www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
200 OK 41 kB URL User Request GET HTTP/2 www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
IP
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash bcbe20b7d109592787ca023b698c893f
e6f777d5667b6084716aa06c0220afddfa923934
51840909e8c06d6cc36c2c6fbb8670982805a3d81bf4e9cc645a47a6a58c6968
GET /2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1 HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 05 Dec 2023 13:24:25 GMT
date: Tue, 05 Dec 2023 13:24:25 GMT
cache-control: private, max-age=0
last-modified: Sun, 03 Dec 2023 16:52:21 GMT
etag: W/"66b61f9f9100a65201f42e55dfdf8834a616c360774e566de02fcb701606abac"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 41183
server: GSE
X-Firefox-Spdy: h2
www.beruang.club/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/2 www.beruang.club/js/cookienotice.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 12 Dec 2023 13:24:26 GMT
cache-control: public, max-age=604800
last-modified: Mon, 04 Dec 2023 20:05:01 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 09:35:05 GMT
expires: Fri, 29 Nov 2024 09:35:05 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 445761
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (30596)
Hash e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 19:04:19 GMT
expires: Tue, 03 Dec 2024 19:04:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Dec 2023 14:55:54 GMT
content-type: text/css
vary: Accept-Encoding
age: 66007
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3754116945-widgets.js
200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3754116945-widgets.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2258)
Hash 0f3580b0033bbd151cdb647634be7404
4d8508ef28b0e50fa8c28ccaeb1f2a6855a75bdc
38d944d88c98612f76ed693afb143f1c032ca27ba56ec46a6714ab3dc511f974
GET /static/v1/widgets/3754116945-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59286
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 01 Dec 2023 02:02:59 GMT
expires: Sat, 30 Nov 2024 02:02:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 23:28:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 386487
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-170186304-2
200 OK 69 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-170186304-2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 91f1736447d740d27b3f78b8dc5afccf
887abc6f99ecc9b697679afc2392c391e57604cc
f481c594cca96c0434f3500e38ffadd9499811a226286b319a6407b773f1dffd
GET /gtag/js?id=UA-170186304-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69006
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 05 Dec 2023 13:24:26 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM
200 OK 90 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3651)
Hash 055d04eafd4f3c3d754800cd422b412d
042bf17398a4858c1bd9893315e6a668b6c99f08
d0973e5664f3b1d5d3bb4a19d83dc3bbc12a57298403b3aea60fa39072c362d3
GET /gtag/js?id=G-XM2YCT0PTM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89732
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jwplayer.com/libraries/Wg1rABIO.js
200 OK 45 kB URL GET HTTP/2 cdn.jwplayer.com/libraries/Wg1rABIO.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerAmazon
Subjectjwplayer.com
Fingerprint1E:36:B3:05:8C:13:3B:38:7D:97:0E:97:1E:60:3F:62:06:F3:A6:33
ValidityFri, 27 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65143)
Hash 68fbaf6eb2fd383b2e4814e64d813d14
42a16aa6315a94d6fcdfa55beed4673ca7768723
6a9d5f143643c945513b32bae9559ef7b760f8a3608f7e1b0dfbc34384909a22
GET /libraries/Wg1rABIO.js HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 44854
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Tue, 05 Dec 2023 13:24:26 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bY1-nlrc_YIWa5tZiKe1Y9FoerpiPBVm9fc_EpHIGtPH6gui2SWwMg==
X-Firefox-Spdy: h2
www.beruang.club/2023/04/path/to/font-awesome/css/font-awesome.min.css
404 Not Found 27 kB URL GET HTTP/2 www.beruang.club/2023/04/path/to/font-awesome/css/font-awesome.min.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash 5f472c536d0e1b89b192b21f0799e983
12391a6de68b69feaa4ef4ee247c1631652ad686
d3f021ee97ce56a71d5277fb4bf141b21d3a48eb616f624596117054c0bb819b
GET /2023/04/path/to/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 13:24:26 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27102
server: GSE
X-Firefox-Spdy: h2
bit.ly/3cevhw2
301 Moved Permanently 207 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerDigiCert Inc
Subjectbit.ly
FingerprintA2:9E:97:EA:E4:51:06:C6:7B:BF:11:55:77:67:F5:8F:E5:7A:F7:0A
ValidityFri, 12 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d5d7885eee16c2df3538aa928f9c7b0c
3f94fa061ea8dfa96bf34815480ff34316ddb610
5e84a4cba32818f5a7173fdbc7042e068109a235abd1cb1fe152e8d3dbb76e65
GET /3cevhw2 HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/html; charset=utf-8
content-length: 207
cache-control: private, max-age=90
content-security-policy: referrer always;
location: https://1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
referrer-policy: unsafe-url
set-cookie: _bit=nb5doq-18bc9b88d2016887ed-00D; Domain=bit.ly; Expires=Sun, 02 Jun 2024 13:24:26 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.beruang.club/feeds/posts/default/-/FMN?alt=json-in-script&callback=relpostimgcuplik&max-results=50
200 OK 34 kB URL GET HTTP/2 www.beruang.club/feeds/posts/default/-/FMN?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type Unicode text, UTF-8 text, with very long lines (65506)
Hash 4d76c967693a13e0bdaa5b5fc3f79355
58aded0df083f5f73e7a34f9d43f53cba467a556
632176018443cd011ba45bbd8401287409119fb628c4c9216d625d0d62a15b91
GET /feeds/posts/default/-/FMN?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"adf85ff2f0e9efa2daa73551c9e7b7a53ef8442903ea1581ca4d2865139def76"
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 05 Dec 2023 13:24:27 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 03 Dec 2023 16:52:21 GMT
content-encoding: gzip
content-length: 34085
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:26 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c
200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash bd0095ee960afb3c1b1f5cdfc422d336
d26307f3d4393941cdbd0269c68084e0206a4b9c
3c43e490ab72d983f1e0f63f00a3825833638a2f49969f7e3a14bfb1120b7c59
GET /gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81186
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pl20230850.toprevenuegate.com/0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js
200 OK 90 kB URL GET HTTP/1.1 pl20230850.toprevenuegate.com/0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjecttoprevenuegate.com
Fingerprint7D:44:5C:97:A8:B4:D2:87:5C:7C:4E:B7:DA:3A:38:99:85:00:67:40
ValidityFri, 20 Oct 2023 09:02:00 GMT - Thu, 18 Jan 2024 09:01:59 GMT
Hash 80b0695a478c6e02a7ffb86ccb0ebadd
334f640b0f7b100a0ea2ef9f094b16755fd3b799
5215ae316de5520501b73df675ee686684bf0e860bbe36763c08152977c70905
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js HTTP/1.1
Host: pl20230850.toprevenuegate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8714ae6360363f241fa66c6055aa2b0f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog
302 Found 314 B URL GET HTTP/3 www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (422)
Hash 3fd002c4e40d0b7d4922521dccfa776a
838a880a4d08f3cd02a41aecd3a6d385dd440ac2
a0bacf58b8af6be8ac518301f8546f503de52c51e0447bb54cf9e702a1df9312
GET /blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 314
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 13:15:18 GMT
expires: Wed, 04 Dec 2024 13:15:18 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 13:15:18 GMT
expires: Wed, 04 Dec 2024 13:15:18 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 13:15:18 GMT
expires: Wed, 04 Dec 2024 13:15:18 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 548
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
200 OK 67 kB URL GET HTTP/3 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: font/woff2
content-length: 66624
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "db812d8a70a4e88e888744c1c9a27e89"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:48:08
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 60331e3a0a1026a00d6c777e6a904e89
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830c9c047b9a56a9-OSL
alt-svc: h3=":443"; ma=86400
www.beruang.club/feeds/posts/default/-/J-SUB%20INDO?alt=json-in-script&callback=relpostimgcuplik&max-results=50
200 OK 34 kB URL GET HTTP/2 www.beruang.club/feeds/posts/default/-/J-SUB%20INDO?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type Unicode text, UTF-8 text, with very long lines (65506)
Hash 2ad569981b482dabd72b21e9c64629c9
e65dae05eb5abee0929af9c85beda284c9933b96
be354003a2983fa698036ba8c966e55fc70f37ae38ee031fecaf191548f0cabc
GET /feeds/posts/default/-/J-SUB%20INDO?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"125f5c7a22778ec521470643cc0faa5f05c5e1f22f8f3e0030aa7f3ee4c43739"
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 05 Dec 2023 13:24:27 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 03 Dec 2023 16:52:21 GMT
content-encoding: gzip
content-length: 34092
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&go=true
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&go=true
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
FingerprintF3:FB:54:1B:21:E9:69:01:41:02:BB:D0:97:A2:BA:45:72:5A:71:D8
ValidityMon, 20 Nov 2023 08:09:49 GMT - Mon, 12 Feb 2024 08:09:48 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html%26type%3Dblog%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:kLQ6zEw4K9f69rd0pVJxp77rbVl7Gg:ik4OkW9BDsWFq7S8; Expires=Thu, 04-Dec-2025 13:24:27 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 13:24:27 GMT
location: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-tHsZ4JTVkGfxYqFgwHJyYg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
200 OK 407 kB URL GET HTTP/2 1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type GIF image data, version 89a, 480 x 398\012- data
Size 407 kB (406574 bytes)
Hash 23164e2ebd1c1e5ab4c40067dcce799e
0593278823aa880a8d6a39a3b9a4cf91960de196
03160613d9bedb7deeafa077bfb0d95c1bf53207abc511c8fd967730a03ed010
GET /-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd56b"
expires: Wed, 06 Dec 2023 13:24:27 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PASANG.gif"
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 13:24:27 GMT
server: fife
content-length: 406574
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
200 OK 43 B URL POST HTTP/2 fvcwqkkqmuv.com/solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
UID=2312050824a61b8ee8d0dc43089e670a4bae; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/get/1990932?zoneid=1990932&jp=_cliq7tuv3vgemyzm5r0sr9&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
200 OK 2.0 kB URL GET HTTP/2 fvcwqkkqmuv.com/get/1990932?zoneid=1990932&jp=_cliq7tuv3vgemyzm5r0sr9&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type gzip compressed data, from Unix\012- data
Hash 465021c07bfe73fa6566c8ff730a3c0c
24721a6a7a4acf3c459476b2ee2300be0862c996
286c2dc28b7a06cc10e6da9ac9b0a256439a6be4366d05e4c8944f844aae29be
GET /get/1990932?zoneid=1990932&jp=_cliq7tuv3vgemyzm5r0sr9&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
UID=231205082432c04ad09f0d489e938fb79d26; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E
ValiditySat, 28 Oct 2023 13:52:28 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
UID=23120508245774b31fc5ff453ca5a18e2be7; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
filemoon.sx/e/q6j5m0x9hpsu
200 OK 8.0 kB URL GET HTTP/2 filemoon.sx/e/q6j5m0x9hpsu
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6607), with CRLF, LF line terminators
Hash 64f9bc106eb9305ac56cd37e9e1a49b3
e8b1c73c64011ef075eb938cca309872eeffe200
864e7c16036ae7e87a427d6902516d1bceeb9f4093e337d14e7911fdaa896926
GET /e/q6j5m0x9hpsu HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/html; charset=UTF-8
expires: Mon, 04 Dec 2023 13:24:27 GMT
set-cookie: lang=1; domain=.filemoon.sx; path=/; HttpOnly
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=McuKq0sSVjnQ1Vx1nN%2F3DtjDhrgzfHYqySi8BGUdIm%2BSjQJKX%2Fz%2BwECxVK0aC8%2F7vqukLQnhVxJ1bok%2Bi3sOi%2FKiNQcNfBjPDkjYEQHeriiZ5DSF%2Bjek%2Bj1T8h5ohw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c9c044b0456c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.beruang.club/2023/04/xxxxx
404 Not Found 27 kB URL GET HTTP/2 www.beruang.club/2023/04/xxxxx
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash 3ee8a7ba5fba0a6ad28230047591e332
fc8d8c995d0ad51cfaea7ae172e4fa0e7b451ad7
2e52d0c6fe535ef6a35463b99dceae9c7bc386e1f6a828e474d4f348695e867f
GET /2023/04/xxxxx HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Cookie: faceLike=liked; _ga_EQ87SLSFFF=GS1.1.1701782672.1.0.1701782672.0.0.0; _ga=GA1.1.2103348314.1701782673; _ga_XM2YCT0PTM=GS1.1.1701782672.1.0.1701782672.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 13:24:27 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27096
server: GSE
X-Firefox-Spdy: h2
cdn.fluidplayer.com/v3/current/fluidplayer.min.js
200 OK 92 kB URL GET HTTP/2 cdn.fluidplayer.com/v3/current/fluidplayer.min.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectfluidplayer.com
FingerprintF7:9C:B4:85:DA:61:E8:2F:F4:BD:0B:E8:14:8A:4D:C1:80:00:1F:DD
ValidityThu, 05 Oct 2023 14:55:10 GMT - Wed, 03 Jan 2024 14:55:09 GMT
File type ASCII text, with very long lines (65463)
Hash c54c1b00f3cf6b2a86e2456a6d52b4b1
ce82cf21672d0ca97742cceae22a6ff3ffb110ad
d9c3b8118766e0e4667e18ce8eea28f9d51cdb00297e2573c516995dda46efe2
GET /v3/current/fluidplayer.min.js HTTP/1.1
Host: cdn.fluidplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 16 Nov 2023 13:30:47 GMT
etag: W/"65561987-38863"
expires: Sat, 18 Nov 2023 12:19:01 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-77-nzt: Anl/LVA3Nzf/akwAACUTwig3Nzf/BAAAAA
x-77-nzt-ray: c1fb981994e4f38b8a246f655272bb04
x-accel-expires: @1701849502
x-accel-date: 1701763104
x-77-cache: HIT
x-77-age: 19566
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 19562
x-77-pop: copenhagenDK
X-Firefox-Spdy: h2
limurol.com/ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E
ValiditySat, 28 Oct 2023 13:52:28 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1990932/?pb=17d8b1fb5f7b1f39ecafd650c8e89e691701789867&psp=9wdEpDpVKXa9p2A4qAqZIrh-hSOVWHBbx4jXj46UcQ86BpZ-RCwgZojB9wwqWrnYGEjDmtiYLD1s6kj8YtDNH--Jt-p5V6K0iFMQZ5URu8gib5bsHCZBOdTtDZjRdDcEPVFsOQKFs7rZirkwXmECP4xbI_0LJgwsybVqp_H2n-hZye3rhSGVjVHFqWgXGzH-EDthSYqL_nthPtDXT9_uB13PDv62KERl9VN94d8m4YOf8Vaa_qbzmwhS4J3u1HD-PtFphj5ITZn6dXsTUo74134JkO2GzIILQ77hMxBRdIuiplxhiaLk_4HClmVMah1BlDNoogsXFA5ZFFBYnW8R0J7w3s3iYz6RuNqsav7cLweYMmM8_MUH0D8cna6eIoC49qEpyqX8SMFefExpyTWLIwj5vETPfumCdfIU12PWtNLRbs2rNl5ffn4Q-KvQjblHS32BwLYXXAz7dlQWQ4ERjWxUWUAmwEj5Maw1bckOt9I0JENg6atV9xuah2tO7GgT6HepSDuY3X6LsZOF0Y0ZFsqVGGIrLsf9icPXIjiVUAovMUDpYEi1CykoE4QHJVGhB9Sst83UMe6N9tlvznh0-QRqkPRoCe7N4uoAz-7Cm1B1itbjuJOsJ6GNv61l6St8FcEAa8KzSeqvJev7Sof_Ln7CGj8vYJt2t_1PPM3KC11-wByt9_7kzYw1jyfsXYXcgFPf1HopUYwCQCpu0lbzOw-XlLIvmWQi7IUT9E2peSzddg-thZMIcuLYztzd8hrCk9DTXF182DElFv-rJO0pkseyDVZrB185jbXuTqldtSfdwuhCsItPzeSqPsG-rMWQW8CBQG3EkZMb04w4uXWV4bkwa3VsiQic2w_pStDZj1LXne8t8U6kT2yjMjZZtvqalsdxXeY2AkHR-SZvLZ_nQP_QXiLybMFx3qW_RmZi_xK-up1CPVdWEPyCGOTc79rrmFnSj3YH9Mg5uxCsfg_Danyucmc4NX--3odoNs4tHuUo9NsQGlXovxQJeHwTyvbPvncIHHROL52W81sbPiUgLi-nC5aXoA2ZVxO7xn27zoOKZwhIj9uDV98vN-pgX9cEP4eSOhvG89aCh5Q4wO0WuNqByIAmKhwI-xt2DM0DbROrPgJ9NvNCWOkzboqnXszCsAddj9PHVmY7VOdlj_cCx2njN4t_IakD4lwciXUBAzCygjPMg-N1LvPfeg==&im=1&cb=_cl6pthonzo0gfouyb9ppu2&nojs=0&abvar=0&febuild=1.0.179&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=7148402447034880&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: CHCK=1; UID=2312050824b0b469717b1c4b7bbb75efbfb7
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Tue, 07 Jan 2025 13:24:27 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
mildlunch.com/bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj
200 OK 14 kB URL GET HTTP/2 mildlunch.com/bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
File type Unicode text, UTF-8 text, with very long lines (21403)
Hash 790618c44d1bbd6c21eb9201dee3b287
85c3cc14088ef122f5e575abfaf29691996b87ce
f28bd6a6bf273c3beb9cf0177d0300a414a7da13ac36129abbbc44f52cea1212
GET /bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
access-control-allow-origin: https://www.beruang.club
access-control-allow-headers: Content-Type
vary: Accept-Encoding, Origin
last-modified: Tue, 05 Dec 2023 13:24:27 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET
set-cookie: kadSlcJ=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; max-age=1733318667; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
mildlunch.com/Y.2_xapbZcWd5-0fZgGhFi0_YkTl9mync-mplqkrPsW_VulvYwmxR-kzZATBcC3_YEzFZGlHY-jJZKmLNMj_dOlPNQjRU-2TZUjVAW1_ZYTZMa3bZ-TdVejfMgW_Ui0j
200 OK 0 B URL POST HTTP/2 mildlunch.com/Y.2_xapbZcWd5-0fZgGhFi0_YkTl9mync-mplqkrPsW_VulvYwmxR-kzZATBcC3_YEzFZGlHY-jJZKmLNMj_dOlPNQjRU-2TZUjVAW1_ZYTZMa3bZ-TdVejfMgW_Ui0j
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Y.2_xapbZcWd5-0fZgGhFi0_YkTl9mync-mplqkrPsW_VulvYwmxR-kzZATBcC3_YEzFZGlHY-jJZKmLNMj_dOlPNQjRU-2TZUjVAW1_ZYTZMa3bZ-TdVejfMgW_Ui0j HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 99
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-content-type-options: nosniff
X-Firefox-Spdy: h2
coinblocktyrusmiram.com/js/jquery.chartan.js
200 OK 34 kB URL GET HTTP/2 coinblocktyrusmiram.com/js/jquery.chartan.js
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerGoogle Trust Services LLC
Subjectcoinblocktyrusmiram.com
Fingerprint8E:04:3A:86:71:99:9A:67:22:2A:8B:DF:58:16:31:37:63:D5:9E:D4
ValiditySat, 14 Oct 2023 23:30:13 GMT - Fri, 12 Jan 2024 23:30:12 GMT
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 2687d35510400b57f591f9507ed7c4a8
6f86955a322d8f604c7eda1b49724d12b3aa623a
712aaf0a918200617b378020f48206e7378a5d9fb1c309917ed31bbfc9fd586a
GET /js/jquery.chartan.js HTTP/1.1
Host: coinblocktyrusmiram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Jun 2023 17:35:46 GMT
etag: W/"648f4072-16036"
expires: Fri, 08 Dec 2023 06:15:38 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 371329
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e2P0dRCEAwcqH7n6rdyAUTHeO173wHU158TeqaGDtXLMuQ1ejiATVULdqicwWKXrfDhjAjGLgK5Fc1RBigjppF0%2Fz3MGhjp3clTEIwYXgrsnMi40cxbQgupAVoo%2FkK6vd8R0gKGBCpMizQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c076d4b0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.blogger.com/static/v1/v-css/2223071481-static_pages.css
200 OK 1.4 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/2223071481-static_pages.css
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (3841)
Hash abd7446453ccdc733ba0a08169aff6c9
5c6954a63f01d55721edaa6236c5815087635333
bc75b808f349e4fcec454de341b7f80ff44fccd902b0e1109e18d5b3a35b7de3
GET /static/v1/v-css/2223071481-static_pages.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 02:02:33 GMT
expires: Wed, 04 Dec 2024 02:02:33 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Dec 2023 15:55:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 40914
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js
200 OK 8.1 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (524)
Hash 1c4256076fac77893331db4f22a9a41a
eb8a7de989615278406bee51533b6f4f6a71c841
57f24a99b10ad3f6431e857b33b26015c29c4cccced30375d222a35f0c4f9bb1
GET /static/v1/jsbin/671481879-analytics_autotrack.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 8121
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 01:15:43 GMT
expires: Wed, 04 Dec 2024 01:15:43 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 05 Dec 2023 00:58:09 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 43724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash ec6a5f63d0e2893f0b3fd4b2f5d94fdd
6b1325e38f83763e19e90f6fc12953ff91f66506
5e8a0ea091c2da3088550f480e36338d8a0570ad2bde23c22787162115e1e733
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.beruang.club
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=821d96d3-1a42-4a21-8787-eaf0c57a964c:2:1; expires=Fri, 02 Dec 2033 13:24:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
200 OK 1.2 kB URL GET HTTP/3 fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 5a023045e2fb8be909bfdab40a97967c
9b3b402fa6500751d16406f89cbd6b705d1f581e
0f747247aebaac20432fb0409beccc39d741c6532117c21f861b558d6d7b14bc
GET /css?lang=no&family=Product+Sans|Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 13:24:27 GMT
date: Tue, 05 Dec 2023 13:24:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/css/maia.css
200 OK 12 kB URL GET HTTP/2 www.google.com/css/maia.css
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
File type Unicode text, UTF-8 text, with very long lines (43499), with no line terminators
Hash 9e914fd11c5238c50eba741a873f0896
950316ffef900ceecca4cf847c9a8c14231271da
8684a32d1a10d050a26fc33192edf427a5f0c6874c590a68d77ae6e0d186bd8a
GET /css/maia.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 12181
date: Tue, 05 Dec 2023 13:24:27 GMT
expires: Tue, 05 Dec 2023 13:24:27 GMT
cache-control: private, max-age=0
last-modified: Mon, 25 May 2020 08:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
filemoon.sx/images/dl.svg
200 OK 831 B URL GET HTTP/3 filemoon.sx/images/dl.svg
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 6f2a6c255b5823b1a1f086ca5bf8f73c
ab10f462551036ea6acbe64e25a0990d9e638ff0
7315d31dc0d41bcc4f14f167fe3c2ea29cdbef4ceef6b0e5c66678a738420196
GET /images/dl.svg HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:28 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 20:08:57 GMT
etag: W/"633206d9-208"
expires: Sat, 09 Dec 2023 07:13:56 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 281432
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hsU%2BojWLVeYsyPZQ380JYsbW391f4Fch58CRjXqRzoY0QOj3BhslygknpZ4zWJyvR7qiQCWuHjFuuqcVYeYBW9HObe1ysPVL3EQt99YN3tyAax2Bzz%2FEnh%2FdInr1BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0b9dfa5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
apis.google.com/js/plusone.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/plusone.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT
File type ASCII text, with very long lines (2664)
Hash 12476fdc6b8599d03eac729748337611
7a15dc04ad6e77026bf45927b78247411e3e0466
c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Tue, 05 Dec 2023 13:24:28 GMT
expires: Tue, 05 Dec 2023 13:24:28 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "b82ec1e6cb6f99ed"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=MR6wL6xSsVyT494BQXLLhxrzTMl9ImQpyPYePIxq33gd4PjYZL0PCDsnjy5k1rqjUP4TKcyeSMeYIOoWvp_DMCnN9t-WGkWLFr-IahEIKkJQKatXSkNBYJUn3w4CVDc0D3iHo6udVO0t5OmXbaGacD1N9jsCU6DcG-UQ-eJNwaw; expires=Wed, 05-Jun-2024 13:24:28 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=64cbc34c-ffc8-44a2-8719-57a6937b3c09
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=64cbc34c-ffc8-44a2-8719-57a6937b3c09
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=64cbc34c-ffc8-44a2-8719-57a6937b3c09 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 13:24:28 GMT
last-modified: Tue, 05 Dec 2023 13:24:28 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 462414
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
200 OK 19 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 18656, version 1.0\012- data
Hash 2bf19e2e53e85d0308ac3a906565f915
462500c7fcf76cf3dcee0348aa13297bd532ff58
e88f421b2498fd4ff75eeb6df1d0e8b5e1f038007350ad968d4f258cbe50a02c
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:21:52 GMT
expires: Fri, 29 Nov 2024 23:21:52 GMT
cache-control: public, max-age=31536000
age: 396156
last-modified: Wed, 13 Sep 2023 23:30:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
friendshipmale.com/sfp.js
200 OK 56 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0e47e1d7d28c768474bca75f1c422f3b
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 05 Dec 2023 13:24:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jyc0OSyvmxoTfq5bGcTTiy55OdrFgmADCrJjnW8tFq4mMVyH%2BVTjLccH%2FfPmquS5LaN5x4baCCHPqT%2FPneWbbTKVLCzK1pl3WlSzBlSEXeUmxsoC5X0AOb%2B7IRpZEwx3h1WPaGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0a282cb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.beruang.club/favicon.ico
200 OK 412 B URL GET HTTP/2 www.beruang.club/favicon.ico
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Cookie: _ga_EQ87SLSFFF=GS1.1.1701782672.1.0.1701782672.0.0.0; _ga=GA1.1.2103348314.1701782673; _ga_XM2YCT0PTM=GS1.1.1701782672.1.0.1701782672.0.0.0; __PPU___PPU_SESSION_URL=%2F2023%2F04%2Fngentot-kakak-tiri-sepanjang-hari.html; popup_facebook_box42=yes; popup_facebook_boxa44=no; popup_facebook_box4=no; popup_facebook_box856=no; popup_facebook_box56=no; popup_facebook_box75=no
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Tue, 05 Dec 2023 13:24:28 GMT
date: Tue, 05 Dec 2023 13:24:28 GMT
cache-control: private, max-age=86400
last-modified: Sun, 03 Dec 2023 16:52:21 GMT
etag: W/"66b61f9f9100a65201f42e55dfdf8834a616c360774e566de02fcb701606abac"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
X-Firefox-Spdy: h2
www.gstatic.com/og/_/ss/k=og.qtm.tOvbPKBHyB0.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtGpvA4QxWjz3CFtEGdLEt7pEc9Mw
200 OK 669 B URL GET HTTP/2 www.gstatic.com/og/_/ss/k=og.qtm.tOvbPKBHyB0.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtGpvA4QxWjz3CFtEGdLEt7pEc9Mw
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1722), with no line terminators
Hash 3777ec01def0c49334f9e6071faf5e61
f2b21ca2e2de38a966ffd95fa41309f2d0aa2977
baef7154ddbd4c35e989534bfb275e1bbb3e722dc9c3eafb5be315ee6dddd687
GET /og/_/ss/k=og.qtm.tOvbPKBHyB0.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtGpvA4QxWjz3CFtEGdLEt7pEc9Mw HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 12:31:02 GMT
expires: Wed, 04 Dec 2024 12:31:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 04:36:32 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 3206
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
200 OK 663 B URL GET HTTP/2 www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1660), with no line terminators
Hash 554640f465eb3ed903b543dae0a1bcac
e0e6e2c8939008217eb76a3b3282ca75f3dc401a
99bf4aa403643a6d41c028e5db29c79c17cbc815b3e10cd5c6b8f90567a03e52
GET /images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 663
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:18:04 GMT
expires: Tue, 03 Dec 2024 23:18:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Dec 2021 12:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 50784
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/img/blogger-logotype-color-black-1x.png
200 OK 1.2 kB URL GET HTTP/3 www.blogger.com/img/blogger-logotype-color-black-1x.png
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 112 x 27, 8-bit colormap, non-interlaced\012- data
Hash a9d652846aeacdf8da5401f6e4d4a409
6127321cafe0be999bc0c9d952715ede2b9dd83d
cbad27c35fbc84e2da4280476adeb197566db2750b8b4a79eb7e872db8d8acb7
GET /img/blogger-logotype-color-black-1x.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1155
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 01:16:39 GMT
expires: Tue, 12 Dec 2023 01:16:39 GMT
cache-control: public, max-age=604800
last-modified: Mon, 04 Dec 2023 15:55:37 GMT
content-type: image/png
age: 43669
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/master.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
200 OK 342 B URL GET HTTP/1.1 be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/master.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectcdn112.com
Fingerprint79:C1:DD:C0:8D:6C:63:A2:9A:4A:C5:4F:5F:7F:7A:64:67:C8:95:28
ValiditySun, 24 Sep 2023 16:43:01 GMT - Sat, 23 Dec 2023 16:43:00 GMT
Hash 683522d849ff4ae10af44e1a65253805
9f4d96672321f522c63a3583e1859432ab078f43
945dc9638c82ebb28a1710cbb31f0985a7699a06cddd5646ff1e2a9880bd9b46
GET /hls2/01/03806/q6j5m0x9hpsu_h/master.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000 HTTP/1.1
Host: be4242.rcr52.ams03.cdn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filemoon.sx
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:28 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Tue, 05 Dec 2023 13:24:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 08 Dec 2023 13:24:28 GMT
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: MISS
Content-Encoding: gzip
www.gstatic.com/og/_/js/k=og.qtm.en_US.bzF-LaXn39U.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtGj0ppAB9TeeShbTNSI3bE_iNr4Q
200 OK 59 kB URL GET HTTP/2 www.gstatic.com/og/_/js/k=og.qtm.en_US.bzF-LaXn39U.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtGj0ppAB9TeeShbTNSI3bE_iNr4Q
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1551)
Hash c4d54b589b0ca65fa43b737b8414a124
9d4aa3b329c8769e742d15807d8e6bf7187a6fd5
780d7d73ccf8b87eff019c253a7a4e42fcd5591d72348aeb004135066196336d
GET /og/_/js/k=og.qtm.en_US.bzF-LaXn39U.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtGj0ppAB9TeeShbTNSI3bE_iNr4Q HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 58836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 12:30:52 GMT
expires: Wed, 04 Dec 2024 12:30:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Dec 2023 02:31:03 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 3216
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
200 OK 56 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 4a256001cbbe7af37c71afbd89ba1656
4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd
5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55751
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 04:34:12 GMT
expires: Wed, 04 Dec 2024 04:34:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 31816
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.q86ihocu0HA.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9gC2cqySYcBh8kT9LMyuiwdwIYGQ/cb=gapi.loaded_0
200 OK 41 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.q86ihocu0HA.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9gC2cqySYcBh8kT9LMyuiwdwIYGQ/cb=gapi.loaded_0
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 3898b5ce3092170b3be4c6d959f4490b
65cd0e7ee8b2d8fca66c5c8836234f16700b098b
3e14a8c1b9a0bb7b7b36cd163d168074b385572518dbe6cbc66115880c701996
GET /_/scs/abc-static/_/js/k=gapi.gapi.en.q86ihocu0HA.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9gC2cqySYcBh8kT9LMyuiwdwIYGQ/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 40994
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 05:55:53 GMT
expires: Wed, 04 Dec 2024 05:55:53 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 21:49:34 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 26915
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/index-v1-a1.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
200 OK 1.9 kB URL GET HTTP/1.1 be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/index-v1-a1.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectcdn112.com
Fingerprint79:C1:DD:C0:8D:6C:63:A2:9A:4A:C5:4F:5F:7F:7A:64:67:C8:95:28
ValiditySun, 24 Sep 2023 16:43:01 GMT - Sat, 23 Dec 2023 16:43:00 GMT
Hash b37fc53095a7ffc4802af57eb572ff65
5e15f93703a773412426b8e4b2e176df456a6704
6d72a782ce55df35b5aa696c87c3f4186a4609c5a49a9fbf371a93026407561f
GET /hls2/01/03806/q6j5m0x9hpsu_h/index-v1-a1.m3u8?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000 HTTP/1.1
Host: be4242.rcr52.ams03.cdn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filemoon.sx
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:28 GMT
Content-Type: application/vnd.apple.mpegurl
Last-Modified: Tue, 05 Dec 2023 13:24:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Fri, 08 Dec 2023 13:24:28 GMT
Access-Control-Allow-Origin: *
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: MISS
Content-Encoding: gzip
sensualtestresume.com/sbar.json?key=0cba6f1e0cf973621a3090eac4e61908
200 OK 4.2 kB URL GET HTTP/1.1 sensualtestresume.com/sbar.json?key=0cba6f1e0cf973621a3090eac4e61908
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectsensualtestresume.com
Fingerprint8A:B9:2B:DF:06:40:60:0F:2B:17:C0:4F:CF:AA:B5:00:E4:03:D3:A0
ValidityTue, 28 Nov 2023 11:01:45 GMT - Mon, 26 Feb 2024 11:01:44 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5798), with no line terminators
Hash b45d70bbb40fbf7c2066831f4d011aa8
bea66d33de6a7af8057f317d63d4363dc8e5789f
6ea5febeeca57b471470d57284ee803804f142dfd80ce59e6fa365b5a61e66a4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=0cba6f1e0cf973621a3090eac4e61908 HTTP/1.1
Host: sensualtestresume.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:28 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.beruang.club
Access-Control-Allow-Origin: https://www.beruang.club
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20130351; expires=Wed, 06 Dec 2023 13:24:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 13:24:28 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 13:24:28 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 06 Dec 2023 13:24:28 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 06 Dec 2023 13:24:28 GMT; secure; SameSite=None
slec0cba6f1e0cf973621a3090eac4e61908=[4809237]; expires=Tue, 05 Dec 2023 13:24:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5b368bb1697619bff6d2635313591167
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.incompatible-singer.pro/dea777/9e933b0365d7.js
200 OK 43 kB URL GET HTTP/2 www.incompatible-singer.pro/dea777/9e933b0365d7.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectwww.incompatible-singer.pro
Fingerprint34:18:2B:EA:1A:DD:56:D8:05:29:F9:DB:B3:23:99:45:FC:12:C2:81
ValidityFri, 01 Dec 2023 07:04:26 GMT - Thu, 29 Feb 2024 07:04:25 GMT
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 784df4b25742c8fc73677ba5a5ff8d79
c636de14e11998b68c7c359a917a80a12ee4699b
1adae707ecd73d542b41f03e26391413e822960968ca7aa5cc50a439b6b4747f
GET /dea777/9e933b0365d7.js HTTP/1.1
Host: www.incompatible-singer.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ucdn/1.24.0
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=314995245, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsog41fW3hOd965Uj5PfSqLODP99yEHNfh/s/vR6hhueV2jDED1Td4QszNpqMuQg55RKoY6ehLyvar8c574+4+Vt
x-served-from: l1
x-vhostid: 103, 21470
content-encoding: br
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjAc_Lg91QW1GdEqsHKYzc3YoIqxMb61hgKqt9zrsE6F0ucTS1JWOnFz_27pe_liN0sNFKs8B54KA2Rc53PTKviL4pFBdSZoMEZIJ1mEZXAvSTMdJGF5Eoa_Vilg0I94UtoBM7Q1mcdwphkCcpWtlbovXU9IRfhJ3EJe2skyRtQLWON0H5vNkKclRHm/s1600/4BLYlNu.gif
200 OK 11 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjAc_Lg91QW1GdEqsHKYzc3YoIqxMb61hgKqt9zrsE6F0ucTS1JWOnFz_27pe_liN0sNFKs8B54KA2Rc53PTKviL4pFBdSZoMEZIJ1mEZXAvSTMdJGF5Eoa_Vilg0I94UtoBM7Q1mcdwphkCcpWtlbovXU9IRfhJ3EJe2skyRtQLWON0H5vNkKclRHm/s1600/4BLYlNu.gif
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type GIF image data, version 89a, 750 x 85\012- data
Hash 0f9d35b07035ca061350a50ebe1080b8
d2fcd5a6032b14278565d072c0e85147b1572c27
4c902ab147ade0d68a45f8ca03bb434df261acb1f38b42f2ef2c6c1dcc545332
GET /img/b/R29vZ2xl/AVvXsEjAc_Lg91QW1GdEqsHKYzc3YoIqxMb61hgKqt9zrsE6F0ucTS1JWOnFz_27pe_liN0sNFKs8B54KA2Rc53PTKviL4pFBdSZoMEZIJ1mEZXAvSTMdJGF5Eoa_Vilg0I94UtoBM7Q1mcdwphkCcpWtlbovXU9IRfhJ3EJe2skyRtQLWON0H5vNkKclRHm/s1600/4BLYlNu.gif HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-expose-headers: Content-Length
etag: "vfb6d"
expires: Wed, 06 Dec 2023 13:24:29 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4BLYlNu.gif"
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 13:24:29 GMT
server: fife
content-length: 11367
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=1040084
200 OK 1.5 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=1040084
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (412), with CRLF, LF line terminators
Hash 6e94b81ae31d24e4df483c4565606f30
93a6746c6e6e0219c46b7c6a51bf13748f5487af
9fd94dda97a73fd6c82fc60674794b56b82f16761d4477c80e5816db0e281438
GET /adshow.php?adzone=1040084 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:29 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=6cdad313f12f3b85b6bbd3f7edf60486; expires=Wed, 04-Dec-2024 13:24:27 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps42805=1; expires=Wed, 06-Dec-2023 13:24:29 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjExODA0MDY7aToxNzAyMDQxODY3O30%3D; expires=Fri, 08-Dec-2023 13:24:27 GMT; Max-Age=259198; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Fri, 08-Dec-2023 13:24:27 GMT; Max-Age=259198; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user500/33261-1617884182-0301469001617884182.png
200 OK 1.5 kB URL GET HTTP/1.1 i.jads.co/network/user500/33261-1617884182-0301469001617884182.png
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=1040084
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type PNG image data, 300 x 100, 8-bit colormap, non-interlaced\012- data
Hash a71c6a691a71340bd0749dc1fa6f67f2
93aab673319770c9a9f4db3d59636dc91fbf1227
f9e5e435e5aa5877bbe306abb79af87ebbabf89e2eb52dd4b3122c2af281c9d5
GET /network/user500/33261-1617884182-0301469001617884182.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=6cdad313f12f3b85b6bbd3f7edf60486; imps42805=1; juicy_data_1=YToxOntpOjExODA0MDY7aToxNzAyMDQxODY3O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 13:24:29 GMT
Connection: Keep-Alive
ETag: "1617884182"
Cache-Control: max-age=15327210
Content-Length: 1470
Content-Type: image/png
Last-Modified: Thu, 08 Apr 2021 12:16:22 GMT
Accept-Ranges: bytes
X-HW: 1701782669.dop223.sk1.t,1701782669.cds252.sk1.shn,1701782669.dop223.sk1.t,1701782669.cds214.sk1.c
www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
200 OK 6.5 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (35889), with no line terminators
Hash e287450e0a5c5a5625f7ba3716c1b0cf
3287eee808b2a77f7e4ea16b148f4cd173cddb66
5ee6fb081a76cfc34678b67e894a1fa91ed96857c4d94710cb1a8cea5ea1d76b
GET /static/v1/v-css/3268905543-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:17:54 GMT
expires: Tue, 03 Dec 2024 23:17:54 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 04 Dec 2023 15:55:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 50795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash ec6a5f63d0e2893f0b3fd4b2f5d94fdd
6b1325e38f83763e19e90f6fc12953ff91f66506
5e8a0ea091c2da3088550f480e36338d8a0570ad2bde23c22787162115e1e733
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: uid_id2=821d96d3-1a42-4a21-8787-eaf0c57a964c:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:29 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.beruang.club
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sensualtestresume.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXiMK4qKLHjyIffCwrjKpnh9Jxj2IcY0EYxJ3V3Kuqq6elKnuaqq6pic5BRdkDx5mbx473yQb1CDuHyDKRAQJCDseJAfzNwjCnjzITEaGfdD93ve%2BKvi%2B9%2BrLA39BInh2vvmJ2VNas%2FlWjYbXt1QWm9KF63fDiNbozXBLZQvNm2Fv%2FLPddyPaqtG3wo%2Bk2DHzdRpRGtEoXFFWJqY3P2Gh8pN2VGvTWrNei1pN9OzT2PkAjgWIuxfkGlQ8enb7t0dQYogs%2FeGWdDuFyd%2F5MPWaFcaiGx9%2Flu1kpsyQzsrEBkiy4%2BlpGDci5OsrMNnx1AFM93DsAFyNSPBnBJ4dT2WCd48ulXINmYHHL6DsDiH1EIoNIcw9qPgxAUSM9Q1k6cN1Y0u2e8myMTsic0%2F%2BgSpHZO6vV5Cl3y9r1QvvGO0LZTKHXlJB9YZQnSFyf4piL4AqTyGKL6Di38n8kzVk6eGG0wYqribulRpCJUNo2QdzAfz4UwF8EsDnAdL4PGStdkLpYsKTRmOpKYRoNIRoLS3ErbjRXEoovBjL66PI%2BxC6D2H3kdt97KgHj1vXYP3PcNsVXBzAFSMSfLqPblyhlASlIygZQakIyoKg7FZHsXZ1Vz2MtfM8mub6NDeqgSk6B%2BzIFB2ZETDbP8gvyMvj8QSNG%2FPYkechFZwtJJGkImkvNhbqEWvQNpVMNOVC1KZLcKqCclcmjvfUiLz94lXkakTmbvwLzk7h9CmEegnMvw5WDhbrFGx70Fyi2MtOuLSeZZ2a0J4jNhXyYg7FbnCgL8hrkzWt8lchxRmZBoStkNsKn6tfCDr6%2FuC2KcnhbVM68mgjL1Sq9th4hXcKVsjg24%2FlbmlsvHrL9b95X4yJcXlyV7pijWWxyjqOfLes4ljaFWOFJD%2Buui3JN73bXvY28%2Fna5gcrq2lupXPKZEMwNSLPvbEOoUbkavj85Hle%2FzWFskNYXyH1M63KnELk%2B3D5rOcMgdUzzPMApa8Gts5nTa0ItJxhxis4efbT3%2F9fmtUH7j46NgAr7iFLK3Rtha6uwHQfzj8zKHJ79t4fjUmA62DAtQ0Oubb6weVwnToPZSuhiaR1yZM2TxYZjdtJs81ZO5KLvMUiFG4kzZtf%2FQcAAP%2F%2FAQAA%2F%2F8eBn8tdgQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 sensualtestresume.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXiMK4qKLHjyIffCwrjKpnh9Jxj2IcY0EYxJ3V3Kuqq6elKnuaqq6pic5BRdkDx5mbx473yQb1CDuHyDKRAQJCDseJAfzNwjCnjzITEaGfdD93ve%2BKvi%2B9%2BrLA39BInh2vvmJ2VNas%2FlWjYbXt1QWm9KF63fDiNbozXBLZQvNm2Fv%2FLPddyPaqtG3wo%2Bk2DHzdRpRGtEoXFFWJqY3P2Gh8pN2VGvTWrNei1pN9OzT2PkAjgWIuxfkGlQ8enb7t0dQYogs%2FeGWdDuFyd%2F5MPWaFcaiGx9%2Flu1kpsyQzsrEBkiy4%2BlpGDci5OsrMNnx1AFM93DsAFyNSPBnBJ4dT2WCd48ulXINmYHHL6DsDiH1EIoNIcw9qPgxAUSM9Q1k6cN1Y0u2e8myMTsic0%2F%2BgSpHZO6vV5Cl3y9r1QvvGO0LZTKHXlJB9YZQnSFyf4piL4AqTyGKL6Di38n8kzVk6eGG0wYqribulRpCJUNo2QdzAfz4UwF8EsDnAdL4PGStdkLpYsKTRmOpKYRoNIRoLS3ErbjRXEoovBjL66PI%2BxC6D2H3kdt97KgHj1vXYP3PcNsVXBzAFSMSfLqPblyhlASlIygZQakIyoKg7FZHsXZ1Vz2MtfM8mub6NDeqgSk6B%2BzIFB2ZETDbP8gvyMvj8QSNG%2FPYkechFZwtJJGkImkvNhbqEWvQNpVMNOVC1KZLcKqCclcmjvfUiLz94lXkakTmbvwLzk7h9CmEegnMvw5WDhbrFGx70Fyi2MtOuLSeZZ2a0J4jNhXyYg7FbnCgL8hrkzWt8lchxRmZBoStkNsKn6tfCDr6%2FuC2KcnhbVM68mgjL1Sq9th4hXcKVsjg24%2FlbmlsvHrL9b95X4yJcXlyV7pijWWxyjqOfLes4ljaFWOFJD%2Buui3JN73bXvY28%2Fna5gcrq2lupXPKZEMwNSLPvbEOoUbkavj85Hle%2FzWFskNYXyH1M63KnELk%2B3D5rOcMgdUzzPMApa8Gts5nTa0ItJxhxis4efbT3%2F9fmtUH7j46NgAr7iFLK3Rtha6uwHQfzj8zKHJ79t4fjUmA62DAtQ0Oubb6weVwnToPZSuhiaR1yZM2TxYZjdtJs81ZO5KLvMUiFG4kzZtf%2FQcAAP%2F%2FAQAA%2F%2F8eBn8tdgQAAA%3D%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectsensualtestresume.com
Fingerprint8A:B9:2B:DF:06:40:60:0F:2B:17:C0:4F:CF:AA:B5:00:E4:03:D3:A0
ValidityTue, 28 Nov 2023 11:01:45 GMT - Mon, 26 Feb 2024 11:01:44 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXiMK4qKLHjyIffCwrjKpnh9Jxj2IcY0EYxJ3V3Kuqq6elKnuaqq6pic5BRdkDx5mbx473yQb1CDuHyDKRAQJCDseJAfzNwjCnjzITEaGfdD93ve%2BKvi%2B9%2BrLA39BInh2vvmJ2VNas%2FlWjYbXt1QWm9KF63fDiNbozXBLZQvNm2Fv%2FLPddyPaqtG3wo%2Bk2DHzdRpRGtEoXFFWJqY3P2Gh8pN2VGvTWrNei1pN9OzT2PkAjgWIuxfkGlQ8enb7t0dQYogs%2FeGWdDuFyd%2F5MPWaFcaiGx9%2Flu1kpsyQzsrEBkiy4%2BlpGDci5OsrMNnx1AFM93DsAFyNSPBnBJ4dT2WCd48ulXINmYHHL6DsDiH1EIoNIcw9qPgxAUSM9Q1k6cN1Y0u2e8myMTsic0%2F%2BgSpHZO6vV5Cl3y9r1QvvGO0LZTKHXlJB9YZQnSFyf4piL4AqTyGKL6Di38n8kzVk6eGG0wYqribulRpCJUNo2QdzAfz4UwF8EsDnAdL4PGStdkLpYsKTRmOpKYRoNIRoLS3ErbjRXEoovBjL66PI%2BxC6D2H3kdt97KgHj1vXYP3PcNsVXBzAFSMSfLqPblyhlASlIygZQakIyoKg7FZHsXZ1Vz2MtfM8mub6NDeqgSk6B%2BzIFB2ZETDbP8gvyMvj8QSNG%2FPYkechFZwtJJGkImkvNhbqEWvQNpVMNOVC1KZLcKqCclcmjvfUiLz94lXkakTmbvwLzk7h9CmEegnMvw5WDhbrFGx70Fyi2MtOuLSeZZ2a0J4jNhXyYg7FbnCgL8hrkzWt8lchxRmZBoStkNsKn6tfCDr6%2FuC2KcnhbVM68mgjL1Sq9th4hXcKVsjg24%2FlbmlsvHrL9b95X4yJcXlyV7pijWWxyjqOfLes4ljaFWOFJD%2Buui3JN73bXvY28%2Fna5gcrq2lupXPKZEMwNSLPvbEOoUbkavj85Hle%2FzWFskNYXyH1M63KnELk%2B3D5rOcMgdUzzPMApa8Gts5nTa0ItJxhxis4efbT3%2F9fmtUH7j46NgAr7iFLK3Rtha6uwHQfzj8zKHJ79t4fjUmA62DAtQ0Oubb6weVwnToPZSuhiaR1yZM2TxYZjdtJs81ZO5KLvMUiFG4kzZtf%2FQcAAP%2F%2FAQAA%2F%2F8eBn8tdgQAAA%3D%3D HTTP/1.1
Host: sensualtestresume.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: abeec8377164036d71df65795b37de41
Strict-Transport-Security: max-age=0; includeSubdomains
www.blogger.com/static/v1/jsbin/2351264005-lbx.js
200 OK 123 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/2351264005-lbx.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document, ASCII text, with very long lines (1491)
Size 123 kB (123113 bytes)
Hash ac4254aa6ce0a9504f9d819e68a8b0c1
5577aee2961ed66736d47729ef70dbb67a824e73
4e86b2f0af8a3d94be0d00ab6219954d3ca0928ad84be58aa83016dff847084b
GET /static/v1/jsbin/2351264005-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 123113
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 22:14:06 GMT
expires: Tue, 03 Dec 2024 22:14:06 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Nov 2023 23:28:54 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 54623
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cloudimagesb.com/si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png
200 OK 72 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash cc0b8f448e52478367983e7abd9d779c
a176f0e62046363620eeb2697377549b836627d0
f5e95baa4df0d9ebca12e0e660306ac50d257b980dff5f18df8058900a51a063
GET /si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:29 GMT
content-type: image/png
content-length: 71644
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 14:19:11 GMT
etag: "656ddfdf-117dc"
expires: Thu, 07 Dec 2023 13:24:29 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 03:54:00 GMT
expires: Wed, 04 Dec 2024 03:54:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 34230
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 462416
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/seg-1-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
200 OK 3.1 MB URL GET HTTP/1.1 be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/seg-1-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectcdn112.com
Fingerprint79:C1:DD:C0:8D:6C:63:A2:9A:4A:C5:4F:5F:7F:7A:64:67:C8:95:28
ValiditySun, 24 Sep 2023 16:43:01 GMT - Sat, 23 Dec 2023 16:43:00 GMT
File type MPEG transport stream data\012- data
Size 3.1 MB (3101624 bytes)
Hash 0ffc4af2d08008fa9bdc5a1ab33b66b3
b5ab67746d6379748bfcc470646725e3fd783da7
f20011156cbe9fb0176bf1fa6556156759ad8748540c8f8929347cdc14e44179
GET /hls2/01/03806/q6j5m0x9hpsu_h/seg-1-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000 HTTP/1.1
Host: be4242.rcr52.ams03.cdn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filemoon.sx
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:28 GMT
Content-Type: video/MP2T
Content-Length: 3101624
Connection: keep-alive
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Expires: Fri, 08 Dec 2023 13:24:28 GMT
ETag: "5f693e80-2f53b8"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: MISS
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
200 OK 4.8 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET /sb/ssp/utility/social-media/instagram/new/4/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:30 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 10:05:22 GMT
etag: W/"63317962-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=spkZ%2Byl0lKk2LS1GAuk%2BJUNP0rzqCjyC6N4Tf0xbAj%2FGPvw7drIWGQLerwGKckeEENaDFCNoSXMuX6ohuBOqArc9cWDH17lPZiwYHRps%2Fkz%2Fr1WQGMoGqK0kwhTRvGyirVqM7IPTAwdc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c15d9e723fb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=821d96d3-1a42-4a21-8787-eaf0c57a964c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=821d96d3-1a42-4a21-8787-eaf0c57a964c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=821d96d3-1a42-4a21-8787-eaf0c57a964c&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=13 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:30 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 324cf17cd14155dbb437f6a20cfd0adf
Strict-Transport-Security: max-age=0; includeSubdomains
sensualtestresume.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 sensualtestresume.com/pixel/sbs?c=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectsensualtestresume.com
Fingerprint8A:B9:2B:DF:06:40:60:0F:2B:17:C0:4F:CF:AA:B5:00:E4:03:D3:A0
ValidityTue, 28 Nov 2023 11:01:45 GMT - Mon, 26 Feb 2024 11:01:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: sensualtestresume.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:30 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/seg-2-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
200 OK 2.7 MB URL GET HTTP/1.1 be4242.rcr52.ams03.cdn112.com/hls2/01/03806/q6j5m0x9hpsu_h/seg-2-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectcdn112.com
Fingerprint79:C1:DD:C0:8D:6C:63:A2:9A:4A:C5:4F:5F:7F:7A:64:67:C8:95:28
ValiditySun, 24 Sep 2023 16:43:01 GMT - Sat, 23 Dec 2023 16:43:00 GMT
File type MPEG transport stream data\012- TeX font metric data (\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377\377)\012- data
Size 2.7 MB (2749688 bytes)
Hash 2d38fe50db5db12ea4bd8cdf6d9bab83
4c871331b0677cfd63e1993f1121ca42fa509da0
47ec467345f3f96229501c25528c2dc968f36043c299751a475079848537856d
GET /hls2/01/03806/q6j5m0x9hpsu_h/seg-2-v1-a1.ts?t=oAXCjQuyAgWa9vcquti8fopWin2_9jcvn-zixsEz8v8&s=1701782666&e=43200&f=19033382&srv=15&asn=50304&sp=2000 HTTP/1.1
Host: be4242.rcr52.ams03.cdn112.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filemoon.sx
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 05 Dec 2023 13:24:30 GMT
Content-Type: video/MP2T
Content-Length: 2749688
Connection: keep-alive
Last-Modified: Sun, 19 Nov 2000 08:52:00 GMT
Expires: Fri, 08 Dec 2023 13:24:30 GMT
ETag: "5f693e80-29f4f8"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Cache-Control: max-age=259200, no-store, no-cache
Sprint-Cache: MISS
filemoon.sx/js/xupload.js
200 OK 11 kB URL GET HTTP/3 filemoon.sx/js/xupload.js
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
Hash 2609e3a9490dcfe748407d3af317c472
af55b2b16e9190e09407f67ffae4ca705ea6f112
c3c7c3de97ef15965def93fc9317e82854b979aa1a7980fde49b873a04aab85d
GET /js/xupload.js HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 04 Aug 2021 13:41:52 GMT
etag: W/"610a9920-2a73"
expires: Sun, 10 Dec 2023 07:44:47 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 193180
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a2xFiz6gC%2BKevh26jL3tMcOxcfvtenq2%2Fm7EbmUG26RSV3hDOj4O83kO%2BJhJeVYibOYs%2FA%2B4enoUWMVIM2OhBo5l2fEvl1buQlQT0XZOU5DOsn8HGpe0J5BM%2BNKbKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0748145687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
filemoon.sx/player/jw8/jwplayer.core.controls.js?v=2
200 OK 320 kB URL GET HTTP/3 filemoon.sx/player/jw8/jwplayer.core.controls.js?v=2
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
Size 320 kB (320409 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player/jw8/jwplayer.core.controls.js?v=2 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 08 Sep 2022 10:14:05 GMT
etag: W/"6319c06d-4e399"
expires: Thu, 07 Dec 2023 08:53:04 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 448283
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zGyKRw7dzQyTyRtb1VNzJSF45KsPdynmgJsap9NMKKg%2FzRVK4gspF47ybV%2Bbe6VQZZtoHTXWfu7xKXgLp7dTDrhdSYerH%2Fj5kvNktOssawx1FiEhLOxt40Iv8a%2BdhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c093a9f5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:48:09 GMT
expires: Fri, 29 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 462978
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 6.8 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 13:24:29 GMT
date: Tue, 05 Dec 2023 13:24:29 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
filemoon.sx/js/jquery.js
200 OK 90 kB IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /js/jquery.js HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
etag: W/"603e8adc-15d9d"
expires: Tue, 12 Dec 2023 02:35:25 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 38942
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uppbPxfy702ODq6Sl040NFkmMUv9%2F2U6luDL3Z6%2F89q1o1B6i32FACrqdAnTic2Y38aFtBdT0nhdPnheJ8KYme%2FXXcEfmsrAkUhhS7Av3l%2FUEynKmq3blzpIaOqJlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0748105687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
filemoon.sx/js/jquery.cookie.js
200 OK 4.3 kB URL GET HTTP/3 filemoon.sx/js/jquery.cookie.js
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with very long lines (4427), with no line terminators
Hash c8a0b7f16c38377537c6ab251cb5bc72
528e37de81abf523b92ce0b457cb593983ed347a
e31179e4a4fffc7faee4f95d4f67ce056d12a57c451dee1dae3e9062b126a00e
GET /js/jquery.cookie.js HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 31 May 2011 12:53:56 GMT
etag: W/"4de4e4e4-10eb"
expires: Mon, 11 Dec 2023 07:46:54 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 106653
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2FZUjmyZkRs%2FIODk2JNlVcp4QF03CVBYaiIcnsTsjQDfZJBFUhcgNyUTWPq8E6lfDb3SQpm5WT1dRLJHRawpf5kNqn555QhqkX9utaF3AjULcirfwLOUAnMH%2B7XZ5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0748185687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
200 OK 717 kB URL GET HTTP/2 unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 717 kB (717184 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"af180-yddBL+N7CRgyB07pxWVoSeh+9Bw"
via: 1.1 fly.io
fly-request-id: 01HFTCM2M15W2XX1XCMRKBJ1CQ-arn
cf-cache-status: HIT
age: 1163703
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9c00b8d70b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800
200 OK 28 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash 3e3f262b81699cff226ddfd43e81c0bf
60f993b3a4d1f6f31c191e981951d0117f15600e
b13d4ba577f8a1e50ca84576732bd47c5608583931791b476d06bf7bed513585
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 13:24:26 GMT
date: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
filemoon.sx/player/jw8/jwplayer.js?v=4
200 OK 119 kB URL GET HTTP/3 filemoon.sx/player/jw8/jwplayer.js?v=4
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
Size 119 kB (118741 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player/jw8/jwplayer.js?v=4 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 05 Mar 2023 15:27:04 GMT
etag: W/"6404b4c8-1cfd5"
expires: Wed, 06 Dec 2023 04:06:30 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 551877
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E%2FDXnMbjiAWT3kNaIk7xx%2BAmKzJ03wqDy2Pl5tvXK5txYh2SdrNg2FwqQKrnLOdr1b4lRMP0HjXnW3dCGP9wTszIQ6ukZcGOKqnU4r%2BTNNfJ8DVZx%2Fj7PRS1LIPCCw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c07582c5687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.staticaly.com/gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js
0 B URL GET cdn.staticaly.com/gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js HTTP/1.1
Host: cdn.staticaly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
filemoon.sx/css/main.css?v=2
200 OK 39 kB URL GET HTTP/3 filemoon.sx/css/main.css?v=2
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with very long lines (39049), with no line terminators
Hash 3ff1cee031b61154bd628b108495b1ba
921896975849511fbfd83cfddd4cf2ed7c65e293
d54bf20830cbc6afbd1a739156777c40abc1da92eec8a8a43d90405857472197
GET /css/main.css?v=2 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: text/css
cache-control: max-age=2678400
cf-bgj: minify
cf-polished: origSize=49231
etag: W/"6522de18-c04f"
expires: Sat, 09 Dec 2023 06:06:03 GMT
last-modified: Sun, 08 Oct 2023 16:51:36 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 285504
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S5V%2FhXTIvUaetoHHG0z5OflgsgsUzOszCsAaUEJ%2F%2FUdkcTNOvV03aLuTipMoH7pU0hii4K5RL6sCPIol9Q4yOXpQL1vVQJCl%2FAmoEVxqqMbFsmgNBQsy92k7EWdyCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0738095687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/video.js@8.6.1/dist/video.js
200 OK 2.2 MB URL GET HTTP/2 unpkg.com/video.js@8.6.1/dist/video.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 2.2 MB (2226543 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js@8.6.1/dist/video.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"21f96f-p9MFQLR18a5uiDlNiROPeiAZXDw"
via: 1.1 fly.io
fly-request-id: 01HFTK251R2D40PK0BT94XDTS8-arn
cf-cache-status: HIT
age: 1156950
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9c00e8f20b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
filemoon.sx/player/jw8/provider.hlsjs.js?v=2
200 OK 374 kB URL GET HTTP/3 filemoon.sx/player/jw8/provider.hlsjs.js?v=2
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
Size 374 kB (374134 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player/jw8/provider.hlsjs.js?v=2 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 05 Mar 2023 15:25:08 GMT
etag: W/"6404b454-5b576"
expires: Mon, 11 Dec 2023 05:39:02 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 114324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E53bjsfVt4z5H8qlZSgmgLKDXB5%2FUPGIvVKr0N0vFedDYaSoy9cUFdYQEsFf%2B3o3MqfoOaY%2FM5d%2FKTmzoeIOreQyfP5vmTQyg%2Bk5E9jZrgqKkO6t%2BfzwpxE%2FGdLY0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c094aa85687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:300
200 OK 2.9 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Open+Sans:300
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (2967), with no line terminators
Hash 80813f4f3e2e87ae1537b70663ba3399
e2d1a0120591483e9b7947cf780ffc1fe87e2d3c
ccfdc20a84580cca4432b1de5e2d47b8f05bd3b7b406b905f9200830a03df2ca
GET /css?family=Open+Sans:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 13:24:27 GMT
date: Tue, 05 Dec 2023 13:24:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
200 OK 127 kB URL GET HTTP/3 www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
Size 127 kB (126553 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /blogin.g?blogspotURL=https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html&type=blog&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 05 Dec 2023 13:24:27 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 39657
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiGN-CSm4qulESS5bz8rEpTR9GjjX8rS8k2PRQKIlYKtoD-4wnfFPsbHBP8DpIeFXZY5flwUZw7xPTimiGGmLVPlj_nEivzqqb3Vp7c2xPxpjj-61wlshG2TimFCD-p5Zf3cD0pLUpaAVVdMigU-0fF-6G7s80Vsa28N1nL46r0mO7qmcXpghCnvMmk/s320/aa.jpg
200 OK 17 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiGN-CSm4qulESS5bz8rEpTR9GjjX8rS8k2PRQKIlYKtoD-4wnfFPsbHBP8DpIeFXZY5flwUZw7xPTimiGGmLVPlj_nEivzqqb3Vp7c2xPxpjj-61wlshG2TimFCD-p5Zf3cD0pLUpaAVVdMigU-0fF-6G7s80Vsa28N1nL46r0mO7qmcXpghCnvMmk/s320/aa.jpg
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 170x255, components 3\012- data
Hash 4ffa264c3d9fe69a525856ae64889763
7cf542e74ef06f043611d5c9923419c0677a0d99
73005b31223da7b407bfbadd8c118ddff132ca28b275ea4ad528a3df961e9a59
GET /img/b/R29vZ2xl/AVvXsEiGN-CSm4qulESS5bz8rEpTR9GjjX8rS8k2PRQKIlYKtoD-4wnfFPsbHBP8DpIeFXZY5flwUZw7xPTimiGGmLVPlj_nEivzqqb3Vp7c2xPxpjj-61wlshG2TimFCD-p5Zf3cD0pLUpaAVVdMigU-0fF-6G7s80Vsa28N1nL46r0mO7qmcXpghCnvMmk/s320/aa.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v1198a"
expires: Wed, 06 Dec 2023 13:24:28 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="aa.jpg"
x-content-type-options: nosniff
date: Tue, 05 Dec 2023 13:24:28 GMT
server: fife
content-length: 16883
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js
302 Found 717 kB URL GET HTTP/2 unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 717 kB (717184 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videojs-contrib-hls/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGX1VBXXWD63300CM1T9D11Z-fra
cf-cache-status: HIT
age: 593
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9bfe9e920b51-OSL
X-Firefox-Spdy: h2
filemoon.sx/js/ls.js
200 OK 2.1 kB IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with very long lines (2079), with no line terminators
Hash 66b63b5fefbe179c0fd09e63c11b7e12
e657b7d46921bec0bcbd746339ccc03ef4690036
52eb05218aa889bcc3b78062d496c747a04db5126648bd3a57cf8c43e3039bf2
GET /js/ls.js HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 14 Feb 2023 11:28:54 GMT
etag: W/"63eb7076-80f"
expires: Thu, 07 Dec 2023 07:51:28 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451979
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2BoJ7gSrd9xJoI29SJIkeiXy6fZURrByX0Uk8f2KLFFneo%2BAjXwI2C%2FlRJ9sGac73706gEWM3jk3HqntGvWk%2FOenQ1bmnvkzWkRy%2FVmPkUAYMCq2Ty0mCbHOs2yiJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0748195687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
unpkg.com/video.js@8.6.1/dist/video-js.css
200 OK 52 kB URL GET HTTP/2 unpkg.com/video.js@8.6.1/dist/video-js.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (7288)
Hash 44e9d576b868846f76a7fe15713d455e
e6deef9c1cbc85dbb1d8c90a3fdcf5be47623955
4398326f7e2725e7813cb5d11c650a7890fe1605a9d56bce34d7454eeb79dcb1
GET /video.js@8.6.1/dist/video-js.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"cb63-5t7vnBy8hdux2MkKP9z1vkdiOVU"
via: 1.1 fly.io
fly-request-id: 01HG7H6TMWWYVRW9M64SGNX765-arn
cf-cache-status: HIT
age: 722686
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9c00e8f50b51-OSL
content-encoding: br
X-Firefox-Spdy: h2
mildlunch.com/Yim.xjvkYl2-tnlocpnqN_DsatGuVvj-ax2yVzyAP_2ClDjEPFX-BHzIJJmK9_0MPNUONPn-SRkS9TUUe_EWlXKYWZW-5bKcddlel_XgUhmiljZ-VlzmVnroS_2qlrCsat1-pvqwRxTyJ_ZAeBkCED0-TFVGdHNIe_UK5LUMTNX-dPOQaRlSk_xUTVkWdXF-dZ1apbXcW_melfPgRhG-xjpkTl0mR_joMpkq1rX-RtXudvPwR_EyNzMAeBW-JD5EcFkGJ_qIaJmK8Lx-UNVOEPtQJ_nSJTyUaVW-QX9YZZWaV_icZdGeRfl-NhzidjjkN_mmVnioNpm-Yr2sNt2uU_2wNxTyZzm-MBDCVDlEM_zGdHlINJW-MLxMZNTOQ_mQdRnSQT9-MVTWcXwYM_Tacb4cMdj-Yf2gNhyi0_2kMlGmYny-ZpDqkr1sM_GuFvjwNxm-Yz0AMBmCN_lEYFTGNHh-YJTKlLhMN_DOgP2QNRD-ATwUMVGWI_5YNZiaZb6-bd2e5flga_WiQj9kNlD-cn5oNpDqM_0sMtQu?b=5
200 OK 0 B URL GET HTTP/2 mildlunch.com/Yim.xjvkYl2-tnlocpnqN_DsatGuVvj-ax2yVzyAP_2ClDjEPFX-BHzIJJmK9_0MPNUONPn-SRkS9TUUe_EWlXKYWZW-5bKcddlel_XgUhmiljZ-VlzmVnroS_2qlrCsat1-pvqwRxTyJ_ZAeBkCED0-TFVGdHNIe_UK5LUMTNX-dPOQaRlSk_xUTVkWdXF-dZ1apbXcW_melfPgRhG-xjpkTl0mR_joMpkq1rX-RtXudvPwR_EyNzMAeBW-JD5EcFkGJ_qIaJmK8Lx-UNVOEPtQJ_nSJTyUaVW-QX9YZZWaV_icZdGeRfl-NhzidjjkN_mmVnioNpm-Yr2sNt2uU_2wNxTyZzm-MBDCVDlEM_zGdHlINJW-MLxMZNTOQ_mQdRnSQT9-MVTWcXwYM_Tacb4cMdj-Yf2gNhyi0_2kMlGmYny-ZpDqkr1sM_GuFvjwNxm-Yz0AMBmCN_lEYFTGNHh-YJTKlLhMN_DOgP2QNRD-ATwUMVGWI_5YNZiaZb6-bd2e5flga_WiQj9kNlD-cn5oNpDqM_0sMtQu?b=5
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Yim.xjvkYl2-tnlocpnqN_DsatGuVvj-ax2yVzyAP_2ClDjEPFX-BHzIJJmK9_0MPNUONPn-SRkS9TUUe_EWlXKYWZW-5bKcddlel_XgUhmiljZ-VlzmVnroS_2qlrCsat1-pvqwRxTyJ_ZAeBkCED0-TFVGdHNIe_UK5LUMTNX-dPOQaRlSk_xUTVkWdXF-dZ1apbXcW_melfPgRhG-xjpkTl0mR_joMpkq1rX-RtXudvPwR_EyNzMAeBW-JD5EcFkGJ_qIaJmK8Lx-UNVOEPtQJ_nSJTyUaVW-QX9YZZWaV_icZdGeRfl-NhzidjjkN_mmVnioNpm-Yr2sNt2uU_2wNxTyZzm-MBDCVDlEM_zGdHlINJW-MLxMZNTOQ_mQdRnSQT9-MVTWcXwYM_Tacb4cMdj-Yf2gNhyi0_2kMlGmYny-ZpDqkr1sM_GuFvjwNxm-Yz0AMBmCN_lEYFTGNHh-YJTKlLhMN_DOgP2QNRD-ATwUMVGWI_5YNZiaZb6-bd2e5flga_WiQj9kNlD-cn5oNpDqM_0sMtQu?b=5 HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
200 OK 7.6 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (8106), with no line terminators
Hash 83de8b4bf040e193fcc2cae881ad9bfa
6da4ac90cb0059a2dd698ad9ecb294f3dae99a4a
88e65386dff64696b61a8f5a62281b94e1b27c79458177f2f375190a7b78e460
GET /sb/ssp/utility/social-media/instagram/new/4/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:29 GMT
content-type: text/css
last-modified: Fri, 30 Sep 2022 09:41:34 GMT
etag: W/"6336b9ce-1dda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qq9LrDv1u31%2FbLWQh6WAjpWnpBcvK%2FGQDbDdapVWYX%2BZyqWuLrRST8eMG6QmM4QxQve75XXZsOe%2F79opQ1z%2BDLYMmlgR0VgeV9fXHSwG4V2szVv%2BBCi40ATNSTCweyUiLD3YJaRNfCma"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c15e9fc23fb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
unpkg.com/video.js/dist/video.js
302 Found 2.2 MB URL GET HTTP/2 unpkg.com/video.js/dist/video.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 2.2 MB (2226543 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js/dist/video.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /video.js@8.6.1/dist/video.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGX254401S634TY0KWAWD5P0-fra
cf-cache-status: HIT
age: 273
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9bfe9e9d0b51-OSL
X-Firefox-Spdy: h2
img-place.com/q6j5m0x9hpsu.jpg
200 OK 29 kB URL GET HTTP/2 img-place.com/q6j5m0x9hpsu.jpg
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerGoogle Trust Services LLC
Subjectimg-place.com
FingerprintD8:09:E7:1A:D0:EC:43:42:F1:F9:74:99:0A:A1:11:12:8B:20:6C:82
ValiditySat, 14 Oct 2023 12:12:41 GMT - Fri, 12 Jan 2024 12:12:40 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 406x405, segment length 16, comment: "Lavc59.32.100", baseline, precision 8, 720x406, components 3\012- data
Hash 85f1d127a0ff9d704df07121870b55ad
37a6d3808eb7b8d10778493f0a00d8e42dd7681a
1ff2a9cbcc575a216827dc4fd591e73dff664b510d8c4892a4b83d88d335ea25
GET /q6j5m0x9hpsu.jpg HTTP/1.1
Host: img-place.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:28 GMT
content-type: image/jpeg
content-length: 28823
last-modified: Sun, 14 May 2023 06:17:33 GMT
etag: "64607cfd-7097"
expires: Thu, 14 Dec 2023 16:23:13 GMT
cache-control: max-age=2678400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FGw0esieAfk4m2YII8SbqZUJ5XnksfO7lMDhANR9wVTx4HWBsEHP%2FXzfdPXJhuDFbArkAmtYC45FiPwB%2FNExWl5nWrbgJOt%2BG3Ym53smFpZ35WxPi4x2EDcSNd%2BB%2BCFR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0bccc7568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/aas/r45d/vki/1990932/6f2dbff8.js
200 OK 90 kB URL GET HTTP/2 fvcwqkkqmuv.com/aas/r45d/vki/1990932/6f2dbff8.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with very long lines (65106)
Hash faf533065ee78ece0a25d02905f1f314
ee44c1306691eaabe4715f0e30fef35730e803f0
d5ed880e6bb5d95822b234994a99f4e50eadc4b1e6ecf32a6dc48a59e7a24ca1
GET /aas/r45d/vki/1990932/6f2dbff8.js HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: application/javascript
last-modified: Tue, 28 Nov 2023 11:34:35 GMT
vary: Accept-Encoding
etag: W/"6565d04b-15e20"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
200 OK 28 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint34:BC:91:5F:B9:EC:32:2C:D9:73:C7:88:C3:6C:FB:77:E7:70:8D:04
ValidityThu, 30 Nov 2023 00:15:17 GMT - Wed, 28 Feb 2024 00:15:16 GMT
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4fbd15cb6047af93373f4f895639c8bf"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:58:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 25754c75fb460a03a208e88579fbc0b3
cdn-cache: HIT
cf-cache-status: HIT
age: 886311
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 830c9c02e9d45687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
200 OK 1.2 kB URL GET HTTP/2 cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1251), with no line terminators
Hash 0c7ef29f3f978be103c93eae3c8d9df2
e334dfc2fed21f89dd67aa40505bbcbec1d047ec
9bd5468d6381f08d4dccf53f3888c98026498fe5addc46c9f57f930e6dc210aa
GET /sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:29 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Fri, 30 Sep 2022 09:26:48 GMT
etag: W/"6336b658-497"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 05 Dec 2023 14:24:29 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
sensualtestresume.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXiMK4qKLHjyIffCwrjLpnp7JzLgHMa6RYEzi7krO1VXVkzLVXU1V1%2FQkp%2BCC7MHD7M1j55tkgxrE%2FQGiTESQgLDjQXIwv0EQ9uRBZjIy7IPu9773VcH3vVdfHrgLEsLR881P9J5Uii42a4F%2FfUtmXJfWX7%2Frh0EtuOlvyWypcdPvT36m924YNGvBW%2F5Hgu3oxXoQBkEYhP6KNCLR%2FcUpC5mfdMJaJ6g16rWw2UDfPI2t82CpB967INcg%2BfjZ7d8eQbIRsvSHW8LuFDp%2F58PUKVpogx4%2F%2FizbyXSZIZ2XifGQZMez09B2TMjXV6Cz45kD6N7hxAFiOSbenyHi7HgmE3Hv6FJprCAyxPwFlL0RhBpB0hGYvgfJHxOAcaxvIEsfrmtT0t1Llk7YMVl48g9kOSYLf72CLP1%2BWcm%2Bf0crV0idWfSTCrI%2FguyOkLtTFHseZHkKVnwByX8ni0%2FWkKWHG1ZpSF5N3Us5gkxGUGIAaj24ySc9uMSDyz2k%2FNynzU4SBK0kTqKo3WCMRRFjzfYSb%2FKo0U4CODaRN0CRD8DUAMzsIzf72JEPHjevwbifYbcrWO7BFmPifbqPHq9QCoLSEpSUoJQEZUFQ9qojrmzdVg%2B5si4OZ7k%2By1E11EX3gB7poisyAmoGB%2FkFeXkyHi%2B6sYgdce4HLKZLSSgClnRa0VI9pFHQCQRlDbEUdoI2rKwg7ZWp4z05Jm%2B%2FeBW5HJOFG%2F8ipqew6hRMvgTqXgcth616ALo9bLQD7GUnsTCOZt0aUy4G1xXyYgHFrnegLshr0zWtxq9CsDMyCzBTITcVPpe%2FEHTV%2FeFtXZLD27q05NFGXshU7tHJCu8UtBDetx%2BL3VIbvnrLDr55n02ISXlyV9hijWZcZl1LvluWnAuzog0T5MdVuyXiTWe3l53JXL62%2BcHKapobYa3U2QhUjslzb6yDyTG56j8%2FfZ7Xf00hzQjGVUjdXKvUp2D5Pmw%2B71lNYNQcx7mH0lVDU4%2FnTSUJlJhjGlew4uynv%2F%2B%2FNK8P7H10jQda3EOWVuiZCj1VgaoBrHtmWOTm7L0%2FomkgVt4wVsY7jJVRDy6Ha%2BW53wwboh23W4zzWDAetupROwqCOueNVkeEHRR2LPSbX%2F0HAAD%2F%2FwEAAP%2F%2FCg7xy3YEAAA%3D
200 OK 0 B URL GET HTTP/1.1 sensualtestresume.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXiMK4qKLHjyIffCwrjLpnp7JzLgHMa6RYEzi7krO1VXVkzLVXU1V1%2FQkp%2BCC7MHD7M1j55tkgxrE%2FQGiTESQgLDjQXIwv0EQ9uRBZjIy7IPu9773VcH3vVdfHrgLEsLR881P9J5Uii42a4F%2FfUtmXJfWX7%2Frh0EtuOlvyWypcdPvT36m924YNGvBW%2F5Hgu3oxXoQBkEYhP6KNCLR%2FcUpC5mfdMJaJ6g16rWw2UDfPI2t82CpB967INcg%2BfjZ7d8eQbIRsvSHW8LuFDp%2F58PUKVpogx4%2F%2FizbyXSZIZ2XifGQZMez09B2TMjXV6Cz45kD6N7hxAFiOSbenyHi7HgmE3Hv6FJprCAyxPwFlL0RhBpB0hGYvgfJHxOAcaxvIEsfrmtT0t1Llk7YMVl48g9kOSYLf72CLP1%2BWcm%2Bf0crV0idWfSTCrI%2FguyOkLtTFHseZHkKVnwByX8ni0%2FWkKWHG1ZpSF5N3Us5gkxGUGIAaj24ySc9uMSDyz2k%2FNynzU4SBK0kTqKo3WCMRRFjzfYSb%2FKo0U4CODaRN0CRD8DUAMzsIzf72JEPHjevwbifYbcrWO7BFmPifbqPHq9QCoLSEpSUoJQEZUFQ9qojrmzdVg%2B5si4OZ7k%2By1E11EX3gB7poisyAmoGB%2FkFeXkyHi%2B6sYgdce4HLKZLSSgClnRa0VI9pFHQCQRlDbEUdoI2rKwg7ZWp4z05Jm%2B%2FeBW5HJOFG%2F8ipqew6hRMvgTqXgcth616ALo9bLQD7GUnsTCOZt0aUy4G1xXyYgHFrnegLshr0zWtxq9CsDMyCzBTITcVPpe%2FEHTV%2FeFtXZLD27q05NFGXshU7tHJCu8UtBDetx%2BL3VIbvnrLDr55n02ISXlyV9hijWZcZl1LvluWnAuzog0T5MdVuyXiTWe3l53JXL62%2BcHKapobYa3U2QhUjslzb6yDyTG56j8%2FfZ7Xf00hzQjGVUjdXKvUp2D5Pmw%2B71lNYNQcx7mH0lVDU4%2FnTSUJlJhjGlew4uynv%2F%2B%2FNK8P7H10jQda3EOWVuiZCj1VgaoBrHtmWOTm7L0%2FomkgVt4wVsY7jJVRDy6Ha%2BW53wwboh23W4zzWDAetupROwqCOueNVkeEHRR2LPSbX%2F0HAAD%2F%2FwEAAP%2F%2FCg7xy3YEAAA%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectsensualtestresume.com
Fingerprint8A:B9:2B:DF:06:40:60:0F:2B:17:C0:4F:CF:AA:B5:00:E4:03:D3:A0
ValidityTue, 28 Nov 2023 11:01:45 GMT - Mon, 26 Feb 2024 11:01:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSuXiMK4qKLHjyIffCwrjLpnp7JzLgHMa6RYEzi7krO1VXVkzLVXU1V1%2FQkp%2BCC7MHD7M1j55tkgxrE%2FQGiTESQgLDjQXIwv0EQ9uRBZjIy7IPu9773VcH3vVdfHrgLEsLR881P9J5Uii42a4F%2FfUtmXJfWX7%2Frh0EtuOlvyWypcdPvT36m924YNGvBW%2F5Hgu3oxXoQBkEYhP6KNCLR%2FcUpC5mfdMJaJ6g16rWw2UDfPI2t82CpB967INcg%2BfjZ7d8eQbIRsvSHW8LuFDp%2F58PUKVpogx4%2F%2FizbyXSZIZ2XifGQZMez09B2TMjXV6Cz45kD6N7hxAFiOSbenyHi7HgmE3Hv6FJprCAyxPwFlL0RhBpB0hGYvgfJHxOAcaxvIEsfrmtT0t1Llk7YMVl48g9kOSYLf72CLP1%2BWcm%2Bf0crV0idWfSTCrI%2FguyOkLtTFHseZHkKVnwByX8ni0%2FWkKWHG1ZpSF5N3Us5gkxGUGIAaj24ySc9uMSDyz2k%2FNynzU4SBK0kTqKo3WCMRRFjzfYSb%2FKo0U4CODaRN0CRD8DUAMzsIzf72JEPHjevwbifYbcrWO7BFmPifbqPHq9QCoLSEpSUoJQEZUFQ9qojrmzdVg%2B5si4OZ7k%2By1E11EX3gB7poisyAmoGB%2FkFeXkyHi%2B6sYgdce4HLKZLSSgClnRa0VI9pFHQCQRlDbEUdoI2rKwg7ZWp4z05Jm%2B%2FeBW5HJOFG%2F8ipqew6hRMvgTqXgcth616ALo9bLQD7GUnsTCOZt0aUy4G1xXyYgHFrnegLshr0zWtxq9CsDMyCzBTITcVPpe%2FEHTV%2FeFtXZLD27q05NFGXshU7tHJCu8UtBDetx%2BL3VIbvnrLDr55n02ISXlyV9hijWZcZl1LvluWnAuzog0T5MdVuyXiTWe3l53JXL62%2BcHKapobYa3U2QhUjslzb6yDyTG56j8%2FfZ7Xf00hzQjGVUjdXKvUp2D5Pmw%2B71lNYNQcx7mH0lVDU4%2FnTSUJlJhjGlew4uynv%2F%2B%2FNK8P7H10jQda3EOWVuiZCj1VgaoBrHtmWOTm7L0%2FomkgVt4wVsY7jJVRDy6Ha%2BW53wwboh23W4zzWDAetupROwqCOueNVkeEHRR2LPSbX%2F0HAAD%2F%2FwEAAP%2F%2FCg7xy3YEAAA%3D HTTP/1.1
Host: sensualtestresume.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 13:24:30 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e0bae42ec99335d7ddb44b63118cfa95
Strict-Transport-Security: max-age=0; includeSubdomains
filemoon.sx/advertises/10560421
404 Not Found 1.1 kB URL GET HTTP/3 filemoon.sx/advertises/10560421
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1214), with no line terminators
Hash 395eda28f1f4ceda73cca4fb2d415f61
79c4b292802dcabb1ef11789626399c20c26ea68
b44ce45b30021910f850a417184229178405893420c27ee742203cc26ad4ca8d
GET /advertises/10560421 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Tue, 05 Dec 2023 13:24:30 GMT
content-type: text/html; charset=utf-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sQpAMPwjwgq2Y%2BJ46qrcGUlGkPhdOHxTzCiLXpkzu6YOJ%2FZOQ3ONi4zbTR06udc%2FChwn6sKCa%2FR1fW7dKBfOwG48mOe9N7FGSTUsave87e6Ti1I%2BdbnoX3prXzEg1w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830c9c1a5b525687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
mildlunch.com/Yl2-xnpoZ.Wp5q0_ZsGtFu0vY-Tx9yyzcAm_lCkDPEWFZ-lHZImJMK5_MMDNNOhPY-WRES0TZUG_UW3XMYzZJ-lbYcjdJem_NgzhUi5jZ-DlYmwnOoW_Mq0rOsDth-hv
200 OK 0 B URL POST HTTP/2 mildlunch.com/Yl2-xnpoZ.Wp5q0_ZsGtFu0vY-Tx9yyzcAm_lCkDPEWFZ-lHZImJMK5_MMDNNOhPY-WRES0TZUG_UW3XMYzZJ-lbYcjdJem_NgzhUi5jZ-DlYmwnOoW_Mq0rOsDth-hv
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /Yl2-xnpoZ.Wp5q0_ZsGtFu0vY-Tx9yyzcAm_lCkDPEWFZ-lHZImJMK5_MMDNNOhPY-WRES0TZUG_UW3XMYzZJ-lbYcjdJem_NgzhUi5jZ-DlYmwnOoW_Mq0rOsDth-hv HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 99
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 13:24:27 GMT
content-length: 0
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
x-content-type-options: nosniff
X-Firefox-Spdy: h2
unpkg.com/video.js/dist/video-js.css
302 Found 52 kB URL GET HTTP/2 unpkg.com/video.js/dist/video-js.css
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js/dist/video-js.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 05 Dec 2023 13:24:26 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /video.js@8.6.1/dist/video-js.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HGX20C0R72K6RCYSCMTWXT2Y-fra
cf-cache-status: HIT
age: 429
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 830c9bfeaeb10b51-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
200 OK 1.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1463), with no line terminators
Hash 42e5fd211191543ecb89479c9a133cda
47fcfccfd279d5547da59a7683a8924c99e81b5c
21553825d8d8eb94976b5f7afa323070d89cc30c3f8defb71e896736b2b08aa6
GET /sb/ssp/utility/social-media/instagram/new/4/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:29 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 21:49:43 GMT
etag: W/"6334c177-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 375711
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fEyWht5XHvOaK%2FcpBxb31tZIiUhBe2tWC8ypO4gfeF9pEOCCOKfLVhXzAwaXzDpZbsrWzsPEanqSPFNsZKYr7rtPCJtwDt3SRuw7iEmWLlpiun6ydzOeou08mZIjx5aywvIT6y6HcKIz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c164ac123fb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
200 OK 444 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (458), with no line terminators
Hash 982ab6e275f01f07609f7a83b9ded288
00cae17857fd26867610c5287a75c107ab8a150f
2f60a6c44dff7939447126884982a613420b55459abf4ddc27144c2d09fe992c
GET /sb/ssp/utility/social-media/instagram/new/4/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 13:24:30 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 10:05:24 GMT
etag: W/"63317964-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G755aYsyLvuxsHxDJl7NW2QBZFcGzsbdizvkgzEIRASwv%2Bmlq%2Fw133hryH%2F2eVSKci6tWzj9oZBNRXyHDbuny26srTMAVigJ3cwEXc1a3viJIa2fjko1diKU7QPRrwldtKctIGyl1LZD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c15fa1d23fb-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c
200 OK 267 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c
IP
Requested by https://www.beruang.club/2023/04/ngentot-kakak-tiri-sepanjang-hari.html?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3651)
Size 267 kB (267050 bytes)
Hash a1de438161b7480f9713d87359674406
36487ba3aa5d3c203e2a903835897c8aa1f3eff4
957deff476192e95a690be824e5c055daac16d83a0015cba6895b7ead14f4d23
GET /gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 13:24:26 GMT
expires: Tue, 05 Dec 2023 13:24:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89850
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
filemoon.sx/js/baf.js
200 OK 14 kB IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with CRLF line terminators
Hash 6ceffeaf7dcbc6552b17072b5ef19514
12392baa602c10684d71a9be3ee69f3954922cf2
98459741b8c345246ff82cebfd243001ccea33d37d2f101d8dc8903170b68069
GET /js/baf.js HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sat, 17 Sep 2022 19:49:40 GMT
etag: W/"632624d4-358c"
expires: Thu, 07 Dec 2023 07:52:07 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451940
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jy2ipkyymHI72jZ5tRBTTLOWGJ%2B8VwMf0bNh2oPIHnBMGSdA7s7XT3fTc3s5fvGplsG0SzYTzbRoeT2zGSc0mx%2FtNYTNHji%2FMjY%2BKOCjGyn41tV2NbIt0C8qaIRyZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c0748215687-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
filemoon.sx/js/dnsads.js?dfp=1&ad_code=2&adsrc=3
200 OK 38 B URL GET HTTP/3 filemoon.sx/js/dnsads.js?dfp=1&ad_code=2&adsrc=3
IP
Requested by https://filemoon.sx/e/q6j5m0x9hpsu
Certificate IssuerLet's Encrypt
Subjectfilemoon.sx
Fingerprint91:D1:3C:E6:F3:0F:0F:C3:1B:E0:13:C4:9D:12:1E:79:0D:85:C2:E0
ValiditySat, 07 Oct 2023 16:00:09 GMT - Fri, 05 Jan 2024 16:00:08 GMT
File type ASCII text, with no line terminators
Hash d23662ee1251b9918b938629a6b2ed32
53b7c230569335c8ff5a1fc2158f49827d7a5e65
02f7674053ee078505ea4ebdbf2f1adf94cf761bbcbf54c4e09538656f6559a5
GET /js/dnsads.js?dfp=1&ad_code=2&adsrc=3 HTTP/1.1
Host: filemoon.sx
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://filemoon.sx/e/q6j5m0x9hpsu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 13:24:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 38
last-modified: Mon, 13 Sep 2021 15:50:14 GMT
etag: "613f7336-26"
expires: Thu, 07 Dec 2023 07:51:28 GMT
cache-control: max-age=2678400
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 451979
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xTv9e1PMbblwaAixsw8EEJyJO%2BCXisrhSM5RaNVSXhlhQtOtE9bKCBreRucnTdDAnoPhXPoFrj%2BOKePSaugFxRKXrQNdvgHLZuTwySIdHzcwQhLYzJv8l3FsX5qCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830c9c07583a5687-OSL
alt-svc: h3=":443"; ma=86400
142.250.74.147
104.21.234.33
212.117.190.201
121.127.45.82
185.94.236.253
18.184.210.76
45.93.62.218
0.0.0.0