firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 12:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NABj9zqoRmYSvzfsym7O8Rll7o4B6XrWVjMrwDAoRzBJgz4iZsJHuw==
Age: 2611
ameliecazneaux.blogspot.com/2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html
142.250.74.161301 Moved Permanently 224 B URL HTTP/1.1 ameliecazneaux.blogspot.com/2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash aa76247f958df16e1eca5627c53d1c8c
bc6076842541f582b37961a25df016848efc3a73
917ae76e143c3f07401b261aa5a5f651fa9f5999c15dff68d0b41a68ae1740fd
GET /2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html HTTP/1.1
Host: ameliecazneaux.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://ameliecazneaux.blogspot.com/2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 04 Oct 2022 13:30:35 GMT
Expires: Tue, 04 Oct 2022 13:30:35 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 224
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2518
Expires: Tue, 04 Oct 2022 14:12:34 GMT
Date: Tue, 04 Oct 2022 13:30:36 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AWRZhnpOt9SYHp7eNowinluh2r06gAlxy1VI4yBt-Du9-ZQ4Zq_Ohw==
age: 28929
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 13:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 14:17:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zc0ZN3fteP4ZfUmC1acAE5q_rjepxxDhpCClYZ_l9_HefnUnIOmU6Q==
Age: 63
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 938ca8d04dae51b68f67cb6b99851772
8a3956985c77128a745c8b50bf63ba9a1085d195
f5e23e685fda24bd65f31a39291ab9006074bf8c0b946de073297129515fe571
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ameliecazneaux.blogspot.com/2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html
142.250.74.161200 OK 25 kB URL HTTP/2 ameliecazneaux.blogspot.com/2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (17186)
Hash c907b07094d8c040d72e5c1fd17d957c
478c402e1aa7b70246e40869084d154abfb0b352
5e4d15f0cafa88b949ba97b92e80abed0b74e38fc13914af865c4404751a32b7
GET /2022/06/syarat-kemasukan-uia-asasi-ekonomi-dan.html HTTP/1.1
Host: ameliecazneaux.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 04 Oct 2022 13:30:36 GMT
date: Tue, 04 Oct 2022 13:30:36 GMT
cache-control: private, max-age=0
last-modified: Tue, 04 Oct 2022 00:24:08 GMT
etag: W/"f612c6ea3af9b1a936bbadb3ab517a017479ccd8863dbf4bf69060b6589b589b"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 24844
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/3.bp.blogspot.com/_UWpFBiTLdzY/TEAo7gOeVZI/AAAAAAAAAow/sEsFWXdYTZI/s1600/IIUM.JPG
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/3.bp.blogspot.com/_UWpFBiTLdzY/TEAo7gOeVZI/AAAAAAAAAow/sEsFWXdYTZI/s1600/IIUM.JPG
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /3.bp.blogspot.com/_UWpFBiTLdzY/TEAo7gOeVZI/AAAAAAAAAow/sEsFWXdYTZI/s1600/IIUM.JPG HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: text/html
content-length: 138
location: https://3.bp.blogspot.com/_UWpFBiTLdzY/TEAo7gOeVZI/AAAAAAAAAow/sEsFWXdYTZI/s1600/IIUM.JPG
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i1.wp.com/3.bp.blogspot.com/-dJiPT78olEc/TY5wjS0xCDI/AAAAAAAAASQ/8aAcnmKwGQ0/s320/iium.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i1.wp.com/3.bp.blogspot.com/-dJiPT78olEc/TY5wjS0xCDI/AAAAAAAAASQ/8aAcnmKwGQ0/s320/iium.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /3.bp.blogspot.com/-dJiPT78olEc/TY5wjS0xCDI/AAAAAAAAASQ/8aAcnmKwGQ0/s320/iium.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: text/html
content-length: 138
location: https://3.bp.blogspot.com/-dJiPT78olEc/TY5wjS0xCDI/AAAAAAAAASQ/8aAcnmKwGQ0/s320/iium.jpg
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.10200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 22:16:16 GMT
expires: Sun, 01 Oct 2023 22:16:16 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 227660
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/2.bp.blogspot.com/-KkjVxDAaoa8/Uy7CI3EW0zI/AAAAAAAAAcs/WR5t37IqQD4/s1600/allied.jpg
192.0.77.2302 Found 138 B URL HTTP/2 i0.wp.com/2.bp.blogspot.com/-KkjVxDAaoa8/Uy7CI3EW0zI/AAAAAAAAAcs/WR5t37IqQD4/s1600/allied.jpg
IP 192.0.77.2:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /2.bp.blogspot.com/-KkjVxDAaoa8/Uy7CI3EW0zI/AAAAAAAAAcs/WR5t37IqQD4/s1600/allied.jpg HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: text/html
content-length: 138
location: https://2.bp.blogspot.com/-KkjVxDAaoa8/Uy7CI3EW0zI/AAAAAAAAAcs/WR5t37IqQD4/s1600/allied.jpg
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3723
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Last-Modified: Tue, 04 Oct 2022 12:28:33 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/792789798-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/792789798-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash 02e6bf311e18828a522b4d3a4079084f
a63cd373fa23b4fe11f938d57737e6bfa1ebe789
25d469843aa09be2473931d33aaa37b65ac371874bd98ca84ec780bead3e33e4
GET /static/v1/widgets/792789798-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 02:15:20 GMT
expires: Tue, 03 Oct 2023 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Oct 2022 00:49:27 GMT
content-type: text/javascript
age: 126916
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a068d9fec672f97ef7d20969d5925877
e921c48a1686bb8157c902d76a08c5b55507505d
954a24ce791bcf1686f2077da5f25015a3298a838035ffc8322282b213553592
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 589d830dbd20c3dcf601bf7a2fe7fd29
e6fc4f0062189aee4c8616949f86571db0a92ff5
10137bb52117be557fae9e1cf90fdf106786da04f6d799b19e2c3100aeafdd61
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Tue, 04 Oct 2022 13:30:36 GMT
expires: Tue, 04 Oct 2022 13:30:36 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 64 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 68ad53bc8ffceaff0e27d07690609326
2ee4ea5dcef485ec718acf208b54d4cd371ea2b7
9ce1a6286c578c295fca51a75dfa9246c18534699119d4bf23c349a22a8deff1
GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 64328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 06:56:17 GMT
expires: Thu, 28 Sep 2023 06:56:17 GMT
cache-control: public, max-age=31536000
age: 542060
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2
216.58.207.195200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14048, version 1.0\012- data
Hash cffb686d7d2f4682df8342bd4d276e09
2c07a9656f1e38da408f20f1cf11581a15cbd7a2
3b98b0dc3bed9d40f43e64adba5de47c76895338a96f0a5a314676cd6287eca9
GET /s/opensans/v15/mem8YaGs126MiZpBA-UFVZ0b.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14048
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:46:01 GMT
expires: Sun, 01 Oct 2023 01:46:01 GMT
cache-control: public, max-age=31536000
age: 301476
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14720, version 1.0\012- data
Hash d08c09f2f169f4a6edbcf8b8d1636cb4
5a6a45d6f98752b11ccb7c4f0f6fd7faf18ad1a7
482994b911cc3e869aa8ace6d9932d67b68de83ea2885207ce165ff04c38d7bc
GET /s/opensans/v15/mem5YaGs126MiZpBA-UN7rgOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 01:58:08 GMT
expires: Sun, 01 Oct 2023 01:58:08 GMT
cache-control: public, max-age=31536000
age: 300749
last-modified: Wed, 11 Oct 2017 21:49:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
104.18.10.207200 OK 6.6 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (27303)
Hash 9e1035f4fe421f26183048125ebb8d63
47b502aeacdb075767458fea51fee275ae83b401
3e20131554f1afbe367881e26aca48ecf3ca0ba43b558851cf8c9979e6b40cd0
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 10334484
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754e45ed08f0b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFUZ0bbck.woff2
216.58.207.195200 OK 9.4 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/mem8YaGs126MiZpBA-UFUZ0bbck.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9412, version 1.0\012- data
Hash 976be586ada0542b85ee1e95c3d5ad70
aca1e697ba9e5ca9145e391dd40c3c66bdf0c326
b00a70caad7684eebfe9eb0474dc281f3beb46ea3359e0dff9885dadd8c489be
GET /s/opensans/v15/mem8YaGs126MiZpBA-UFUZ0bbck.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 12:50:21 GMT
expires: Sat, 30 Sep 2023 12:50:21 GMT
cache-control: public, max-age=31536000
age: 348016
last-modified: Wed, 11 Oct 2017 21:49:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/materialicons/v41/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
216.58.207.195200 OK 55 kB URL HTTP/2 fonts.gstatic.com/s/materialicons/v41/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 55208, version 1.0\012- data
Hash 658dde714e624426b1f0f9976f031513
98cfbf585103cfd9604971b517cfc690729c889a
978f46f059f8b7580f0ace9c2a00175c926cb91b1bb69d1b39d7fd3a9e8582ad
GET /s/materialicons/v41/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 55208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 01:17:36 GMT
expires: Tue, 03 Oct 2023 01:17:36 GMT
cache-control: public, max-age=31536000
age: 130381
last-modified: Thu, 16 Aug 2018 20:54:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
216.58.207.195200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 14544, version 1.0\012- data
Hash 223a277bd88d8a90c8cdf24cda0ad5f5
24234c1c81b3948758c1a0be8e5a65386ca94c52
d61b45b8b3cded238a65ee0aac4043b989f11cee56acfe5c889777f961f241a2
GET /s/opensans/v15/mem5YaGs126MiZpBA-UNirkOUuhp.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 15:37:01 GMT
expires: Sat, 30 Sep 2023 15:37:01 GMT
cache-control: public, max-age=31536000
age: 338016
last-modified: Wed, 11 Oct 2017 21:49:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.160.51.228101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.51.228:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9HrBv8qGAAwR7G+YPXIBuA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9lzMB3XX1Yx14bejzAUm+G5UXpE=
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3qOIKlOh-Yt3uazRU1gKjVDl0uUL0qMpvSdFsAZ4uAPpuH5b7gTrNdYr354y5iYZkaIhOjw6kMcqXRQk5urV3LXUGniJOYMJf9B52e9nm116fXdEHZ5K6Un383ehUO2kgUSsduqUsZBvS4TVJScQmH07xSm05grAmWgnSiSnuSjHbl-AYua9zSyNTf1BZID2IJQ8tPxfD_wkNlfnC8R7pvDR3BXq5Y5rKHK21twTAGihlovPKR-x6TmWqZY05C_aDNoy-EaqdGYlac_C56Q1vbR9_Sdws1SJdMTJQkMfC0zf9wBi6EI-Tfmsju=w72-h72-p-k-no-nu
142.250.74.33200 OK 2.0 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha3qOIKlOh-Yt3uazRU1gKjVDl0uUL0qMpvSdFsAZ4uAPpuH5b7gTrNdYr354y5iYZkaIhOjw6kMcqXRQk5urV3LXUGniJOYMJf9B52e9nm116fXdEHZ5K6Un383ehUO2kgUSsduqUsZBvS4TVJScQmH07xSm05grAmWgnSiSnuSjHbl-AYua9zSyNTf1BZID2IJQ8tPxfD_wkNlfnC8R7pvDR3BXq5Y5rKHK21twTAGihlovPKR-x6TmWqZY05C_aDNoy-EaqdGYlac_C56Q1vbR9_Sdws1SJdMTJQkMfC0zf9wBi6EI-Tfmsju=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 814172dcc3a2cb4262c3020ba95dc2fc
1c25349ff2130a088c0885b14149078bc832c9b4
a021102829e31f788bd467c8b7eaa568b33fc3ecc8ab314dbf8fbe14789d5723
GET /blogger_img_proxy/ANbyha3qOIKlOh-Yt3uazRU1gKjVDl0uUL0qMpvSdFsAZ4uAPpuH5b7gTrNdYr354y5iYZkaIhOjw6kMcqXRQk5urV3LXUGniJOYMJf9B52e9nm116fXdEHZ5K6Un383ehUO2kgUSsduqUsZBvS4TVJScQmH07xSm05grAmWgnSiSnuSjHbl-AYua9zSyNTf1BZID2IJQ8tPxfD_wkNlfnC8R7pvDR3BXq5Y5rKHK21twTAGihlovPKR-x6TmWqZY05C_aDNoy-EaqdGYlac_C56Q1vbR9_Sdws1SJdMTJQkMfC0zf9wBi6EI-Tfmsju=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:30:37 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:30:37 GMT
server: fife
content-length: 1976
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 330a54973c6803084afff8e22fdc650d
59986d6e103903fe988a943c2e97189a0adac1ce
bcc948b36dad8f333fa6454a13d4df6f940d5b2d2ddbca330a3848831b81a576
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
142.250.74.163200 OK 34 kB URL HTTP/2 www.gstatic.com/feedback/js/help/prod/service/lazy.min.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2800)
Hash 3d5823c8d54c6fbfa1c2111ad8b5e177
2df748e9879f3f9b8dcf4104d5074b152881d37e
b8e63d9f4ae8fff2900f481c5b9f813af7b74aed8cd9398049ce3cceb0afc629
GET /feedback/js/help/prod/service/lazy.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/product-feedback-gathering
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="product-feedback-gathering"
report-to: {"group":"product-feedback-gathering","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/product-feedback-gathering"}]}
content-length: 33850
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 12:48:30 GMT
expires: Tue, 04 Oct 2022 13:38:30 GMT
cache-control: public, max-age=3000
last-modified: Thu, 29 Sep 2022 21:00:43 GMT
content-type: text/javascript
age: 2527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
104.18.10.207200 OK 67 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 104.18.10.207:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:37 GMT
content-type: font/woff2
content-length: 66624
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "db812d8a70a4e88e888744c1c9a27e89"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 08/15/2022 13:52:58
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 3ae2c292a2c00a3d0000f3e9bc6f7046
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754e45eedad70afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1s45H3ifaIdp_mDYiTU1AjDe8XJ2ldumLUmDFioO2BxZkTZENjzPZ858yhc37Djag83XNhZ8QMsjX0LCriIIDLK6iwRoMCOFydE4Bf=w72-h72-p-k-no-nu
142.250.74.33200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1s45H3ifaIdp_mDYiTU1AjDe8XJ2ldumLUmDFioO2BxZkTZENjzPZ858yhc37Djag83XNhZ8QMsjX0LCriIIDLK6iwRoMCOFydE4Bf=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash f9882497d14248a842d0ab0edc6ed3d1
1ba3ac0914d0e00bb7daa87c7ffd61178a416c0a
3d91d2bb74f986b0a17bfc94b9d7841a736407a86ab1be67c5828845ae3a4f90
GET /blogger_img_proxy/ANbyha1s45H3ifaIdp_mDYiTU1AjDe8XJ2ldumLUmDFioO2BxZkTZENjzPZ858yhc37Djag83XNhZ8QMsjX0LCriIIDLK6iwRoMCOFydE4Bf=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:30:37 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:30:37 GMT
server: fife
content-length: 1915
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1jiEQFQdX79rVTXxSgclxoeWlxjoKbpBNsAC-vwohlX5hjcHWeQFE1TWLqV_Kn_XggN3tcsYPrPV3VNnVD4-XlcbmsyymCUv8HtkK3XxPaE4X5zjVU7WdjxTH23qdyfHbhaKpKs-TKKmfuwQrg3mntbH30e4MOW5es4yxq4t9AIhujfHx3-_Xq1XGdmB_uNTi-vXdevRl9xw=w72-h72-p-k-no-nu
142.250.74.33200 OK 1.5 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1jiEQFQdX79rVTXxSgclxoeWlxjoKbpBNsAC-vwohlX5hjcHWeQFE1TWLqV_Kn_XggN3tcsYPrPV3VNnVD4-XlcbmsyymCUv8HtkK3XxPaE4X5zjVU7WdjxTH23qdyfHbhaKpKs-TKKmfuwQrg3mntbH30e4MOW5es4yxq4t9AIhujfHx3-_Xq1XGdmB_uNTi-vXdevRl9xw=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash df5bdd0a5aa7d8c98ac592cfc3704de2
17b8d9d83c081e13d9538d65c16f548b741112ea
d083fe33ec5eb7a4bc74deb4ca7affcf0822273de29ba092f6d9c5e40ef16ee5
GET /blogger_img_proxy/ANbyha1jiEQFQdX79rVTXxSgclxoeWlxjoKbpBNsAC-vwohlX5hjcHWeQFE1TWLqV_Kn_XggN3tcsYPrPV3VNnVD4-XlcbmsyymCUv8HtkK3XxPaE4X5zjVU7WdjxTH23qdyfHbhaKpKs-TKKmfuwQrg3mntbH30e4MOW5es4yxq4t9AIhujfHx3-_Xq1XGdmB_uNTi-vXdevRl9xw=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:30:37 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:30:37 GMT
server: fife
content-length: 1489
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1.wp.com/pbs.twimg.com/media/D2qXenOXQAEOQdX.jpg
192.0.77.2200 OK 67 kB URL HTTP/2 i1.wp.com/pbs.twimg.com/media/D2qXenOXQAEOQdX.jpg
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x493, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 69727daa86ff67ac11ce702041a0b8d3
915d8eb5a36c3338b1deadab20877262f5148417
6a3634631d45a5db75a3af254ea2c6c45e36d5aa0b32be660dd1d98680019e32
GET /pbs.twimg.com/media/D2qXenOXQAEOQdX.jpg HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:37 GMT
content-type: image/webp
content-length: 67350
last-modified: Tue, 04 Oct 2022 13:30:37 GMT
expires: Fri, 04 Oct 2024 01:30:37 GMT
cache-control: public, max-age=63115200
link: <http://pbs.twimg.com/media/D2qXenOXQAEOQdX.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ae0986fce4ac90c4"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a013e946c8aa13fd23be3fdf2adce9a
77121ee971f6ff35a81594668bc5b098958afac7
b3b4a018e019fecf6ea9e57ec4f65a84545fae55ab2455638eaa47631bca1df8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B3B4A018E019FECF6EA9E57EC4F65A84545FAE55AB2455638EAA47631BCA1DF8"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14345
Expires: Tue, 04 Oct 2022 17:29:42 GMT
Date: Tue, 04 Oct 2022 13:30:37 GMT
Connection: keep-alive
lh3.googleusercontent.com/blogger_img_proxy/ANbyha1cNBGl2x5p1qLJX8Tje-65rDm4psnR28H8dYmhTVmgECeen0dnf55hsfJPbQ0nJCgZe3OJLjnYmq6qCXCJKcadfd0tDxrFI3Q5y3C8j32zs694FuxG0OnqCzBgu2EtscrkwNfNEve8-dA7Zyln_ncsI0yUPxV3Vy7ep5f0lA=w72-h72-p-k-no-nu
142.250.74.33200 OK 2.2 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha1cNBGl2x5p1qLJX8Tje-65rDm4psnR28H8dYmhTVmgECeen0dnf55hsfJPbQ0nJCgZe3OJLjnYmq6qCXCJKcadfd0tDxrFI3Q5y3C8j32zs694FuxG0OnqCzBgu2EtscrkwNfNEve8-dA7Zyln_ncsI0yUPxV3Vy7ep5f0lA=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 25c68d14e9ee11e3ba030d9b0547c626
6664746b75b28f12d222d57d76abcf8fe705d769
fea98629ea70934714ead999f510a329493875d69ac7c6264bd5fc28c681a82b
GET /blogger_img_proxy/ANbyha1cNBGl2x5p1qLJX8Tje-65rDm4psnR28H8dYmhTVmgECeen0dnf55hsfJPbQ0nJCgZe3OJLjnYmq6qCXCJKcadfd0tDxrFI3Q5y3C8j32zs694FuxG0OnqCzBgu2EtscrkwNfNEve8-dA7Zyln_ncsI0yUPxV3Vy7ep5f0lA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:30:37 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:30:37 GMT
server: fife
content-length: 2248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
192.243.59.13200 OK 9.8 kB URL HTTP/1.1 accompanycollapse.com/bc8d59f796233b632b8846bc72a15192/invoke.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (27022), with no line terminators
Hash c435361ab724ae519c1985228f9312ac
484ed4d9127b99fb02af63c09fa719fd4f9d4792
c84d4e7bbe0dde1cfcbf817acdafd8eef0d6400394cb22053f7431084ab22473
GET /bc8d59f796233b632b8846bc72a15192/invoke.js HTTP/1.1
Host: accompanycollapse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Tue, 04 Oct 2022 13:30:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 48e137b676546740ce1911bbd3298497
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 5051734aa47e871f30936254a98cebee
38ecb55e50d18f22f54e1ebc0bf5d70f6912cc97
45727a8f22a365165d5bfd7b562ee3fe43cb02f918228bcd6441deb4a33bd421
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 13:30:37 GMT
Last-Modified: Tue, 04 Oct 2022 12:15:43 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9wv8KmfO6c_kTla4u4qisf88xLakY7qakfSfKuThsbX2lYWEguNrOw==
Age: 4494
i0.wp.com/lh6.googleusercontent.com/proxy/XK6GGMdV7ftAzsH1jK24ZyAFdLdPWzhDD4O-z0EVVArb-YTkWUy7lRooyOpbLyy2TK6OZlZm-bSmuJksZOe0bI0EUn-RwdGWkipa27kXn4VBmRaUoDIyS9qQu-S84bxOcKtgude7dEJEPQ=s0-d
192.0.77.2200 OK 29 kB URL HTTP/2 i0.wp.com/lh6.googleusercontent.com/proxy/XK6GGMdV7ftAzsH1jK24ZyAFdLdPWzhDD4O-z0EVVArb-YTkWUy7lRooyOpbLyy2TK6OZlZm-bSmuJksZOe0bI0EUn-RwdGWkipa27kXn4VBmRaUoDIyS9qQu-S84bxOcKtgude7dEJEPQ=s0-d
IP 192.0.77.2:0
File type PNG image data, 500 x 757, 8-bit colormap, non-interlaced\012- data
Hash 1bb5d4a3998c3513ea584ae310fd3b1d
dc3978adc79e0468de81fa7fe254f0de2f0ea5eb
d3a12c987aaf595e23a9e8820f79e15ca4da8744cefeecb253635d2e81c61954
GET /lh6.googleusercontent.com/proxy/XK6GGMdV7ftAzsH1jK24ZyAFdLdPWzhDD4O-z0EVVArb-YTkWUy7lRooyOpbLyy2TK6OZlZm-bSmuJksZOe0bI0EUn-RwdGWkipa27kXn4VBmRaUoDIyS9qQu-S84bxOcKtgude7dEJEPQ=s0-d HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: image/png
content-length: 29073
last-modified: Tue, 04 Oct 2022 13:30:38 GMT
expires: Fri, 04 Oct 2024 01:30:38 GMT
cache-control: public, max-age=63115200
link: <http://lh6.googleusercontent.com/proxy/XK6GGMdV7ftAzsH1jK24ZyAFdLdPWzhDD4O-z0EVVArb-YTkWUy7lRooyOpbLyy2TK6OZlZm-bSmuJksZOe0bI0EUn-RwdGWkipa27kXn4VBmRaUoDIyS9qQu-S84bxOcKtgude7dEJEPQ=s0-d>; rel="canonical"
x-content-type-options: nosniff
etag: "24320440ed99cb47"
x-bytes-saved: 2264
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
3.66.118.16200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.66.118.16:0
File type ASCII text, with no line terminators
Hash a039c3c5cc0c120f118d14d5fb181769
f02d66246e6bc9201ba71ddacc3c825643b5255c
772d1658e3efdd556357f17a0f5f379a59ee332a523c20e6a95945086b44b5ff
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://ameliecazneaux.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243:2:1; expires=Fri, 01 Oct 2032 13:30:38 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
i1.wp.com/lh5.googleusercontent.com/proxy/4VCJy1OVwD10zC3I4vd28oskypunTNVoGcbJQX2mLt29F_wmNvC8PiaqRsQnDmz9NmO6BLQSTRED_872s9ACs8EBYSUE9iiyRnMNi46aew0LnxOWXk4I8rbxNqtffS1975-9_QE1=w1200-h630-p-k-no-nu
192.0.77.2200 OK 277 kB URL HTTP/2 i1.wp.com/lh5.googleusercontent.com/proxy/4VCJy1OVwD10zC3I4vd28oskypunTNVoGcbJQX2mLt29F_wmNvC8PiaqRsQnDmz9NmO6BLQSTRED_872s9ACs8EBYSUE9iiyRnMNi46aew0LnxOWXk4I8rbxNqtffS1975-9_QE1=w1200-h630-p-k-no-nu
IP 192.0.77.2:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x630, components 3\012- data
Size 277 kB (277088 bytes)
Hash ed69dcc1308bb7d781d53e10ec6f5a8f
ed3bf1ca227923cec748c013d83bcb31628ce874
2ed4631e94c608e7089d9706e54157e202921c10c2eb4dc7ab8a1ba53f9dcf10
GET /lh5.googleusercontent.com/proxy/4VCJy1OVwD10zC3I4vd28oskypunTNVoGcbJQX2mLt29F_wmNvC8PiaqRsQnDmz9NmO6BLQSTRED_872s9ACs8EBYSUE9iiyRnMNi46aew0LnxOWXk4I8rbxNqtffS1975-9_QE1=w1200-h630-p-k-no-nu HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: image/jpeg
content-length: 277088
last-modified: Tue, 04 Oct 2022 13:30:38 GMT
expires: Fri, 04 Oct 2024 01:30:38 GMT
cache-control: public, max-age=63115200
link: <http://lh5.googleusercontent.com/proxy/4VCJy1OVwD10zC3I4vd28oskypunTNVoGcbJQX2mLt29F_wmNvC8PiaqRsQnDmz9NmO6BLQSTRED_872s9ACs8EBYSUE9iiyRnMNi46aew0LnxOWXk4I8rbxNqtffS1975-9_QE1=w1200-h630-p-k-no-nu>; rel="canonical"
x-content-type-options: nosniff
etag: "62ebe052fc94b2c4"
x-bytes-saved: 11508
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f133665e2ba8880e51f8f0737946ac61
c6789cf41eaf7c476c6275175c4bf219189df62b
0319e2660c01bf61ab73bddd7c560fd666277abaed3fd37c22524878c48b822a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0319E2660C01BF61AB73BDDD7C560FD666277ABAED3FD37C22524878C48B822A"
Last-Modified: Tue, 04 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Tue, 04 Oct 2022 14:07:49 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13401
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13401
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13401
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13401
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13401
Expires: Tue, 04 Oct 2022 17:13:59 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 31665
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 54079
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
age: 55179
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 56032
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24a4a122273ef9f772852031eb13114a
c20f1fac9020eb4bd6c84583f73872979639b991
8e1ffbed5f156637ed2f22e81d03f6d85eff0c28237c1639ea5f977e92ee7b70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4151
x-amzn-requestid: f709a11e-cbea-4965-8502-94ddbd8768bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvSF3YIAMFdow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-29bfa31d51e8f60b38136dba;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7H1QKlOtoBoVz93G5lddxHSGiTjtMnHJCZX5FhwqhNPkspslaDoFQA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:57:01 GMT
age: 56017
etag: "c20f1fac9020eb4bd6c84583f73872979639b991"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 56084
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
steamlargelyjustified.com/watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1
173.233.139.164307 Temporary Redirect 0 B URL HTTP/1.1 steamlargelyjustified.com/watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1 HTTP/1.1
Host: steamlargelyjustified.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:30:38 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Origin: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://steamlargelyjustified.com/watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1&shu=4c017909cdbb0bf762dedf81a983e1e07b53e7443d4b053865fbbbdd4b117a4c2026be32ba8e9f5d029a48b0550b049da81fc61bcd5a72bb89db2c440940ad2d57d6e61c46a02f7b7b7ee477c2983dd3021ceb193e49cad550b3d3aa84f16be862&pst=1664890298&rmtc=t
Set-Cookie: u_pl=15928454; expires=Wed, 05 Oct 2022 13:30:38 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.bFMHknHhNeJQYE_FPIytuBrbBxyh58H5qRkP5kVRvaA; expires=Tue, 04 Oct 2022 13:31:38 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2fd7d8bc0875a95a76fed697e2c33588
Strict-Transport-Security: max-age=0; includeSubdomains
i0.wp.com/upuonline.net/wp-content/uploads/2020/02/PicsArt_02-06-11.14.03.jpg?fit=680%2C305&ssl=1
192.0.77.2200 OK 13 kB URL HTTP/2 i0.wp.com/upuonline.net/wp-content/uploads/2020/02/PicsArt_02-06-11.14.03.jpg?fit=680%2C305&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 680x305, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 90a4f3d9ce0089e81bb6dc9b372bf9c2
2e035f32b76f4f82ea1a8bc982422768aa431d96
1c9ca1bcd8b225167c38c7b7dd4ab80a1e3f6344dbc605932f82004a682a2e3a
GET /upuonline.net/wp-content/uploads/2020/02/PicsArt_02-06-11.14.03.jpg?fit=680%2C305&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: image/webp
content-length: 12982
last-modified: Tue, 04 Oct 2022 13:30:38 GMT
expires: Fri, 04 Oct 2024 01:30:38 GMT
cache-control: public, max-age=63115200
link: <https://upuonline.net/wp-content/uploads/2020/02/PicsArt_02-06-11.14.03.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "96d7dd92f573058b"
vary: Accept
x-nc: MISS arn 1
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
steamlargelyjustified.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
173.233.139.164200 OK 13 kB URL HTTP/1.1 steamlargelyjustified.com/da/ce/88/dace887d039f088ae0d9952a8b8cb060.js
IP 173.233.139.164:0
File type ASCII text, with very long lines (37148), with no line terminators
Hash c6ea118732a2dde15eb2d0b772d19258
0e1188643b2a1ecf951b2432d025d5a1c910e14f
d4f6f1a8d171263af00a0909a65eed9f342cefd28dcc1f37ad37bd53842c7c85
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /da/ce/88/dace887d039f088ae0d9952a8b8cb060.js HTTP/1.1
Host: steamlargelyjustified.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:30:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67906e54defdb14e15245d0759019c0e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
steamlargelyjustified.com/watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1&shu=4c017909cdbb0bf762dedf81a983e1e07b53e7443d4b053865fbbbdd4b117a4c2026be32ba8e9f5d029a48b0550b049da81fc61bcd5a72bb89db2c440940ad2d57d6e61c46a02f7b7b7ee477c2983dd3021ceb193e49cad550b3d3aa84f16be862&pst=1664890298&rmtc=t
173.233.139.164200 OK 2.1 kB URL HTTP/1.1 steamlargelyjustified.com/watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1&shu=4c017909cdbb0bf762dedf81a983e1e07b53e7443d4b053865fbbbdd4b117a4c2026be32ba8e9f5d029a48b0550b049da81fc61bcd5a72bb89db2c440940ad2d57d6e61c46a02f7b7b7ee477c2983dd3021ceb193e49cad550b3d3aa84f16be862&pst=1664890298&rmtc=t
IP 173.233.139.164:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2651)
Hash ee90642b1693f27688df04bbbfd24f6e
5b01e6d91fa8f773c8b79a6e9581899a268acfee
66852c8e6b15d1ee585ec4bfaf1445e1d8ba1d12d5ed2f156ba2694eecc0b362
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.170273116418.js?key=bc8d59f796233b632b8846bc72a15192&kw=%5B%22syarat%22%2C%22kemasukan%22%2C%22uia%22%2C%22asasi%22%2C%22ekonomi%22%2C%22dan%22%2C%22sains%22%2C%22pengurusan%22%2C%22uia%22%2C%22syarat-syarat%22%2C%22kemasukan%22%2C%22ke%22%2C%22-%22%2C%22amelie%22%2C%22cazneaux%22%5D&refer=https%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&tz=0&dev=r&res=12.31&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1&shu=4c017909cdbb0bf762dedf81a983e1e07b53e7443d4b053865fbbbdd4b117a4c2026be32ba8e9f5d029a48b0550b049da81fc61bcd5a72bb89db2c440940ad2d57d6e61c46a02f7b7b7ee477c2983dd3021ceb193e49cad550b3d3aa84f16be862&pst=1664890298&rmtc=t HTTP/1.1
Host: steamlargelyjustified.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ameliecazneaux.blogspot.com
Referer: https://ameliecazneaux.blogspot.com/
Connection: keep-alive
Cookie: u_pl=15928454; ain=eyJhbGciOiJIUzI1NiJ9.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.bFMHknHhNeJQYE_FPIytuBrbBxyh58H5qRkP5kVRvaA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:30:38 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Origin: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243:2:1; expires=Tue, 11 Oct 2022 13:30:38 GMT; secure; SameSite=None
iprc997d478b89fc1c72cd3daefc7e14e80e=3569806; expires=Tue, 04 Oct 2022 17:30:38 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 13:30:38 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 13:30:38 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 05 Oct 2022 13:30:38 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 05 Oct 2022 13:30:38 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9302d8551e647ed64dc038f51015b790
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
i1.wp.com/upuonline.net/wp-content/uploads/2020/02/PicsArt_02-07-09.12.44.jpg?fit=680%2C304&ssl=1
192.0.77.2200 OK 17 kB URL HTTP/2 i1.wp.com/upuonline.net/wp-content/uploads/2020/02/PicsArt_02-07-09.12.44.jpg?fit=680%2C304&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 680x304, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 98d733e5513ba1a5c68fe672bb859759
14c38e296b3ba64e9b79a4eb83f022faee121517
5726d5a47493e5d058e42471b1cc158bcd9620eef7901303941db8ceff2ab1ad
GET /upuonline.net/wp-content/uploads/2020/02/PicsArt_02-07-09.12.44.jpg?fit=680%2C304&ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: image/webp
content-length: 16926
last-modified: Tue, 04 Oct 2022 13:30:38 GMT
expires: Fri, 04 Oct 2024 01:30:38 GMT
cache-control: public, max-age=63115200
link: <https://upuonline.net/wp-content/uploads/2020/02/PicsArt_02-07-09.12.44.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "37053932aae3a14c"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a81efbd7f92e8ab877070b2f9cd6247
389efbc67268d7460da1c041ecd8bd3de503bced
08f20e6c48dc1f16fb405a6e21df212677b34c1dcaf75335d163a3d1e18c40bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08F20E6C48DC1F16FB405A6E21DF212677B34C1DCAF75335D163A3D1E18C40BC"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3333
Expires: Tue, 04 Oct 2022 14:26:11 GMT
Date: Tue, 04 Oct 2022 13:30:38 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.9200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:38 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Thu, 06 Oct 2022 13:30:38 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash edec9323540293b99ece306037d35de7
e7540f9962a6c7ee91168eee1e0fe343d5f5406e
5cf16c168d74a28dc30c0edf93edd09366a8c8609ac36e352e056580f7b24a20
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5CF16C168D74A28DC30C0EDF93EDD09366A8C8609AC36E352E056580F7B24A20"
Last-Modified: Mon, 03 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12627
Expires: Tue, 04 Oct 2022 17:01:06 GMT
Date: Tue, 04 Oct 2022 13:30:39 GMT
Connection: keep-alive
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:24:04 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 32441540
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0flZWMeJ7XgheKS7satjfhDpyxoKgW6NTlC60W6AROB8tSTV32Wv597Imsa2M7qA_ZyPQuYwz1nmTRay_zVp0QG7mkKJPza60UoYYtAKSDN6VwS8KaQF0jgHzu7j0w8kvNF06Y2AHpE7b4xVOaU7zM0KrDfC-n7zrrAphJtv62_-fFeYg0DU0d7saa=w72-h72-p-k-no-nu
142.250.74.33200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0flZWMeJ7XgheKS7satjfhDpyxoKgW6NTlC60W6AROB8tSTV32Wv597Imsa2M7qA_ZyPQuYwz1nmTRay_zVp0QG7mkKJPza60UoYYtAKSDN6VwS8KaQF0jgHzu7j0w8kvNF06Y2AHpE7b4xVOaU7zM0KrDfC-n7zrrAphJtv62_-fFeYg0DU0d7saa=w72-h72-p-k-no-nu
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash c245bf7e8a402a9b79317c949872cfb4
2dec2ca78abf0bb90c5b6b553b9e93b532f5eb3f
dbd250370507a7db2afd01e692af50162b4fc50f4d5023907dfea56d76fab229
GET /blogger_img_proxy/ANbyha0flZWMeJ7XgheKS7satjfhDpyxoKgW6NTlC60W6AROB8tSTV32Wv597Imsa2M7qA_ZyPQuYwz1nmTRay_zVp0QG7mkKJPza60UoYYtAKSDN6VwS8KaQF0jgHzu7j0w8kvNF06Y2AHpE7b4xVOaU7zM0KrDfC-n7zrrAphJtv62_-fFeYg0DU0d7saa=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Wed, 05 Oct 2022 13:30:39 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 13:30:39 GMT
server: fife
content-length: 3304
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4606357&@f16&@g1&@h1&@i1&@j1664890238576&@k0&@l1&@mSyarat%20Kemasukan%20Uia%20%3A%20Asasi%20Ekonomi%20Dan%20Sains%20Pengurusan%20Uia%20%3A%20syarat-syarat%20kemasukan%20ke%20-%20Amelie%20Cazneaux&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:141300278&@b3:1664890239&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&@w
192.99.8.34200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?4606357&@f16&@g1&@h1&@i1&@j1664890238576&@k0&@l1&@mSyarat%20Kemasukan%20Uia%20%3A%20Asasi%20Ekonomi%20Dan%20Sains%20Pengurusan%20Uia%20%3A%20syarat-syarat%20kemasukan%20ke%20-%20Amelie%20Cazneaux&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:141300278&@b3:1664890239&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&@w
IP 192.99.8.34:0
File type ASCII text, with no line terminators
Hash f2b9a370b41203bd7390e1db15bb8292
9d193a069420b8d2d4a7dbf024b4d32ef4a85e88
9814da7ee0f29b9e81504e8de6587a85f52e10f4a0c3fb54a0447976b89f32e7
GET /stats/0.php?4606357&@f16&@g1&@h1&@i1&@j1664890238576&@k0&@l1&@mSyarat%20Kemasukan%20Uia%20%3A%20Asasi%20Ekonomi%20Dan%20Sains%20Pengurusan%20Uia%20%3A%20syarat-syarat%20kemasukan%20ke%20-%20Amelie%20Cazneaux&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:141300278&@b3:1664890239&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fameliecazneaux.blogspot.com%2F2022%2F06%2Fsyarat-kemasukan-uia-asasi-ekonomi-dan.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 13:30:39 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4bd610954d1cad0675c2010a63e9c018
bd7e8708e02d74c5d7534a48221c9314530917f6
3b51bf349c5fc0841b5ee253093aa1dfabb8271f84bbb0eee07836dec331c1cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B51BF349C5FC0841B5EE253093AA1DFABB8271F84BBB0EEE07836DEC331C1CD"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2040
Expires: Tue, 04 Oct 2022 14:04:39 GMT
Date: Tue, 04 Oct 2022 13:30:39 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dace887d039f088ae0d9952a8b8cb060&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 13:30:40 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67e45b2928281580a8c37deab69e2fac
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash deed4fe600bfe00e036b500d95ec9499
6829d50857626cf2a6f4e9cb3653410d57a9caa9
5bfc490619421cbb91476d88164dc1f80a67c5d2e93fba4a971061cd85006947
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5BFC490619421CBB91476D88164DC1F80A67C5D2E93FBA4A971061CD85006947"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2782
Expires: Tue, 04 Oct 2022 14:17:06 GMT
Date: Tue, 04 Oct 2022 13:30:44 GMT
Connection: keep-alive
invaderannihilationperky.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1
173.233.137.60200 OK 4.2 kB URL HTTP/1.1 invaderannihilationperky.com/sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1
IP 173.233.137.60:0
File type JSON data\012- , ASCII text, with very long lines (5860), with no line terminators
Hash 4957363e226048e366e91e1a0d1c1a07
aa96bc6f41372efd428468c3521e4cda5fe2f2bc
26fe702d87e26aa8b640028d73e103a083761beeeab987fbda1d59c95a015d2f
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=dace887d039f088ae0d9952a8b8cb060&uuid=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243%3A2%3A1 HTTP/1.1
Host: invaderannihilationperky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:30:44 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Origin: https://ameliecazneaux.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16032438; expires=Wed, 05 Oct 2022 13:30:44 GMT; secure; SameSite=None
uid_id2=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243:2:1; expires=Tue, 11 Oct 2022 13:30:44 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 13:30:44 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 13:30:44 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 05 Oct 2022 13:30:44 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 05 Oct 2022 13:30:44 GMT; secure; SameSite=None
slecdace887d039f088ae0d9952a8b8cb060=[3364901]; expires=Tue, 04 Oct 2022 13:30:49 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 38cf97e97b1163f213773aa949804aad
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash a1c45d147edffcf7edf9a2a6efcc27d1
3377fb5f6ff4311aa5ba6087dd389074fae7279c
5658f0c18fb7b3e8c28473d83dddae2d7672c70746004f49a04e9d00582bf587
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4654
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 13:30:44 GMT
Last-Modified: Tue, 04 Oct 2022 12:13:10 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 280
invaderannihilationperky.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXP4St8TKBeQqHwACSTi7K7ttU2RKkoJqkib0oLoDeaX7SGzO6uZXa%2FjU0Qp6tH8B5vnpFGhQiAhbhTkVOohElLNyQfyPyBQTxyQ3QjD5%2FJ5b947vHkzX%2Bznp8RHTmeXr5qh0ppuNKp%2B5dVbQXChsqWSfFAZtKKPo%2FqFiu2%2F0Y6q%2FmuVdyXfMRuhH%2Fh%2B4AeVTWVlxww25iJU%2BqAdVNt%2BtR5Wg0YdA%2Ftf7nIPjnoQ%2FVPyPJSYrj7y1qD4BEn87WXpdjKTvv5OnGuaGYu%2BOPow2UlMkSBewo710EmOztww7snmQ5jkcBEXpv%2BPkakp8R4%2FBEuOzkKC9Q8WOZmGTMDE%2F1H0J5B6AkUn4OY2lHhCAC5wbRtJfO%2BasQXdfabSuTolq0%2F%2FgCqmZPW3NSTxN5e0GlRuGp1nyiQOg04JNZhAdSdI82NkwxWo4hg8%2BwxK%2FEI2nm4hiQ%2B2nTZQYvYyF03OG53Oeq3BGut1HrF1KphYpzzgQSOs%2BWG9tihIqQlUZwItR6BuBbnzkCsPecdDnnqIxazCgyBo%2BoJTv9XmvCaakkXCD2izE9DAj1rI%2BfwOI2TpCFyPwO0eUruHHTWCzX%2BG65VwYgUumxLv%2FSH6okQhCQpHUFCCQhEUGUHRLw%2BFdqEr7wntchac7fBs18qxybr79NBkXZmQ%2FfSUPLco70%2F8gB05qwjKZavVFH6t3fFbLSp90W43QtpiLc78yIdTJZRbAXUehmpK1mZ1pGpKVs6PwOgxnD4GV2ug%2BUugxbgZ%2BqC9cb3lY5j8lPVknrjMpCllWgpJs15MeU8l0lUTmUGYEmm2imzX29en5IVFtNqtVyD5ycVP2NXp7%2Ff%2FArclUlviU%2FWIoKvvjm%2BYghzcMIUj322nmYrVkM7f%2FGZGM3nuq%2FfkbmGsuHLZje6%2FxefCHD74QLpsiyZCJV1Hvr6khJB201guyY9X3EeSXc9d71Jukzzduv725pU4tdI5ZZIJqJoS8vgEXE3J%2F74%2FXHznF%2B%2FcgbIT2LxEnJ%2BQs4Eyx%2BDpHly6zO%2FMOVi99LDUQ5GXYxuy5aFWBFouOWUl3L84W%2BJ9dxddex40u40kLtG3Jfq6BNUjuPzcOEvtycVfa4sB096YaesdMG31l8%2FKdWpWadZqPo3ajaDZpLLJ6mGrEwWC0rAehVFEa8jclL%2FZ%2BPxvAAAA%2F%2F8BAAD%2F%2FzmA3y2ZBAAA
173.233.137.60200 OK 7 B URL HTTP/1.1 invaderannihilationperky.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXP4St8TKBeQqHwACSTi7K7ttU2RKkoJqkib0oLoDeaX7SGzO6uZXa%2FjU0Qp6tH8B5vnpFGhQiAhbhTkVOohElLNyQfyPyBQTxyQ3QjD5%2FJ5b947vHkzX%2Bznp8RHTmeXr5qh0ppuNKp%2B5dVbQXChsqWSfFAZtKKPo%2FqFiu2%2F0Y6q%2FmuVdyXfMRuhH%2Fh%2B4AeVTWVlxww25iJU%2BqAdVNt%2BtR5Wg0YdA%2Ftf7nIPjnoQ%2FVPyPJSYrj7y1qD4BEn87WXpdjKTvv5OnGuaGYu%2BOPow2UlMkSBewo710EmOztww7snmQ5jkcBEXpv%2BPkakp8R4%2FBEuOzkKC9Q8WOZmGTMDE%2F1H0J5B6AkUn4OY2lHhCAC5wbRtJfO%2BasQXdfabSuTolq0%2F%2FgCqmZPW3NSTxN5e0GlRuGp1nyiQOg04JNZhAdSdI82NkwxWo4hg8%2BwxK%2FEI2nm4hiQ%2B2nTZQYvYyF03OG53Oeq3BGut1HrF1KphYpzzgQSOs%2BWG9tihIqQlUZwItR6BuBbnzkCsPecdDnnqIxazCgyBo%2BoJTv9XmvCaakkXCD2izE9DAj1rI%2BfwOI2TpCFyPwO0eUruHHTWCzX%2BG65VwYgUumxLv%2FSH6okQhCQpHUFCCQhEUGUHRLw%2BFdqEr7wntchac7fBs18qxybr79NBkXZmQ%2FfSUPLco70%2F8gB05qwjKZavVFH6t3fFbLSp90W43QtpiLc78yIdTJZRbAXUehmpK1mZ1pGpKVs6PwOgxnD4GV2ug%2BUugxbgZ%2BqC9cb3lY5j8lPVknrjMpCllWgpJs15MeU8l0lUTmUGYEmm2imzX29en5IVFtNqtVyD5ycVP2NXp7%2Ff%2FArclUlviU%2FWIoKvvjm%2BYghzcMIUj322nmYrVkM7f%2FGZGM3nuq%2FfkbmGsuHLZje6%2FxefCHD74QLpsiyZCJV1Hvr6khJB201guyY9X3EeSXc9d71Jukzzduv725pU4tdI5ZZIJqJoS8vgEXE3J%2F74%2FXHznF%2B%2FcgbIT2LxEnJ%2BQs4Eyx%2BDpHly6zO%2FMOVi99LDUQ5GXYxuy5aFWBFouOWUl3L84W%2BJ9dxddex40u40kLtG3Jfq6BNUjuPzcOEvtycVfa4sB096YaesdMG31l8%2FKdWpWadZqPo3ajaDZpLLJ6mGrEwWC0rAehVFEa8jclL%2FZ%2BPxvAAAA%2F%2F8BAAD%2F%2FzmA3y2ZBAAA
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bxR%2BdTXP4St8TKBeQqHwACSTi7K7ttU2RKkoJqkib0oLoDeaX7SGzO6uZXa%2FjU0Qp6tH8B5vnpFGhQiAhbhTkVOohElLNyQfyPyBQTxyQ3QjD5%2FJ5b947vHkzX%2Bznp8RHTmeXr5qh0ppuNKp%2B5dVbQXChsqWSfFAZtKKPo%2FqFiu2%2F0Y6q%2FmuVdyXfMRuhH%2Fh%2B4AeVTWVlxww25iJU%2BqAdVNt%2BtR5Wg0YdA%2Ftf7nIPjnoQ%2FVPyPJSYrj7y1qD4BEn87WXpdjKTvv5OnGuaGYu%2BOPow2UlMkSBewo710EmOztww7snmQ5jkcBEXpv%2BPkakp8R4%2FBEuOzkKC9Q8WOZmGTMDE%2F1H0J5B6AkUn4OY2lHhCAC5wbRtJfO%2BasQXdfabSuTolq0%2F%2FgCqmZPW3NSTxN5e0GlRuGp1nyiQOg04JNZhAdSdI82NkwxWo4hg8%2BwxK%2FEI2nm4hiQ%2B2nTZQYvYyF03OG53Oeq3BGut1HrF1KphYpzzgQSOs%2BWG9tihIqQlUZwItR6BuBbnzkCsPecdDnnqIxazCgyBo%2BoJTv9XmvCaakkXCD2izE9DAj1rI%2BfwOI2TpCFyPwO0eUruHHTWCzX%2BG65VwYgUumxLv%2FSH6okQhCQpHUFCCQhEUGUHRLw%2BFdqEr7wntchac7fBs18qxybr79NBkXZmQ%2FfSUPLco70%2F8gB05qwjKZavVFH6t3fFbLSp90W43QtpiLc78yIdTJZRbAXUehmpK1mZ1pGpKVs6PwOgxnD4GV2ug%2BUugxbgZ%2BqC9cb3lY5j8lPVknrjMpCllWgpJs15MeU8l0lUTmUGYEmm2imzX29en5IVFtNqtVyD5ycVP2NXp7%2Ff%2FArclUlviU%2FWIoKvvjm%2BYghzcMIUj322nmYrVkM7f%2FGZGM3nuq%2FfkbmGsuHLZje6%2FxefCHD74QLpsiyZCJV1Hvr6khJB201guyY9X3EeSXc9d71Jukzzduv725pU4tdI5ZZIJqJoS8vgEXE3J%2F74%2FXHznF%2B%2FcgbIT2LxEnJ%2BQs4Eyx%2BDpHly6zO%2FMOVi99LDUQ5GXYxuy5aFWBFouOWUl3L84W%2BJ9dxddex40u40kLtG3Jfq6BNUjuPzcOEvtycVfa4sB096YaesdMG31l8%2FKdWpWadZqPo3ajaDZpLLJ6mGrEwWC0rAehVFEa8jclL%2FZ%2BPxvAAAA%2F%2F8BAAD%2F%2FzmA3y2ZBAAA HTTP/1.1
Host: invaderannihilationperky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Cookie: u_pl=16032438; uid_id2=cd7cc5ff-35b5-4c6b-adbd-ac1c15230243:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdace887d039f088ae0d9952a8b8cb060=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 04 Oct 2022 13:30:44 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 04195112717db654c0b4faf30e41fc49
Strict-Transport-Security: max-age=0; includeSubdomains
creepingbrings.com/sfp.js
172.64.198.30200 OK 0 B URL HTTP/2 creepingbrings.com/sfp.js
IP 172.64.198.30:0
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:39 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 47b62c2228d547097b256df8d266e56a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 04 Oct 2022 13:30:38 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Q5CEVKViqJKZCxwmkNwggOksHIhPBLCT2ZhB2n25u1zQkykMZ0Dk0DIpHHSUWiTmzqazPCJ%2B9wqbHUfVSfaRdhZAunycrBWI5qCf0B9xlOrySBNCuI0KVjpyPpU8dPgeTNSAOY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e45f7ddee88bc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html
104.26.6.19200 OK 0 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html
IP 104.26.6.19:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ameliecazneaux.blogspot.com
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:45 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 14:15:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UWOwN4euhSbtAyG%2BFCJlMtpyYuTwyC8z0cN49z%2FBVIBkrIMWqHeT8MvJYrHB%2Bn3QpAOs81sll4vQep36ja%2BAXb9RuZyN2QTDRNOWgrn0%2BRZgMtMWC9ajA6p3KSTxHKGOXkapyPs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754e461c1c100af6-OSL
content-encoding: br
X-Firefox-Spdy: h2
bestbestfree.com/01bestbestfree.js
172.67.183.31200 OK 0 B URL HTTP/2 bestbestfree.com/01bestbestfree.js
IP 172.67.183.31:0
GET /01bestbestfree.js HTTP/1.1
Host: bestbestfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ameliecazneaux.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 13:30:36 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 15:57:35 GMT
vary: Accept-Encoding
etag: W/"61e6e36f-34b8"
expires: Tue, 01 Nov 2022 08:07:12 GMT
cache-control: public, max-age=2592000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: HIT
age: 192204
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qLQMmegc89MLL8%2FNkz1QuBra5NQX1n1cyez9ijnWMLtZUjRKPC7KK%2Fovyl5JQlQrfb%2F%2Fn48SgaA5h%2BO0FDDpoxt5gaTo7EDl0EtCQ5wahPg9rDT0dFyjBohDcB7B43wUkbE1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754e45ec7fbb0b65-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2