r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3385
Expires: Fri, 02 Dec 2022 13:51:58 GMT
Date: Fri, 02 Dec 2022 12:55:33 GMT
Connection: keep-alive
gempaqgiler.blogspot.co.uk/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
172.217.21.161302 Moved Temporarily 212 B URL HTTP/1.1 gempaqgiler.blogspot.co.uk/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash de4f6c0ca29b4e41b0502cefad0eb398
de0c26f350189c5011e8e100e9a8ccfe4bd8a521
4dfefcc34cee4b70a6babdb682f5c76ea55c1b9ad0a0d20cf9142ef278a1f53e
Analyzer Verdict Alert fortinet Malware
GET /2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html HTTP/1.1
Host: gempaqgiler.blogspot.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 12:55:33 GMT
Expires: Fri, 02 Dec 2022 12:55:33 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 212
Server: GSE
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5623
Cache-Control: max-age=169765
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:33 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:04:58 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8663
Expires: Fri, 02 Dec 2022 15:19:56 GMT
Date: Fri, 02 Dec 2022 12:55:33 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 12:18:12 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2241
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ANULuujFhCsUMKfDokaJCN1q4UXZUNuc6aoiQePJDXRyRPaObOSIZNxnNBWTKUm45cPMFZ+rKvU=
x-amz-request-id: NPBJSKHZ5D11RGWX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 12:46:07 GMT
age: 566
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 12:55:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 12:08:57 GMT
cache-control: public,max-age=3600
age: 2796
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
142.250.74.42200 OK 30 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.5.2/jquery.min.js
IP 142.250.74.42:0
File type Unicode text, UTF-8 text, with very long lines (65168)
Hash ebaa24930d6b905fe00c9457484b78a9
f97496ee81148e264b3735464b8bfced1a8b2fad
b9bd9830d7eceae230cfaa5105e8a3ec432392f270cee156637dac8d0684d614
GET /ajax/libs/jquery/1.5.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 30082
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 18:07:09 GMT
Expires: Thu, 30 Nov 2023 18:07:09 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 154105
gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
172.217.21.161200 OK 35 kB URL HTTP/1.1 gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (16149)
Hash 883fc9468127de176519750be3c27a19
e7bec57dbae38e8c390bb37671d0c24e40b92e31
03fe2d224010827e2e597150d9c1fb7c259b56e1b271f33e50e38cad71f2bc13
Analyzer Verdict Alert fortinet Malware
GET /2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 02 Dec 2022 12:55:33 GMT
Date: Fri, 02 Dec 2022 12:55:33 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"af6e034295aee465921bf5b48ef65f261ecb601325f867c5429d1bf31f4dc88e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 35185
Server: GSE
w.sharethis.com/button/buttons.js
54.230.111.56301 Moved Permanently 167 B URL HTTP/1.1 w.sharethis.com/button/buttons.js
IP 54.230.111.56:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 02 Dec 2022 12:55:34 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://w.sharethis.com/button/buttons.js
X-Cache: Redirect from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: kzEpNMnW7eLaCy1SBEcIperzP_vP05gonZ58gtISOcO8htNaqRgzmQ==
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5625
Cache-Control: max-age=164705
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:40:39 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 24450ed842495fb2f4ba69e1fac2d4d2
c7e7c8aa0308094c71d663a21bd9e689aeccc952
0dddf87df6f1821f08503310345aa465e0b63a4f130073e734e27e04780c4baa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gempaqgiler.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 gempaqgiler.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 21:03:29 GMT
Expires: Thu, 08 Dec 2022 21:03:29 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 01 Dec 2022 17:52:02 GMT
Content-Type: text/javascript
Age: 57125
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/css
age: 255231
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 285125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 02 Dec 2022 12:55:34 GMT
expires: Fri, 02 Dec 2022 12:55:34 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 02 Dec 2022 12:55:34 GMT
expires: Fri, 02 Dec 2022 12:55:34 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "34fae0e5dab49917"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 52 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash 88b9438b8a93b2ebf019a14376ad875c
d0150f3cd2c39cf551d690f98ba4010ae3b26c83
f81037c18876cd88d24b8d2144454165b1c92cda9fb8dab2daa47357d48e5a40
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 12:55:34 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 12938975201167342600
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 51577
X-XSS-Protection: 0
w.sharethis.com/button/buttons.js
54.230.111.56200 OK 17 kB URL HTTP/2 w.sharethis.com/button/buttons.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (60851), with no line terminators
Hash 6df1e6fb302d1bcb35d898105f0327de
2336688fde43d37fc38dbd842b76f728d7423034
3acec848060440ee2c01f063023d2cc0122ad46f1de910ca0738e6715a6c2e67
GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 16989
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Fri, 02 Dec 2022 02:30:11 GMT
cache-control: max-age=259200
expires: Mon, 05 Dec 2022 02:30:10 GMT
etag: W/"634f1855-edb3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KaOvl7pa61MfDtx1t1hSc138U8WrWdMJVZ3fbU9cW4OzMLrEursu3Q==
age: 37524
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.innity.net/admanager.js
23.32.97.102200 OK 3.3 kB URL HTTP/1.1 cdn.innity.net/admanager.js
IP 23.32.97.102:0
File type ASCII text, with very long lines (10252), with no line terminators
Hash 67f70474488554526256d7b6c332ab34
e4e77246c8564d7ed7983ed1b665f78a87d3d4ac
1c7447c854562f1cb49f51443725ecb7a1483cab2a5ff39382528236af20014f
GET /admanager.js HTTP/1.1
Host: cdn.innity.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Server: Apache
Last-Modified: Sat, 28 Aug 2021 09:22:10 GMT
ETag: "280c-5ca9b226f1480-gzip"
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Length: 3250
Content-Type: application/javascript
Unused62: 8096267
Cache-Control: max-age=86400
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Date: Fri, 02 Dec 2022 12:55:34 GMT
Connection: keep-alive
Vary: Accept-Encoding
gempaqgiler.blogspot.com/feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=relpostimgcuplik&max-results=50
172.217.21.161200 OK 50 kB URL HTTP/1.1 gempaqgiler.blogspot.com/feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (65362)
Hash 0b3ea3ece103f3a5b2f522bf5ba39dcf
fefcdd0b7034315fbbf08fa957b6a51e1f7152a9
13a6bc1960d0d6bd4c94e3bd79872c64f1ab1842d04e2342a7e5747303d595bd
GET /feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: blogger-renderd
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 50152
X-Frame-Options: SAMEORIGIN
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"02deb5bfddb5d174f7cb813190de7e991413706e626471ba257b44d138e50fe2"
Content-Type: text/javascript; charset=UTF-8
Age: 0
3.bp.blogspot.com/-WAvyxdPoFJ0/XVYvO81rE7I/AAAAAAAAAIQ/Jdzd-rdX9vMa020HnhtAOkLJVn6PTxLbQCK4BGAYYCw/s35/Beautiful%25252Bboobs%25252B12.jpg
142.250.74.161200 OK 1.3 kB URL HTTP/1.1 3.bp.blogspot.com/-WAvyxdPoFJ0/XVYvO81rE7I/AAAAAAAAAIQ/Jdzd-rdX9vMa020HnhtAOkLJVn6PTxLbQCK4BGAYYCw/s35/Beautiful%25252Bboobs%25252B12.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 35x35, components 3\012- data
Hash da775e7a05ec4c4d1217ba0b36b210c4
0bfa3ade4ce406f36adc14889b2c9fa8794748ce
6bd393fdcf13940b6340881ed490d8e140002f5ea54d52471c9d73a9abdf8861
GET /-WAvyxdPoFJ0/XVYvO81rE7I/AAAAAAAAAIQ/Jdzd-rdX9vMa020HnhtAOkLJVn6PTxLbQCK4BGAYYCw/s35/Beautiful%25252Bboobs%25252B12.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Beautiful%2Bboobs%2B12.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1269
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 11:37:20 GMT
Expires: Sat, 03 Dec 2022 11:37:20 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v87"
Content-Type: image/jpeg
Age: 4694
www.blogger.com/img/blogger_logo_round_35.png
216.58.207.233200 OK 2.5 kB URL HTTP/1.1 www.blogger.com/img/blogger_logo_round_35.png
IP 216.58.207.233:0
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 16:32:42 GMT
Expires: Tue, 06 Dec 2022 16:32:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 28 Nov 2022 23:54:53 GMT
Content-Type: image/png
Age: 246172
2.bp.blogspot.com/-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg
142.250.74.161200 OK 3.5 kB URL HTTP/1.1 2.bp.blogspot.com/-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 187a760a69a4baff21cc2cbd68e8c8ee
353bbb6f4f40d581eb2836f98a46553b42c28eaa
6679e450549c9b7b8a58a5ab1cfcb9f1d24aed20674c262436ed19892476b34e
GET /-SDEN3vh-3sw/UbQo9cttyRI/AAAAAAAAMR4/C5GbqCoqzoE/s72-c/stim.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="stim.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3496
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Thu, 24 Nov 2022 16:17:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v311f"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG
142.250.74.161200 OK 3.8 kB URL HTTP/1.1 2.bp.blogspot.com/-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash da2e9832bba485626cce224fc35d9582
7dc0e557299885542601228093079ee4c649536a
edc2a3dcd609a1867326777b6a292f529073e13084cb6a8b525d9ce4de985b5d
GET /-wbEFCWCuLT0/UiFd4XCvruI/AAAAAAAAPNc/6uUA5sdNEpQ/s72-c/doktor+gtl.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="doktor gtl.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3825
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 21:03:29 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v3cd8"
Content-Type: image/jpeg
Age: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 51 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (580)
Hash a5aeb8dce52dc81116cc434ff43d3f63
c74721ddc9b87ba5a9deb2a361f44c9293f928b7
333fbf33d55990f58551357644398b7b571c25cd56bc25ad3ea7270571f96118
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:33:12 GMT
expires: Wed, 29 Nov 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 256942
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG
142.250.74.161200 OK 2.9 kB URL HTTP/1.1 3.bp.blogspot.com/-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 8f36a1577f49c96c38d561823f94c0a0
0cae48ae752a6f4d83bae0e47937382204373a2e
8b1c4be21c4fe0922762d2462f5e8a9c1c5a0f258414652bf17a053d278bfa8d
GET /-z8XDHu8-TJQ/U2DmqdfWUHI/AAAAAAAAT_0/1iTJciRg1_E/s72-c/mainn.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="mainn.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2899
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 25 Nov 2022 04:32:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4ffe"
Content-Type: image/jpeg
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gJrl42GeATqDg1kaIRUx2g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jQDCq5gUrjeVrFv4TjQNyKzCjqo=
2.bp.blogspot.com/-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 2.bp.blogspot.com/-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash de50d1dd0e89f2a112919529fd702752
4b7d3fdfe5f13f913ea147ff0c04d5d55029498d
72300702c233f10161f3645ed2e9703dd4b88436908014d569bfb04fb00071d7
GET /-PWj-ApK0zxg/UlKW9Uj2jvI/AAAAAAAAQKk/r6EdNgFpwbc/s72-c/doktor+ani.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="doktor ani.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3308
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 21:03:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v40aa"
Content-Type: image/jpeg
Age: 0
2.bp.blogspot.com/-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg
142.250.74.161200 OK 3.9 kB URL HTTP/1.1 2.bp.blogspot.com/-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 64d4165bc1719cc50f2f3605974d0ea7
cfd98db515937351114b510f2de0bb2abd054131
2a53b30f6f67d6df12929a8f27d0d0ec6555f0c226d3fda30c7a592691f687db
GET /-nrN-cIIpkVc/UA3TY0ljAqI/AAAAAAAACkk/eFi418P6ocs/s72-c/air-mani.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="air-mani.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3854
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Thu, 24 Nov 2022 16:17:31 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "va49"
Content-Type: image/jpeg
Age: 0
blogmalaya.com/button/21c210cef37a05437cddbe1432299ad3.png
209.59.191.64301 Moved Permanently 251 B URL HTTP/1.1 blogmalaya.com/button/21c210cef37a05437cddbe1432299ad3.png
IP 209.59.191.64:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ded8c175bed627035ddb79fdafa8f23a
dfaa2f6b9b41c47757ca5808a0d1a9ebb1eea342
ece74dacb8d7324a71c88411adee2e85da1233f98a6ba78deb2b43ac772fa079
GET /button/21c210cef37a05437cddbe1432299ad3.png HTTP/1.1
Host: blogmalaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: Apache
Location: https://www.diveglobal.com/travel/malaysia/
Cache-Control: max-age=600
Expires: Fri, 02 Dec 2022 13:05:34 GMT
Content-Length: 251
Keep-Alive: timeout=2, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
1.bp.blogspot.com/-5k56afKkkfg/UlaYuppH10I/AAAAAAAAQTI/kJ3RZ-UJZbY/s72-c/gmb.jpg
142.250.74.161200 OK 2.6 kB URL HTTP/1.1 1.bp.blogspot.com/-5k56afKkkfg/UlaYuppH10I/AAAAAAAAQTI/kJ3RZ-UJZbY/s72-c/gmb.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6d3f3bd9d171c558aaa48a15347612f4
a644724fb3d742f1b10651c6a8c1b7ba84074d63
eb3302d64a055403b1190c05cf842803c78321998aae375782f807a27d2c287e
GET /-5k56afKkkfg/UlaYuppH10I/AAAAAAAAQTI/kJ3RZ-UJZbY/s72-c/gmb.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="gmb.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2617
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 21:03:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4133"
Content-Type: image/jpeg
Age: 0
3.bp.blogspot.com/-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif
142.250.74.161404 Not Found 832 B URL HTTP/1.1 3.bp.blogspot.com/-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-qcqxuwepuw8/T7Ts0Iso9VI/AAAAAAAAAkg/oGskZqNwrZY/s1600/search_icon.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
2.bp.blogspot.com/-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png
142.250.74.161404 Not Found 832 B URL HTTP/1.1 2.bp.blogspot.com/-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-3tX4uKXVG40/UCLjjLW1TyI/AAAAAAAAAu0/iqkFd5F9Oxg/s1600/m.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
1.bp.blogspot.com/-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 1.bp.blogspot.com/-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e4b6359c29cebcdf0ac6c35db41071a0
269f3c586a3208edad1d0774d9a96fce6208a5c4
e1d85560f88693d5dd856fe4dbd69933b6acad8969ec7f8576a2bcfc8319ede8
GET /-pqlbaG1yKak/U27dHeAEeWI/AAAAAAAAUWM/_EZHMnxlV_Y/s72-c/rogol+di+stesyen+minyak.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="rogol di stesyen minyak.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3435
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 21:03:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5164"
Content-Type: image/jpeg
Age: 0
1.bp.blogspot.com/-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 1.bp.blogspot.com/-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 901d20a054bd12aef91f6b03f19dce22
93e8c69a0c0830d056b9dc4a3f70152434a925d5
9744e0ece19c3948aa776091c066e2eef86e2535288ffb409320b0a34972fe42
GET /-x7eZlraCkGw/U1I0uUl9iII/AAAAAAAATos/rRom9lhyKLY/s72-c/sgt.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="sgt.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3141
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 21:03:30 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v4e8c"
Content-Type: image/jpeg
Age: 0
www.carimember.com/banner.png
85.208.116.194404 Not Found 4.8 kB URL HTTP/1.1 www.carimember.com/banner.png
IP 85.208.116.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Hash 003039d2127216ae418bc159c62ca04c
9337fef90450d22340a9f661ac74617c70767f50
da1a604a8ed97cbe9feab8c1001a066083c34a6f95877dbbfbae6c21f973d8bd
GET /banner.png HTTP/1.1
Host: www.carimember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Date: Fri, 02 Dec 2022 12:55:34 GMT
Content-Length: 4837
3.bp.blogspot.com/-dF8MA65BfPc/TzIzfSlPfYI/AAAAAAAAAzw/PtJQWt90Cyk/s400/charonboat_dot_com_dismemberment_5.jpg
142.250.74.161200 OK 33 kB URL HTTP/1.1 3.bp.blogspot.com/-dF8MA65BfPc/TzIzfSlPfYI/AAAAAAAAAzw/PtJQWt90Cyk/s400/charonboat_dot_com_dismemberment_5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x242, components 3\012- data
Hash a52b2868d49e50be9af40e5c66045b13
e1ce2243199f3f33c4e11d98930c94c2492c940e
543e3fe66e790bfa3487b988bcf761ee3769291fb566dbb0a6bfda0a4355f4fd
GET /-dF8MA65BfPc/TzIzfSlPfYI/AAAAAAAAAzw/PtJQWt90Cyk/s400/charonboat_dot_com_dismemberment_5.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v33c"
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="charonboat_dot_com_dismemberment_5.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 33124
X-XSS-Protection: 0
2.bp.blogspot.com/-3dtKerYMHHI/TzIzeR7umSI/AAAAAAAAAzo/UoVeeF6xluc/s640/charonboat_dot_com_dismemberment_4.jpg
142.250.74.161200 OK 35 kB URL HTTP/1.1 2.bp.blogspot.com/-3dtKerYMHHI/TzIzeR7umSI/AAAAAAAAAzo/UoVeeF6xluc/s640/charonboat_dot_com_dismemberment_4.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x206, components 3\012- data
Hash 954e6e40a7ac4bf80a9e91fa8794b4a5
5a46c79a38bb2fbe0c85485076644d229bd7fafe
4741e00c00a1b67d8736dd763687ad77a547cfbd6f896bff1364fdb58c9bb558
GET /-3dtKerYMHHI/TzIzeR7umSI/AAAAAAAAAzo/UoVeeF6xluc/s640/charonboat_dot_com_dismemberment_4.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v954"
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="charonboat_dot_com_dismemberment_4.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 35138
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 635513d0325dd1fe146a7f0917c73ac8
982f217bf94c7af61a767fbcbfc5442a6396a0e9
1b80eee94a900cd63c307a096f76051be6fcb68153bb99fed77eb447152221f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=154037
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:34 GMT
Etag: "6389ac7b-117"
Expires: Sun, 04 Dec 2022 07:42:51 GMT
Last-Modified: Fri, 02 Dec 2022 07:42:51 GMT
Server: nginx
Content-Length: 279
4.bp.blogspot.com/-009pCgYcXe0/TzIzcUE6XQI/AAAAAAAAAzY/M-iTKlUvqtU/s400/charonboat_dot_com_dismemberment_2.jpg
142.250.74.161200 OK 41 kB URL HTTP/1.1 4.bp.blogspot.com/-009pCgYcXe0/TzIzcUE6XQI/AAAAAAAAAzY/M-iTKlUvqtU/s400/charonboat_dot_com_dismemberment_2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x249, components 3\012- data
Hash 2deb1332e0544eab1648157e8f41527d
297996849de5df1ef8b41c203c6e0d89faccd74b
9efca6fde9eb833f08c7f72cf2fc361cf4448f7faad99ce71c2921369dce7915
GET /-009pCgYcXe0/TzIzcUE6XQI/AAAAAAAAAzY/M-iTKlUvqtU/s400/charonboat_dot_com_dismemberment_2.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v336"
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="charonboat_dot_com_dismemberment_2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 41276
X-XSS-Protection: 0
2.bp.blogspot.com/-ZZ6n8tZVp54/TzIzdtgg5xI/AAAAAAAAAzg/uuzrqXFMfTc/s640/charonboat_dot_com_dismemberment_3.jpg
142.250.74.161200 OK 36 kB URL HTTP/1.1 2.bp.blogspot.com/-ZZ6n8tZVp54/TzIzdtgg5xI/AAAAAAAAAzg/uuzrqXFMfTc/s640/charonboat_dot_com_dismemberment_3.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x174, components 3\012- data
Hash 8c90276335594741bf434376d42f9c2c
82d10f347aae0d76eec03dc659cf93ef4d179c0e
0fb2c68353c1c7508ebd41875ae7924c13f39df91185b8dd7113289efe935d00
GET /-ZZ6n8tZVp54/TzIzdtgg5xI/AAAAAAAAAzg/uuzrqXFMfTc/s640/charonboat_dot_com_dismemberment_3.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v959"
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="charonboat_dot_com_dismemberment_3.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 36006
X-XSS-Protection: 0
1.bp.blogspot.com/-HFoDMWZgTLs/U27nmtJAM0I/AAAAAAAAUXE/bxIt5h5xML0/s1600/wanita+dibunuh+dan+dikerat.JPG
142.250.74.161200 OK 101 kB URL HTTP/1.1 1.bp.blogspot.com/-HFoDMWZgTLs/U27nmtJAM0I/AAAAAAAAUXE/bxIt5h5xML0/s1600/wanita+dibunuh+dan+dikerat.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 801x524, components 3\012- data
Size 101 kB (100653 bytes)
Hash bdc85a7e36d35758afc47c99c4689415
f194e890c6d757ee5d7249a56d98c698edbd34d7
a75f05b9240793aae050fcde551f5fba2db083214d44b08c31daa46430ac7787
GET /-HFoDMWZgTLs/U27nmtJAM0I/AAAAAAAAUXE/bxIt5h5xML0/s1600/wanita+dibunuh+dan+dikerat.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5172"
Expires: Sat, 03 Dec 2022 12:55:34 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wanita dibunuh dan dikerat.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:34 GMT
Server: fife
Content-Length: 100653
X-XSS-Protection: 0
as.innity.com/synd/?cb=1669985732705&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&width=300&height=250&vpw=1268&vph=939&auction=1449b928-61ad1a4
47.243.39.183200 OK 0 B URL HTTP/1.1 as.innity.com/synd/?cb=1669985732705&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&width=300&height=250&vpw=1268&vph=939&auction=1449b928-61ad1a4
IP 47.243.39.183:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /synd/?cb=1669985732705&ver=1&pub=ae3539867aaeec609a4260c6feb725f4&zone=37711&output=js&flash=0&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&width=300&height=250&vpw=1268&vph=939&auction=1449b928-61ad1a4 HTTP/1.1
Host: as.innity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: Apache
Expires: Sat, 03 Sep 1983 02:00:00 GMT
Last-Modified: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
P3P: policyref=http://www.innity.com/p3p/p3p.xml,CP="CURa ADMa DEVa OUR BUS UNI COM NAV INT"
Content-Length: 0
Connection: close
Content-Type: text/javascript; charset=utf-8
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 09:28:37 GMT
Expires: Fri, 16 Dec 2022 09:28:37 GMT
Cache-Control: public, max-age=1209600
Age: 12418
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-vb9s5Dzmi_k/U5rhVqHj7JI/AAAAAAAAUzM/CSixMdr3vr0/s72-c/thanks.JPG
142.250.74.161200 OK 3.0 kB URL HTTP/1.1 4.bp.blogspot.com/-vb9s5Dzmi_k/U5rhVqHj7JI/AAAAAAAAUzM/CSixMdr3vr0/s72-c/thanks.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 34bf7995633de8bf77156f114351602f
27e9818724fb90036fde6a80dc98a9ee1610fb01
6ef121d8bad62ac10e764f090247360e64082e79e87d51621d9a1ec2f711da4d
GET /-vb9s5Dzmi_k/U5rhVqHj7JI/AAAAAAAAUzM/CSixMdr3vr0/s72-c/thanks.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="thanks.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3026
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:35 GMT
Expires: Fri, 02 Dec 2022 21:03:35 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v5334"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-RYHixylw4WI/U477bsV2dEI/AAAAAAAAUvk/sJvbb7HUjos/s72-c/ustazah+dicekup.JPG
142.250.74.161200 OK 3.7 kB URL HTTP/1.1 4.bp.blogspot.com/-RYHixylw4WI/U477bsV2dEI/AAAAAAAAUvk/sJvbb7HUjos/s72-c/ustazah+dicekup.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b433903e1d8ea32648233317e6c3940d
a364d31402d6b098ff1905d82dd5246b71f5cfd9
91f0f9176ef0690fb74e798f40e520f8ab3500936fde6593238a2c82d0d4db79
GET /-RYHixylw4WI/U477bsV2dEI/AAAAAAAAUvk/sJvbb7HUjos/s72-c/ustazah+dicekup.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52fa"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ustazah dicekup.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 3721
X-XSS-Protection: 0
1.bp.blogspot.com/-QMHVtmsgUFw/U4cbdbSaHuI/AAAAAAAAUog/We5sKSwVheU/s72-c/perkosa+dalam+rumah.jpg
142.250.74.161200 OK 2.4 kB URL HTTP/1.1 1.bp.blogspot.com/-QMHVtmsgUFw/U4cbdbSaHuI/AAAAAAAAUog/We5sKSwVheU/s72-c/perkosa+dalam+rumah.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 607b9bf42afe25101d87648e63fab067
44e54e9021e49dadbacb841f5c164f6a0fcec5d0
2d18de6da8131ffbe82c00b47d2e2ebe29a31cf2d086fabb49d075a526ac3e20
GET /-QMHVtmsgUFw/U4cbdbSaHuI/AAAAAAAAUog/We5sKSwVheU/s72-c/perkosa+dalam+rumah.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5289"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="perkosa dalam rumah.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 2371
X-XSS-Protection: 0
4.bp.blogspot.com/-MlU1dZdkKzo/U4qVjPYFXqI/AAAAAAAAUtQ/7Jb9moOBXFY/s72-c/kebodohan+yg+angkuh.JPG
142.250.74.161200 OK 3.9 kB URL HTTP/1.1 4.bp.blogspot.com/-MlU1dZdkKzo/U4qVjPYFXqI/AAAAAAAAUtQ/7Jb9moOBXFY/s72-c/kebodohan+yg+angkuh.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c316275a9378602905b4149ab58ec142
271102ca29f82c4d666d97134fb8031cfbb70ee9
2def083a285329feec94604c1971c5699e034f41965280db3c25dd1b4f4239d8
GET /-MlU1dZdkKzo/U4qVjPYFXqI/AAAAAAAAUtQ/7Jb9moOBXFY/s72-c/kebodohan+yg+angkuh.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="kebodohan yg angkuh.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3924
X-XSS-Protection: 0
Date: Fri, 02 Dec 2022 12:55:35 GMT
Expires: Fri, 02 Dec 2022 21:03:35 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v52d5"
Content-Type: image/jpeg
Age: 0
4.bp.blogspot.com/-Y0ilq8jNuec/U4nWWQtp9mI/AAAAAAAAUrM/TlIiF9YYBSU/s72-c/jatuh+dari+pasaraya.jpg
142.250.74.161200 OK 4.1 kB URL HTTP/1.1 4.bp.blogspot.com/-Y0ilq8jNuec/U4nWWQtp9mI/AAAAAAAAUrM/TlIiF9YYBSU/s72-c/jatuh+dari+pasaraya.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c64a35a75e1dcbff02af1c4299ec5f4d
5ddfb7d7d1ceb33108bcb290d66f33877a552a02
191910c8f5ef999f3d056dfe11e33c97285187a1e05603b4fb1cc59cb145be0b
GET /-Y0ilq8jNuec/U4nWWQtp9mI/AAAAAAAAUrM/TlIiF9YYBSU/s72-c/jatuh+dari+pasaraya.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52b4"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jatuh dari pasaraya.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 4124
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com
142.250.74.162200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with very long lines (6148)
Size 119 kB (119174 bytes)
Hash dd7e3fe4d9f17d3eefbaabbdb1e464aa
1600feb3466444a33a647fb4e5dc24391d8826d9
a6b0943d85f4f1cb9d0037c1ae892cfd592a442ac991863c8fb52d666e753572
GET /pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-3765933820679304&plah=gempaqgiler.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 02 Dec 2022 12:55:35 GMT
expires: Fri, 02 Dec 2022 12:55:35 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5275982403000160374
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-uMpXrr-4Yc0/U4prTdXMdiI/AAAAAAAAUsM/8vas_j4w_pA/s72-c/gadis+kena+rejam.jpg
142.250.74.161200 OK 4.4 kB URL HTTP/1.1 2.bp.blogspot.com/-uMpXrr-4Yc0/U4prTdXMdiI/AAAAAAAAUsM/8vas_j4w_pA/s72-c/gadis+kena+rejam.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2f6b7331b5eb29ce80ede6e7b4f677da
6c0390242f95e7323fa0ec8383e5d34ed84b8e02
f51c288899c975f68fddcf40bba95ed843f075cf33ffe100e3147d62c7d02b72
GET /-uMpXrr-4Yc0/U4prTdXMdiI/AAAAAAAAUsM/8vas_j4w_pA/s72-c/gadis+kena+rejam.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v52c4"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gadis kena rejam.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 4383
X-XSS-Protection: 0
3.bp.blogspot.com/-8yrEgHhvduY/U3F8E1h3ToI/AAAAAAAAUck/f1WkR_cU4Mo/s72-c/bangunan+umno.jpg
142.250.74.161200 OK 4.6 kB URL HTTP/1.1 3.bp.blogspot.com/-8yrEgHhvduY/U3F8E1h3ToI/AAAAAAAAUck/f1WkR_cU4Mo/s72-c/bangunan+umno.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0afcbca84d42955b1a40d0e1a6637049
f7311246a3564d69156f3453028c697d88d738d7
c43796fb84d74b2f4ec1f627a84817d2cef76e0ef11ea07be8536cc8b488c4d9
GET /-8yrEgHhvduY/U3F8E1h3ToI/AAAAAAAAUck/f1WkR_cU4Mo/s72-c/bangunan+umno.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v51ca"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bangunan umno.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 4573
X-XSS-Protection: 0
3.bp.blogspot.com/-cddmApzdBTI/U5sKY3XGBTI/AAAAAAAAU0U/Z93Rha5-2l4/s72-c/isap.png
142.250.74.161200 OK 9.0 kB URL HTTP/1.1 3.bp.blogspot.com/-cddmApzdBTI/U5sKY3XGBTI/AAAAAAAAU0U/Z93Rha5-2l4/s72-c/isap.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 7eabe96570bc1e28309b9c4718bba0af
1a565365e997fad513b4355486129552dfb8f64a
051bfd5210e092ff47b4c6fe4b8f5f05e781826ebc7bb83b155dc6cd5f96eeec
GET /-cddmApzdBTI/U5sKY3XGBTI/AAAAAAAAU0U/Z93Rha5-2l4/s72-c/isap.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5346"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="isap.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 9023
X-XSS-Protection: 0
2.bp.blogspot.com/-DGok3TGcnMY/U4cktwcAhcI/AAAAAAAAUo8/hjkNKtWPUjY/s72-c/hina+sultan+perak.JPG
142.250.74.161200 OK 2.6 kB URL HTTP/1.1 2.bp.blogspot.com/-DGok3TGcnMY/U4cktwcAhcI/AAAAAAAAUo8/hjkNKtWPUjY/s72-c/hina+sultan+perak.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 12a5bf2f207b54a8234431d2e27c3688
145f0daa2fa86617a3a415d01cdcdda70902d1f6
2f1337fdfc15de7cb113dd8505fc9ecbb2cd57e7d746bb1b0252bfdd9fa6f236
GET /-DGok3TGcnMY/U4cktwcAhcI/AAAAAAAAUo8/hjkNKtWPUjY/s72-c/hina+sultan+perak.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5290"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="hina sultan perak.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 2562
X-XSS-Protection: 0
3.bp.blogspot.com/-nl52zsncyjY/U3hENaxHWOI/AAAAAAAAUjM/0uOlZs-vIJA/s72-c/cermin+gelap.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 3.bp.blogspot.com/-nl52zsncyjY/U3hENaxHWOI/AAAAAAAAUjM/0uOlZs-vIJA/s72-c/cermin+gelap.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 26c26ef19ed374548e43926614e4accf
30a7482c815c7558011760d5d1c379060802e905
2065eddeb5ee56fd79806ed762523dac0793f3eb449cb037f3214101477a3bf4
GET /-nl52zsncyjY/U3hENaxHWOI/AAAAAAAAUjM/0uOlZs-vIJA/s72-c/cermin+gelap.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5234"
Expires: Sat, 03 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="cermin gelap.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 02 Dec 2022 12:55:35 GMT
Server: fife
Content-Length: 3331
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1
216.58.207.226200 OK 250 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (391), with no line terminators
Hash 8efb28e8b6a284ca38814d0d15d5c974
6d9f9e4f0516110ffd191e3aeb73d9d9587e5c23
eb7616df675a23e4a5f2bc9af70324122e791eaad455bf927258b1c03cd79c7e
GET /gampad/cookie.js?domain=gempaqgiler.blogspot.com&callback=_gfp_s_&client=ca-pub-3765933820679304&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 12:55:35 GMT
server: cafe
cache-control: private
content-length: 250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gempaqgiler.blogspot.com/feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999
172.217.21.161200 OK 100 B URL HTTP/1.1 gempaqgiler.blogspot.com/feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999
IP 172.217.21.161:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /feeds/posts/default/-/info%20semasa?alt=json-in-script&callback=related_results_labels_thumbs&max-results=999 HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: blogger-renderd
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 139709
X-Frame-Options: SAMEORIGIN
Date: Fri, 02 Dec 2022 12:55:34 GMT
Expires: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"441aa6c470dd66016be4cdca0a7651a76e049c1d03813d701c41109f5e0c7d7b"
Content-Type: text/javascript; charset=UTF-8
Age: 0
adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=gempaqgiler.blogspot.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=gempaqgiler.blogspot.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 12:55:35 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.diveglobal.com/travel/malaysia/
188.114.96.1200 OK 602 B URL HTTP/2 www.diveglobal.com/travel/malaysia/
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5c8e7ed7b7f5756169d400deacd27fbe
d82141721780dde5746e19bcefaed4ceeaf2e958
2215c6a470af469b0335d1eb8f8844ed76908e23fb325faff17911482174c2e9
GET /travel/malaysia/ HTTP/1.1
Host: www.diveglobal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 12:55:35 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.6.37
vary: Accept-Encoding,User-Agent
cache-control: max-age=86400
cf-cache-status: EXPIRED
last-modified: Wed, 30 Nov 2022 11:05:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A9yEBo7mqjlOexoiwnhBWqMLg%2FMYmAevuUVwEb35RovlGKinn6xQvavdRtMkXNAVPfiMs5ZbAhmm12La1iSvVo8HF%2Fdjnu9jv7wBMhHCdgyhRfDu8mK2ekk3TzE67oslGxXCXWE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773437ba7ea80b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ws.sharethis.com/button/async-buttons.js
54.230.111.56200 OK 19 kB URL HTTP/2 ws.sharethis.com/button/async-buttons.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b3b7d06f8df8276ede0facec198706e
3e42fc6cacb95a5fa1b56c5b3984e8269752fbbe
342ffe242184c80ddf304e21db8b256ccb8aecb1f4bd9363802dcf2f36053837
GET /button/async-buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 18813
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
cache-control: max-age=259200
date: Wed, 30 Nov 2022 21:42:44 GMT
expires: Sat, 03 Dec 2022 21:42:44 GMT
etag: W/"634f1895-16245"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ea6uucO1oQHxGajsc45kzSi-ghW3oxIGmGJG-OQSVH1jEW1DyI763w==
age: 141173
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
tcr.tynt.com/ti.js
172.64.151.83200 OK 16 kB IP 172.64.151.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1213)
Hash a384492ef8f3bb035fc8ecba870e86d3
a6da9b212e2d640261cc1c1a5c98096aef5d8778
9232a4a99aa4630732414441f411afe936b0e95047f3d018e46c40f211fc1ede
GET /ti.js HTTP/1.1
Host: tcr.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 12:55:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 150093
Expires: Mon, 05 Dec 2022 12:55:37 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 773437cd08230b3d-OSL
ws.sharethis.com/button/css/buttons-secure.css
54.230.111.56200 OK 3.9 kB URL HTTP/2 ws.sharethis.com/button/css/buttons-secure.css
IP 54.230.111.56:0
File type ASCII text, with very long lines (23158), with no line terminators
Hash 61da924a747e08c5f54a6cb31c724a48
8e49d971d6a667c3888a481b742e05cafcf72a43
54302324d4b6aa780466c869b9932504d0b1eaa7ef1df6c5481b35fb0625343a
GET /button/css/buttons-secure.css HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 3851
content-encoding: gzip
last-modified: Tue, 18 Oct 2022 21:20:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Thu, 01 Dec 2022 23:28:18 GMT
etag: W/"634f1895-5a76"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BqofQTkrBAVMf5WISdtETetX_3tnF_9AvDlYakbDed1CBYLw853UfQ==
age: 48441
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js
157.240.240.1301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.240.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 02 Dec 2022 12:55:37 GMT
Connection: keep-alive
Content-Length: 0
gempaqgiler.blogspot.com/favicon.ico
172.217.21.161200 OK 290 B URL HTTP/1.1 gempaqgiler.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 4171c424740dfaeda72fccb8224b1983
26a2f9b2876dd7440b6fa47d0af3b691444a0c75
4b6cc0c3304cc4458171983765a5ee50cae1508a918b9e80795867d7a0cee51b
GET /favicon.ico HTTP/1.1
Host: gempaqgiler.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/2014/05/ngeri-5-gambar-gadis-dibunuh-dan.html
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Fri, 02 Dec 2022 12:55:38 GMT
Date: Fri, 02 Dec 2022 12:55:38 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 19 Nov 2022 23:12:58 GMT
ETag: W/"af6e034295aee465921bf5b48ef65f261ecb601325f867c5429d1bf31f4dc88e"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 290
Server: GSE
ws.sharethis.com/images/2017/facebook_counter.png
54.230.111.56200 OK 2.4 kB URL HTTP/2 ws.sharethis.com/images/2017/facebook_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ba4aa0077ecbfdad7b112b723bf3b89
8d85c1b4ca791a4a9010c304c3af620cdc2fac94
3488c49147b809d1e457c14a37bf3a79b0455fd159c121325e8f737eea45eb75
GET /images/2017/facebook_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2423
accept-ranges: bytes
cache-control: max-age=31536000
date: Wed, 28 Sep 2022 01:06:56 GMT
etag: "62bdf239-977"
expires: Thu, 28 Sep 2023 01:06:56 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: be0nNsl7b2PjL6cJXqyAklYgVJ0l1bqjV2bqmTBfNQtMwmHl3NDrpQ==
age: 5658523
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/secure/images/bubble_arrow.png
54.230.111.56200 OK 979 B URL HTTP/2 ws.sharethis.com/secure/images/bubble_arrow.png
IP 54.230.111.56:0
File type PNG image data, 4 x 6, 8-bit colormap, non-interlaced\012- data
Hash 9466fb05cc9cae591337910debe1282e
03a3bc8a8c1a744dd1b283ad82fa392f01cafc09
516630dc137782b6ea784ed6891b487b8a2fff9be9ed921977008453039cc1fe
GET /secure/images/bubble_arrow.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/button/css/buttons-secure.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 979
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 08 Sep 2022 11:50:17 GMT
etag: "62bdf287-3d3"
expires: Fri, 08 Sep 2023 11:50:17 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NwjaTKB5ScXUvYeOEcely3hOMICj2zN20w9aTB3LjJYFkEF0KmdzDQ==
age: 7347922
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/twitter_counter.png
54.230.111.56200 OK 2.5 kB URL HTTP/2 ws.sharethis.com/images/2017/twitter_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f3b085b38e3d832d18351c78ac1a0e1
a5ecafc51f237b39afdbaabbb60e198bd4592f06
aeae37bae2130513ef8b5ea4fde8fd776b32ff8969b848b59399a63d9455e29a
GET /images/2017/twitter_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2478
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 01 Sep 2022 02:16:22 GMT
etag: "62bdf239-9ae"
expires: Fri, 01 Sep 2023 02:16:22 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9FIuadSVbO-xTC9JwH0hjcA7VSSqXifaNfR8ibcVuiIZxqSzJrcqhw==
age: 7987157
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/linkedin_counter.png
54.230.111.56200 OK 2.5 kB URL HTTP/2 ws.sharethis.com/images/2017/linkedin_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash fe09cd7fe7814958b566642c4471e7ed
d3e649a373de39af33aa03ec2faa563c87630d5f
0e3f83554765fa48514ce0a169441466f92010d01cdc716003e02317bffc6993
GET /images/2017/linkedin_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2529
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 10 Sep 2022 05:10:33 GMT
etag: "62bdf239-9e1"
expires: Sun, 10 Sep 2023 05:10:33 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tYMPKq0Da6_eC_AxdhcwXM0YK56QQakMFXSAYnt5FFntBo6YHN5doQ==
age: 7199106
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/email_counter.png
54.230.111.56200 OK 1.9 kB URL HTTP/2 ws.sharethis.com/images/2017/email_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 661e3d497a53bf0c26f60db4dc3a4951
2d14d4e9c2d0af7945c247c9e81f191e47ab20cf
af6c4b21f7b4a51cf290db1dc17ff613cd7db54e14574587bebb6b9cf2a2082d
GET /images/2017/email_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1857
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 24 Sep 2022 01:34:20 GMT
etag: "62bdf239-741"
expires: Sun, 24 Sep 2023 01:34:20 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rT7hIhi6GUmQYj_jk9wmI96lOiKH3MZieQVmDck5tGXAJFk9B8OrPg==
age: 6002479
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/sharethis_counter.png
54.230.111.56200 OK 2.6 kB URL HTTP/2 ws.sharethis.com/images/2017/sharethis_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash c0cbf421acb6c3a3cd615542054e0536
d56aa81a6df18e79a5ad752d4871a2948bf8ada6
4e2b38b4f0180fd5671604c482ae7b38eaa7d3b008099314bd261206045b0413
GET /images/2017/sharethis_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2648
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 27 Aug 2022 01:42:05 GMT
etag: "62bdf239-a58"
expires: Sun, 27 Aug 2023 01:42:05 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XvUemtjfZVoST6k8Z6QxOmT0Lzq7SJ1H187GUEo5TG1p8LDde0x9Ig==
age: 8421214
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4501
Cache-Control: max-age=129755
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:58:15 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1957)
Hash 985564866f4d9499baec646fa264e837
39e71c90319752a6e4895dfcf61727269805dc51
31b86001c81c6cb5bee7e27038ca79eba4772a0ed14a4fe7075853cf43541e30
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: e465db216a509fde73cfeeec8732ec80
etag: "220996d2c3232d4179620ed8d9fe82d0"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Dec 2022 13:12:10 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: mFVkhm9NlJm67GRvomToNw==
x-fb-debug: kn/ZW8pEqksfvC9FZySItPFVAqKZU0ejmSCt6rwcjiHwYviYeqmFwnfy0FKumtHM8dIZV8xYD4Hg1Q4jERysWw==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 12:55:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4501
Cache-Control: max-age=129755
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:58:15 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Fri, 02 Dec 2022 13:31:49 GMT
Date: Fri, 02 Dec 2022 12:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Fri, 02 Dec 2022 13:31:49 GMT
Date: Fri, 02 Dec 2022 12:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Fri, 02 Dec 2022 13:31:49 GMT
Date: Fri, 02 Dec 2022 12:55:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Fri, 02 Dec 2022 13:31:49 GMT
Date: Fri, 02 Dec 2022 12:55:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQ21d2_5JO2Ym-LEnDecub9bK6wUyvM2zUf_XpfMGag83fVWlMjT8w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:09 GMT
age: 54331
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2169
Expires: Fri, 02 Dec 2022 13:31:49 GMT
Date: Fri, 02 Dec 2022 12:55:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 23:43:28 GMT
age: 47532
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 54247
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 54329
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 00:54:54 GMT
age: 43246
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:30:28 GMT
age: 84312
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.211.14200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://draft.blogger.com/
Origin: https://draft.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://draft.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 02 Dec 2022 12:55:40 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+996; expires=Sun, 01-Dec-2024 12:55:40 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Dec 2022 12:55:40 GMT
cache-control: private
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
216.58.211.4200 OK 665 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 216.58.211.4:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 34e37af4d526255a20a2056cd5f4addf
bcac186d6a49539e69a3f67aa08d0188966f5623
51a2c479b272414cb9d7e1ec62edffbad01217068b73d516d33cb8f26a4fc634
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 02 Dec 2022 12:55:40 GMT
date: Fri, 02 Dec 2022 12:55:40 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a26afaaadb2a0ed8f3adf3ba46f076b0
fd5066cc90bd627ab0cf7f2463ae71b26f7ebf38
0ef7ce87cf40f2eabf3daab6d1336bfd51f0539f6d174a5f66afdd898acd1d06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a26afaaadb2a0ed8f3adf3ba46f076b0
fd5066cc90bd627ab0cf7f2463ae71b26f7ebf38
0ef7ce87cf40f2eabf3daab6d1336bfd51f0539f6d174a5f66afdd898acd1d06
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
142.250.74.109302 Found 478 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Hash fd7610aa2593af6806729ec3ceeaf84c
983810e2941326a724775aa4df7d9fe9ec392632
b5aac5305777614040e8235b19ea27705bc7924e23af913204dceed8eab7febf
GET /ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D8276956487562511376%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D1001474423304319%26origin%3Dhttp://gempaqgiler.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 12:55:40 GMT
location: http://draft.blogger.com/followers.g?blogID=8276956487562511376&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=1001474423304319&origin=http%3A%2F%2Fgempaqgiler.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-2QLOXoabPHCqTLY75Iz8bA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 478
server: GSE
set-cookie: __Host-GAPS=1:VTPu2tXAZ-cMI-BkyekWC9T2MN1pCQ:McOrcyeONvESMP7q;Path=/;Expires=Sun, 01-Dec-2024 12:55:40 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
developers.google.com/
172.217.21.174301 Moved Permanently 0 B IP 172.217.21.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://gempaqgiler.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 10937ad3a35a72aed823e4584fb8c51c;o=1
Date: Fri, 02 Dec 2022 12:55:40 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Fri, 02 Dec 2022 10:32:03 GMT
expires: Fri, 16 Dec 2022 10:32:03 GMT
cache-control: public, max-age=1209600
age: 8617
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash d9c3d3e8a0ee0f630ec32c2b40c31183
35d6fe235fa173d759a6691d5ffc25b6863eadba
b3391090c0acc0b439c2a4ff66e9867d6030c7fc0cb3720f7ea2f40218a4e8d5
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 12:55:40 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 23:33:39 GMT
Expires: Wed, 07 Dec 2022 23:33:38 GMT
Etag: "35d6fe235fa173d759a6691d5ffc25b6863eadba"
Cache-Control: max-age=469677,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773437ddde5c1c16-OSL
googleads.g.doubleclick.net/pagead/ads?npa=1&client=ca-pub-3765933820679304&output=html&h=280&slotname=9273774477&adk=1468887934&adf=974264786&pi=t.ma~as.9273774477&w=336&lmt=1668899578&format=336x280&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&host=ca-host-pub-1556223355139109&wgl=1&dt=1669985733629&bpp=41&bdt=1369&idt=298&shv=r20221110&mjsv=m202211150101&ptt=9&saldr=aa&abxe=1&correlator=3442403534003&frm=20&pv=2&ga_vid=59060117.1669985734&ga_sid=1669985734&ga_hid=1664272890&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=859&ady=189&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C44770880&oid=2&pvsid=3147511323712467&tmod=1067515860&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=EfkjT66SO7&p=http%3A//gempaqgiler.blogspot.com&dtd=540
142.250.74.66400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?npa=1&client=ca-pub-3765933820679304&output=html&h=280&slotname=9273774477&adk=1468887934&adf=974264786&pi=t.ma~as.9273774477&w=336&lmt=1668899578&format=336x280&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&host=ca-host-pub-1556223355139109&wgl=1&dt=1669985733629&bpp=41&bdt=1369&idt=298&shv=r20221110&mjsv=m202211150101&ptt=9&saldr=aa&abxe=1&correlator=3442403534003&frm=20&pv=2&ga_vid=59060117.1669985734&ga_sid=1669985734&ga_hid=1664272890&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=859&ady=189&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C44770880&oid=2&pvsid=3147511323712467&tmod=1067515860&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=EfkjT66SO7&p=http%3A//gempaqgiler.blogspot.com&dtd=540
IP 142.250.74.66:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?npa=1&client=ca-pub-3765933820679304&output=html&h=280&slotname=9273774477&adk=1468887934&adf=974264786&pi=t.ma~as.9273774477&w=336&lmt=1668899578&format=336x280&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&host=ca-host-pub-1556223355139109&wgl=1&dt=1669985733629&bpp=41&bdt=1369&idt=298&shv=r20221110&mjsv=m202211150101&ptt=9&saldr=aa&abxe=1&correlator=3442403534003&frm=20&pv=2&ga_vid=59060117.1669985734&ga_sid=1669985734&ga_hid=1664272890&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=859&ady=189&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C44770880&oid=2&pvsid=3147511323712467&tmod=1067515860&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=EfkjT66SO7&p=http%3A//gempaqgiler.blogspot.com&dtd=540 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 02 Dec 2022 12:55:40 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 13:10:40 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Origin: https://draft.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 323143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash c0badc896cf87eaa76be5ebf7059b187
0fe6e28d1b9a34cfc34ac3f85f1f5a24beb65b15
44f5428bcfe263a18680253ec9739f265f47ef7761e5879b9ab2a26b3c6afeb5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Dec 2022 12:55:40 GMT
Last-Modified: Fri, 02 Dec 2022 11:25:39 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: nxnfvCY4XXbmjel3Xl_h8KUVmlJVlA1-i_9H3U0i--0JB99bO9evtA==
Age: 5401
s10.histats.com/js15.js
46.105.201.240200 OK 4.4 kB IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11088), with no line terminators
Hash 688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5
GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 200 OK
date: Fri, 02 Dec 2022 12:47:20 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 995557612
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:BAB0_2E69C9F0:0050_6389F5CC_3C380:2FB3A
x-iplb-instance: 40746
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.131200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.131:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 08:48:19 GMT
expires: Wed, 29 Nov 2023 08:48:19 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 19 Nov 2022 03:11:36 GMT
content-type: text/javascript
age: 274041
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false
52.29.164.226204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false
IP 52.29.164.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://gempaqgiler.blogspot.com
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://gempaqgiler.blogspot.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 02 Dec 2022 12:55:40 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&cb=stButtons.processCB&wd=true
54.230.111.84200 OK 227 B URL HTTP/2 count-server.sharethis.com/v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&cb=stButtons.processCB&wd=true
IP 54.230.111.84:0
File type ASCII text, with no line terminators
Hash 18547a6197ab94a6d20daffb3c0b7b52
02d4e455a57a1f33121b9a0113e3bbf3aeb7638c
2659eec4ec9a6ba39959f3353f69b466238435feb5a846b7b183695621aeedd5
GET /v2.0/get_counts?url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&cb=stButtons.processCB&wd=true HTTP/1.1
Host: count-server.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 227
date: Fri, 02 Dec 2022 12:55:40 GMT
cache-control: public, max-age=86400
apigw-requestid: chNX_iE4oAMEJ1A=
etag: 18547a6197ab94a6d20daffb3c0b7b52
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DzkxNt5rVf7Sb72yb6waJO8Ku3bRhdeP6cuX8WwhFDeB3E8zWnZ4Bg==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
142.250.74.109200 OK 824 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (572)
Hash baf6bbd6802e60450261916fbe0ec56a
858960df134c41653a31e1e8164843f3eb1d96ca
c52f4f11fd08c944e7e2f00f8bdf7db196af50f53aec6425141844bf5f0a5f7d
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fgempaqgiler.blogspot.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 02 Dec 2022 12:55:40 GMT
content-security-policy: script-src 'nonce-Szsy-f7CsLudLrxFHaF1mQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r=
67.202.105.33200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r=
IP 67.202.105.33:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=a6AIeU7GCr4P2Oacwqm_6r&dn=TI&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sat, 03 Dec 2022 12:55:40 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Fri, 02 Dec 2022 12:55:40 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
www.carimember.com/banner.png
85.208.116.194404 Not Found 4.8 kB URL HTTP/1.1 www.carimember.com/banner.png
IP 85.208.116.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (365)
Hash 003039d2127216ae418bc159c62ca04c
9337fef90450d22340a9f661ac74617c70767f50
da1a604a8ed97cbe9feab8c1001a066083c34a6f95877dbbfbae6c21f973d8bd
GET /banner.png HTTP/1.1
Host: www.carimember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
HTTP/1.1 404 Not Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
Date: Fri, 02 Dec 2022 12:55:40 GMT
Content-Length: 4837
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false&img_pview=true
52.29.164.226204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false&img_pview=true
IP 52.29.164.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669985732580.10780&hostname=gempaqgiler.blogspot.com&location=%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&title=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&sop=false&img_pview=true HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Fri, 02 Dec 2022 12:55:40 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
connect.facebook.net/en_US/all.js?hash=2b3bdba592d1bba98432628c0504f025
157.240.240.1200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=2b3bdba592d1bba98432628c0504f025
IP 157.240.240.1:0
File type ASCII text, with very long lines (18605)
Hash f833bb6f8cf6b6315b09ce6013fea24f
f7d49b5b4af371c8f2fefe7882328f338d87bbc1
8bcbb2687c038c6a5cae47b06ddbfc9943c98412cb14573d53d3dbde2f8baba5
GET /en_US/all.js?hash=2b3bdba592d1bba98432628c0504f025 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://gempaqgiler.blogspot.com
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f9497321c2946896d5c6c1588fdedb5b
etag: "0b8842e4b0f7dd1df304efe34a9fa48b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 02 Dec 2023 11:35:30 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: +DO7b4z2tjFbCc5gE/6iTw==
x-fb-debug: 8iozkGD/GLuUHGnAYjZ5lV4dfYJXkofq6gv0O3evIX41alteTDjKxISGHZGvxsOCVmH4pkLkwjKlcs1vtoBa9g==
priority: u=3,i
content-length: 88225
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 12:55:40 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&cu=http%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:40 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg
142.250.74.161200 OK 1.5 kB URL HTTP/2 4.bp.blogspot.com/_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash bc889ff29990e318e8a7b196c6e3cfc3
c7f7eb1587eb0f08d0f0c545f2b2788098074d1a
51b2787dd0cbfaffd3660571c9eb924e04ecd7a58be0a5f7d28314e4c614ef61
GET /_7VgnsUgKcUY/S0gxUKp1wBI/AAAAAAAAACM/p9xj_T6Q5Ng/S45-s45-c/t192.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="t192.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1527
x-xss-protection: 0
date: Fri, 02 Dec 2022 09:02:17 GMT
expires: Fri, 25 Nov 2022 04:32:33 GMT
cache-control: public, max-age=86400, no-transform
age: 14004
etag: "v23"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eac21c018b331c380a594610bc4d25ad
6b3a72c908edc11e5e389bbc0bb768fb2757adbe
8315de5b82f2596de9c7f2d790853d2026f842d1c024647e71e64b4b00973256
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8315DE5B82F2596DE9C7F2D790853D2026F842D1C024647E71E64B4B00973256"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6354
Expires: Fri, 02 Dec 2022 14:41:35 GMT
Date: Fri, 02 Dec 2022 12:55:41 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg
142.250.74.161200 OK 2.2 kB URL HTTP/2 1.bp.blogspot.com/-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 567a59874f8f7fff44f9cdea1a8ed5d3
fe177a9c1bf63a98e826de034f3908950391c909
426636310fc023de152148c7714c3eb837e9406113cf49394bb67687569e534f
GET /-eOTkv8TuF2E/VwB7HKw6yWI/AAAAAAAACU4/TdmqpYhgLskKlYrrwUzX4794yLlbCU1vg/s45-c/20150301_135416.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="20150301_135416.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2194
x-xss-protection: 0
date: Fri, 02 Dec 2022 12:55:41 GMT
expires: Fri, 02 Dec 2022 21:03:36 GMT
cache-control: public, max-age=86400, no-transform
etag: "v94f"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p
142.250.74.97200 OK 6.1 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 59e5a5ad642ad62be33f8ff654388130
a9035355c7bbeebb3ed192ab9413c4fd247b5439
aefe5132a0185427d287e0990304898d826ba8b330d36512872a09e12694dc80
GET /a-/ACNPEu-uCnlYDOi2b1lcABzcZ3yGk3Nh-r8PYlFDMvo5TA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6065
x-xss-protection: 0
date: Fri, 02 Dec 2022 12:55:41 GMT
expires: Fri, 02 Dec 2022 21:03:37 GMT
cache-control: public, max-age=86400, no-transform
etag: "ve36"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p
142.250.74.97200 OK 5.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash 80c564df329e549362b28d88721a4a1f
aae26c7a038cb320293bf8d2aefb43be41ce80d7
d55eb8f260e75438c37445d7c775cfe93328e499afb7f01cc0bae2a0516fd7af
GET /a-/ACNPEu8vmQZURF-TV2IJpL6Aw2LmooF83Y-DtbSiC1fcUA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 5297
x-xss-protection: 0
date: Fri, 02 Dec 2022 12:55:41 GMT
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
etag: "v20e"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p
142.250.74.97200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 96x96, components 3\012- data
Hash a027b35f849a0b073db11ea5c33cd12b
7f487126454ab093e5f01abaab9759c84fe69f94
bc4ff644928107cfb6aa2d98a406e299ad08ef82235f84cb1f73e3962f1b8409
GET /a-/ACNPEu_DrClu_tzZKWZEf3Ij_tz1vEWwSVgx2qR3Dy6wQA=s96-p HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 4413
x-xss-protection: 0
date: Fri, 02 Dec 2022 12:55:41 GMT
expires: Thu, 01 Dec 2022 07:56:14 GMT
cache-control: public, max-age=86400, no-transform
etag: "v20f1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG&t=Ngeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG
142.250.74.161200 OK 18 kB URL HTTP/2 2.bp.blogspot.com/-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG
IP 142.250.74.161:0
Hash e3f9f428d557185b61dfb63b5dee533f
eab629f9960cf292e1bc3faf86c832f8618c4bbd
f6a99aa2d52bfd68ae29cd69fc568cfe7e3f31f916d565b121e9415102eaa711
GET /-yj7Q3kZyK2s/ULI_MGc95UI/AAAAAAAAAvY/U4RkAJemx3A/s45-c/DSC02855%25252B-%25252BCopy.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="DSC02855%2B-%2BCopy.JPG"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2023
x-xss-protection: 0
date: Fri, 02 Dec 2022 12:55:41 GMT
expires: Fri, 02 Dec 2022 21:03:37 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2f6"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669985738849&@k0&@l1&@mNgeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:127264111&@b3:1669985739&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&@w
54.39.128.162200 OK 108 B URL HTTP/1.1 s4.histats.com/stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669985738849&@k0&@l1&@mNgeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:127264111&@b3:1669985739&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&@w
IP 54.39.128.162:0
File type ASCII text, with no line terminators
Hash 30b741c3f15a171e6e819ee5c8483ce0
194bb8938162d76900e2c74917f22178932ae7d0
1e00de82153813e0d1e1ef2ab24319c9f803cdef67ba8bbde155ed330311dca2
GET /stats/2361969.php?2361969&@f16&@g1&@h1&@i1&@j1669985738849&@k0&@l1&@mNgeri%20!!!!%205%20Gambar%20Gadis%20Dibunuh%20Dan%20Dikerat%20Dalam%20Keadaan%20Telanjang&@n0&@o1000&@q0&@r0&@s10&@ten-US&@u1280&@b1:127264111&@b3:1669985739&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fgempaqgiler.blogspot.com%2F2014%2F05%2Fngeri-5-gambar-gadis-dibunuh-dan.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 12:55:41 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 108
Connection: close
lh3.googleusercontent.com/p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE
142.250.74.97404 Not Found 904 B URL HTTP/2 lh3.googleusercontent.com/p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE
IP 142.250.74.97:0
File type PNG image data, 45 x 45, 8-bit colormap, non-interlaced\012- data
Hash 288ba721beee9352ca47b2a130423c86
5dd28e65cfc52620335ca1a10be532ed9e44ff14
6ee738d016e2e0d81bb5da04d1c97a4b33d9ec9f3bfc3cee450b33d1dd997cc4
GET /p/AF1QipO7j9LAT-6RZWyRjSo239vefwK7N-NBRMyZd00r=s45-c?key=CK-wle7fgrnsiQE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 12:55:41 GMT
server: fife
content-length: 904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ
142.250.74.97200 OK 4.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ
IP 142.250.74.97:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 0c303d5b431ddc18b366dd87c5f01189
eceba0b2aee7339f788ecabeadb3ba5750be1318
aaafc2a58fe40b8f36471449dd6d2136bfe797dcaa4963069343fc80ce61e2de
GET /p/AF1QipMqm6Jz2u6K-ChjDSLnR4FdPMJiN9Ix6r2ZLnhB=s45-c?key=COrdpbXQy6v3EQ HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v3183"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 12:55:41 GMT
server: fife
content-length: 4308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg
142.250.74.97200 OK 5.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg
IP 142.250.74.97:0
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 7b15d53e8b6421cc0832f0a15fbcf455
d2c744bfbb18f4430e7441db2ec78f313a1cbca1
ca1321b6ef7083fff3dab5ec94d5fc9b9ee69632dd0f46ec2a3a92a67be92df9
GET /p/AF1QipNWmIRVc2fiySVY1U0Ba-UJH6KQttvNbFuQyEhX=s45-c?key=CKq9qZ-hsIvuVg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v408"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 12:55:41 GMT
server: fife
content-length: 5431
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0&img=http%3A%2F%2F1.bp.blogspot.com%2F-HFoDMWZgTLs%2FU27nmtJAM0I%2FAAAAAAAAUXE%2FbxIt5h5xML0%2Fs72-c%2Fwanita%2Bdibunuh%2Bdan%2Bdikerat.JPG HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=a6AIeU7GCr4P2Oacwqm_6r&lm=0&ts=1669985736065&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 02 Dec 2022 12:55:41 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 21:48:03 GMT
expires: Fri, 01 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 54458
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:40:43 GMT
expires: Fri, 01 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 72898
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ws.sharethis.com/secure5x/index.html
54.230.111.56200 OK 4.1 kB URL HTTP/2 ws.sharethis.com/secure5x/index.html
IP 54.230.111.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (452)
Hash d359b835f361ce395cf1e1d23d6100f4
88013b75781073cf0d0103de6aaf32dd1b91a135
a8a78f8e2ee2c683adb5576b1f884d86d1e3e565a70dc4cc09d3b2b5567dcab2
GET /secure5x/index.html HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 4080
content-encoding: gzip
last-modified: Tue, 18 Oct 2022 21:20:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Thu, 01 Dec 2022 19:25:06 GMT
etag: W/"634f1895-390f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nehi8Z7xL-E7qYb8ZgOzihLpIOWe3aX-ZEc2nWRb98dWwpJGoLiVYA==
age: 63037
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/secure5x/js/stcommon.1f60705adac788a51a8240cf535237b0.js
54.230.111.56200 OK 5.6 kB URL HTTP/2 ws.sharethis.com/secure5x/js/stcommon.1f60705adac788a51a8240cf535237b0.js
IP 54.230.111.56:0
File type C source, ASCII text, with very long lines (16630), with no line terminators
Hash 94b39eb0a8fb0b06a11ad4d75b2e74b9
5d9f3beab6794398f43e43625b651cb16f6514ed
db64545fc1dedef33184fb39df6e927e83fb783555622cafe426dc83c87e17c1
GET /secure5x/js/stcommon.1f60705adac788a51a8240cf535237b0.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/secure5x/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 5630
cache-control: max-age=31536000
content-encoding: gzip
date: Thu, 25 Aug 2022 02:51:08 GMT
etag: W/"62bdf287-40f6"
expires: Fri, 25 Aug 2023 02:51:08 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3Is5VFTYTOy0lsvDKwRwYfjrIsc3uDzEyq-D3Y1OKR-51CDImiss3w==
age: 8589874
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 12:55:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws.sharethis.com/secure5x/js/st.e96255eb8fe81c93a11306efbce27be2.js
54.230.111.56200 OK 0 B URL HTTP/2 ws.sharethis.com/secure5x/js/st.e96255eb8fe81c93a11306efbce27be2.js
IP 54.230.111.56:0
GET /secure5x/js/st.e96255eb8fe81c93a11306efbce27be2.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/secure5x/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
cache-control: max-age=31536000
content-encoding: gzip
date: Tue, 18 Oct 2022 23:15:55 GMT
etag: W/"634f1895-211a0"
expires: Wed, 18 Oct 2023 23:15:55 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j-JKpNGvIXMZuIiTvt7Q7uYLHQ_o-B2bTZQKbb1FlTN6OgelBdL2CQ==
age: 3850787
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
sc.tynt.com/script/sc/a6AIeU7GCr4P2Oacwqm_6r.js
104.18.36.173200 OK 0 B URL HTTP/2 sc.tynt.com/script/sc/a6AIeU7GCr4P2Oacwqm_6r.js
IP 104.18.36.173:0
GET /script/sc/a6AIeU7GCr4P2Oacwqm_6r.js HTTP/1.1
Host: sc.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://gempaqgiler.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 12:55:40 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=86400, public, s-maxage=172800
last-modified: Thu, 01 Dec 2022 15:04:06 GMT
x-xss-protection: 1; mode=block
x-request-id: d26c30bb-4693-4b14-961b-225599255137
x-content-digest: 310650b3c8fb6e52713116c6812ae354fbd0eb01
x-runtime: 0.003031
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 20:50:56 GMT
content-encoding: gzip
cf-cache-status: HIT
age: 57122
server: cloudflare
cf-ray: 773437de4eed1c16-OSL
X-Firefox-Spdy: h2