBHMVluRWpqJTJGYWg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:19 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=bVdqSV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czk1S2U5bDhzY1lidTklMkJZRHF2JTJGeGw2MmlUVHRGOUY3MFRSQVQ5c1o5b1Q1; expires=Thu, 21 Dec 2023 13:17:19 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 331665
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.25200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.25:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://st.chatango.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 01:57:21 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RI2cRVoHU4hHXagbapDktr2xDjQkfpMcjdJFcPMmrCigNB1AykWTNQ==
age: 40798
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
185.235.84.136200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 185.235.84.136:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 13:17:19 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 86691
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2