Overview

URL kawahcerita.blogspot.com/2014/05/cara-melihat-file-hasil-download-idm.html
IP142.250.74.161
ASNGOOGLE
Location United States
Report completed2022-08-06 12:11:16 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-08-06 2 yourjavascript.com/24211643151/jquery.easing.js Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (33)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] fonts.googleapis.com (1) 8877 2017-01-30 04:59:43 UTC 2019-10-16 05:12:41 UTC 142.250.74.10
[Mnemonic Passive DNS] 1.bp.blogspot.com (6) 8403 2012-05-21 13:44:19 UTC 2022-08-06 04:39:39 UTC 142.250.74.161
[Mnemonic Passive DNS] 4.bp.blogspot.com (5) 11215 2012-05-21 13:44:19 UTC 2022-08-06 06:01:01 UTC 142.250.74.161
[Mnemonic Passive DNS] play.google.com (2) 34 2012-05-21 14:04:12 UTC 2022-02-04 09:37:27 UTC 216.58.207.206
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.65
[Mnemonic Passive DNS] r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-08-06 04:58:11 UTC 23.36.77.32
[Mnemonic Passive DNS] assets.pinterest.com (3) 2560 2012-05-21 15:53:26 UTC 2022-08-06 08:23:00 UTC 151.101.84.84
[Mnemonic Passive DNS] resources.blogblog.com (1) 13274 2017-01-30 04:47:40 UTC 2022-08-06 03:48:29 UTC 216.58.207.201
[Mnemonic Passive DNS] syndication.twitter.com (2) 833 2019-03-22 17:06:16 UTC 2022-07-09 23:19:30 UTC 104.244.42.8
[Mnemonic Passive DNS] www.blogger.com (5) 8975 2014-04-11 14:35:11 UTC 2022-08-06 07:54:08 UTC 216.58.207.201
[Mnemonic Passive DNS] 2.bp.blogspot.com (2) 11071 2012-05-21 13:44:19 UTC 2022-08-06 04:39:39 UTC 142.250.74.161
[Mnemonic Passive DNS] developers.google.com (1) 12980 2013-06-01 06:18:12 UTC 2021-02-04 05:54:01 UTC 142.250.74.14
[Mnemonic Passive DNS] connect.facebook.net (2) 139 2013-09-20 12:03:21 UTC 2022-08-06 04:58:37 UTC 31.13.72.12
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-08-06 05:12:46 UTC 54.230.111.99
[Mnemonic Passive DNS] kawahcerita.blogspot.com (4) 0 2015-11-20 02:15:06 UTC 2018-01-09 14:32:54 UTC 142.250.74.161 Unknown ranking
[Mnemonic Passive DNS] ajax.googleapis.com (1) 12905 2017-01-30 05:00:30 UTC 2019-10-16 05:01:16 UTC 142.250.74.74
[Mnemonic Passive DNS] 3.bp.blogspot.com (4) 11048 2012-05-21 16:26:21 UTC 2022-08-06 08:34:05 UTC 142.250.74.161
[Mnemonic Passive DNS] ocsp.digicert.com (3) 86 2012-11-29 12:49:49 UTC 2022-08-06 09:57:42 UTC 93.184.220.29
[Mnemonic Passive DNS] www.facebook.com (1) 99 2012-05-28 23:09:18 UTC 2022-08-06 04:46:17 UTC 31.13.72.36
[Mnemonic Passive DNS] platform.twitter.com (3) 597 2012-05-21 17:20:24 UTC 2022-08-06 06:13:48 UTC 192.229.233.25
[Mnemonic Passive DNS] ocsp.pki.goog (9) 175 2017-06-14 07:23:31 UTC 2022-08-06 04:58:04 UTC 142.250.74.3
[Mnemonic Passive DNS] yourjavascript.com (1) 111582 2017-02-09 20:25:05 UTC 2022-08-04 11:00:54 UTC 5.189.183.184
[Mnemonic Passive DNS] ssl.gstatic.com (1) 0 No data No data 142.250.74.99 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-08-06 02:10:52 UTC 142.250.74.164
[Mnemonic Passive DNS] www.gstatic.com (1) 0 2015-06-20 09:50:55 UTC 2015-11-29 15:55:55 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] log.pinterest.com (1) 3464 2015-06-09 06:25:04 UTC 2022-08-06 09:15:19 UTC 151.101.84.84
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-08-06 04:58:36 UTC 34.120.237.76
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] fonts.gstatic.com (3) 0 2017-01-30 04:59:51 UTC 2022-08-06 05:01:06 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] apis.google.com (1) 105 2017-01-30 05:00:27 UTC 2022-08-06 05:00:16 UTC 142.250.74.174
[Mnemonic Passive DNS] static.xx.fbcdn.net (1) 661 2017-01-30 05:00:11 UTC 2022-08-06 04:58:37 UTC 31.13.72.12
[Mnemonic Passive DNS] widgets.pinterest.com (1) 6540 2015-08-27 21:24:43 UTC 2022-08-06 10:15:35 UTC 151.101.84.84
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-08-06 05:12:46 UTC 52.39.242.22


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 142.250.74.161

Date UQ / IDS / BL URL IP
2022-08-12 19:05:48 +0000
0 - 0 - 3 bgmiuccustom8000uc.blogspot.co.uk/ 142.250.74.161
2022-08-12 19:05:40 +0000
0 - 0 - 4 bgmicustomuc.blogspot.pe/ 142.250.74.161
2022-08-12 19:05:36 +0000
0 - 0 - 2 mammerm.blogspot.be/ 142.250.74.161
2022-08-12 18:47:47 +0000
0 - 0 - 3 nhentaixheaven.blogspot.fi/ 142.250.74.161
2022-08-12 18:18:59 +0000
0 - 0 - 5 facebookaccountloginml.blogspot.cz/ 142.250.74.161
2022-08-12 18:15:45 +0000
0 - 0 - 3 younglibs.blogspot.sg/ 142.250.74.161
2022-08-12 18:15:39 +0000
0 - 0 - 2 chinabikini.blogspot.com.cy/ 142.250.74.161
2022-08-12 18:15:25 +0000
0 - 0 - 3 our-girlz.blogspot.hr/ 142.250.74.161
2022-08-12 18:15:12 +0000
0 - 0 - 4 rekapuolam.blogspot.lu/ 142.250.74.161
2022-08-12 18:15:00 +0000
0 - 0 - 3 borneobulgex.blogspot.mk/ 142.250.74.161

Last 10 reports on ASN: GOOGLE

Date UQ / IDS / BL URL IP
2022-08-12 20:18:00 +0000
0 - 0 - 1 https://0b4c3c9e-b712-410f-9e83-b20bef24b2f1. (...) 34.102.176.152
2022-08-12 20:16:49 +0000
0 - 0 - 3 https://dayyar.com/1.exe 35.208.62.224
2022-08-12 20:11:02 +0000
0 - 0 - 1 https://storage.googleapis.com/fe5u9xbqfqnn7n (...) 216.58.211.16
2022-08-12 20:08:59 +0000
0 - 0 - 3 www.imxprs.com/free/outlookwebaccessupgrade/o (...) 142.250.74.83
2022-08-12 20:07:25 +0000
0 - 0 - 1 https://42502d2a-e7ed-4a16-9f11-33ffe6c54021. (...) 34.102.176.152
2022-08-12 20:07:20 +0000
0 - 0 - 16 https://sec0-mtbalerts-veri0.com/ 34.162.138.166
2022-08-12 20:07:19 +0000
0 - 0 - 1 https://42502d2a-e7ed-4a16-9f11-33ffe6c54021. (...) 34.102.176.152
2022-08-12 19:54:38 +0000
0 - 0 - 27 bancomptriabancscotiba.colpatrios.repl.co/ 35.186.245.55
2022-08-12 19:53:35 +0000
0 - 0 - 8 colombiainforma.colombiaa.repl.co/ 35.186.245.55
2022-08-12 19:40:10 +0000
0 - 0 - 1 1b5622c7-2ce6-4cef-b1cd-19325efd8f45.usrfiles (...) 34.102.176.152

No other reports on domain: kawahcerita.blogspot.com



JavaScript

Executed Scripts (75)


Executed Evals (5)

#1 JavaScript::Eval (size: 15471, repeated: 1) - SHA256: f6f2a7849b97f05e1743f026dcb3296b575bc4ac95ae2e65d8247b4c29944fa1

                                        /* Anti-spam. Want to say hello? Contact (base64) Ym90Z3VhcmQtY29udGFjdEBnb29nbGUuY29t */
(function() {
    var F = function(H, d) {
            if (H = (d = null, p.trustedTypes), !H || !H.createPolicy) return d;
            try {
                d = H.createPolicy("bg", {
                    createHTML: q,
                    createScript: q,
                    createScriptURL: q
                })
            } catch (T) {
                p.console && p.console.error(T.message)
            }
            return d
        },
        p = this || self,
        q = function(H) {
            return H
        };
    (0, eval)(function(H, d) {
        return (d = F()) && 1 === H.eval(d.createScript("1")) ? function(T) {
            return d.createScript(T)
        } : function(T) {
            return "" + T
        }
    }(p)(Array(7824 * Math.random() | 0).join("\n") + '(function(){var HQ=function(H,d,T,q,f,p){for(T=(d=(f=M((q=H[st]||{},H)),q.V1=M(H),q.U=[],H.j==H?(n(H)|0)-1:1),M(H)),p=0;p<d;p++)q.U.push(M(H));for(q.F=l(f,H),q.du=l(T,H);d--;)q.U[d]=l(q.U[d],H);return q},G=function(H,d,T,q){for(T=(q=(H|0)-1,[]);0<=q;q--)T[(H|0)-1-(q|0)]=d>>8*q&255;return T},qV=function(H,d,T,q,f){if(f=H[0],f==S)d.I=25,d.J(H);else if(f==X){T=H[1];try{q=d.W||d.J(H)}catch(p){I(d,p),q=d.W}T(q)}else if(f==c)d.J(H);else if(f==R)d.J(H);else if(f==Y){try{for(q=0;q<d.o.length;q++)try{T=d.o[q],T[0][T[1]](T[2])}catch(p){}}catch(p){}(0,H[1])(function(p,F){d.u(p,true,F)},(d.o=[],function(p){N(d,(p=!d.Y.length,[dr])),p&&y(d,false,true)}))}else{if(f==Tq)return q=H[2],P(180,d,H[6]),P(333,d,q),d.J(H);f==dr?(d.V=null,d.h=[],d.G=[]):f==pJ&&"loading"===x.document.readyState&&(d.g=function(p,F){function e(){F||(F=true,p())}x.document.addEventListener("DOMContentLoaded",e,(F=false,Z)),x.addEventListener("load",e,Z)})}},F5=function(H,d){return(d=n(H),d)&128&&(d=d&127|n(H)<<7),d},eY=function(H,d){return z[d](z.prototype,{parent:H,document:H,length:H,splice:H,propertyIsEnumerable:H,replace:H,call:H,prototype:H,console:H,pop:H,floor:H,stack:H})},h=function(H,d,T,q,f,p,F,e,C){if(H.j=(f=(F=(d||H.R++,T=T?255:d?5:2,C=0<H.L&&H.s&&H.Yb&&1>=H.S&&!H.D&&!H.g&&(!d||1<H.A-q)&&0==document.hidden,(p=4==H.R)||C?H.O():H.K),F)-H.K,e=f>>14,H.B&&(H.B^=e*(f<<2)),e||H.j),H.Z+=e,p||C)H.K=F,H.R=0;if(!C||F-H.v<H.L-T)return false;return!((P(40,(C=l(d?81:40,(H.A=q,H)),H),H.i),H.Y).push([c,C,d?q+1:q]),H.g=U,0)},CJ=function(H,d){return d[H]<<24|d[(H|0)+1]<<16|d[(H|0)+2]<<8|d[(H|0)+3]},A=function(H,d,T,q,f,p){if(!T.T){if(3<(d=l(((H=(0==(f=l(178,((q=void 0,d&&d[0]===W)&&(q=d[2],H=d[1],d=void 0),T)),f.length)&&(p=l(81,T)>>3,f.push(H,p>>8&255,p&255),void 0!=q&&f.push(q&255)),""),d)&&(d.message&&(H+=d.message),d.stack&&(H+=":"+d.stack)),194),T),d)){T.j=(q=(H=(H=H.slice(0,(d|0)-3),d-=(H.length|0)+3,MV)(H),T.j),T);try{t(T,55,G(2,H.length).concat(H),9)}finally{T.j=q}}P(194,T,d)}},l=function(H,d){if((d=d.V[H],void 0)===d)throw[W,30,H];if(d.value)return d.create();return d.create(1*H*H+9*H+-18),d.prototype},n=function(H){return H.D?au(H.X,H):u(H,true,8)},nJ=function(H,d){d.push(H[0]<<24|H[1]<<16|H[2]<<8|H[3]),d.push(H[4]<<24|H[5]<<16|H[6]<<8|H[7]),d.push(H[8]<<24|H[9]<<16|H[10]<<8|H[11])},Z={passive:true,capture:true},t=function(H,d,T,q,f,p){if(H.j==H)for(f=l(d,H),55==d?(d=function(F,e,C,a){if((C=(a=f.length,(a|0)-4>>3),f.fm)!=C){C=((e=[0,0,p[f.fm=C,1],p[2]],C)<<3)-4;try{f.wu=lU(e,CJ(C,f),CJ((C|0)+4,f))}catch(O){throw O;}}f.push(f.wu[a&7]^F)},p=l(439,H)):d=function(F){f.push(F)},q&&d(q&255),H=T.length,q=0;q<H;q++)d(T[q])},MV=function(H,d,T,q,f){for(d=(T=(H=H.replace(/\\r\\n/g,"\\n"),q=0),[]);T<H.length;T++)f=H.charCodeAt(T),128>f?d[q++]=f:(2048>f?d[q++]=f>>6|192:(55296==(f&64512)&&T+1<H.length&&56320==(H.charCodeAt(T+1)&64512)?(f=65536+((f&1023)<<10)+(H.charCodeAt(++T)&1023),d[q++]=f>>18|240,d[q++]=f>>12&63|128):d[q++]=f>>12|224,d[q++]=f>>6&63|128),d[q++]=f&63|128);return d},V,u=function(H,d,T,q,f,p,F,e,C,a,O,D,L,w){if((q=l(40,H),q)>=H.i)throw[W,31];for(C=(D=(w=q,p=T,H.Nh.length),0);0<p;)F=w%8,f=w>>3,O=H.G[f],L=8-(F|0),L=L<p?L:p,d&&(a=H,a.N!=w>>6&&(a.N=w>>6,e=l(345,a),a.H=lU([0,0,e[1],e[2]],a.B,a.N)),O^=H.H[f&D]),w+=L,C|=(O>>8-(F|0)-(L|0)&(1<<L)-1)<<(p|0)-(L|0),p-=L;return P(40,H,(q|(d=C,0))+(T|0)),d},Ot=function(H){return H},Dd=function(H,d,T,q,f,p){if(!d.W){d.S++;try{for(p=(T=(f=void 0,d.i),0);--H;)try{if(q=void 0,d.D)f=au(d.D,d);else{if(p=l(40,d),p>=T)break;q=M((P(81,d,p),d)),f=l(q,d)}h(d,(f&&f.call?f(d,H):A(0,[W,21,q],d),false),false,H)}catch(F){l(314,d)?A(22,F,d):P(314,d,F)}if(!H){if(d.Q1){Dd((d.S--,89046169380),d);return}A(0,[W,33],d)}}catch(F){try{A(22,F,d)}catch(e){I(d,e)}}d.S--}},iU=function(H,d,T,q){return l((P(40,(Dd(T,((q=l(40,H),H).G&&q<H.i?(P(40,H,H.i),LJ(H,d)):P(40,H,d),H)),H),q),333),H)},au=function(H,d){return(H=H.create().shift(),d.D.create()).length||d.X.create().length||(d.X=void 0,d.D=void 0),H},Gq=function(H,d,T,q,f,p,F,e){return f=z[q.P]((d=[64,9,-18,-61,-14,-(p=wr,53),d,-64,-17,30],e=T&7,q).jS),f[q.P]=function(C){e+=6+(F=C,7)*T,e&=7},f.concat=function(C){return(C=+d[e+35&7]*H*(C=H%16+1,C)+1*H*H*C-C*F-36*H*H*F-324*H*F+e+(p()|0)*C+36*F*F- -648*F,C=d[C],F=void 0,d[(e+61&7)+(T&2)]=C,d)[e+(T&2)]=9,C},f},M=function(H,d){if(H.D)return au(H.X,H);return d=u(H,true,8),d&128&&(d^=128,H=u(H,true,2),d=(d<<2)+(H|0)),d},Et=function(H,d,T){if(3==H.length){for(T=0;3>T;T++)d[T]+=H[T];for(H=0,T=[13,8,13,12,16,5,3,10,15];9>H;H++)d[3](d,H%3,T[H])}},k,N=function(H,d){H.Y.splice(0,0,d)},I=function(H,d){H.W=((H.W?H.W+"~":"E:")+d.message+":"+d.stack).slice(0,2048)},ou=function(H,d){if((d=(H=x.trustedTypes,null),!H)||!H.createPolicy)return d;try{d=H.createPolicy("bg",{createHTML:Ot,createScript:Ot,createScriptURL:Ot})}catch(T){x.console&&x.console.error(T.message)}return d},SY=function(H,d,T,q){for(;H.Y.length;){T=(H.g=null,H.Y.pop());try{q=qV(T,H)}catch(f){I(H,f)}if(d&&H.g){d=H.g,d(function(){y(H,true,true)});break}}return q},bU=function(H,d,T,q){for(T=(q=M(d),0);0<H;H--)T=T<<8|n(d);P(q,d,T)},NV=function(H,d,T,q,f){for(f=(q=(T.ia=(T.jS=((T.XJ=(T.UD=Iu,X5),T).Nh=T[X],eY({get:function(){return this.concat()}},T.P)),z)[T.P](T.jS,{value:{value:{}}}),[]),0);128>f;f++)q[f]=String.fromCharCode(f);y(T,true,(N((N((N(T,(P(477,(P(39,(P(64,(P(109,T,(P(248,(P((P((P(424,T,(P((P(352,(P(20,(P((P(86,(P(125,(P(67,T,((P(65,(P(314,(P(415,(P(116,((P(194,(P(178,(P(460,T,(P(510,(P(46,T,(P(281,(P((P(102,(P((P(135,T,(P((P(286,T,(P(436,(P(267,T,(P((P((P(190,(P(24,T,(P(81,T,((f=((T.j=(T.X=void 0,T.A=8001,T),T).G=[],((T.B=void 0,(T.L=0,T).H=void 0,T.o=[],T).Z=1,window.performance)||{}),(T.N=(T.R=void 0,void 0),T).Pw=function(p){this.j=p},T.J4=0,T.V=(T.Ww=[],T.S=0,T.h=(T.i=0,T.D=void 0,T.I=(T.T=!(T.l=0,1),T.K=0,T.Y=[],25),T.Yb=false,[]),T.W=void 0,[]),T.v=0,T.OD=(T.g=null,f).timeOrigin||(f.timing||{}).navigationStart||0,T.s=false,P)(40,T,0),0)),function(p,F,e,C){if(e=p.Ww.pop()){for(C=n(p);0<C;C--)F=M(p),e[F]=p.V[F];p.V=(e[194]=(e[178]=p.V[178],p.V[194]),e)}else P(40,p,p.i)})),T),function(p,F,e,C){(e=(C=M((F=M(p),p)),M(p)),p).j==p&&(e=l(e,p),C=l(C,p),l(F,p)[C]=e,345==F&&(p.N=void 0,2==C&&(p.B=u(p,false,32),p.N=void 0)))}),P(431,T,0),500),T,function(p){QB(p,3)}),369),T,0),function(p,F,e){F=cQ((F=(e=(F=M(p),M(p)),l(F,p)),F)),P(e,p,F)})),T),function(p){Ru(4,p)}),function(p,F,e,C,a){P((C=l((F=l((a=l((C=(e=M(p),F=M(p),M(p)),a=M(p),a),p),F),p),C),p),e),p,Y3(a,C,p,F))})),296),T,T),function(p,F,e,C){F=l((e=(C=(F=(e=M(p),M(p)),M(p)),l(e,p)),F),p),P(C,p,+(e==F))})),110),T,[160,0,0]),T),function(p){QB(p,4)}),341),T,function(p,F,e,C,a){F=l((e=(C=(C=(a=M((e=(F=M(p),M(p)),p)),M(p)),a=l(a,p),l(C,p)),l)(e,p),F),p.j),0!==F&&(a=Y3(1,C,p,a,F,e),F.addEventListener(e,a,Z),P(431,p,[F,e,a]))}),T.vw=0,T),function(p,F,e,C,a,O,D,L,w,g,E,b){function m(Q,J){for(;g<Q;)L|=n(p)<<g,g+=8;return L>>=(J=L&(g-=Q,1<<Q)-1,Q),J}for(O=(C=(L=(F=M(p),g=0),m(3)|0)+1,m)(5),E=b=0,e=[];E<O;E++)D=m(1),e.push(D),b+=D?0:1;for(E=(a=(b=((b|0)-1).toString(2).length,[]),0);E<O;E++)e[E]||(a[E]=m(b));for(b=0;b<O;b++)e[b]&&(a[b]=M(p));for(w=[];C--;)w.push(l(M(p),p));P(F,p,function(Q,J,v,fJ,K){for(K=(J=0,[]),fJ=[];J<O;J++){if(!e[v=a[J],J]){for(;v>=K.length;)K.push(M(Q));v=K[v]}fJ.push(v)}Q.X=Jb(Q,(Q.D=Jb(Q,w.slice()),fJ))})}),function(p,F,e,C){F=M((C=(e=M(p),M(p)),p)),P(F,p,l(e,p)||l(C,p))})),T),function(p){bU(4,p)}),function(p,F,e){h(p,true,false,F)||(F=M(p),e=M(p),P(e,p,function(C){return eval(C)}(gr(l(F,p.j)))))})),T.cw=0,T),[]),T),2048),P)(55,T,r(4)),T),function(p,F,e,C){(C=l((F=(e=(F=M(p),M(p)),l)(F,p),e),p),P)(e,p,C+F)}),T),function(p,F){(F=l(M(p),p),LJ)(p.j,F)}),T),354),T),function(p,F,e,C){!h(p,true,false,F)&&(F=HQ(p),e=F.du,C=F.F,p.j==p||C==p.Pw&&e==p)&&(P(F.V1,p,C.apply(e,F.U)),p.K=p.O())}),P)(239,T,function(p,F,e,C,a,O){if(!h(p,true,true,F)){if((p=(O=l((F=(e=M((O=(a=M((F=M(p),p)),M)(p),p)),l(F,p)),a=l(a,p),O),p),l(e,p)),"object")==cQ(F)){for(C in e=[],F)e.push(C);F=e}for(O=0<(C=0,O)?O:1,e=F.length;C<e;C+=O)a(F.slice(C,(C|0)+(O|0)),p)}}),function(p,F,e,C){e=l((F=M((C=(e=M(p),M)(p),p)),C=l(C,p),e),p),P(F,p,e[C])})),T),function(p){Ru(1,p)}),T.Km=0,T),x),333),T,{}),T),function(p,F,e){0!=l((e=(e=(F=M(p),M(p)),l(e,p)),F),p)&&P(40,p,e)}),T),function(){}),168),T,function(p,F,e,C){P((e=(C=(F=M(p),n(p)),M(p)),e),p,l(F,p)>>>C)}),[])),85),T,function(p,F,e,C,a,O,D){for(O=(e=(D=(F=M(p),F5)(p),""),l(170,p)),C=O.length,a=0;D--;)a=((a|0)+(F5(p)|0))%C,e+=q[O[a]];P(F,p,e)}),439),T,[0,0,0]),T),function(p,F,e,C){C=(F=(e=(F=M((C=M(p),p)),M)(p),l)(F,p),l)(C,p),P(e,p,C in F|0)}),function(p,F,e,C,a,O){h(p,true,false,F)||(e=HQ(p.j),a=e.F,F=e.V1,O=e.U,C=O.length,e=e.du,a=0==C?new e[a]:1==C?new e[a](O[0]):2==C?new e[a](O[0],O[1]):3==C?new e[a](O[0],O[1],O[2]):4==C?new e[a](O[0],O[1],O[2],O[3]):2(),P(F,p,a))})),T),function(p,F,e){(F=(e=M(p),M(p)),P)(F,p,""+l(e,p))}),T),function(p,F,e,C,a){for(e=(a=(C=(F=M(p),F5(p)),0),[]);a<C;a++)e.push(n(p));P(F,p,e)}),T),function(p,F){(p=(F=M(p),l)(F,p.j),p)[0].removeEventListener(p[1],p[2],Z)}),[pJ])),T),[R,d]),T),[Y,H]),true))},P=function(H,d,T){if(40==H||81==H)d.V[H]?d.V[H].concat(T):d.V[H]=Jb(d,T);else{if(d.T&&345!=H)return;110==H||55==H||424==H||178==H||439==H?d.V[H]||(d.V[H]=Gq(H,T,62,d)):d.V[H]=Gq(H,T,49,d)}345==H&&(d.B=u(d,false,32),d.N=void 0)},Y3=function(H,d,T,q,f,p){function F(){if(T.j==T){if(T.V){var e=[Tq,q,d,void 0,f,p,arguments];if(2==H)var C=y(T,false,(N(T,e),false));else if(1==H){var a=!T.Y.length;N(T,e),a&&y(T,false,false)}else C=qV(e,T);return C}f&&p&&f.removeEventListener(p,F,Z)}}return F},yB=function(H,d,T,q){return(q=k[H.substring(0,3)+"_"])?q(H.substring(3),d,T):jY(d,H)},LJ=function(H,d){(H.Ww.push(H.V.slice()),H).V[40]=void 0,P(40,H,d)},cQ=function(H,d,T){if(d=typeof H,"object"==d)if(H){if(H instanceof Array)return"array";if(H instanceof Object)return d;if("[object Window]"==(T=Object.prototype.toString.call(H),T))return"object";if("[object Array]"==T||"number"==typeof H.length&&"undefined"!=typeof H.splice&&"undefined"!=typeof H.propertyIsEnumerable&&!H.propertyIsEnumerable("splice"))return"array";if("[object Function]"==T||"undefined"!=typeof H.call&&"undefined"!=typeof H.propertyIsEnumerable&&!H.propertyIsEnumerable("call"))return"function"}else return"null";else if("function"==d&&"undefined"==typeof H.call)return"object";return d},PQ=function(H,d,T,q){try{q=H[((d|0)+2)%3],H[d]=(H[d]|0)-(H[((d|0)+1)%3]|0)-(q|0)^(1==d?q<<T:q>>>T)}catch(f){throw f;}},r=function(H,d){for(d=[];H--;)d.push(255*Math.random()|0);return d},lU=function(H,d,T,q,f){for(H=H[3]|(q=H[f=0,2]|0,0);14>f;f++)T=T>>>8|T<<24,T+=d|0,d=d<<3|d>>>29,H=H>>>8|H<<24,T^=q+618,H+=q|0,d^=T,H^=f+618,q=q<<3|q>>>29,q^=H;return[d>>>24&255,d>>>16&255,d>>>8&255,d>>>0&255,T>>>24&255,T>>>16&255,T>>>8&255,T>>>0&255]},y=function(H,d,T,q,f,p){if(H.Y.length){H.s=(H.Yb=(H.s&&0(),T),true);try{q=H.O(),H.K=q,H.v=q,H.R=0,f=SY(H,T),p=H.O()-H.v,H.l+=p,p<(d?0:10)||0>=H.I--||(p=Math.floor(p),H.h.push(254>=p?p:254))}finally{H.s=false}return f}},Jb=function(H,d,T){return(T=z[H.P](H.ia),T)[H.P]=function(){return d},T.concat=function(q){d=q},T},x=this||self,mc=function(H,d,T){return d.u(function(q){T=q},false,H),T},QB=function(H,d,T,q,f){q=(f=M((q=(d&=(T=d&4,3),M(H)),H)),l(q,H)),T&&(q=MV(""+q)),d&&t(H,f,G(2,q.length)),t(H,f,q)},Ru=function(H,d,T,q){t(d,(T=(q=M(d),M(d)),T),G(H,l(q,d)))},B=function(H,d,T){T=this;try{NV(d,H,this)}catch(q){I(this,q),d(function(f){f(T.W)})}},jY=function(H,d){return H(function(T){T(d)}),[function(){return d}]},x3=function(H,d,T,q){function f(){}return q=yB(H,function(p){f&&(d&&U(d),T=p,f(),f=void 0)},(T=void 0,!!d))[0],{invoke:function(p,F,e,C){function a(){T(function(O){U(function(){p(O)})},e)}if(!F)return F=q(e),p&&p(F),F;T?a():(C=f,f=function(){(C(),U)(a)})}}},U=x.requestIdleCallback?function(H){requestIdleCallback(function(){H()},{timeout:4})}:x.setImmediate?function(H){setImmediate(H)}:function(H){setTimeout(H,0)},st=String.fromCharCode(105,110,116,101,103,67,104,101,99,107,66,121,112,97,115,115),c=[],dr=((B.prototype.mY=void 0,B).prototype.C="toString",[]),W={},Y=[],R=(B.prototype.Q1=false,[]),Tq=[],X=[],S=(B.prototype.SS=void 0,[]),pJ=[],z=(((nJ,function(){})(r),PQ,Et,B).prototype.P="create",W).constructor,wr=((((V=B.prototype,V).t4=function(H,d,T){return H^((d=(d^=d<<13,d^=d>>17,d^d<<5)&T)||(d=1),d)},V).Bw=function(){return Math.floor(this.O())},V.O=(window.performance||{}).now?function(){return this.OD+window.performance.now()}:function(){return+new Date},V.u=function(H,d,T,q,f){if(T="array"===cQ(T)?T:[T],this.W)H(this.W);else try{f=[],q=!this.Y.length,N(this,[S,f,T]),N(this,[X,H,f]),d&&!q||y(this,true,d)}catch(p){I(this,p),H(this.W)}},V.gu=function(H,d,T,q,f){for(f=q=0;f<H.length;f++)q+=H.charCodeAt(f),q+=q<<10,q^=q>>6;return(q=(H=(q+=q<<3,q^=q>>11,q)+(q<<15)>>>0,new Number(H&(1<<d)-1)),q)[0]=(H>>>d)%T,q},V).Gs=function(H,d,T,q,f,p){for(T=(p=q=0,[]);p<H.length;p++)for(q+=d,f=f<<d|H[p];7<q;)q-=8,T.push(f>>q&255);return T},void 0),X5=((V.kb=function(){return Math.floor(this.l+(this.O()-this.v))},B).prototype.J=function(H,d){return wr=function(){return H==d?-18:-73},H={},d={},function(T,q,f,p,F,e,C,a,O,D,L,w,g,E,b){q=H,H=d;try{if(g=T[0],g==R){L=T[1];try{for(w=a=(e=atob(L),0),D=[];w<e.length;w++)E=e.charCodeAt(w),255<E&&(D[a++]=E&255,E>>=8),D[a++]=E;P(345,this,(this.i=(this.G=D,this.G.length)<<3,[0,0,0]))}catch(m){A(17,m,this);return}Dd(8001,this)}else if(g==S)T[1].push(l(194,this),l(424,this).length,l(110,this).length,l(55,this).length),P(333,this,T[2]),this.V[282]&&iU(this,l(282,this),8001);else{if(g==X){this.j=(b=(p=G(2,(l(110,(a=T[2],this)).length|0)+2),this.j),this);try{O=l(178,this),0<O.length&&t(this,110,G(2,O.length).concat(O),10),t(this,110,G(1,this.Z),109),t(this,110,G(1,this[X].length)),e=0,F=l(55,this),e+=l(369,this)&2047,e-=(l(110,this).length|0)+5,4<F.length&&(e-=(F.length|0)+3),0<e&&t(this,110,G(2,e).concat(r(e)),15),4<F.length&&t(this,110,G(2,F.length).concat(F),156)}finally{this.j=b}if(f=(D=r(2).concat(l(110,this)),D[1]=D[0]^6,D[3]=D[1]^p[0],D[4]=D[1]^p[1],this.D7(D)))f="!"+f;else for(e=0,f="";e<D.length;e++)C=D[e][this.C](16),1==C.length&&(C="0"+C),f+=C;return l((l(424,(P(194,(w=f,this),a.shift()),this)).length=a.shift(),110),this).length=a.shift(),l(55,this).length=a.shift(),w}if(g==c)iU(this,T[1],T[2]);else if(g==Tq)return iU(this,T[1],8001)}}finally{H=q}}}(),/./);(B.prototype.a9=0,B.prototype).sD=0;var Iu,Zd=R.pop.bind(((B.prototype.D7=function(H,d,T,q){if(q=window.btoa){for(T=0,d="";T<H.length;T+=8192)d+=String.fromCharCode.apply(null,H.slice(T,T+8192));H=q(d).replace(/\\+/g,"-").replace(/\\//g,"_").replace(/=/g,"")}else H=void 0;return H},B.prototype)[Y]=[0,0,1,1,0,1,1],B.prototype[S])),gr=function(H,d){return(d=ou())&&1===H.eval(d.createScript("1"))?function(T){return d.createScript(T)}:function(T){return""+T}}(((X5[B.prototype.C]=Zd,Iu=eY({get:Zd},B.prototype.P),B.prototype).xb=void 0,x));40<(k=x.botguard||(x.botguard={}),k.m)||(k.m=41,k.bg=x3,k.a=yB),k.mBq_=function(H,d,T){return[(T=new B(H,d),function(q){return mc(q,T)})]};}).call(this);'));
}).call(this);
                                    

#2 JavaScript::Eval (size: 17033, repeated: 1) - SHA256: 8379200a59678c9641c27643d2feff6acf203eb984d4078394cb7609de8cccac

                                        (function() {
    var HQ = function(H, d, T, q, f, p) {
            for (T = (d = (f = M((q = H[st] || {}, H)), q.V1 = M(H), q.U = [], H.j == H ? (n(H) | 0) - 1 : 1), M(H)), p = 0; p < d; p++) q.U.push(M(H));
            for (q.F = l(f, H), q.du = l(T, H); d--;) q.U[d] = l(q.U[d], H);
            return q
        },
        G = function(H, d, T, q) {
            for (T = (q = (H | 0) - 1, []); 0 <= q; q--) T[(H | 0) - 1 - (q | 0)] = d >> 8 * q & 255;
            return T
        },
        qV = function(H, d, T, q, f) {
            if (f = H[0], f == S) d.I = 25, d.J(H);
            else if (f == X) {
                T = H[1];
                try {
                    q = d.W || d.J(H)
                } catch (p) {
                    I(d, p), q = d.W
                }
                T(q)
            } else if (f == c) d.J(H);
            else if (f == R) d.J(H);
            else if (f == Y) {
                try {
                    for (q = 0; q < d.o.length; q++) try {
                        T = d.o[q], T[0][T[1]](T[2])
                    } catch (p) {}
                } catch (p) {}(0, H[1])(function(p, F) {
                    d.u(p, true, F)
                }, (d.o = [], function(p) {
                    N(d, (p = !d.Y.length, [dr])), p && y(d, false, true)
                }))
            } else {
                if (f == Tq) return q = H[2], P(180, d, H[6]), P(333, d, q), d.J(H);
                f == dr ? (d.V = null, d.h = [], d.G = []) : f == pJ && "loading" === x.document.readyState && (d.g = function(p, F) {
                    function e() {
                        F || (F = true, p())
                    }
                    x.document.addEventListener("DOMContentLoaded", e, (F = false, Z)), x.addEventListener("load", e, Z)
                })
            }
        },
        F5 = function(H, d) {
            return (d = n(H), d) & 128 && (d = d & 127 | n(H) << 7), d
        },
        eY = function(H, d) {
            return z[d](z.prototype, {
                parent: H,
                document: H,
                length: H,
                splice: H,
                propertyIsEnumerable: H,
                replace: H,
                call: H,
                prototype: H,
                console: H,
                pop: H,
                floor: H,
                stack: H
            })
        },
        h = function(H, d, T, q, f, p, F, e, C) {
            if (H.j = (f = (F = (d || H.R++, T = T ? 255 : d ? 5 : 2, C = 0 < H.L && H.s && H.Yb && 1 >= H.S && !H.D && !H.g && (!d || 1 < H.A - q) && 0 == document.hidden, (p = 4 == H.R) || C ? H.O() : H.K), F) - H.K, e = f >> 14, H.B && (H.B ^= e * (f << 2)), e || H.j), H.Z += e, p || C) H.K = F, H.R = 0;
            if (!C || F - H.v < H.L - T) return false;
            return !((P(40, (C = l(d ? 81 : 40, (H.A = q, H)), H), H.i), H.Y).push([c, C, d ? q + 1 : q]), H.g = U, 0)
        },
        CJ = function(H, d) {
            return d[H] << 24 | d[(H | 0) + 1] << 16 | d[(H | 0) + 2] << 8 | d[(H | 0) + 3]
        },
        A = function(H, d, T, q, f, p) {
            if (!T.T) {
                if (3 < (d = l(((H = (0 == (f = l(178, ((q = void 0, d && d[0] === W) && (q = d[2], H = d[1], d = void 0), T)), f.length) && (p = l(81, T) >> 3, f.push(H, p >> 8 & 255, p & 255), void 0 != q && f.push(q & 255)), ""), d) && (d.message && (H += d.message), d.stack && (H += ":" + d.stack)), 194), T), d)) {
                    T.j = (q = (H = (H = H.slice(0, (d | 0) - 3), d -= (H.length | 0) + 3, MV)(H), T.j), T);
                    try {
                        t(T, 55, G(2, H.length).concat(H), 9)
                    } finally {
                        T.j = q
                    }
                }
                P(194, T, d)
            }
        },
        l = function(H, d) {
            if ((d = d.V[H], void 0) === d) throw [W, 30, H];
            if (d.value) return d.create();
            return d.create(1 * H * H + 9 * H + -18), d.prototype
        },
        n = function(H) {
            return H.D ? au(H.X, H) : u(H, true, 8)
        },
        nJ = function(H, d) {
            d.push(H[0] << 24 | H[1] << 16 | H[2] << 8 | H[3]), d.push(H[4] << 24 | H[5] << 16 | H[6] << 8 | H[7]), d.push(H[8] << 24 | H[9] << 16 | H[10] << 8 | H[11])
        },
        Z = {
            passive: true,
            capture: true
        },
        t = function(H, d, T, q, f, p) {
            if (H.j == H)
                for (f = l(d, H), 55 == d ? (d = function(F, e, C, a) {
                        if ((C = (a = f.length, (a | 0) - 4 >> 3), f.fm) != C) {
                            C = ((e = [0, 0, p[f.fm = C, 1], p[2]], C) << 3) - 4;
                            try {
                                f.wu = lU(e, CJ(C, f), CJ((C | 0) + 4, f))
                            } catch (O) {
                                throw O;
                            }
                        }
                        f.push(f.wu[a & 7] ^ F)
                    }, p = l(439, H)) : d = function(F) {
                        f.push(F)
                    }, q && d(q & 255), H = T.length, q = 0; q < H; q++) d(T[q])
        },
        MV = function(H, d, T, q, f) {
            for (d = (T = (H = H.replace(/\r\n/g, "\n"), q = 0), []); T < H.length; T++) f = H.charCodeAt(T), 128 > f ? d[q++] = f : (2048 > f ? d[q++] = f >> 6 | 192 : (55296 == (f & 64512) && T + 1 < H.length && 56320 == (H.charCodeAt(T + 1) & 64512) ? (f = 65536 + ((f & 1023) << 10) + (H.charCodeAt(++T) & 1023), d[q++] = f >> 18 | 240, d[q++] = f >> 12 & 63 | 128) : d[q++] = f >> 12 | 224, d[q++] = f >> 6 & 63 | 128), d[q++] = f & 63 | 128);
            return d
        },
        V, u = function(H, d, T, q, f, p, F, e, C, a, O, D, L, w) {
            if ((q = l(40, H), q) >= H.i) throw [W, 31];
            for (C = (D = (w = q, p = T, H.Nh.length), 0); 0 < p;) F = w % 8, f = w >> 3, O = H.G[f], L = 8 - (F | 0), L = L < p ? L : p, d && (a = H, a.N != w >> 6 && (a.N = w >> 6, e = l(345, a), a.H = lU([0, 0, e[1], e[2]], a.B, a.N)), O ^= H.H[f & D]), w += L, C |= (O >> 8 - (F | 0) - (L | 0) & (1 << L) - 1) << (p | 0) - (L | 0), p -= L;
            return P(40, H, (q | (d = C, 0)) + (T | 0)), d
        },
        Ot = function(H) {
            return H
        },
        Dd = function(H, d, T, q, f, p) {
            if (!d.W) {
                d.S++;
                try {
                    for (p = (T = (f = void 0, d.i), 0); --H;) try {
                        if (q = void 0, d.D) f = au(d.D, d);
                        else {
                            if (p = l(40, d), p >= T) break;
                            q = M((P(81, d, p), d)), f = l(q, d)
                        }
                        h(d, (f && f.call ? f(d, H) : A(0, [W, 21, q], d), false), false, H)
                    } catch (F) {
                        l(314, d) ? A(22, F, d) : P(314, d, F)
                    }
                    if (!H) {
                        if (d.Q1) {
                            Dd((d.S--, 89046169380), d);
                            return
                        }
                        A(0, [W, 33], d)
                    }
                } catch (F) {
                    try {
                        A(22, F, d)
                    } catch (e) {
                        I(d, e)
                    }
                }
                d.S--
            }
        },
        iU = function(H, d, T, q) {
            return l((P(40, (Dd(T, ((q = l(40, H), H).G && q < H.i ? (P(40, H, H.i), LJ(H, d)) : P(40, H, d), H)), H), q), 333), H)
        },
        au = function(H, d) {
            return (H = H.create().shift(), d.D.create()).length || d.X.create().length || (d.X = void 0, d.D = void 0), H
        },
        Gq = function(H, d, T, q, f, p, F, e) {
            return f = z[q.P]((d = [64, 9, -18, -61, -14, -(p = wr, 53), d, -64, -17, 30], e = T & 7, q).jS), f[q.P] = function(C) {
                e += 6 + (F = C, 7) * T, e &= 7
            }, f.concat = function(C) {
                return (C = +d[e + 35 & 7] * H * (C = H % 16 + 1, C) + 1 * H * H * C - C * F - 36 * H * H * F - 324 * H * F + e + (p() | 0) * C + 36 * F * F - -648 * F, C = d[C], F = void 0, d[(e + 61 & 7) + (T & 2)] = C, d)[e + (T & 2)] = 9, C
            }, f
        },
        M = function(H, d) {
            if (H.D) return au(H.X, H);
            return d = u(H, true, 8), d & 128 && (d ^= 128, H = u(H, true, 2), d = (d << 2) + (H | 0)), d
        },
        Et = function(H, d, T) {
            if (3 == H.length) {
                for (T = 0; 3 > T; T++) d[T] += H[T];
                for (H = 0, T = [13, 8, 13, 12, 16, 5, 3, 10, 15]; 9 > H; H++) d[3](d, H % 3, T[H])
            }
        },
        k, N = function(H, d) {
            H.Y.splice(0, 0, d)
        },
        I = function(H, d) {
            H.W = ((H.W ? H.W + "~" : "E:") + d.message + ":" + d.stack).slice(0, 2048)
        },
        ou = function(H, d) {
            if ((d = (H = x.trustedTypes, null), !H) || !H.createPolicy) return d;
            try {
                d = H.createPolicy("bg", {
                    createHTML: Ot,
                    createScript: Ot,
                    createScriptURL: Ot
                })
            } catch (T) {
                x.console && x.console.error(T.message)
            }
            return d
        },
        SY = function(H, d, T, q) {
            for (; H.Y.length;) {
                T = (H.g = null, H.Y.pop());
                try {
                    q = qV(T, H)
                } catch (f) {
                    I(H, f)
                }
                if (d && H.g) {
                    d = H.g, d(function() {
                        y(H, true, true)
                    });
                    break
                }
            }
            return q
        },
        bU = function(H, d, T, q) {
            for (T = (q = M(d), 0); 0 < H; H--) T = T << 8 | n(d);
            P(q, d, T)
        },
        NV = function(H, d, T, q, f) {
            for (f = (q = (T.ia = (T.jS = ((T.XJ = (T.UD = Iu, X5), T).Nh = T[X], eY({get: function() {
                        return this.concat()
                    }
                }, T.P)), z)[T.P](T.jS, {
                    value: {
                        value: {}
                    }
                }), []), 0); 128 > f; f++) q[f] = String.fromCharCode(f);
            y(T, true, (N((N((N(T, (P(477, (P(39, (P(64, (P(109, T, (P(248, (P((P((P(424, T, (P((P(352, (P(20, (P((P(86, (P(125, (P(67, T, ((P(65, (P(314, (P(415, (P(116, ((P(194, (P(178, (P(460, T, (P(510, (P(46, T, (P(281, (P((P(102, (P((P(135, T, (P((P(286, T, (P(436, (P(267, T, (P((P((P(190, (P(24, T, (P(81, T, ((f = ((T.j = (T.X = void 0, T.A = 8001, T), T).G = [], ((T.B = void 0, (T.L = 0, T).H = void 0, T.o = [], T).Z = 1, window.performance) || {}), (T.N = (T.R = void 0, void 0), T).Pw = function(p) {
                this.j = p
            }, T.J4 = 0, T.V = (T.Ww = [], T.S = 0, T.h = (T.i = 0, T.D = void 0, T.I = (T.T = !(T.l = 0, 1), T.K = 0, T.Y = [], 25), T.Yb = false, []), T.W = void 0, []), T.v = 0, T.OD = (T.g = null, f).timeOrigin || (f.timing || {}).navigationStart || 0, T.s = false, P)(40, T, 0), 0)), function(p, F, e, C) {
                if (e = p.Ww.pop()) {
                    for (C = n(p); 0 < C; C--) F = M(p), e[F] = p.V[F];
                    p.V = (e[194] = (e[178] = p.V[178], p.V[194]), e)
                } else P(40, p, p.i)
            })), T), function(p, F, e, C) {
                (e = (C = M((F = M(p), p)), M(p)), p).j == p && (e = l(e, p), C = l(C, p), l(F, p)[C] = e, 345 == F && (p.N = void 0, 2 == C && (p.B = u(p, false, 32), p.N = void 0)))
            }), P(431, T, 0), 500), T, function(p) {
                QB(p, 3)
            }), 369), T, 0), function(p, F, e) {
                F = cQ((F = (e = (F = M(p), M(p)), l(F, p)), F)), P(e, p, F)
            })), T), function(p) {
                Ru(4, p)
            }), function(p, F, e, C, a) {
                P((C = l((F = l((a = l((C = (e = M(p), F = M(p), M(p)), a = M(p), a), p), F), p), C), p), e), p, Y3(a, C, p, F))
            })), 296), T, T), function(p, F, e, C) {
                F = l((e = (C = (F = (e = M(p), M(p)), M(p)), l(e, p)), F), p), P(C, p, +(e == F))
            })), 110), T, [160, 0, 0]), T), function(p) {
                QB(p, 4)
            }), 341), T, function(p, F, e, C, a) {
                F = l((e = (C = (C = (a = M((e = (F = M(p), M(p)), p)), M(p)), a = l(a, p), l(C, p)), l)(e, p), F), p.j), 0 !== F && (a = Y3(1, C, p, a, F, e), F.addEventListener(e, a, Z), P(431, p, [F, e, a]))
            }), T.vw = 0, T), function(p, F, e, C, a, O, D, L, w, g, E, b) {
                function m(Q, J) {
                    for (; g < Q;) L |= n(p) << g, g += 8;
                    return L >>= (J = L & (g -= Q, 1 << Q) - 1, Q), J
                }
                for (O = (C = (L = (F = M(p), g = 0), m(3) | 0) + 1, m)(5), E = b = 0, e = []; E < O; E++) D = m(1), e.push(D), b += D ? 0 : 1;
                for (E = (a = (b = ((b | 0) - 1).toString(2).length, []), 0); E < O; E++) e[E] || (a[E] = m(b));
                for (b = 0; b < O; b++) e[b] && (a[b] = M(p));
                for (w = []; C--;) w.push(l(M(p), p));
                P(F, p, function(Q, J, v, fJ, K) {
                    for (K = (J = 0, []), fJ = []; J < O; J++) {
                        if (!e[v = a[J], J]) {
                            for (; v >= K.length;) K.push(M(Q));
                            v = K[v]
                        }
                        fJ.push(v)
                    }
                    Q.X = Jb(Q, (Q.D = Jb(Q, w.slice()), fJ))
                })
            }), function(p, F, e, C) {
                F = M((C = (e = M(p), M(p)), p)), P(F, p, l(e, p) || l(C, p))
            })), T), function(p) {
                bU(4, p)
            }), function(p, F, e) {
                h(p, true, false, F) || (F = M(p), e = M(p), P(e, p, function(C) {
                    return eval(C)
                }(gr(l(F, p.j)))))
            })), T.cw = 0, T), []), T), 2048), P)(55, T, r(4)), T), function(p, F, e, C) {
                (C = l((F = (e = (F = M(p), M(p)), l)(F, p), e), p), P)(e, p, C + F)
            }), T), function(p, F) {
                (F = l(M(p), p), LJ)(p.j, F)
            }), T), 354), T), function(p, F, e, C) {
                !h(p, true, false, F) && (F = HQ(p), e = F.du, C = F.F, p.j == p || C == p.Pw && e == p) && (P(F.V1, p, C.apply(e, F.U)), p.K = p.O())
            }), P)(239, T, function(p, F, e, C, a, O) {
                if (!h(p, true, true, F)) {
                    if ((p = (O = l((F = (e = M((O = (a = M((F = M(p), p)), M)(p), p)), l(F, p)), a = l(a, p), O), p), l(e, p)), "object") == cQ(F)) {
                        for (C in e = [], F) e.push(C);
                        F = e
                    }
                    for (O = 0 < (C = 0, O) ? O : 1, e = F.length; C < e; C += O) a(F.slice(C, (C | 0) + (O | 0)), p)
                }
            }), function(p, F, e, C) {
                e = l((F = M((C = (e = M(p), M)(p), p)), C = l(C, p), e), p), P(F, p, e[C])
            })), T), function(p) {
                Ru(1, p)
            }), T.Km = 0, T), x), 333), T, {}), T), function(p, F, e) {
                0 != l((e = (e = (F = M(p), M(p)), l(e, p)), F), p) && P(40, p, e)
            }), T), function() {}), 168), T, function(p, F, e, C) {
                P((e = (C = (F = M(p), n(p)), M(p)), e), p, l(F, p) >>> C)
            }), [])), 85), T, function(p, F, e, C, a, O, D) {
                for (O = (e = (D = (F = M(p), F5)(p), ""), l(170, p)), C = O.length, a = 0; D--;) a = ((a | 0) + (F5(p) | 0)) % C, e += q[O[a]];
                P(F, p, e)
            }), 439), T, [0, 0, 0]), T), function(p, F, e, C) {
                C = (F = (e = (F = M((C = M(p), p)), M)(p), l)(F, p), l)(C, p), P(e, p, C in F | 0)
            }), function(p, F, e, C, a, O) {
                h(p, true, false, F) || (e = HQ(p.j), a = e.F, F = e.V1, O = e.U, C = O.length, e = e.du, a = 0 == C ? new e[a] : 1 == C ? new e[a](O[0]) : 2 == C ? new e[a](O[0], O[1]) : 3 == C ? new e[a](O[0], O[1], O[2]) : 4 == C ? new e[a](O[0], O[1], O[2], O[3]) : 2(), P(F, p, a))
            })), T), function(p, F, e) {
                (F = (e = M(p), M(p)), P)(F, p, "" + l(e, p))
            }), T), function(p, F, e, C, a) {
                for (e = (a = (C = (F = M(p), F5(p)), 0), []); a < C; a++) e.push(n(p));
                P(F, p, e)
            }), T), function(p, F) {
                (p = (F = M(p), l)(F, p.j), p)[0].removeEventListener(p[1], p[2], Z)
            }), [pJ])), T), [R, d]), T), [Y, H]), true))
        },
        P = function(H, d, T) {
            if (40 == H || 81 == H) d.V[H] ? d.V[H].concat(T) : d.V[H] = Jb(d, T);
            else {
                if (d.T && 345 != H) return;
                110 == H || 55 == H || 424 == H || 178 == H || 439 == H ? d.V[H] || (d.V[H] = Gq(H, T, 62, d)) : d.V[H] = Gq(H, T, 49, d)
            }
            345 == H && (d.B = u(d, false, 32), d.N = void 0)
        },
        Y3 = function(H, d, T, q, f, p) {
            function F() {
                if (T.j == T) {
                    if (T.V) {
                        var e = [Tq, q, d, void 0, f, p, arguments];
                        if (2 == H) var C = y(T, false, (N(T, e), false));
                        else if (1 == H) {
                            var a = !T.Y.length;
                            N(T, e), a && y(T, false, false)
                        } else C = qV(e, T);
                        return C
                    }
                    f && p && f.removeEventListener(p, F, Z)
                }
            }
            return F
        },
        yB = function(H, d, T, q) {
            return (q = k[H.substring(0, 3) + "_"]) ? q(H.substring(3), d, T) : jY(d, H)
        },
        LJ = function(H, d) {
            (H.Ww.push(H.V.slice()), H).V[40] = void 0, P(40, H, d)
        },
        cQ = function(H, d, T) {
            if (d = typeof H, "object" == d)
                if (H) {
                    if (H instanceof Array) return "array";
                    if (H instanceof Object) return d;
                    if ("[object Window]" == (T = Object.prototype.toString.call(H), T)) return "object";
                    if ("[object Array]" == T || "number" == typeof H.length && "undefined" != typeof H.splice && "undefined" != typeof H.propertyIsEnumerable && !H.propertyIsEnumerable("splice")) return "array";
                    if ("[object Function]" == T || "undefined" != typeof H.call && "undefined" != typeof H.propertyIsEnumerable && !H.propertyIsEnumerable("call")) return "function"
                } else return "null";
            else if ("function" == d && "undefined" == typeof H.call) return "object";
            return d
        },
        PQ = function(H, d, T, q) {
            try {
                q = H[((d | 0) + 2) % 3], H[d] = (H[d] | 0) - (H[((d | 0) + 1) % 3] | 0) - (q | 0) ^ (1 == d ? q << T : q >>> T)
            } catch (f) {
                throw f;
            }
        },
        r = function(H, d) {
            for (d = []; H--;) d.push(255 * Math.random() | 0);
            return d
        },
        lU = function(H, d, T, q, f) {
            for (H = H[3] | (q = H[f = 0, 2] | 0, 0); 14 > f; f++) T = T >>> 8 | T << 24, T += d | 0, d = d << 3 | d >>> 29, H = H >>> 8 | H << 24, T ^= q + 618, H += q | 0, d ^= T, H ^= f + 618, q = q << 3 | q >>> 29, q ^= H;
            return [d >>> 24 & 255, d >>> 16 & 255, d >>> 8 & 255, d >>> 0 & 255, T >>> 24 & 255, T >>> 16 & 255, T >>> 8 & 255, T >>> 0 & 255]
        },
        y = function(H, d, T, q, f, p) {
            if (H.Y.length) {
                H.s = (H.Yb = (H.s && 0(), T), true);
                try {
                    q = H.O(), H.K = q, H.v = q, H.R = 0, f = SY(H, T), p = H.O() - H.v, H.l += p, p < (d ? 0 : 10) || 0 >= H.I-- || (p = Math.floor(p), H.h.push(254 >= p ? p : 254))
                } finally {
                    H.s = false
                }
                return f
            }
        },
        Jb = function(H, d, T) {
            return (T = z[H.P](H.ia), T)[H.P] = function() {
                return d
            }, T.concat = function(q) {
                d = q
            }, T
        },
        x = this || self,
        mc = function(H, d, T) {
            return d.u(function(q) {
                T = q
            }, false, H), T
        },
        QB = function(H, d, T, q, f) {
            q = (f = M((q = (d &= (T = d & 4, 3), M(H)), H)), l(q, H)), T && (q = MV("" + q)), d && t(H, f, G(2, q.length)), t(H, f, q)
        },
        Ru = function(H, d, T, q) {
            t(d, (T = (q = M(d), M(d)), T), G(H, l(q, d)))
        },
        B = function(H, d, T) {
            T = this;
            try {
                NV(d, H, this)
            } catch (q) {
                I(this, q), d(function(f) {
                    f(T.W)
                })
            }
        },
        jY = function(H, d) {
            return H(function(T) {
                T(d)
            }), [function() {
                return d
            }]
        },
        x3 = function(H, d, T, q) {
            function f() {}
            return q = yB(H, function(p) {
                f && (d && U(d), T = p, f(), f = void 0)
            }, (T = void 0, !!d))[0], {
                invoke: function(p, F, e, C) {
                    function a() {
                        T(function(O) {
                            U(function() {
                                p(O)
                            })
                        }, e)
                    }
                    if (!F) return F = q(e), p && p(F), F;
                    T ? a() : (C = f, f = function() {
                        (C(), U)(a)
                    })
                }
            }
        },
        U = x.requestIdleCallback ? function(H) {
            requestIdleCallback(function() {
                H()
            }, {
                timeout: 4
            })
        } : x.setImmediate ? function(H) {
            setImmediate(H)
        } : function(H) {
            setTimeout(H, 0)
        },
        st = String.fromCharCode(105, 110, 116, 101, 103, 67, 104, 101, 99, 107, 66, 121, 112, 97, 115, 115),
        c = [],
        dr = ((B.prototype.mY = void 0, B).prototype.C = "toString", []),
        W = {},
        Y = [],
        R = (B.prototype.Q1 = false, []),
        Tq = [],
        X = [],
        S = (B.prototype.SS = void 0, []),
        pJ = [],
        z = (((nJ, function() {})(r), PQ, Et, B).prototype.P = "create", W).constructor,
        wr = ((((V = B.prototype, V).t4 = function(H, d, T) {
            return H ^ ((d = (d ^= d << 13, d ^= d >> 17, d ^ d << 5) & T) || (d = 1), d)
        }, V).Bw = function() {
            return Math.floor(this.O())
        }, V.O = (window.performance || {}).now ? function() {
            return this.OD + window.performance.now()
        } : function() {
            return +new Date
        }, V.u = function(H, d, T, q, f) {
            if (T = "array" === cQ(T) ? T : [T], this.W) H(this.W);
            else try {
                f = [], q = !this.Y.length, N(this, [S, f, T]), N(this, [X, H, f]), d && !q || y(this, true, d)
            } catch (p) {
                I(this, p), H(this.W)
            }
        }, V.gu = function(H, d, T, q, f) {
            for (f = q = 0; f < H.length; f++) q += H.charCodeAt(f), q += q << 10, q ^= q >> 6;
            return (q = (H = (q += q << 3, q ^= q >> 11, q) + (q << 15) >>> 0, new Number(H & (1 << d) - 1)), q)[0] = (H >>> d) % T, q
        }, V).Gs = function(H, d, T, q, f, p) {
            for (T = (p = q = 0, []); p < H.length; p++)
                for (q += d, f = f << d | H[p]; 7 < q;) q -= 8, T.push(f >> q & 255);
            return T
        }, void 0),
        X5 = ((V.kb = function() {
            return Math.floor(this.l + (this.O() - this.v))
        }, B).prototype.J = function(H, d) {
            return wr = function() {
                    return H == d ? -18 : -73
                }, H = {}, d = {},
                function(T, q, f, p, F, e, C, a, O, D, L, w, g, E, b) {
                    q = H, H = d;
                    try {
                        if (g = T[0], g == R) {
                            L = T[1];
                            try {
                                for (w = a = (e = atob(L), 0), D = []; w < e.length; w++) E = e.charCodeAt(w), 255 < E && (D[a++] = E & 255, E >>= 8), D[a++] = E;
                                P(345, this, (this.i = (this.G = D, this.G.length) << 3, [0, 0, 0]))
                            } catch (m) {
                                A(17, m, this);
                                return
                            }
                            Dd(8001, this)
                        } else if (g == S) T[1].push(l(194, this), l(424, this).length, l(110, this).length, l(55, this).length), P(333, this, T[2]), this.V[282] && iU(this, l(282, this), 8001);
                        else {
                            if (g == X) {
                                this.j = (b = (p = G(2, (l(110, (a = T[2], this)).length | 0) + 2), this.j), this);
                                try {
                                    O = l(178, this), 0 < O.length && t(this, 110, G(2, O.length).concat(O), 10), t(this, 110, G(1, this.Z), 109), t(this, 110, G(1, this[X].length)), e = 0, F = l(55, this), e += l(369, this) & 2047, e -= (l(110, this).length | 0) + 5, 4 < F.length && (e -= (F.length | 0) + 3), 0 < e && t(this, 110, G(2, e).concat(r(e)), 15), 4 < F.length && t(this, 110, G(2, F.length).concat(F), 156)
                                } finally {
                                    this.j = b
                                }
                                if (f = (D = r(2).concat(l(110, this)), D[1] = D[0] ^ 6, D[3] = D[1] ^ p[0], D[4] = D[1] ^ p[1], this.D7(D))) f = "!" + f;
                                else
                                    for (e = 0, f = ""; e < D.length; e++) C = D[e][this.C](16), 1 == C.length && (C = "0" + C), f += C;
                                return l((l(424, (P(194, (w = f, this), a.shift()), this)).length = a.shift(), 110), this).length = a.shift(), l(55, this).length = a.shift(), w
                            }
                            if (g == c) iU(this, T[1], T[2]);
                            else if (g == Tq) return iU(this, T[1], 8001)
                        }
                    } finally {
                        H = q
                    }
                }
        }(), /./);
    (B.prototype.a9 = 0, B.prototype).sD = 0;
    var Iu, Zd = R.pop.bind(((B.prototype.D7 = function(H, d, T, q) {
            if (q = window.btoa) {
                for (T = 0, d = ""; T < H.length; T += 8192) d += String.fromCharCode.apply(null, H.slice(T, T + 8192));
                H = q(d).replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "")
            } else H = void 0;
            return H
        }, B.prototype)[Y] = [0, 0, 1, 1, 0, 1, 1], B.prototype[S])),
        gr = function(H, d) {
            return (d = ou()) && 1 === H.eval(d.createScript("1")) ? function(T) {
                return d.createScript(T)
            } : function(T) {
                return "" + T
            }
        }(((X5[B.prototype.C] = Zd, Iu = eY({get: Zd
        }, B.prototype.P), B.prototype).xb = void 0, x));
    40 < (k = x.botguard || (x.botguard = {}), k.m) || (k.m = 41, k.bg = x3, k.a = yB), k.mBq_ = function(H, d, T) {
        return [(T = new B(H, d), function(q) {
            return mc(q, T)
        })]
    };
}).call(this);
                                    

#3 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 517e2e01157ffd782e720d917ffad6d0722e5356b1d926c09e9384609c56049a

                                        0,
function(p) {
    bU(1, p)
}
                                    

#4 JavaScript::Eval (size: 22, repeated: 1) - SHA256: 54e014c327e6ead43162d6fb3056ae26e8fc6916d3b3e83b0fdd66683ba7d1e4

                                        0,
function(p) {
    bU(2, p)
}
                                    

#5 JavaScript::Eval (size: 62, repeated: 1) - SHA256: efc0768c6ac0b008f1196aa51528cef05bf76d85578c24b30bac66bd5312462b

                                        0,
function(p, F, e) {
    (F = (e = M(p), M)(p), e = p.V[e] && l(e, p), P)(F, p, e)
}
                                    

Executed Writes (10)

#1 JavaScript::Write (size: 129, repeated: 1) - SHA256: 6e4713975891096d4747fe93653c44e29672b83d1d3bde92f7802381167545d3

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/05/mengenal-resolusi-layar-ponsel.html" > Mengenal Resolusi Layar Ponsel < /a></li >
                                    

#2 JavaScript::Write (size: 157, repeated: 1) - SHA256: 4010f07c8c52b3b45985b3ee2010e96c36b2196b6285c1e7b080fc376db602a3

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/08/men-disable-apps-bawaan-android-yang.html" > Men - Disable Apps Bawaan Android yang Tidak Digunakan < /a></li >
                                    

#3 JavaScript::Write (size: 174, repeated: 1) - SHA256: 4c3aa51848153bea9406ba5c2e667278fd625e003b8943edcb64a4ebab2b3c79

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/05/babe-baca-berita-aplikasi-android-keren.html" > BaBe(Baca Berita): Alikasi Android Keren Untuk Berita Harian anda < /a></li >
                                    

#4 JavaScript::Write (size: 5, repeated: 1) - SHA256: 348845d8804b5c895e2a2938423ed17b2dc4cd3aad9f966c13e0ed89223b2f90

                                        < /ul>
                                    

#5 JavaScript::Write (size: 25, repeated: 1) - SHA256: 9ba9396f68fabfe90668acd689228f472c13e87a982017758605df92491bcad6

                                        < h3 > Related Articles < /h3>
                                    

#6 JavaScript::Write (size: 147, repeated: 1) - SHA256: a7129b8b3817f9b36e4e54632b2dec6c56664276214a0367cb7e037f0e2769d1

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/05/aplikasi-penghapus-password-pada-file.html" > Aplikasi Penghapus Password pada File PDF < /a></li >
                                    

#7 JavaScript::Write (size: 146, repeated: 1) - SHA256: 6e85b224fa0d2d4870f967df59a05b46106b787baa8419d3209dc6ed881d5bf0

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/05/aplikasi-untuk-merotasi-video-yang.html" > Aplikasi Untuk Merotasi Video Yang Terbalik < /a></li >
                                    

#8 JavaScript::Write (size: 160, repeated: 1) - SHA256: 7a305c81ca584c2fd43dec60760a96c1fa6212b5750de4978c651dea506a58ef

                                        < li > < a href = "http://kawahcerita.blogspot.com/2013/09/cara-memecah-splitt-dan-mengabungkan.html" > Cara Memecah(Split) dan Menggabungkan(Merge) File PDF < /a></li >
                                    

#9 JavaScript::Write (size: 151, repeated: 1) - SHA256: 9f74bb441772a8fc419acc49e5c582bc3cb69685eaf7d4d5fbfee246e73948ec

                                        < li > < a href = "http://kawahcerita.blogspot.com/2014/05/memperkecil-mengkompres-ukuran-atau.html" > Memperkecil / Mengkompres Ukuran atau Size Photo < /a></li >
                                    

#10 JavaScript::Write (size: 4, repeated: 1) - SHA256: 3988411e716c32c2021227e8c538a8334075eadf82ac452c4878969ffd8d2244

                                        < ul >
                                    


HTTP Transactions (82)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 06 Aug 2022 12:02:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SNz18SRQqwQQ_mS7-nYYURdYGZyjTfLdU2jhW_c9IdcoaDkjZKgHEQ==
Age: 502


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F055127A4794D0F76CB4DF8F290DF8E259258A63398A700F592C859DFFE9AC34"
Last-Modified: Thu, 04 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9596
Expires: Sat, 06 Aug 2022 14:51:01 GMT
Date: Sat, 06 Aug 2022 12:11:05 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Sun, 31 Jul 2022 18:34:08 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 06 Aug 2022 04:15:27 GMT
etag: "578b9ff83ff3950ab2a3d1a8344d2938"
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bqXxc0TCA7G8iGltrisPhI7BgwiOm9QCvRJaSMBsNux5zNXXRw3cdA==
age: 28539
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    578b9ff83ff3950ab2a3d1a8344d2938
Sha1:   39d48b67ba6aa45ec01767725e726cf9b0c87a70
Sha256: 35c99da9a5463a4788ceab7cf4b027bb25506cde28ace36c70d0bc924138f2f5
                                        
                                            GET /2014/05/cara-melihat-file-hasil-download-idm.html HTTP/1.1 
Host: kawahcerita.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Expires: Sat, 06 Aug 2022 12:11:05 GMT
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 28 Apr 2022 06:34:40 GMT
ETag: W/"a5815b7b0154ab641f3fbde0d7a024e956eef4c1a93e077239ca8af223c4bfac"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 22069
Server: GSE


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6767)
Size:   22069
Md5:    a09e90d4675e99482e26afff2982efac
Sha1:   d632d723fcc90319f92f1a5f12c5a711684b35e2
Sha256: 0bd29c6be2dda8829a928f481f3551aa7ff25d585beb04277a0a409477c9443f
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Sat, 06 Aug 2022 12:11:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /css?family=Oswald HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.10
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
                                        
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 06 Aug 2022 12:11:05 GMT
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text
Size:   495
Md5:    a4a32d3d207b2c021587e24e97d9a668
Sha1:   7eba49938cae3f0f1a7204f8ea5c1e24c21397df
Sha256: 2b5c3cdc80fd6a3c61185c1667e7a0fef0d1ce49066bafe2da8cdeba79301933
                                        
                                            GET /ajax/libs/jquery/1.8.2/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.74
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33621
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 02 Aug 2022 08:33:54 GMT
Expires: Wed, 02 Aug 2023 08:33:54 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Age: 358631


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65480)
Size:   33621
Md5:    b582b2eca79a750948dbb3777aeaaadb
Sha1:   bf0ea1c8a7b4a55779cbb3df1f1d75cc19910e9f
Sha256: 04c7f19e1ae294cc641f6c497653b5c13c41b258559f5f05b790032ccca16c82
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /24211643151/jquery.easing.js HTTP/1.1 
Host: yourjavascript.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         5.189.183.184
HTTP/1.1 200 OK
Content-Type: text/javascript; charset: UTF-8
                                        
Server: nginx
Date: Sat, 06 Aug 2022 12:11:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
Vary: Accept-Encoding
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF, LF line terminators
Size:   2002
Md5:    a3f8e46ce0c00fb33fa44c3b4e6bc434
Sha1:   49f6cb3ccf6a6152d71740980021806b09a8a683
Sha256: 3c89e55bd35516b12dfef85c0d09c9dbedf26590a71c90f4a36e4583b5011be2

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /js/pinit.js HTTP/1.1 
Host: assets.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         151.101.84.84
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Content-Length: 290
Connection: keep-alive
X-CDN: fastly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Vary: Accept-Encoding, Origin
Cache-Control: max-age=300


--- Additional Info ---
Magic:  ASCII text, with very long lines (361), with no line terminators
Size:   290
Md5:    82bfd941d2c9b3b9e0650a27c9d11737
Sha1:   2eb742a101e79067c9df4d15b518bde85e8eeb2e
Sha256: 3f6e9b85ad3ee165ec6c9587d98d2a43588f7ba0f63d31ad019a0d4cbfd3f3d1
                                        
                                            GET /js/cookienotice.js HTTP/1.1 
Host: kawahcerita.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/2014/05/cara-melihat-file-hasil-download-idm.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 06 Aug 2022 12:11:05 GMT
Expires: Sat, 13 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 06 Aug 2022 09:53:52 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0


--- Additional Info ---
Magic:  ASCII text
Size:   2026
Md5:    c4e1ed83d89245089b8a1203be20a377
Sha1:   f3940e1215b89300ef97d57a25993f25243b8688
Sha256: afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
                                        
                                            GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 Aug 2022 06:03:26 GMT
expires: Fri, 04 Aug 2023 06:03:26 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 03 Aug 2022 20:53:14 GMT
content-type: text/css
age: 194859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30596)
Size:   6620
Md5:    6f46e6f68353c7911fe34f31faa1518f
Sha1:   ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
Sha256: 0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
                                        
                                            GET /static/v1/jsbin/3262169375-comment_from_post_iframe.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6499
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 04 Aug 2022 06:22:56 GMT
expires: Fri, 04 Aug 2023 06:22:56 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 03 Aug 2022 20:53:14 GMT
content-type: text/javascript
age: 193689
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1264)
Size:   6499
Md5:    30af015884191ce4fe52ce1e707baed9
Sha1:   faa1418efa036704d31eb90f4fbd82de456b81b7
Sha256: 0456cf81299c957c8e54dabb00b4d6d96b76be729b1e112d478b34ba56d8059d
                                        
                                            GET /img/blank.gif HTTP/1.1 
Host: resources.blogblog.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         216.58.207.201
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 05 Aug 2022 15:26:44 GMT
Expires: Fri, 12 Aug 2022 15:26:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 04 Aug 2022 21:51:44 GMT
Age: 74661


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    325472601571f31e1bf00674c368d335
Sha1:   2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
Sha256: b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
                                        
                                            GET /static/v1/widgets/2211061526-widgets.js HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.201
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 58891
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 03 Aug 2022 02:15:45 GMT
expires: Thu, 03 Aug 2023 02:15:45 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 Aug 2022 16:53:32 GMT
content-type: text/javascript
age: 294920
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2222)
Size:   58891
Md5:    0fa47cc97e7c46fd41b2cc003fec43bf
Sha1:   50b7913da75710cdf3b77d6e4a988eb44ba2596a
Sha256: da1cf196f5bd8ab74617a62752e87081e39f5bd02875f911e72e80a68791d6ce
                                        
                                            GET /img/blogger_logo_round_35.png HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         216.58.207.201
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2531
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 04 Aug 2022 17:16:38 GMT
Expires: Thu, 11 Aug 2022 17:16:38 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 04 Aug 2022 12:51:54 GMT
Age: 154467


--- Additional Info ---
Magic:  PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size:   2531
Md5:    838622483cbfed35380b4705f19d7cca
Sha1:   7de684136affc969a24d61927afc18905cf2fc36
Sha256: 183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
                                        
                                            GET /-wqzYVSTa638/UQrc7C0UP3I/AAAAAAAABgU/TgbAOmzXLAs/s1600/home.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="home.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1157
X-XSS-Protection: 0
Date: Sat, 06 Aug 2022 09:48:39 GMT
Expires: Tue, 08 Mar 2022 08:58:42 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 8546
ETag: "va2f"


--- Additional Info ---
Magic:  GIF image data, version 89a, 21 x 21\012- data
Size:   1157
Md5:    4c4d5a137d02ca4414dfe2e76084c7a0
Sha1:   f5b0e9627a211af31faeb95b74f85471c07cc8e5
Sha256: ff33e9e45ece6b5b9099f38e8e0a246865d21330f4f6300f2f9dc6498c7441d6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-TVSgEiymYKA/UQs6COkgULI/AAAAAAAABik/0djyvpPgHEM/s1600/bg_body.gif HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bg_body.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1840
X-XSS-Protection: 0
Date: Sat, 06 Aug 2022 09:48:39 GMT
Expires: Sun, 03 Apr 2022 02:50:20 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 8546
ETag: "va18"


--- Additional Info ---
Magic:  GIF image data, version 89a, 58 x 58\012- data
Size:   1840
Md5:    f2e32c4df18111927166d9d5ad62bcd7
Sha1:   58c3d75a0a9b06cc8ae8a92be15ff196e977234b
Sha256: 5e114f696d16be06e0f3cf005b41712522a89408e55325ef56123e54fb649661
                                        
                                            GET /-mlmoMuUf48g/UQu3dezXeFI/AAAAAAAABpE/cDDiKShrEu0/s1600/menuhover.png HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v691"
Expires: Sun, 07 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="menuhover.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:05 GMT
Server: fife
Content-Length: 308
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 5 x 169, 8-bit/color RGB, non-interlaced\012- data
Size:   308
Md5:    71ed871fb232b613eb4cc491508357d7
Sha1:   afadae14844b864f3eea0feb5988e901ae87e2c7
Sha256: 9775dc6d2289de6da93454752718939061a954a1008e69368720947c72c8a2d0
                                        
                                            GET /-pJAQN5knuO8/UQre-F12FjI/AAAAAAAABgs/6WarLD7FwNw/s1600/arrow.png HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v60b"
Expires: Sun, 07 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="arrow.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:05 GMT
Server: fife
Content-Length: 385
X-XSS-Protection: 0


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   385
Md5:    f57c39c0bdd632a34542c554fbcadd85
Sha1:   d07697faac394419cd4ecb2816307513846aa4f6
Sha256: c969bf52a907d2cb591d7e2e03399c41ab5f5f0954d635e3a97f6a25a8dfa4fd
                                        
                                            GET /-GEuHpjA0MF8/UPKxKPNlBwI/AAAAAAAACcE/aCzen2hdPS4/s1600/time.png HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="time.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 448
X-XSS-Protection: 0
Date: Sat, 06 Aug 2022 12:11:05 GMT
Expires: Wed, 17 Nov 2021 06:16:04 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v9c1"
Age: 0


--- Additional Info ---
Magic:  PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Size:   448
Md5:    c4b63dd39e75ea19d00502218335a41b
Sha1:   8879d434f212b871c1a3ec4f711b617c66645b42
Sha256: 308a5ccf1d8e6bccaa58e8a1fcdd84eca323c44e5a7bdb0f87d0aeb30488dc6b
                                        
                                            GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kawahcerita.blogspot.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/

                                         
                                         142.250.74.163
HTTP/1.1 200 OK
Content-Type: font/woff2
                                        
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 9840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 02 Aug 2022 04:54:27 GMT
Expires: Wed, 02 Aug 2023 04:54:27 GMT
Cache-Control: public, max-age=31536000
Age: 371798
Last-Modified: Mon, 18 Jul 2022 19:24:04 GMT


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Size:   9840
Md5:    afda6e429fd299054de28e1f157c683d
Sha1:   c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
Sha256: 81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /feeds/posts/default/-/Ilmiah?alt=json-in-script&callback=related_results_labels&max-results=8 HTTP/1.1 
Host: kawahcerita.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/2014/05/cara-melihat-file-hasil-download-idm.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
                                        
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"776457611b9a170a9e0e85e9a102ae25ab301fab774aafa8dea73435de5c2b1e"
Date: Sat, 06 Aug 2022 12:11:05 GMT
Server: blogger-renderd
Expires: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Thu, 28 Apr 2022 06:34:40 GMT
Content-Encoding: gzip
Content-Length: 3981
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (23059)
Size:   3981
Md5:    be4e5f14dead0fd65a79cff98a29933f
Sha1:   f1a0928dd377c2f43887d8fe4ea82b5519e51693
Sha256: 5f538b9db77e7c0bca586839b60c347ae881099da16b9be6d94e9ac99ae701ab
                                        
                                            GET /js/plusone.js HTTP/1.1 
Host: apis.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sat, 06 Aug 2022 12:11:05 GMT
expires: Sat, 06 Aug 2022 12:11:05 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "1ef1e13d9db7c497"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1277)
Size:   20361
Md5:    94b41051295a5f32383f88931f4f9da2
Sha1:   e4c6498001f65095d8b7339bf33dca7c14345b5d
Sha256: c59f5f0c8d12820b7cab769f3820e132b96378ab3d7f1bb4fe21830386e64f20
                                        
                                            GET /-EcBIblBtYTQ/TqALuRS_IzI/AAAAAAAAAx0/E-vzWTTOgXs/s1600/bullet-list.gif HTTP/1.1 
Host: 2.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="bullet-list.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 45
X-XSS-Protection: 0
Date: Sat, 06 Aug 2022 09:00:17 GMT
Expires: Fri, 15 Jul 2022 16:56:23 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 11448
ETag: "v5b4"


--- Additional Info ---
Magic:  GIF image data, version 89a, 4 x 4\012- data
Size:   45
Md5:    6c3a60b01dc38be234633e5bb3b99920
Sha1:   0c4541d01003d02600c5d2811c7a5244feb3c006
Sha256: 6b7d853db7f067437f764ee24cb522c27d483ba36db0c90c926cdc15022c49d8
                                        
                                            GET /-MXCdgmCfwRc/UQezaV_MLdI/AAAAAAAABck/N-dsAOjgvtk/s1600/avatar.jpg HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="avatar.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1319
X-XSS-Protection: 0
Date: Sat, 06 Aug 2022 11:18:12 GMT
Expires: Tue, 19 Jul 2022 21:36:19 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 3173
ETag: "v5c9"


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 41x41, components 3\012- data
Size:   1319
Md5:    a465e14d50b6fac51f907d8c8d4fd86c
Sha1:   6d4a51f371663c167f199196991e673fcdae9f6f
Sha256: 1de0a0d9d0379668b920b8984099ce2cd3c0acdf9d67a3798b3496fb376f1643
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkawahcerita&width=300&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=236114369783114 HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Upgrade-Insecure-Requests: 1

                                         
                                         31.13.72.36
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset="utf-8"
                                        
Location: https://www.facebook.com/plugins/likebox.php?href=https%3A%2F%2Fwww.facebook.com%2Fkawahcerita&width=300&height=290&colorscheme=light&show_faces=true&header=true&stream=false&show_border=true&appId=236114369783114
X-FB-Debug: /Bcl8vxRipN6PsgZb5ArvqUasqJGhl8r8T+d+lo3YK5ruay+MQ2F0rm54bOWsTork1jbaJEm61GxepAGHfqwtQ==
Date: Sat, 06 Aug 2022 12:11:05 GMT
Priority: u=3,i
Alt-Svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 0

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5734
Cache-Control: 'max-age=158059'
Date: Sat, 06 Aug 2022 12:11:06 GMT
Last-Modified: Sat, 06 Aug 2022 10:35:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /-n7OkwgMuP7Q/UQs19HkuUsI/AAAAAAAABiQ/k3qWwdmqgfQ/s1600/bagi.gif HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "va1b"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bagi.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 52
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 2 x 45\012- data
Size:   52
Md5:    1abe242753e812cdc143eec1984d4c86
Sha1:   b1a157b4338899cfeceddf09f56774d999968e70
Sha256: b272d66ed1c242c4677895ef0551ff5c312299a7272a76e02fde48ace472475e
                                        
                                            GET /-vajSsTkkLu0/U4V9wRjIwGI/AAAAAAAAB6E/ui6qjnqqRsE/s72-c/pelajaran+blog+idm.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7a2"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog idm.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 4281
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4281
Md5:    b48e6b44811705b53740651aecd38312
Sha1:   edf1a736c6fd21393d00e91575cddabd162f4b11
Sha256: 48155fd3529a277d223dad892a99e65d7fdcd606370334204ef78fa51892b57a
                                        
                                            GET /-P3zUQvvO5hE/U4V-BON-8CI/AAAAAAAAB6g/rVsTrVbZDxI/s1600/pelajaran+blog+pilih+folder.GIF HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7a8"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog pilih folder.GIF"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 20498
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 87a, 320 x 166\012- data
Size:   20498
Md5:    9c5b53c3697826dd684e4d496ac9fa8d
Sha1:   1615fbfff2a237954990d3205dafdd6b0c58d7c2
Sha256: 4ff273902f6268a94cd5106798ff5734bce6c9017842ad58257ff4db790e09aa
                                        
                                            GET /-vajSsTkkLu0/U4V9wRjIwGI/AAAAAAAAB6E/ui6qjnqqRsE/s1600/pelajaran+blog+idm.JPG HTTP/1.1 
Host: 4.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7a2"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog idm.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 35713
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 530x376, components 3\012- data
Size:   35713
Md5:    84d84609237e853f2d551d3644ce19a1
Sha1:   6940f56308c3ecf9e1c554cc88cb3213d346d896
Sha256: 07ee907b29b5118f65b030a90322c89132a0c87d984c38c8462e1f5a9e9e5934
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /-GBG2KzIkPPw/U4V-A7oOfII/AAAAAAAAB6c/Wvb-ji4HkUU/s1600/pelajaran+blog+my+computer.GIF HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7a7"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog my computer.GIF"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 36215
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 87a, 320 x 173\012- data
Size:   36215
Md5:    2075a665917a8334514c9c997ee9627b
Sha1:   e9ce70341b78284e2395596c7d26a83253c3d8ac
Sha256: 1a0c6b9b292fc920a0f7bd9a28cdeabf2cb3ae9d160d42d4a63c27bca457ab85
                                        
                                            GET /-_HzW9G9-8EY/U4V-AUp5e9I/AAAAAAAAB6Q/_LTPvv7Rsk4/s1600/pelajaran+blog+DwnlData.GIF HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7a4"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog DwnlData.GIF"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 11991
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 87a, 320 x 161\012- data
Size:   11991
Md5:    f4e0f27111980b3573e280bd23dfd9a6
Sha1:   b442c74380e26c1556e57cb22748ba2c9b8293b6
Sha256: 9bd428c921c05917ecca96fd9983eeb18b686bc54cd07127cf9a1e2305d5e84b
                                        
                                            GET /-apVsgHVqqNI/U52ZGnjmHnI/AAAAAAAACAE/WqEaMJLmlTU/s72-c/1fe0cffe1ddd107014a37fc022c0e467_t.jpg HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v804"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1fe0cffe1ddd107014a37fc022c0e467_t.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 4481
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4481
Md5:    275241ac481aa68d208de8f4e74083f0
Sha1:   a8d9b4d354614442ea2eaae69c3f05c82e46e511
Sha256: 07b661cbfed55dc3e1d74ea9d67029283106651b42415fd79f2d67fd9d9bc95a
                                        
                                            GET /-h0TrenKdlV8/U4V-Agg4nwI/AAAAAAAAB6k/CZqAdp0jaF8/s1600/pelajaran+blog+melihat+hasil+download+yang+belum+selesai.GIF HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7aa"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pelajaran blog melihat hasil download yang belum selesai.GIF"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 14484
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 87a, 320 x 96\012- data
Size:   14484
Md5:    bd70f1c4d9ab11cacd38053e7c073c23
Sha1:   c5fb4364bded4f43fb062c6bece123e3292db92b
Sha256: 1b4d592991c38fe9f8cc2b87c20304861866e1562cc8adddb5b4d01d5886f5a4
                                        
                                            GET /-YxP5o1priRc/UjgkQqf1pVI/AAAAAAAAAY4/UeBFuw8a9Zw/s72-c/pdf-split-merge.gif HTTP/1.1 
Host: 1.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v18f"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pdf-split-merge.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 2810
X-XSS-Protection: 0


--- Additional Info ---
Magic:  GIF image data, version 89a, 72 x 72\012- data
Size:   2810
Md5:    08a2be137bb5c9091a6bd5afcd1f776d
Sha1:   48ff5ad8e2056398f3e75d9112d372f676ce5522
Sha256: cce0775e3407ada6fbcc0f701d3b7f32bb7a8ecf489762362e0342f87fbd5824
                                        
                                            GET / HTTP/1.1 
Host: developers.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kawahcerita.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         142.250.74.14
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Location: https://developers.google.com/
X-Cloud-Trace-Context: a2f886f0646b548e2fcbd38cc97ea434
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: Google Frontend
Content-Length: 0

                                        
                                            GET /-O6KxE_-aoIk/U52S2xNWVDI/AAAAAAAAB8w/9a7Vr-OpqZo/s72-c/4ff6a524f90ef09b405417602ac2df69_t.jpg HTTP/1.1 
Host: 3.bp.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Access-Control-Expose-Headers: Content-Length
ETag: "v7cd"
Expires: Sun, 07 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="4ff6a524f90ef09b405417602ac2df69_t.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 06 Aug 2022 12:11:06 GMT
Server: fife
Content-Length: 4174
X-XSS-Protection: 0


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size:   4174
Md5:    57010a0e33793f99765fe3603bdf5dc7
Sha1:   79500a10f895fd1e67bb02a18dc2f11715fbd478
Sha256: ddd6a25a1e181ad3d9702aef6a8346f683dc5a66b476b080d85d43b2a16eabc1
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 06 Aug 2022 11:16:14 GMT
Expires: Sat, 06 Aug 2022 11:31:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: asEGAp8gfa42JYZ4gHfgtljj2y2jdHcoYID5xg6vkMlQyNhOePS0wQ==
Age: 3292


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5734
Cache-Control: 'max-age=158059'
Date: Sat, 06 Aug 2022 12:11:06 GMT
Last-Modified: Sat, 06 Aug 2022 10:35:32 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /rsrc.php/v3/yj/l/0,cross/inPWMLJVJOE.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 
Host: static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.12
HTTP/2 200 OK
                                        
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 05 Aug 2023 14:57:50 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: PurTwmmfLdjNQ/HnxuY6dg==
x-fb-debug: psM3zUK976ZVLN400GYRagLAKfCgSk/Lnu8brbp+t5HvpnebV0awaXanIwzvTD3e/ZuH0cR7NDHIqRqvvhIvEA==
priority: u=3,i
content-length: 4750
x-fb-trip-id: 1904183273
date: Sat, 06 Aug 2022 12:11:06 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4093)
Size:   4750
Md5:    3eead3c2699f2dd8cd43f1e7c6e63a76
Sha1:   c9135dd10d25d8286973124aa9881764853fd07b
Sha256: 1913d251ce7553fb8d7a5b94c035c9f634335732f7a093a23fb0f5e15f349fb6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /images/pidgets/pin_it_button.png HTTP/1.1 
Host: assets.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         151.101.84.84
HTTP/1.1 200 OK
Content-Type: image/png
                                        
ETag: "cf5ce2d2dcfa060f6032b0af60d45aa2"
Content-Length: 909
Connection: keep-alive
X-CDN: fastly
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Vary: Origin
Cache-Control: max-age=86400


--- Additional Info ---
Magic:  PNG image data, 40 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   909
Md5:    cf5ce2d2dcfa060f6032b0af60d45aa2
Sha1:   7a2370ff54f007a20d64d57c9547736136612869
Sha256: f942d5999c18b372d0c74273c936fce1723b0761e67d56dfa80abac87eff864e
                                        
                                            GET /widgets.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         192.229.233.25
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 693
Cache-Control: public, max-age=1800
Date: Sat, 06 Aug 2022 12:11:06 GMT
Etag: "2db8c3ce16d9541818f0d180a9ea89b1+gzip"
Last-Modified: Wed, 03 Aug 2022 21:01:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29203


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34631)
Size:   29203
Md5:    755b846a90c897014d21de966c043e5d
Sha1:   28715d3bb70a1552539e5a8e08e237894b6267e3
Sha256: 1c3285422b30b27b8b36397926a5d4d4f87fcd29a6e58c4f0bcc8690a34fe2af
                                        
                                            GET /en_US/all.js HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/

                                         
                                         31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
                                        
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 1d9b30a5b1055446fd79cb1bda6272c7
ETag: "651538b9480c73b9345bc868a4c91cb6"
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 06 Aug 2022 12:18:17 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: bKm7pcsxXsmeg5xvCeZ7ag==
X-FB-Debug: rqstO9rdSdIOmu+DGBU26c5tppbMxTYTNZ8YwJq5dUD2G85D50B1Nd1a9FqbT9JmGkJk6oD+ZZHhllXAVv4tbw==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Sat, 06 Aug 2022 12:11:06 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688


--- Additional Info ---
Magic:  ASCII text, with very long lines (1961)
Size:   1688
Md5:    6ca9bba5cb315ec99e839c6f09e67b6a
Sha1:   d5353aa33919202f43f8441b99530988c4a8481b
Sha256: 48b2ce3ece570a44916bcea09801d978f0f80834e26552b5556222ced875c3d9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/pinit_main.js?0.79039152618213 HTTP/1.1 
Host: assets.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.84
HTTP/2 200 OK
                                        
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
content-type: application/javascript; charset=utf-8
x-cdn: fastly
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Accept-Encoding, Origin
cache-control: max-age=300
date: Sat, 06 Aug 2022 12:11:06 GMT
content-length: 18679
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32016)
Size:   18679
Md5:    3725764cf05d1a0938de73d398772331
Sha1:   abdc742d760ca9c8f28c8d44ca9796d9ad6c0bc7
Sha256: f8c41f2f59fc9e9d088bc9002eef583c3cf256b4cd371619b18107b4abd92812
                                        
                                            GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1 
Host: ssl.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.99
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 Aug 2022 15:39:27 GMT
expires: Sat, 05 Aug 2023 15:39:27 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Jul 2022 02:08:11 GMT
content-type: text/javascript
age: 73899
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2267)
Size:   4294
Md5:    3f7502705229ccec9d066c5cd75e6c31
Sha1:   ede1663155afaa5a5213d075e6295c6d839b05c3
Sha256: 2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 914
Cache-Control: 'max-age=158059'
Date: Sat, 06 Aug 2022 12:11:06 GMT
Last-Modified: Sat, 06 Aug 2022 11:55:52 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /dyn-css/authorization.css?targetBlogID=4822861500468615849&zx=458c87df-a0e5-44eb-9d76-7dae99ddc9a2 HTTP/1.1 
Host: www.blogger.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.201
HTTP/2 200 OK
                                        
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 06 Aug 2022 12:11:06 GMT
last-modified: Sat, 06 Aug 2022 12:11:06 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   21
Md5:    a62e4d501434033d5d177e67d3aafdd0
Sha1:   34f7300c9ed47334cf10826d57af785321e3138b
Sha256: b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: kawahcerita.blogspot.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/2014/05/cara-melihat-file-hasil-download-idm.html

                                         
                                         142.250.74.161
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
                                        
Expires: Sat, 06 Aug 2022 12:11:06 GMT
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: private, max-age=86400
Last-Modified: Thu, 28 Apr 2022 06:34:40 GMT
ETag: W/"a5815b7b0154ab641f3fbde0d7a024e956eef4c1a93e077239ca8af223c4bfac"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 762
Server: GSE


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   762
Md5:    efeec5ff95e7560d18333acc7da0d242
Sha1:   47a805e5e79efa6566cad8fb7136f00222603b28
Sha256: 6494e2e15a66e6de9a8b32aacdca57ea5f788f26260bea0d5c654fa6f41d0840
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 06 Aug 2022 12:11:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /en_US/all.js?hash=6b37642b2e69208b8225a156cb3e5761 HTTP/1.1 
Host: connect.facebook.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kawahcerita.blogspot.com
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         31.13.72.12
HTTP/2 200 OK
                                        
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0f1f46514610b96d1f9cb53aa1732b6f
etag: "ba0b59ca055810983b4f45e7fcb45674"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 06 Aug 2023 11:39:22 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: rNd85QrIlmHCKyDFKXoVhw==
x-fb-debug: TZBT1JY3/DCpOrjni1LFY57YzohCIa5+pHfXcIsMu65IAV0ItAIUe9hNt9mukAcOMWPZe1WgcSqGfGcO+Oio/g==
priority: u=3,i
content-length: 86238
x-fb-trip-id: 1904183273
date: Sat, 06 Aug 2022 12:11:06 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18603)
Size:   86238
Md5:    acd77ce50ac89661c22b20c5297a1587
Sha1:   6ba3826487609fb4d09a3b0eb26d989cd77d7019
Sha256: 621d86670ed5aeb096521fac9827657f9bcc1f14e819c75861fe92d53767af81
                                        
                                            GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
expires: Sat, 06 Aug 2022 12:11:06 GMT
date: Sat, 06 Aug 2022 12:11:06 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 665
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1034), with no line terminators
Size:   665
Md5:    05d9b7a0e2cf296c923e8ea7a82c2106
Sha1:   f13be5a242a245a6ca062479d973b5381a0813e5
Sha256: f73889cf9db20e20b1a287b42506687031af8bbf9221caf5c8cfef1651921055
                                        
                                            OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 06 Aug 2022 12:11:06 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+786; expires=Mon, 05-Aug-2024 12:11:06 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 06 Aug 2022 12:11:06 GMT
cache-control: private
X-Firefox-Spdy: h2

                                        
                                            POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1 
Host: play.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1557
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         216.58.207.206
HTTP/2 200 OK
                                        
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 06 Aug 2022 12:11:06 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+009; expires=Mon, 05-Aug-2024 12:11:06 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 06 Aug 2022 12:11:06 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   131
Md5:    babb6f090aeebc6f421624475b4aefff
Sha1:   06079b7547949822c118224e51604f4c5ebf80c8
Sha256: b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
                                        
                                            GET /recaptcha/releases/gWN_U6xTIPevg0vuq7g1hct0/recaptcha__en.js HTTP/1.1 
Host: www.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 156787
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 01 Aug 2022 16:39:17 GMT
expires: Tue, 01 Aug 2023 16:39:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 01 Aug 2022 04:00:16 GMT
content-type: text/javascript
age: 415909
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (572)
Size:   156787
Md5:    29dab75399318378b088edc83bbcce8b
Sha1:   7966e29a41c5cd9a6d4228aeeb050f65403e34e0
Sha256: e790aaa04b9e704c19ea2c2a412cc3f0749e9250b1c55e6359d9bb15b3c107a6
                                        
                                            GET /v1/urls/count.json?url=http%3A%2F%2Fkawahcerita.blogspot.com%2F2014%2F05%2Fcara-melihat-file-hasil-download-idm.html&callback=PIN_1659787866594.f.callback[0] HTTP/1.1 
Host: widgets.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.84.84
HTTP/2 200 OK
                                        
x-content-type-options: nosniff
access-control-allow-origin: *
content-type: application/javascript
cache-control: must-revalidate, max-age=887
expires: Sat, 06 Aug 2022 12:26:06 GMT
x-envoy-upstream-service-time: 2
x-pinterest-rid: 1553259470679528
date: Sat, 06 Aug 2022 12:11:06 GMT
age: 0
content-encoding: br
vary: accept-encoding
accept-ranges: none
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   453
Md5:    e6e2af2fee7136fd30b60152c390a675
Sha1:   91f12e3cefe384d4cac854de55562223c379de03
Sha256: c959ccbaafa9b1c5254045f2b5bb371feb00f624dd6cce60232f71d7124c90cb
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p4Fxe9M4hBRuGhH5waz1tw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.39.242.22
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xXJZoAyFKuoHXO4/9lwROQ8Uhto=

                                        
                                            GET /settings?session_id=cdfd92c58595c21445e87711c0f4dc0c62d1c811 HTTP/1.1 
Host: syndication.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

                                         
                                         104.244.42.8
HTTP/2 200 OK
                                        
date: Sat, 06 Aug 2022 12:11:06 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 06 Aug 2022 12:11:06 GMT
content-length: 242
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: ca483bf52f8f8f92faaf7d6a1b62f5ad007e51d285fc246309dacc09b77b56a5
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (513), with no line terminators
Size:   242
Md5:    cb555331f44c4672cddcf5d81387d29d
Sha1:   b457f56a478a3dbf7537db900c3ac7846f970626
Sha256: 206982db7dbe7d5b93fc5631cfacfb685a0d8886e05ed8c4fd2118635fb7d0e5
                                        
                                            GET /js/button.fed83577e235944f1c02f314fdfd94dd.js HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.229.233.25
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 226673
Cache-Control: public, max-age=315360000
Date: Sat, 06 Aug 2022 12:11:06 GMT
Etag: "c1233079fb145bc77c712143fa5dcd65+gzip"
Last-Modified: Wed, 03 Aug 2022 20:59:06 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2359


--- Additional Info ---
Magic:  ASCII text, with very long lines (7017), with no line terminators
Size:   2359
Md5:    c319d9aa0633934358975319405214bf
Sha1:   e2d9c994c584a5bd18c60e6fa392c69fe0db41b8
Sha256: 48a24c73808c3e67c1ee55a015983416552cc3ebd0836573a257fd4bb40c891f
                                        
                                            GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 30 Jul 2022 12:31:58 GMT
expires: Sun, 30 Jul 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 603548
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size:   15344
Md5:    5d4aeb4e5f5ef754e307d7ffaef688bd
Sha1:   06db651cdf354c64a7383ea9c77024ef4fb4cef8
Sha256: 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
                                        
                                            GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 05 Aug 2022 00:48:31 GMT
expires: Sat, 05 Aug 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 127355
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size:   15552
Md5:    285467176f7fe6bb6a9c6873b3dad2cc
Sha1:   ea04e4ff5142ddd69307c183def721a160e0a64e
Sha256: 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
                                        
                                            GET /widgets/tweet_button.2b1befbea3a1424bb94efd70105dfa52.en.html HTTP/1.1 
Host: platform.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         192.229.233.25
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 226665
Cache-Control: public, max-age=315360000
Date: Sat, 06 Aug 2022 12:11:07 GMT
Etag: "89c9e62200af53fd09664245d4ebf950+gzip"
Last-Modified: Wed, 03 Aug 2022 20:59:10 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13674


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32044)
Size:   13674
Md5:    35b2147c1f80ef6ecb5583bcbeb3c77f
Sha1:   32082f74d647d896224b3e977ec7f92efe9f872d
Sha256: 404be2f27e3548b1d75ee491d5d8b8b2235908417bc654de03c998861aa1a00e
                                        
                                            GET /i/jot?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fkawahcerita.blogspot.com%2F2014%2F05%2Fcara-melihat-file-hasil-download-idm.html%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1659787867250%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22b7df0f50e1ec1%3A1659558317797%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cdfd92c58595c21445e87711c0f4dc0c62d1c811 HTTP/1.1 
Host: syndication.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.244.42.8
HTTP/2 200 OK
                                        
date: Sat, 06 Aug 2022 12:11:07 GMT
pragma: no-cache
server: tsa_o
status: 200 OK
expires: Tue, 31 Mar 1981 05:00:00 GMT
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
last-modified: Sat, 06 Aug 2022 12:11:07 GMT
x-transaction: 92fc2fa9ea7c5838
content-length: 65
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-xss-protection: 0
x-content-type-options: nosniff
x-twitter-response-tags: BouncerCompliant
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: ca483bf52f8f8f92faaf7d6a1b62f5ad007e51d285fc246309dacc09b77b56a5
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   65
Md5:    2627dd381327831be501962f01cb45a3
Sha1:   91ada0ee3df9d93cfdd195477d1ed3f86a798997
Sha256: bb5a836235f4765af8072f2021f06871fc1926ef66eb9a5e7dbe124eca13fef8
                                        
                                            GET /?type=pidget&guid=C8V2LMARzg_W&tv=2021110201&event=init&sub=www&button_count=2&follow_count=0&pin_count=0&profile_count=0&board_count=0&section_count=0&lang=en&nvl=en-US&via=http%3A%2F%2Fkawahcerita.blogspot.com%2F2014%2F05%2Fcara-melihat-file-hasil-download-idm.html HTTP/1.1 
Host: log.pinterest.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kawahcerita.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.84.84
HTTP/2 200 OK
                                        
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 2
server: envoy
x-pinterest-rid: 1035663429978705
accept-ranges: bytes
date: Sat, 06 Aug 2022 12:11:07 GMT
via: 1.1 varnish
x-served-by: cache-bma1677-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1659787867.431256,VS0,VE94
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4"
Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Sat, 06 Aug 2022 16:12:31 GMT
Date: Sat, 06 Aug 2022 12:11:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4"
Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Sat, 06 Aug 2022 16:12:31 GMT
Date: Sat, 06 Aug 2022 12:11:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4"
Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Sat, 06 Aug 2022 16:12:31 GMT
Date: Sat, 06 Aug 2022 12:11:07 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C952C97052BCB4AF8D3FBB70CFEFA150605486A2905EE7349EDE5564A59C21C4"
Last-Modified: Sat, 06 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14484
Expires: Sat, 06 Aug 2022 16:12:31 GMT
Date: Sat, 06 Aug 2022 12:11:07 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bfd5df4-420a-41ec-b1de-b396653699e3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8223
x-amzn-requestid: 1d39aed7-65da-4168-9a89-900d5a861e84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WaMdAFTKoAMFz_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ed8dec-114929484ac704c76691f89f;Sampled=0
x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vWXGezsy5PVgC3WkZskelMsz0v1wgoMt7-8_nrKuvEOfsUbwLXdxcw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 05 Aug 2022 21:46:25 GMT
age: 51882
etag: "9b19561b15e7e126ee65436ba20d4ae4098e6776"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8223
Md5:    21cb9fd64193c9fa61a65be28fa65bda
Sha1:   9b19561b15e7e126ee65436ba20d4ae4098e6776
Sha256: 16676379a98b377329551dea82df06b036aa7a1902ecc18b2467b25c0bd0e4dd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa26223bd-d704-4f37-9bda-4a67147d87f9.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7022
x-amzn-requestid: a4b2e422-88b5-406a-9e4d-40f5cf5cbdb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WaMb9HouoAMF-WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ed8de5-08e066b803cf639d6dc69fe7;Sampled=0
x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hCi-KrTW8WV29cRt4s46po6kaTKYMb18-JSCEGbgoIbYu9tdEkJ-rw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 05 Aug 2022 21:58:37 GMT
etag: "de125f4ffd1f967c1557f082c41477891630539c"
content-type: image/jpeg
age: 51150
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7022
Md5:    f8ee35182a507e89b787ac718a80508c
Sha1:   de125f4ffd1f967c1557f082c41477891630539c
Sha256: 8def080600f8b45c3683dfb91586c9b03bf3fbb07437e9ab9dad816909cc3021
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F817dc1f7-eb45-43f8-baff-dc8c8dc431d5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5927
x-amzn-requestid: 99ada533-43cd-41fc-82bb-e458f0eb1f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WaMb7GCHIAMFTvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ed8de5-229e11765cf29cea03c3627a;Sampled=0
x-amzn-remapped-date: Fri, 05 Aug 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4XnbV70sg2VdJpPpU4qwePJEGJtqD9fvi7N5tGLwn53qD4YlgsV2nQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 05 Aug 2022 21:46:20 GMT
age: 51887
etag: "2f672c1b11a1c279f429a25e80e37c19d87ed31b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5927
Md5:    1d51f89b8978e5f853da0ec27aeba1f2
Sha1:   2f672c1b11a1c279f429a25e80e37c19d87ed31b
Sha256: 4b1741201668ef2b420b2c6ca02a9acec12b98c5527745229ceb27239a99881d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe02af17f-5236-4b47-b37c-2ca78451d001.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10873
x-amzn-requestid: 8e9e6a2e-0ebe-4e43-ac2c-bc72bcc03c3b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WLBrnHDbIAMFnOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62e77cb0-34ce66152b1c495b07c56d17;Sampled=0
x-amzn-remapped-date: Mon, 01 Aug 2022 07:11:44 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xNvq4q3INh3Jjt5NrPR4pmWj4PkN19nEj_JUiBjnl7xf4oVfOvcULA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sat, 06 Aug 2022 01:44:00 GMT
age: 37627
etag: "6ee0eb53fcc505c4fc8358771850a80bfdf82c7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10873
Md5:    e7264a2e7923f3a462242e2df742ab8a
Sha1:   6ee0eb53fcc505c4fc8358771850a80bfdf82c7b
Sha256: ca08424c22b7d0103db02d8ac3a2588d15fe1ff59ef6fdac56d7fef25198ed87
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5220284-1209-43a7-9af7-d1b6ed31b248.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11592
x-amzn-requestid: 73091111-067e-4c53-97ae-702fbf2b6d01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WaNsvHdVoAMFUDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ed8fea-3048002a0a2373536c9c39a1;Sampled=0
x-amzn-remapped-date: Fri, 05 Aug 2022 21:47:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8Jbqi5Uh78XEiAahWe1d5Jm44X-eCqfQ4mhssDyrK1gy4h8CIBJ_g==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 05 Aug 2022 21:47:35 GMT
age: 51812
etag: "d2838f572736105231e6d321790315a8bf1f68eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11592
Md5:    ae3af770ca5815a2744dfad2e742d227
Sha1:   d2838f572736105231e6d321790315a8bf1f68eb
Sha256: 756c59730240921214b26350193d4471c15a98f32c959395ffb05f6b7be34ff5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47127619-5c86-4363-ad38-bd0ea52d7a06.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 3871
x-amzn-requestid: 8e2f628a-40e7-4a30-9250-e799388e3f06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: WaMExESGIAMFmSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ed8d51-548ce53641314e2f14e5c4af;Sampled=0
x-amzn-remapped-date: Fri, 05 Aug 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K_JIjjIoI8WKlfv4W3wDwglaTEkOabSJz7gG2zq8_1vEccPljbZilw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 05 Aug 2022 21:58:37 GMT
age: 51150
etag: "5aafd1e4d78ce8b097b9d9333f8a583a3004ed21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3871
Md5:    2d2380784d41f22b7c39f22aa6ee89f5
Sha1:   5aafd1e4d78ce8b097b9d9333f8a583a3004ed21
Sha256: 0c0f5233c5b6e055ab79900dcd96b99dcd837a2459c75c75ba54d1289dab4ec7