Report - www.kangdiehan.my.id/search/label/sholat

Report Overview

Submitted URL
www.kangdiehan.my.id/search/label/sholat
IP
142.250.74.179
ASN
#15169 GOOGLE
Submitted
2022-11-26 20:28:02
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	74 kB	142.250.74.105
fileus.pusathosting.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	356 B	22 kB	51.79.237.32
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	315 B	656 B	142.250.74.130
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	834 B	486 kB	142.250.74.161
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	975 B	6.2 kB	142.250.74.161
jqueryapi.info	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	704 B	2.4 kB	45.33.23.183
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	735 B	92 kB	31.13.72.12
static.domainesia.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	12 kB	172.67.70.200
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	6.3 kB	142.250.74.3
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
netdna.bootstrapcdn.com	3413	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	336 B	6.4 kB	104.18.11.207
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	625 B	68 kB	142.250.74.106
www.kangdiehan.my.id	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	106 kB	142.250.74.179
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	369 B	22 kB	142.250.74.174
4.bp.blogspot.com	11215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	853 B	5.9 kB	142.250.74.161
dnva.me	461329	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	1.1 kB	172.67.163.35
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	6.9 kB	142.250.74.10
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	410 B	611 kB	142.250.74.161
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	76 kB	216.58.207.195
www6.jqueryapi.info	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	6.5 kB	35.186.238.101
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.230.192
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.7 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	www.kangdiehan.my.id/search/label/sholat	Malware
2022-11-26	medium	www.kangdiehan.my.id/js/cookienotice.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (56)

	URL	Size	First Seen	Last Seen
	www.kangdiehan.my.id/search/label/sholat	27 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash f856ef315a35af0026866ef2f5d596eb b2a6425e49b62143672938c2d94dccf307e0500b 7bc344cad76d1a5b0841bc3d216b812167f2b640a0b4b73875b98ff767893970 Loading...

	www.kangdiehan.my.id/search/label/sholat	302 B	2023-03-07	2024-04-19
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:21:01 Times Seen28580 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.kangdiehan.my.id/search/label/sholat	148 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen31 Hash 49c5f9afd0193313fcb7118d6707536b 23300e1438b09a95935d9b3eeee2c5ad7fa192b5 14805a1cdea1ad9bc2bbc771f48977a21bbd6dcecf82deef1346e0803f7b96a5 Loading...

	www.kangdiehan.my.id/search/label/sholat	992 B	2023-03-07	2024-03-24
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-03-24 16:17:36 Times Seen51 Hash df7d998dc3122130f90da01c037572ca f4be456f7b543594f498c28aba198c0ebb05f4a3 81083bc4a83dab80a2617d2b7b7ba0e5c54ab193a0f297a6be0db8bbee5e0b20 Loading...

	www.kangdiehan.my.id/search/label/sholat	2.3 kB	2023-03-07	2024-03-24
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-03-24 16:17:36 Times Seen59 Hash 5e6a49d45268822cd9004077af3ccfdb 93bc3314580568069f40737d5676127d09229472 9dd89388511935cd2fdee1dd2268dd83026d76e143cc055aed28966ffa9ff5f5 Loading...

	www.kangdiehan.my.id/search/label/sholat	95 B	2023-03-07	2024-03-24
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-03-24 16:17:36 Times Seen48 Hash e96dc4e2377d186c25d9821134f5a728 59d83030fdccfb52afdebadb8e151fe058c8d299 5c084fa6803d5117934071458c3fc450cc6940829fd8b1272bc27e7ed3594f61 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	176 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 56e3c588ced8ba4b5f2fc17026a9d57e 85f89594b97d49984b826d511fb82271bfddb85b b1370ea109344f61415c6a6414837fd2089a02bcd1d6bc88fad765fe7640541a Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js	93 kB	2023-03-07	2024-04-18
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 13:22:04 Times Seen16763 Hash e0e0559014b222245deb26b6ae8bd940 e2f3603e23711f6446f278a411d905623d65201e 89a15e9c40bc6b14809f236ee8cd3ed1ea42393c1f6ca55c7855cd779b3f922e Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	129 kB	2023-03-08	2023-11-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-11-05 00:33:19 Times Seen5 Hash ebaa2506c5b4b13ecfc737a1e3b7eb3d e75a7603d9e5016c0c774ab99d5c0b9b756e1a03 9e6d60f06b6332ed1831d9d501e602656f3c884480c6d7034542866281ea3086 Loading...

	www.kangdiehan.my.id/search/label/sholat	296 B	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-04-07 15:41:55 Times Seen141 Hash 4e062f1eeb494e6a6f0f7d171d44d45b cf7e3bf3c875486f8327482dd44587dee6b153a1 e10c9fb319014d8757794aa439934148b937e4d4b59cc3a9002bc6947510fe05 Loading...

	www.kangdiehan.my.id/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-19
Pretty URL www.kangdiehan.my.id/js/cookienotice.js IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-19 07:41:04 Times Seen112923 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	www.kangdiehan.my.id/search/label/sholat	692 B	2023-03-11	2023-03-11
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:34:04 Last Seen2023-03-11 20:55:07 Times Seen1 Hash 0420636e63da13fc9b833e6d26eca61c af687519e853e6267b967e993763b8d87da4ed63 0f69fb4587205241e68d1fc5ceb209f188825c7f809629f4bd74ab1c3fd69b69 Loading...

	www.kangdiehan.my.id/search/label/sholat	269 B	2023-03-07	2024-04-19
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:21:01 Times Seen27897 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	connect.facebook.net/en_US/all.js	3.1 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/en_US/all.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:55:00 Last Seen2023-03-11 20:55:07 Times Seen1 Hash 8085da842ef2225a86555a625ecaa847 e8001e9396a519fdf9a86263493690c7bd76926f 9b802af074c1c19b1bf7722cd6d072739907545b153141e285e3163f80b703a0 Loading...

	www.kangdiehan.my.id/search/label/sholat	505 B	2023-03-07	2024-03-24
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-03-24 16:17:35 Times Seen36 Hash 0326c23854fea281461e798b405e4ba9 b70e706baf7f1aa3da9bd2373cb5bb4e8a9b8ec7 2f4bdaf2cb1979b7f92a99e73648c5e6e5eca4cb151b3879030321024ef7cc3c Loading...

	www.kangdiehan.my.id/feeds/posts/summary/-/sholat?alt=json-in-script&callback=pageNavi&max-results=99999	1.8 kB	2023-03-11	2023-03-11
Pretty URL www.kangdiehan.my.id/feeds/posts/summary/-/sholat?alt=json-in-script&callback=pageNavi&max-results=99999 IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:55:07 Last Seen2023-03-11 20:55:07 Times Seen1 Hash c832d6cf72d9455ec08e3a016b8c52f4 0a3a2d67bffe776a1b646e309d665b16edb44b5c 71d0d6624785d310f7497391e4e76489739db9c6e0332dd959e3f6318294c01b Loading...

	www.kangdiehan.my.id/search/label/sholat	11 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen31 Hash 7b1dc5defb2d0ef2b61168530dd3b146 49a166aa547cc38a972c9da2a6769a93e20fa567 76266b9a233132957eb85ff49020c23878c794bf4fddf06dde0d81e7d4104ac8 Loading...

	www.kangdiehan.my.id/search/label/sholat	533 B	2023-03-07	2024-03-24
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-03-24 16:17:36 Times Seen54 Hash 1e7766cc6e00ac25d540d47130ecba75 42418fcde8745b30c085653f3a6d4441453f17cf 4cb3895b2dc29fd8d44de8bb7831aed92df8fe6b09e508c7d76fda4668d79670 Loading...

	www.kangdiehan.my.id/search/label/sholat	1.5 kB	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:03 Last Seen2024-04-07 15:41:55 Times Seen220 Hash e3732721a480dbce88234a4dbd39f595 394c071f886f1fddf8247b26502aa6182df7905e 12e808f22c88fb2a3290d432d5c262b1cdf5e0d028bda3144bc0d010f2792f21 Loading...

	www.kangdiehan.my.id/search/label/sholat	7.4 kB	2023-03-07	2023-03-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2023-03-25 22:24:20 Times Seen2 Hash e6fbc262b67a85dc7811c3b998689732 eb0a8b2d1fcc8bf088e6a8bee31ed00356dadcf1 edfb9c24b572f333d3a77184fa9c2af7dce874a1444ac1af69b5ca5929804709 Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-19
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-19 07:21:01 Times Seen47731 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:23 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 82b37d5e95d1e985a554cf000e9bb15c 8973b2e12ea8de1b8a14c8b7ea3be6c1c25eae07 4c6520efed0ab3222ea84da3fb4d6cdc929353fdfa0ac12422253be3ffcf525a Loading...

	www.kangdiehan.my.id/search/label/sholat	6.0 kB	2023-03-07	2023-03-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2023-03-25 22:24:19 Times Seen2 Hash 38df392d5f6e4d7eebd110b0fd694b2a c6d24e851bdaa4d0f68cc3c42e14600d2c66ebb1 435d1128fdfc0724b2c0a94ec7c9db8bb7d9e58f7cc6b2c2a54db019be9c2bce Loading...

	www.kangdiehan.my.id/search/label/sholat	97 B	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:03 Last Seen2024-04-07 15:41:55 Times Seen194 Hash e14712ae160d5b217c5ee9e86d11d710 f2b61ee8724adbde11356804e6d8a3a398a6b5a9 ef8704c37691641656275fb0350562bc3fccb8f3ee3d94156d47072896a0fb01 Loading...

	www.kangdiehan.my.id/search/label/sholat	2.6 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen14 Hash 1ea80931f40cfd27bb93673b6ee55319 12826eae0933c0309d4c32aca356c0b01ec4679f ae7ac309ee0b0f5bd08d4a1a8907241f4503f8752c7156d6c68e39fa19d4f663 Loading...

	www.kangdiehan.my.id/search/label/sholat	574 B	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:03 Last Seen2024-04-07 15:41:55 Times Seen203 Hash 6ccc2ab890e13c992fcc63b10d91d180 c1307a24fef3ac41387458b3e18ac6e2717a23d4 3773f790d99ae6aab8acb61a05fb89056908cbd275d9092c6f961513f9d3e06c Loading...

	www.blogger.com/static/v1/widgets/2342155703-widgets.js	157 kB	2023-03-08	2023-03-17
Pretty URL www.blogger.com/static/v1/widgets/2342155703-widgets.js IP 142.250.74.105 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:40 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 64d62574443f9d2148012af05abf60ac 16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246 Loading...

	www.kangdiehan.my.id/search/label/sholat	366 B	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:57:31 Last Seen2024-04-07 15:41:55 Times Seen53 Hash e07737828d4b0ef9bbbb6da4b434234f 92f828ed7737cd6d9c317383a46ec784c81d1848 4e942992da7656e28466d0820cfbb390b004865f65026e850a52dc1811192179 Loading...

	www.kangdiehan.my.id/search/label/sholat	2.0 kB	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:57:31 Last Seen2024-04-07 15:41:55 Times Seen85 Hash 0793a84ce53d4b2adbbe25b0ce719242 9009d8a079de755f9a83cccbbfa57c850674f7be 7effe69a689fd39a53af784758e88a95b32cf14607b4552096e48ae659308ab5 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js	96 kB	2023-03-07	2024-04-19
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 06:05:36 Times Seen46151 Hash 8101d596b2b8fa35fe3a634ea342d7c3 d6c1f41972de07b09bfa63d2e50f9ab41ec372bd 540bc6dec1dd4b92ea4d3fb903f69eabf6d919afd48f4e312b163c28cff0f441 Loading...

	www.blogger.com/navbar.g?targetBlogID=7554078539698234421&blogName=All+About+Writing&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.kangdiehan.my.id/search&blogLocale=en_GB&v=2&homepageUrl=www.kangdiehan.my.id/&vt=8184929894407161850&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.kangdiehan.my.id&pfname=&rpctoken=70390579	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=7554078539698234421&blogName=All+About+Writing&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.kangdiehan.my.id/search&blogLocale=en_GB&v=2&homepageUrl=www.kangdiehan.my.id/&vt=8184929894407161850&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.kangdiehan.my.id&pfname=&rpctoken=70390579 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 0f33e12fa3290716d243f3162bb63cb0 32f9b00bfd7449ebd5382871d1c083db9c1b2b95 82c53629d9ff53cc334633ac037d1dc1f843008d6e1347ce784b9f255bacb42f Loading...

	www.kangdiehan.my.id/search/label/sholat	789 B	2023-03-07	2024-02-13
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.kangdiehan.my.id/search/label/sholat	275 B	2023-03-07	2024-04-19
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-19 07:41:04 Times Seen57127 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.kangdiehan.my.id/search/label/sholat	37 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen31 Hash a0790514249d0da0056f2869f600983b 32da5721a65581640ab1c77f400c18cf2712585c bcfd962bb120b6bf0900f175028821cd407870e42bd6e9b5a7a49ebfdf8ea00a Loading...

	www.kangdiehan.my.id/search/label/sholat	26 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 3c2ae0f3feca051f0a51c4a54a8ab4de e73992f2abdbe3db6b0d9de5c1d78201e7658256 00e982a0cf1a6e1c822f6befc0c2a8e326dc78a35390de74db97dd453d43017c Loading...

	www.kangdiehan.my.id/search/label/sholat	7.5 kB	2023-03-11	2023-03-11
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:55:08 Last Seen2023-03-11 20:55:08 Times Seen1 Hash d7c9abdb43a3c3d84efa7350eec06eb6 d6931181f22a120d2c835e0076be49ebc6bee092 5b39fdb85776ac006cca5c34d86baeee903b3f62a239b2868eb6b7f5c7e14352 Loading...

	www.kangdiehan.my.id/search/label/sholat	844 B	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash d499ad8c43b4db7202dded17dd397373 440de97cd51b290fa33c16fc70788145a2c318ac 6e65717ad60a1e398786a226e28362220e81307a23d24cb435bcd1153fc24073 Loading...

	www.kangdiehan.my.id/search/label/sholat	15 kB	2023-03-07	2024-02-25
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen31 Hash 0d43b74a9c3f88332dd66a3878d3bd74 cdd4ffebe765e58ad67dfe02e782bd5c35ae1b26 95e5b3f2ac6dec6b0f9814b56d3fff521b0bb0cb9afa3713cf5ab7b27cb2276f Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 07:50:19 Times Seen36954681 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.blogger.com/navbar.g?targetBlogID=7554078539698234421&blogName=All+About+Writing&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.kangdiehan.my.id/search&blogLocale=en_GB&v=2&homepageUrl=www.kangdiehan.my.id/&vt=8184929894407161850&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.kangdiehan.my.id&pfname=&rpctoken=70390579	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=7554078539698234421&blogName=All+About+Writing&publishMode=PUBLISH_MODE_HOSTED&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://www.kangdiehan.my.id/search&blogLocale=en_GB&v=2&homepageUrl=www.kangdiehan.my.id/&vt=8184929894407161850&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fwww.kangdiehan.my.id&pfname=&rpctoken=70390579 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	www.kangdiehan.my.id/search/label/sholat	229 B	2023-03-07	2024-04-07
Pretty URL www.kangdiehan.my.id/search/label/sholat IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:03 Last Seen2024-04-07 15:41:55 Times Seen188 Hash 6baab374e1a5ea62432a4a9437af8730 92b3253104b3e63cdcdf0b14d22dbeb86b3efa32 56869ad71def090324d98755fbb49d7c6b7d3ef565cfd0d1578957c2b05f1ac6 Loading...

		Size	First Seen	Last Seen
	#1 Eval - f17561fc2794d6db45ab5b0fb27d8f1d	17 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash f17561fc2794d6db45ab5b0fb27d8f1d 66600fb2a5a96ea14d56dd8ceff388bbe0c116c9 75656bba17c5bace18bea365d54ba37bdbb49cb4fafe7b1026c0d0de5621cf85 Loading...

	#2 Eval - 90a4dca1d20b3138c8545e162b13e1ba	14 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen22 Hash 90a4dca1d20b3138c8545e162b13e1ba 07a39c3c0ebf59c4a6da60e72dc4bf1b3385103b e67899b585869d1aaafcc0f53b0ed428a564f83d8db36c9e572d4b254825be42 Loading...

	#3 Eval - 1c7d35457d6827c44538a75df1a7cbce	12 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 1c7d35457d6827c44538a75df1a7cbce 9d4bed74071b7af84db16425f9e9aacda94994b8 08f4eba34e063f75ffe1d1c9730bc28273e43fb7dd5e169551e1a885d0840bb7 Loading...

	#4 Eval - 3d2766b38696e3328454b738ffd427ab	11 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 3d2766b38696e3328454b738ffd427ab 4a6195f5dfc05e03d33d63605f8d2e6699f680fd 599f086b9ac6a9ba276ed97083c9626a0231ddf4a4f4f0e2e7ed28429bf415b3 Loading...

	#5 Eval - 2e14069862943b30b9a637e7c99100d7	20 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 2e14069862943b30b9a637e7c99100d7 4b8044f50cd3be2a66741f23c42ce6e354da656d e645873331802483ad99e91294dd84196cddebdb021f6a82c1bb569192a1048c Loading...

	#6 Eval - 7f48f2fb95259af0abc8072f7ae88707	17 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 7f48f2fb95259af0abc8072f7ae88707 fd6b3c55e6f18498bf58193470d5bc0fa8f008d0 bab3c1e9d870eaded483f36ccbe13f3a4c65b208da681e0978c6febcf6623bed Loading...

	#7 Eval - 055706139d831aed983fa55dd927d59b	1.7 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 055706139d831aed983fa55dd927d59b c383ef0cfeeeaa8cc158ec588bed43249d8061af 6fa2e1772220a8bf848e038d2c04132af5767696ba827c7d83e01670ff1e08a0 Loading...

	#8 Eval - 8ce4f961e7ac2faa5ceb89cc2ca4b806	14 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 8ce4f961e7ac2faa5ceb89cc2ca4b806 d5f5c9207a8069f82829058d7c5a9927c5a267f0 c88fc3444f3a36fcf0b3cd920db9e0326f13558afdeb13f313003746d9f8a535 Loading...

	#9 Eval - 529cf454d1087f5f409f52ad2b41a22e	11 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 529cf454d1087f5f409f52ad2b41a22e ca72a1aa92baf44a6e65da80ec089f57ad576ca4 2e68d986bdafb2eb8962b5cee974097fa0475a31623c1a381bdf9412fc205c51 Loading...

	#10 Eval - 953e0d191ee59739832f7cb17425ff8d	7.9 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:58 Times Seen23 Hash 953e0d191ee59739832f7cb17425ff8d 433b430695e95971a60bedba41556a53d948e438 8bccff04980aca4cf69ae3bb754bda0a751c917ee30b651f15d2d434822e7bdb Loading...

	#11 Eval - e134e6257ed0027c409a2f827de880d7	14 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:58 Times Seen23 Hash e134e6257ed0027c409a2f827de880d7 13a79899bd599cc07fe60e2c3293a1e407b6b09f 8296397fa67a957bfe6a8095bea101568eb106bdb244fa0e56f2ab6d97e974d0 Loading...

		Size	First Seen	Last Seen
	#1 Write - 28f3dbe0ab1c66891925993695179e80	6.1 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 18:04:39 Last Seen2024-02-25 20:23:59 Times Seen23 Hash 28f3dbe0ab1c66891925993695179e80 169a9808d84050f3e1dd8a9618e1c07a8bebf12f cdaf84dad0a5744f7a40559aaef5c63f429154e9891ec10dfa2c919d8c7eba00 Loading...

	#2 Write - 0d713f79b423c276a61ace07a0d45fca	7.4 kB	2023-03-07	2024-02-25
Pretty Observations First Seen2023-03-07 12:26:30 Last Seen2024-02-25 20:23:59 Times Seen23 Hash 0d713f79b423c276a61ace07a0d45fca 9b72ef9f7bcb5c5f33aa6cc6ec2e735bfe9e8d4c 82001ab9016ff35d36d5d12a3234cca5021567587de06432744303fa66a1d699 Loading...

	#3 Write - 770f9b7e6051bc5bbb909f46cabee082	131 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:55:08 Last Seen2023-03-11 20:55:08 Times Seen1 Hash 770f9b7e6051bc5bbb909f46cabee082 ab20bcb5ecf765672cfa61abc015bdd3a1f54203 8a26103f1a0ad7f459e77eab7def4e1b6fe07f8abd6033f30df0c60bc2b15785 Loading...

HTTP Transactions (71)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5926
Expires: Sat, 26 Nov 2022 22:06:36 GMT
Date: Sat, 26 Nov 2022 20:27:50 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4973
Cache-Control: max-age=141971
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:50 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:54:01 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 20:19:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 516
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6602
Expires: Sat, 26 Nov 2022 22:17:53 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SiaY6gBkxd7Qb6AnXSu70XVvt7uqvwGku7DZJHtgUg9DllYuld4guhVUQcVF1F0WYvhBI4Y+QEM=
x-amz-request-id: WZ9EWBMC67GR6PY6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 19:44:21 GMT
age: 2610
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 20:27:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css

104.18.11.207

200 OK

5.5 kB

URL HTTP/1.1
netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
troff or preprocessor input, ASCII text, with very long lines (305)
Size
5.5 kB (5520 bytes)
Hash
5048d2a37fc030380806aacaefd29402
56ece115c03ab11e504bf7f9277da2dba0d38ea2
91ebcaa466fdc622bf8b15b3fd99efafd4bbd3a7ecd9ac8ec7b4ee3a69096bb6

HTTP Headers

GET /font-awesome/4.1.0/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:27:51 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: SE
CDN-EdgeStorageId: 632, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-03-10 20:26:52
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 7c2e8c7dceadb8c812b0bfb2cf5a1135
Content-Encoding: gzip
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 18805199
Server: cloudflare
CF-RAY: 77055dfcfc760b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

fonts.googleapis.com/css?family=Oswald%3A400%2C300%2C700&ver=3.8.4

142.250.74.10

200 OK

543 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Oswald%3A400%2C300%2C700&ver=3.8.4
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
543 B (543 bytes)
Hash
44664ccabc3693112c12759142677300
b1eca09c9426e784608e4131163f5a2335024eac
94f9094a3e46944013c0e9c2a7f3a828a216364447fdb10c122683e2b222d2a4

HTTP Headers

GET /css?family=Oswald%3A400%2C300%2C700&ver=3.8.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Fjalla+One

142.250.74.10

200 OK

339 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Fjalla+One
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
339 B (339 bytes)
Hash
4e619e8a653843b5e8960b90cda2ef0c
192224b09de6b88e3e0df502553d5a740204f872
755f5b02b84f5b3693f685d72f078ce84bff1c51d41bc12470fdbe8558bba1a9

HTTP Headers

GET /css?family=Fjalla+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Open+Sans:400,300,700,600

142.250.74.10

200 OK

726 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Open+Sans:400,300,700,600
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
726 B (726 bytes)
Hash
f695a50aad9a7f635d32fb725051cdf9
0528fac2131b6367b6ffde48dd421a0ea945c504
8deb5e5efaca71e5ef829c4fa214913332aba71be8d68fa2c291789f92c9ea18

HTTP Headers

GET /css?family=Open+Sans:400,300,700,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Raleway:300,400,500,600

142.250.74.10

200 OK

572 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Raleway:300,400,500,600
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
572 B (572 bytes)
Hash
6e737c070a5ae53a68ac871c070040c5
9f58ff1c4d00c0cf7e81030ff4a337bf83c4866e
4b5bd3c10cd2ffbf9b4295860dd7a863e7027e52105e8e921bdd68931eb9c89f

HTTP Headers

GET /css?family=Raleway:300,400,500,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Arimo%3A400%2C700%2C400italic%2C700italic%7CMontserrat%3A400%2C700%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400&ver=1408323976

142.250.74.10

200 OK

1.1 kB

URL HTTP/1.1
fonts.googleapis.com/css?family=Arimo%3A400%2C700%2C400italic%2C700italic%7CMontserrat%3A400%2C700%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400&ver=1408323976
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
1.1 kB (1115 bytes)
Hash
e2ad3435d68898466ff0733481220bb9
887563b96c60d614a8e8fe68d20329eee59595ca
8effaff24c5291b99a9008ab78ffa17d31c35068bfbb4fe8d79d6d6ef0723007

HTTP Headers

GET /css?family=Arimo%3A400%2C700%2C400italic%2C700italic%7CMontserrat%3A400%2C700%7CRoboto%3A400%2C700%7CRoboto+Condensed%3A400&ver=1408323976 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

fonts.googleapis.com/css?family=Oxygen:400,300,700

142.250.74.10

200 OK

390 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Oxygen:400,300,700
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
390 B (390 bytes)
Hash
606a38c3a9da6758a6b91ff97648c0bc
d79a479e1889893a57b4e980cdfcd150d227ade5
a6507cd38f0de1dca381d3431fdaf9920a572e614265f2fe19bd9fb60244c17c

HTTP Headers

GET /css?family=Oxygen:400,300,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 26 Nov 2022 20:27:51 GMT
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js

142.250.74.106

200 OK

33 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32086)
Size
33 kB (33434 bytes)
Hash
430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed

HTTP Headers

GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33434
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 13:04:02 GMT
Expires: Thu, 23 Nov 2023 13:04:02 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 285829

ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js

142.250.74.106

200 OK

33 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.10.2/jquery.min.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32072)
Size
33 kB (32954 bytes)
Hash
d38e2944bbc9ae54b8947a2bd0b9a932
782a825679b248d38979c2d7ecae257873344437
65a0917567cb7037612cf420629873f2f3594d2e741aaadf90d893d07d8f5fdd

HTTP Headers

GET /ajax/libs/jquery/1.10.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 32954
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 08:10:13 GMT
Expires: Sat, 25 Nov 2023 08:10:13 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 130658

www.kangdiehan.my.id/search/label/sholat

142.250.74.179

200 OK

102 kB

URL HTTP/1.1
www.kangdiehan.my.id/search/label/sholat
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9299)
Size
102 kB (101717 bytes)
Hash
f3e3a9c1ce08fbba2850c77950c8f81c
9d340878b33322eeb9f2e9f597264817603d06f2
bad0bebe9422638ca2dfdabe5f19d9f3b2caf0df0ee7debcf73c503a107078a9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /search/label/sholat HTTP/1.1
Host: www.kangdiehan.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 26 Nov 2022 20:27:50 GMT
Date: Sat, 26 Nov 2022 20:27:50 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 08 Nov 2022 02:10:25 GMT
ETag: W/"3afa7f9f386dd840780e86e6d1f0dbe2090891653fbd86a2942f47ee634fe35a"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 101717
Server: GSE

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f575aee4f3f9ed92647e6efd5d92b195
ed485eaa177873f0cb7f42817c6d0a4435cf3a76
ef7c5f6de7d3e3c93a6863c1e6525d172fe699807f79ea3183d69dece05f0009

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3af86ffa45a38a9c1893246384fd98e2
443689828d8fe68cad492ff311ee181721fcd921
1374059b5c6ebd6bbbfd8ed4af2e53dc050801a38098f6de394e523d8be2e792

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

142.250.74.105

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 353699
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css

142.250.74.105

200 OK

7.5 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35063), with no line terminators
Size
7.5 kB (7452 bytes)
Hash
f3167132833424a781f5270b052f9952
39916f5321955446feb471b2c6e5167cf65c8cac
78e311131a88573cc85996e817039c6d361730a065cd3332bed576e00657a482

HTTP Headers

GET /static/v1/widgets/1535467126-widget_css_2_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:46:27 GMT
expires: Sat, 25 Nov 2023 23:46:27 GMT
cache-control: public, max-age=31536000
age: 74484
last-modified: Tue, 25 Nov 2014 14:03:24 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

142.250.74.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 20:27:51 GMT
expires: Sat, 26 Nov 2022 20:27:51 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3af86ffa45a38a9c1893246384fd98e2
443689828d8fe68cad492ff311ee181721fcd921
1374059b5c6ebd6bbbfd8ed4af2e53dc050801a38098f6de394e523d8be2e792

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3af86ffa45a38a9c1893246384fd98e2
443689828d8fe68cad492ff311ee181721fcd921
1374059b5c6ebd6bbbfd8ed4af2e53dc050801a38098f6de394e523d8be2e792

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.kangdiehan.my.id/js/cookienotice.js

142.250.74.179

200 OK

2.0 kB

URL HTTP/1.1
www.kangdiehan.my.id/js/cookienotice.js
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: www.kangdiehan.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/search/label/sholat

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 22:07:55 GMT
Expires: Fri, 02 Dec 2022 22:07:55 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 25 Nov 2022 18:49:48 GMT
Content-Type: text/javascript
Age: 80396

www.blogger.com/static/v1/widgets/2342155703-widgets.js

142.250.74.105

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56726 bytes)
Hash
1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b

HTTP Headers

GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 447948
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

2.bp.blogspot.com/-d4bAUad3uvQ/XphyuFvjYGI/AAAAAAAABbs/6v4P5-3wX0cvAew2kaKTBVPmw14Bru8CACK4BGAYYCw/s1600/viewer%2B1.png

142.250.74.161

200 OK

124 kB

URL HTTP/1.1
2.bp.blogspot.com/-d4bAUad3uvQ/XphyuFvjYGI/AAAAAAAABbs/6v4P5-3wX0cvAew2kaKTBVPmw14Bru8CACK4BGAYYCw/s1600/viewer%2B1.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 1600 x 705, 8-bit/color RGBA, non-interlaced\012- data
Size
124 kB (123528 bytes)
Hash
9a311daa021d9d3d15fbccee630f0464
251e68593afe17936f18d05bc580f293f693fc11
37f79764ecea1b4776032b96848eaa2be0b33552bb03dd9831a18405d856c67c

HTTP Headers

GET /-d4bAUad3uvQ/XphyuFvjYGI/AAAAAAAABbs/6v4P5-3wX0cvAew2kaKTBVPmw14Bru8CACK4BGAYYCw/s1600/viewer%2B1.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="viewer 1.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 123528
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 20:27:51 GMT
Expires: Sat, 26 Nov 2022 22:07:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5bc"
Content-Type: image/png
Age: 0

2.bp.blogspot.com/-rwzNd0i_c14/Xphq4_tgwAI/AAAAAAAABaY/JWzQLzqCVFMtxXTSTWJ7FxfyC117RMpGwCK4BGAYYCw/s1600/WhatsApp%2BImage%2B2020-04-15%2Bat%2B17.17.54.jpeg

142.250.74.161

200 OK

362 kB

URL HTTP/1.1
2.bp.blogspot.com/-rwzNd0i_c14/Xphq4_tgwAI/AAAAAAAABaY/JWzQLzqCVFMtxXTSTWJ7FxfyC117RMpGwCK4BGAYYCw/s1600/WhatsApp%2BImage%2B2020-04-15%2Bat%2B17.17.54.jpeg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1280x902, components 3\012- data
Size
362 kB (361928 bytes)
Hash
05ec806771a04b316004ea94f7a358b2
5697a5d8c28476ab8611efa669ffcc39475248b1
cae744d9db5f7f429f0d43b9df33eb7a8f455dff482ae520e797bdb7efb9d098

HTTP Headers

GET /-rwzNd0i_c14/Xphq4_tgwAI/AAAAAAAABaY/JWzQLzqCVFMtxXTSTWJ7FxfyC117RMpGwCK4BGAYYCw/s1600/WhatsApp%2BImage%2B2020-04-15%2Bat%2B17.17.54.jpeg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="WhatsApp Image 2020-04-15 at 17.17.54.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 361928
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 20:27:51 GMT
Expires: Sat, 26 Nov 2022 22:07:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a7"
Content-Type: image/jpeg
Age: 0

3.bp.blogspot.com/-Ma30E-Zgf-A/Xpho6ciTr_I/AAAAAAAABaM/5zIFBJUG1ms5UPk1_vJNQ-9Q56WDmjglwCK4BGAYYCw/s1600/asrama-stail-1024x600.png

142.250.74.161

200 OK

611 kB

URL HTTP/1.1
3.bp.blogspot.com/-Ma30E-Zgf-A/Xpho6ciTr_I/AAAAAAAABaM/5zIFBJUG1ms5UPk1_vJNQ-9Q56WDmjglwCK4BGAYYCw/s1600/asrama-stail-1024x600.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 1024 x 600, 8-bit/color RGB, non-interlaced\012- data
Size
611 kB (610900 bytes)
Hash
c406bbb465e15273ed36c008c7c073e8
d03708b44702b0b0f69531aa5f1299b859ce9f95
9587296cc05c7ac099ff41fb5c34883a6b7cfe70734ba4df0b3a29e16a509256

HTTP Headers

GET /-Ma30E-Zgf-A/Xpho6ciTr_I/AAAAAAAABaM/5zIFBJUG1ms5UPk1_vJNQ-9Q56WDmjglwCK4BGAYYCw/s1600/asrama-stail-1024x600.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="asrama-stail-1024x600.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 610900
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 20:27:51 GMT
Expires: Sat, 26 Nov 2022 22:07:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5a4"
Content-Type: image/png
Age: 0

1.bp.blogspot.com/-_vLBjnTbufA/WAga4_ZGnmI/AAAAAAAAAwg/dTB9ciVgRj06GB8Brz33mJM3eAbrSSwnQCEw/s72-c/unduhan.jpg

142.250.74.161

200 OK

2.4 kB

URL HTTP/2
1.bp.blogspot.com/-_vLBjnTbufA/WAga4_ZGnmI/AAAAAAAAAwg/dTB9ciVgRj06GB8Brz33mJM3eAbrSSwnQCEw/s72-c/unduhan.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.4 kB (2409 bytes)
Hash
4f5fb5848627a5fd1414800b288fcd67
a8fdee9d9ade863ff5dfc34acc19c8d28928ea50
2cbd9cd14433d99f1f507349dff71023d393b254be2556d7cd6ff2b40005e89f

HTTP Headers

GET /-_vLBjnTbufA/WAga4_ZGnmI/AAAAAAAAAwg/dTB9ciVgRj06GB8Brz33mJM3eAbrSSwnQCEw/s72-c/unduhan.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unduhan.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2409
x-xss-protection: 0
date: Sat, 26 Nov 2022 20:27:51 GMT
expires: Sat, 26 Nov 2022 22:07:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v30b"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6983392700438f228fa9b5bba4594fc5
d27c65105b44a2e1ff7663ba0021a475b5b30cd2
557627dbab910f61773f0f818efc6b18bb2b5816175199b997684a799c1c97e0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c3fb77645d1f70e6ec3a7712f4ac959f
fb038c1bd188c0b86e1eb5ec485f322443583d78
a7d96d07c8ee63470dd55c2a09884cbc550be64a2e06532bf189a5e0ae656ac6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=158244
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Etag: "63823deb-118"
Expires: Mon, 28 Nov 2022 16:25:15 GMT
Last-Modified: Sat, 26 Nov 2022 16:25:15 GMT
Server: nginx
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3af86ffa45a38a9c1893246384fd98e2
443689828d8fe68cad492ff311ee181721fcd921
1374059b5c6ebd6bbbfd8ed4af2e53dc050801a38098f6de394e523d8be2e792

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

1.bp.blogspot.com/-Z5IYkuEIdeY/WAXNJbvBYNI/AAAAAAAAAwA/5VBXrV9bGVUQ0BLhPNnlfxuGf7Bz7-3-QCLcB/s72-c/tentara%2Bsalib.jpg

142.250.74.161

200 OK

2.5 kB

URL HTTP/2
1.bp.blogspot.com/-Z5IYkuEIdeY/WAXNJbvBYNI/AAAAAAAAAwA/5VBXrV9bGVUQ0BLhPNnlfxuGf7Bz7-3-QCLcB/s72-c/tentara%2Bsalib.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.5 kB (2471 bytes)
Hash
804c95152986ea8b1442a6b1da08d950
7d39097c82487b3e53ac4622c47c1e982958865e
7f1a4955fb5dd9f7d6a113f66a15769a5aebef222135e8c49f9beb8fd3ed62ca

HTTP Headers

GET /-Z5IYkuEIdeY/WAXNJbvBYNI/AAAAAAAAAwA/5VBXrV9bGVUQ0BLhPNnlfxuGf7Bz7-3-QCLcB/s72-c/tentara%2Bsalib.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v301"
expires: Sun, 27 Nov 2022 20:27:51 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="tentara salib.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 20:27:51 GMT
server: fife
content-length: 2471
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-Vt7O669t534/WAa5hitwPpI/AAAAAAAAAwQ/_M14VKK4HAortmPCUKdSlBSPbyfBgfWAwCLcB/s72-c/perfect1.jpg

142.250.74.161

200 OK

3.9 kB

URL HTTP/2
4.bp.blogspot.com/-Vt7O669t534/WAa5hitwPpI/AAAAAAAAAwQ/_M14VKK4HAortmPCUKdSlBSPbyfBgfWAwCLcB/s72-c/perfect1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.9 kB (3883 bytes)
Hash
5f397cf0e1535e93e31f58012c154ae6
4f7f5b23a606ca239ffc10779f5e424917376777
5c23a577348ff4db2128b1674f207c0badedd36dec32230cb452a4e379876797

HTTP Headers

GET /-Vt7O669t534/WAa5hitwPpI/AAAAAAAAAwQ/_M14VKK4HAortmPCUKdSlBSPbyfBgfWAwCLcB/s72-c/perfect1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="perfect1.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3883
x-xss-protection: 0
date: Sat, 26 Nov 2022 20:27:51 GMT
expires: Sat, 26 Nov 2022 22:07:56 GMT
cache-control: public, max-age=86400, no-transform
etag: "v305"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 20:08:54 GMT
cache-control: public,max-age=3600
age: 1137
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png

142.250.74.161

200 OK

953 B

URL HTTP/1.1
4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size
953 B (953 bytes)
Hash
0eea26f07712e739f05d4af4ff7f679f
31c2536de1ca08a5c538ce8369cc70a895e2b7c4
8ba06da9e3b2565103c9ba09aa56fe85809aa49d218de985fbae4381b3c75d5e

HTTP Headers

GET /-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="icon-search.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 953
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 20:27:36 GMT
Expires: Wed, 17 Nov 2021 17:41:10 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 15
ETag: "v13f"
Content-Type: image/png

fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2

216.58.207.195

200 OK

25 kB

URL HTTP/1.1
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Size
25 kB (25372 bytes)
Hash
fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1

HTTP Headers

GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kangdiehan.my.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25372
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 21:46:29 GMT
Expires: Fri, 24 Nov 2023 21:46:29 GMT
Cache-Control: public, max-age=31536000
Age: 168082
Last-Modified: Mon, 18 Jul 2022 19:24:05 GMT
Content-Type: font/woff2

jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat

45.33.23.183

302 Found

0 B

URL HTTP/1.1
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat
IP
45.33.23.183:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 26 Nov 2022 20:27:51 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0478160000&uuid=1669494471.0478160000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1oz1mB:6hXzFG5FvtnQhsc_JCcBHmNnaNM; expires=Sat, 26-Nov-2022 21:27:51 GMT; Max-Age=3600; Path=/
connection: close

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4648
Cache-Control: max-age=136588
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 10:24:19 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

www.kangdiehan.my.id/feeds/posts/summary/-/sholat?alt=json-in-script&callback=pageNavi&max-results=99999

142.250.74.179

200 OK

842 B

URL HTTP/1.1
www.kangdiehan.my.id/feeds/posts/summary/-/sholat?alt=json-in-script&callback=pageNavi&max-results=99999
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1820)
Size
842 B (842 bytes)
Hash
35d15f97dc8668793bac02cec3ca6ba4
29837432d2a18e2b578baac8abca3b0446250ee8
20127c435ec84bc1fed082f7f2320e1b8ccb9926c38d4d397d62234c110f3ddf

HTTP Headers

GET /feeds/posts/summary/-/sholat?alt=json-in-script&callback=pageNavi&max-results=99999 HTTP/1.1
Host: www.kangdiehan.my.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/search/label/sholat

HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"10dc94600e91ad53b38cc1d9b9fc6a459d87f8a08f7830ffc0664daa977d622e"
Date: Sat, 26 Nov 2022 20:27:51 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 26 Nov 2022 20:27:52 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 08 Nov 2022 02:10:25 GMT
Content-Encoding: gzip
Content-Length: 842
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
c3fb77645d1f70e6ec3a7712f4ac959f
fb038c1bd188c0b86e1eb5ec485f322443583d78
a7d96d07c8ee63470dd55c2a09884cbc550be64a2e06532bf189a5e0ae656ac6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=158244
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:51 GMT
Etag: "63823deb-118"
Expires: Mon, 28 Nov 2022 16:25:15 GMT
Last-Modified: Sat, 26 Nov 2022 16:25:15 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280

fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15792, version 1.0\012- data
Size
16 kB (15792 bytes)
Hash
94c3db6f7f5df851bc87a5bf309b9a89
986af9276cc364fe0b2a6801d4514fb3cd920cc3
c5c877b2f70eaa51b17f81150decd43027fec02788fec5719be6befb12af115f

HTTP Headers

GET /s/oxygen/v15/2sDcZG1Wl4LcnbuCJW8zaGW5.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kangdiehan.my.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15792
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 09:52:55 GMT
Expires: Thu, 23 Nov 2023 09:52:55 GMT
Cache-Control: public, max-age=31536000
Age: 297296
Last-Modified: Mon, 09 May 2022 18:30:32 GMT
Content-Type: font/woff2

www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0478160000&uuid=1669494471.0478160000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0

35.186.238.101

200 OK

2.6 kB

URL HTTP/1.1
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0478160000&uuid=1669494471.0478160000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP
35.186.238.101:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073

HTTP Headers

GET /?template=ARROW_3&tdfs=1&s_token=1669494471.0478160000&uuid=1669494471.0478160000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.kangdiehan.my.id/
Connection: keep-alive

HTTP/1.1 200 OK
Server: openresty
Date: Sat, 26 Nov 2022 20:27:51 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Wed, 19 Oct 2022 06:29:28 GMT
ETag: "634f9948-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_k0Q6Ck5UKBmFo5urISCiyWfLOPZUswCv2qDGU5hqBmHKF2MKOjNwY62CuajztR5LCAX2vLPJkBCj1bqCYrQ+Yg
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google

jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat

45.33.23.183

302 Found

0 B

URL HTTP/1.1
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat
IP
45.33.23.183:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?getsrc=ok&ref=&url=http%3A%2F%2Fwww.kangdiehan.my.id%2Fsearch%2Flabel%2Fsholat HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 26 Nov 2022 20:27:51 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0346840000&uuid=1669494471.0346840000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJqcXVlcnlhcGkuaW5mbyIsImh0dHA6Ly93d3c2LmpxdWVyeWFwaS5pbmZvLz90ZW1wbGF0ZT1BUlJPV18zJnRkZnM9MSZzX3Rva2VuPTE2Njk0OTQ0NzEuMDM0Njg0MDAwMCZ1dWlkPTE2Njk0OTQ0NzEuMDM0Njg0MDAwMCZ0ZXJtPUphdmFzY3JpcHQlMjBJbWFnZSUyMEFubm90YXRpb24lMjBMaWJyYXJ5JnRlcm09T25saW5lJTIwUHJvZ3JhbW1pbmclMjBDb3Vyc2VzJnRlcm09Q29kaW5nJTIwQ2VydGlmaWNhdGlvbiUyMFByb2dyYW1zJnRlcm09RXRoaWNhbCUyMENyYWNraW5nJTIwYW5kJTIwUGVuZXRyYXRpb24lMjBUZXN0aW5nJnNlYXJjaGJveD0wJnNob3dEb21haW49MCZiYWNrZmlsbD0wIiwxLCIyMDIyLTExLTI2IDIwOjI3OjUxIiwxLCIxNjY5NDk0NDcxLjAzNDY4NDAwMDAiLDc0LG51bGwsbnVsbF0:1oz1mB:DoEU3MW2PxbIYec4PTWBZizAFmg; expires=Sat, 26-Nov-2022 21:27:51 GMT; Max-Age=3600; Path=/
connection: close

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kangdiehan.my.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 20:16:50 GMT
Expires: Thu, 23 Nov 2023 20:16:50 GMT
Cache-Control: public, max-age=31536000
Age: 259862
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/1.1
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.kangdiehan.my.id
Connection: keep-alive
Referer: http://fonts.googleapis.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 20:16:46 GMT
Expires: Thu, 23 Nov 2023 20:16:46 GMT
Cache-Control: public, max-age=31536000
Age: 259866
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
ee198778a00ac9685e55a05068d7aa66
e8b1f997a233daa72e6a3527518202b5d1697138
4d743e5800c2ad206d7ec049610d236328c286f81010ed558a572c98619c34ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=141657
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:52 GMT
Etag: "6381fd21-116"
Expires: Mon, 28 Nov 2022 11:48:49 GMT
Last-Modified: Sat, 26 Nov 2022 11:48:49 GMT
Server: nginx
Content-Length: 278

www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0346840000&uuid=1669494471.0346840000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0

35.186.238.101

200 OK

2.6 kB

URL HTTP/1.1
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669494471.0346840000&uuid=1669494471.0346840000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP
35.186.238.101:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073

HTTP Headers

GET /?template=ARROW_3&tdfs=1&s_token=1669494471.0346840000&uuid=1669494471.0346840000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.kangdiehan.my.id/
Connection: keep-alive

HTTP/1.1 200 OK
Server: openresty
Date: Sat, 26 Nov 2022 20:27:52 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Fri, 16 Sep 2022 16:46:37 GMT
ETag: "6324a86d-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_C7tjRF5XnG4crqdG7dtYDagB5gt9BBkUztbIdii+4LSo4jGcoWICzzWjEHKkUUQ4Ge6VOtWzkO+9dtCYaLUT9Q
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
ee198778a00ac9685e55a05068d7aa66
e8b1f997a233daa72e6a3527518202b5d1697138
4d743e5800c2ad206d7ec049610d236328c286f81010ed558a572c98619c34ad

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=141657
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:52 GMT
Etag: "6381fd21-116"
Expires: Mon, 28 Nov 2022 11:48:49 GMT
Last-Modified: Sat, 26 Nov 2022 11:48:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278

push.services.mozilla.com/

35.161.230.192

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.230.192:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gUZc+mbz+gr+QYwxY5f8WA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tHIgQltInF+BqS1wywEk3XeYmmI=

fileus.pusathosting.com/banner/cmshosting/300x250-pusathosting-litespeed.gif

51.79.237.32

200 OK

21 kB

URL HTTP/1.1
fileus.pusathosting.com/banner/cmshosting/300x250-pusathosting-litespeed.gif
IP
51.79.237.32:0
ASN
#16276 OVH SAS

File type
GIF image data, version 89a, 330 x 270\012- data
Size
21 kB (21415 bytes)
Hash
817897aa8c6ad612738ca701d3721f53
a2b67092e98d32a1533419b9affd35703a2a686d
27821835cedeffdc99f4301e057d7180eee82a82982c6ce10cceefeeb785bb56

HTTP Headers

GET /banner/cmshosting/300x250-pusathosting-litespeed.gif HTTP/1.1
Host: fileus.pusathosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:27:51 GMT
Server: Apache/2
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2016 02:16:55 GMT
ETag: "53a7-52f3abd5ab3c0"
Accept-Ranges: bytes
Content-Length: 21415
Keep-Alive: timeout=2, max=100
Content-Type: image/gif

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.130

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 10:51:15 GMT
Expires: Sat, 10 Dec 2022 10:51:15 GMT
Cache-Control: public, max-age=1209600
Age: 34597
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8

connect.facebook.net/en_US/all.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/1.1
connect.facebook.net/en_US/all.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1686 bytes)
Hash
c7c31001308ba78a5022fb16145c0fdf
0649a981781283fd126b05b47f22a8bebe8edff5
7c1b46648e5e7353219eced17e13fb49d4540b5128f4d669572b59eba13a31ed

HTTP Headers

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 8085da842ef2225a86555a625ecaa847
ETag: "fca4994e4d48655e745b6f3142698880"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 26 Nov 2022 20:36:17 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: x8MQATCLp4pQIvsWFFwP3w==
X-FB-Debug: pS9DgyE00TFRv/oxpD/17p+Kd0lTq7O1n8yPbeh07yIS4saEL0ZmLS7EO/nOxYEqQ+QGg0+1qtFK61swBSbb2w==
X-FB-TRIP-ID: 1904183273
Date: Sat, 26 Nov 2022 20:27:52 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1686
Cache-Control: max-age=110573
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 20:27:52 GMT
Etag: "63817d1f-1d7"
Expires: Mon, 28 Nov 2022 03:10:45 GMT
Last-Modified: Sat, 26 Nov 2022 02:42:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/all.js?hash=f13a30fca095fbaab8e350e83455824a

31.13.72.12

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/all.js?hash=f13a30fca095fbaab8e350e83455824a
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18605)
Size
88 kB (88227 bytes)
Hash
3338a01718934f05ee86cf88dd26a7d2
09ddc0e9319f8715fed939b6479b00c826a2579b
e67d24062ff01580bf141129120d8a7b422f1efc4b387f42effe072b3010f44d

HTTP Headers

GET /en_US/all.js?hash=f13a30fca095fbaab8e350e83455824a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.kangdiehan.my.id
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: a76d344cad536b7c1db034064fecc4b4
etag: "84d730971f0626c51d2d1f328feda3be"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 26 Nov 2023 19:48:04 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: MzigFxiTTwXuhs+I3San0g==
x-fb-debug: PT2tuMOnmJcV8V90CyLbJpm97NQM7s1O4QaI3ddN16uZ/v6wfgvnk/k3s1A7yVUU8QkVeYIBa7cOjKDCS+dUZw==
priority: u=3,i
content-length: 88227
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 20:27:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

static.domainesia.com/assets/images/afiliasi/2.0/728x90/banner-3.svg?v=1

172.67.70.200

200 OK

11 kB

URL HTTP/2
static.domainesia.com/assets/images/afiliasi/2.0/728x90/banner-3.svg?v=1
IP
172.67.70.200:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (44523), with no line terminators
Size
11 kB (11158 bytes)
Hash
a794349efba5240f0641d02066da255c
d80da74587f3a6363279f2532ac1f5bcc4103662
9ecf1163cc6ed154fee819ad118537ae1649250c8a3608348f8bc7b08bb179c7

HTTP Headers

GET /assets/images/afiliasi/2.0/728x90/banner-3.svg?v=1 HTTP/1.1
Host: static.domainesia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.kangdiehan.my.id/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 20:27:52 GMT
content-type: image/svg+xml
last-modified: Sat, 06 Aug 2022 11:27:40 GMT
etag: W/"adeb-5e590ded5df4d"
expires: Sun, 25 Dec 2022 07:02:50 GMT
cache-control: max-age=31536000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=2592000; preload
link: </assets/fonts/fontawesome-webfont.woff2?v=4.5.0>; rel=preload; as=font; crossorigin
cf-cache-status: HIT
age: 126001
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eU4HkZEU41OcJRgh3rge0%2F0L%2BXdLbpLScXpZ%2Bvk0IsdNt5dDHexjvCaCI7UHz45HDjN4jg703wCQuqKPTVlZOr9etAiDDI0zCvoFpkqoIlOpeNx2hGX4nfYAvYHrJXcaizdfKbkTHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77055e02de790b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Sat, 26 Nov 2022 21:25:13 GMT
Date: Sat, 26 Nov 2022 20:27:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Sat, 26 Nov 2022 21:25:13 GMT
Date: Sat, 26 Nov 2022 20:27:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Sat, 26 Nov 2022 21:25:13 GMT
Date: Sat, 26 Nov 2022 20:27:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Sat, 26 Nov 2022 21:25:13 GMT
Date: Sat, 26 Nov 2022 20:27:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Sat, 26 Nov 2022 21:25:13 GMT
Date: Sat, 26 Nov 2022 20:27:53 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15818 bytes)
Hash
17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TI0cacek54dPUYW7fYy0xm-1CKdRXZGqBH1vGURakUsBbm-WGcW-vA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:17:55 GMT
age: 79798
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 02:19:43 GMT
age: 65290
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 03:55:38 GMT
age: 59535
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7025 bytes)
Hash
7e0c5064718601e80b7bfc931120ff70
741e5e48c4fb170efee9b611be5638d999a09bd2
d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:51:02 GMT
age: 81411
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: utbUF-6Z7rMqPNdRKHJyI-IZoyTy6HpkNBY-60xcZ-6NDXBz1XN6-Q==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:40 GMT
age: 81553
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 79751
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

dnva.me/4gnsc

172.67.163.35

301 Moved Permanently

0 B

URL HTTP/2
dnva.me/4gnsc
IP
172.67.163.35:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /4gnsc HTTP/1.1
Host: dnva.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.kangdiehan.my.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 301 Moved Permanently
date: Sat, 26 Nov 2022 20:27:51 GMT
content-type: text/html; charset=UTF-8
location: https://static.domainesia.com/assets/images/afiliasi/2.0/728x90/banner-3.svg?v=1
x-robots-tag: noindex
dn-request-id: af51115d888516d352889ba75d20a061
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
dynamic-cache-status: MISS
x-page-speed: DomaiNesia
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eAbv7w%2B8RkyeP7jI%2B14BW4nQuHHXYknx3xWOjrmNnxYh%2FHE1QSnXKeUf2f9i0uajJ%2BC8ZutfxfDo4DcU0j4GTvI00pZQLBrB1erF3HhxfdMjBhcp3OGVQ5tC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77055dfefb44b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (56)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations