r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2689
Expires: Tue, 13 Dec 2022 04:43:33 GMT
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b642ec5702fb818c5d1c67168cc68fdb
015146489a8e7fcb4ba0ba74cfe757a072705f93
4846d047a23903856bd113d02639ce7e08a1e40030151d302295b2d12df98ffc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4846D047A23903856BD113D02639CE7E08A1E40030151D302295B2D12DF98FFC"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Tue, 13 Dec 2022 05:48:19 GMT
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4243
Expires: Tue, 13 Dec 2022 05:09:27 GMT
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 13 Dec 2022 03:08:43 GMT
content-type: application/json
age: 3001
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +boXAq0dVdT7zb6GgsqRbDqs2GZnMkmTRQHcB8wFKCGNzDfne7XF/f0VvualJz9Iqi5O8KIEvDc=
x-amz-request-id: FZJ0689C1HK16CVA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 13 Dec 2022 03:51:45 GMT
age: 419
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Dec 2022 03:58:44 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pak-janggut.blogspot.com/search/label/Faezah%20Elai
200 OK 13 kB URL HTTP/1.1 pak-janggut.blogspot.com/search/label/Faezah%20Elai
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4523)
Hash 29cc498f571e74fa3f7cfcb711f2cbb1
029f201556747e6859d586068c9e0d9533f9e6d6
70eb8fd404470294be601d22a7a09b676d28199e650a7373b4e287b4dae4fd37
Analyzer Verdict Alert fortinet Phishing
GET /search/label/Faezah%20Elai HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 13 Dec 2022 03:58:44 GMT
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 10 Dec 2022 14:53:52 GMT
ETag: W/"31ca276a91db0f797e92e975b9ca1bcbe641ad242c16fba93fa754407f6bad0d"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 13272
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
200 OK 27 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
IP
File type ASCII text, with very long lines (820)
Hash 88ed7d5a26ffff39cbae41fa7b2c615d
5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3
GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 27266
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 07:58:16 GMT
Expires: Thu, 07 Dec 2023 07:58:16 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 504028
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
pak-janggut.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 pak-janggut.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/search/label/Faezah%20Elai
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Tue, 13 Dec 2022 03:58:44 GMT
Expires: Tue, 20 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 13 Dec 2022 01:53:33 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: close
Content-Length: 326
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: close
Content-Length: 326
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: close
Content-Length: 326
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 351e38674c4649193e45dad43b63a037
6472ffc392de1fb7b52cb60bcf2af9263583c222
f5e042b6dee07492624bc561df0533c5205ed471281e31eb87f3a8d85c054c25
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e590f547cd458338349cec36ae254c47
1e5e65e6db01623b3df74f0952658d435cddeb9a
c8eb968ace82c463fcd438e41b17e3b2f55e7d61cabaa8dabcf69cd58cff5420
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 351e38674c4649193e45dad43b63a037
6472ffc392de1fb7b52cb60bcf2af9263583c222
f5e042b6dee07492624bc561df0533c5205ed471281e31eb87f3a8d85c054c25
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/all.js
301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: keep-alive
Content-Length: 0
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:44 GMT
Connection: close
Content-Length: 326
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:01:43 GMT
expires: Wed, 06 Dec 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: text/css
age: 568621
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2092647672-widgets.js
200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 02:10:45 GMT
expires: Fri, 08 Dec 2023 02:10:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 00:55:10 GMT
content-type: text/javascript
age: 438479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 13 Dec 2022 03:58:44 GMT
expires: Tue, 13 Dec 2022 03:58:44 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 351e38674c4649193e45dad43b63a037
6472ffc392de1fb7b52cb60bcf2af9263583c222
f5e042b6dee07492624bc561df0533c5205ed471281e31eb87f3a8d85c054c25
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 4b1dfadd44861ce3644c2aff158e9cc1
de69a782c797e32181c7abee8e8143575b3b6697
b34a07a5c0dd2be8c8695d82c8032f3dfbdd6ef08edc2eed2709302863129082
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5137
Cache-Control: max-age=167289
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:44 GMT
Etag: "6397cedc-1d7"
Expires: Thu, 15 Dec 2022 02:26:53 GMT
Last-Modified: Tue, 13 Dec 2022 01:01:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741
200 OK 7.2 kB URL HTTP/1.1 www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741
IP
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (17198)
Hash ce7a251549494f4d461d198ed8680e7a
d5d0ebc80664e0b5cfdaa5e1ad5c3b2c4309fdad
529505856afe35e71c959b40e59b54640690c1436cad1438757c16112c579ef0
Analyzer Verdict Alert fortinet Malware
GET /samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741 HTTP/1.1
Host: www.samsengfb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Tue, 13 Dec 2022 03:58:44 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
X-Powered-By: PHP/7.2.34
Content-Encoding: gzip
connect.facebook.net/en_US/all.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP
File type ASCII text, with very long lines (1957)
Hash 2e13241c514b4dbe9895d95130f6a90d
fe2ccfc1bf22254f58fb6e1ad2dff92b145303b9
42374f16e98d735a51f36e7f33e904d8d80cd32caf1c66149dd29d2f93d277e9
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 6f01332927b7ca8f036d879c19c13714
etag: "ca2133baacc9d56245e66606c381602f"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 13 Dec 2022 04:13:35 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: LhMkHFFLTb6YldlRMPapDQ==
x-fb-debug: bXlnGqNn0tD+6OwvIrpX0YMnKwZPch6PtZwUiFfa2zFYoeqNKCCHbE2h1rwbPd6xC0bgqiQ+BQ3uRazZauhjzg==
content-length: 1685
x-fb-trip-id: 1679558926
date: Tue, 13 Dec 2022 03:58:44 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.widgeo.net/img/logopm.png
200 OK 714 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:44 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 06 Jan 2023 21:00:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 457108
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7zw7KyS6CNMWHkDFG8WcnNpposrJCRABc1ydYGhq6TwqCbvKEGNeOFuK%2BFk2Yn4wtFIkLaceuk4%2BXlNrmubxf8PXwhCgwCmx8QwLdfo7YIzVtvQnqtq3L0xYvV9tDFLh"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 778bc87aefe7b518-OSL
alt-svc: h2=":443"; ma=60
www.widgeo.net/geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news
200 OK 2.0 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news
IP
File type ASCII text, with very long lines (2149)
Hash 4b0c1a0d1aa4234cf191557e6bb22f21
4bbce4d28e0427fd5208694531db1b6687e0baf7
f8de6883280e63d4cd9b96b7e5e1cf657a2517f9ee1ac3bfb13eb52b62880cff
GET /geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:44 GMT
Content-Type: application/javascript
Content-Length: 2034
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Mon, 19-Dec-2022 03:58:43 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Tue, 20 Dec 2022 03:58:43 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X6yn6lSVZWAr38PfXrZoeOF06RwamN2DaSPOmGDqUEoU1jeRE9Dzh4cDftiG7I%2BqcP41Lb6Jq0rwhlDdXBzBkoPsKZ7Vsd304VTfPbktsJhOv7viRFjby8ukS7HjWNlK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 778bc8799964b4fd-OSL
alt-svc: h2=":443"; ma=60
www.linkwithin.com/widget.js
404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 13 Dec 2022 03:58:44 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
i66.photobucket.com/albums/h260/toonybug/header2-12.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/header2-12.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/header2-12.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/header2-12.png
X-Cache: Redirect from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: T-x-6BQ6WababtEaD1xGsDnsQuvlwL9zOJT4PLH5HZJnd6IvjLkArA==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/templatestag.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/templatestag.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/templatestag.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/templatestag.png
X-Cache: Redirect from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kfh7oKsgz2WEB0ej9ptAuwkho68v5Gt3HAqKbhYRtHj7b5-DSf1BDw==
Vary: Origin
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169949
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169949
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169949 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169953 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169954
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169954
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169954 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1167641
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1167641
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1167641 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 12 Dec 2022 11:55:47 GMT
Expires: Mon, 26 Dec 2022 11:55:47 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 57778
www.rahsiakuihraya.com/images/ban3.gif
200 OK 2.6 kB URL HTTP/1.1 www.rahsiakuihraya.com/images/ban3.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
GET /images/ban3.gif HTTP/1.1
Host: www.rahsiakuihraya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Mon, 12 Dec 2022 17:45:01 GMT
ETag: "6397689d-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_KtgrS35it06UYLDHWX2lqjXc6cYq/W2GL8Ir/NcJhmYxNo3vs/U052xfSkl3wbZgp1eOKi6QVqfWzvZapoVRww
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s282/theviejo/recurso_9_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: q8lQJjWjSfbVGulPglPohnRlbliIZ4LtxP1hWXy4lJgYyHDxNAW1rQ==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/background2-20.jpg HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: H9AXil9iwx-ELAA97KKx4LBEii5SJOX1uvL6xi5wQU7EK8TrYSfSCA==
Vary: Origin
ocsp.digicert.com/
200 OK 471 B IP
Hash 4b1dfadd44861ce3644c2aff158e9cc1
de69a782c797e32181c7abee8e8143575b3b6697
b34a07a5c0dd2be8c8695d82c8032f3dfbdd6ef08edc2eed2709302863129082
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5138
Cache-Control: max-age=167289
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Etag: "6397cedc-1d7"
Expires: Thu, 15 Dec 2022 02:26:54 GMT
Last-Modified: Tue, 13 Dec 2022 01:01:16 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 13 Dec 2022 03:07:57 GMT
age: 3048
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/molengo/v16/I_uuMpWeuBzZNBtQXbNakw.woff2
200 OK 14 kB URL HTTP/1.1 fonts.gstatic.com/s/molengo/v16/I_uuMpWeuBzZNBtQXbNakw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14016, version 1.0\012- data
Hash eca165efaa8a5c693fcf7b3a26cef43b
b5b486f83648089b2653aacdcab3d4516a6aee98
31addde7fb28b34660534c075be0623c663561d371279da1ab9689761db6c7da
GET /s/molengo/v16/I_uuMpWeuBzZNBtQXbNakw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 14016
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 13:42:20 GMT
Expires: Sat, 09 Dec 2023 13:42:20 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 26 Apr 2022 15:27:44 GMT
Content-Type: font/woff2
Age: 310585
www.buatcoklat.com/images/banner03.gif
302 Found 0 B URL HTTP/1.1 www.buatcoklat.com/images/banner03.gif
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/banner03.gif HTTP/1.1
Host: www.buatcoklat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
vary: Accept-Language
content-language: en
connection: close
fonts.gstatic.com/s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2
200 OK 30 kB URL HTTP/1.1 fonts.gstatic.com/s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 29868, version 1.0\012- data
Hash 8b26cc331e323dda95ea6d0dcf4d7542
1f6b0e5440044f6aa75b1f73d2f9c63a2f75bba9
2d5059c07b957f989ee2ed276e1f6d20428f4d3ed2523e7c305bd3e3ebc092ec
GET /s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 29868
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 13:35:23 GMT
Expires: Sat, 09 Dec 2023 13:35:23 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:09:14 GMT
Content-Type: font/woff2
Age: 311002
www.linkwithin.com/pixel.png
200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:45 GMT
Connection: close
Content-Length: 326
ocsp.digicert.com/
200 OK 471 B IP
Hash ee19f96e42a0eca99d00c8d91f977c35
3bf8dbf8b8ce6ea7adadf7bb92cae2f9502fbee9
6d8adcb1494bfe2ca73cd6b77eb57b2d08e07b05eb892fea98a1fde0bfb2ea12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Etag: "6396ef2b-1d7"
Last-Modified: Tue, 13 Dec 2022 02:12:38 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
3.bp.blogspot.com/-k0wA-oTVRgk/T-tX7QAImTI/AAAAAAAAEP4/dGNzGXl0HK8/s200/image+(1).jpg
200 OK 12 kB URL HTTP/1.1 3.bp.blogspot.com/-k0wA-oTVRgk/T-tX7QAImTI/AAAAAAAAEP4/dGNzGXl0HK8/s200/image+(1).jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x150, components 3\012- data
Hash fe5de2cb46ee2e0d058353ce382d899d
f33eff6b876be0d3d56e689236b3921e88330e82
ff99e62bfce873fc4afa493feee8c316ee1b3222deded26215e1a54cdfc2a4b8
GET /-k0wA-oTVRgk/T-tX7QAImTI/AAAAAAAAEP4/dGNzGXl0HK8/s200/image+(1).jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v10fe"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="image (1).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 12187
X-XSS-Protection: 0
lh5.ggpht.com/-ht9tVSeQGME/Uu7YtHOOh8I/AAAAAAAB09w/i2UgHvWCqy8/w72-h72-p-k-no-nu/ammar%252520alfian%252520dan%252520puteri%252520sarah%252520liyana_thumb%25255B2%25255D.jpg?imgmax=800
200 OK 3.8 kB URL HTTP/1.1 lh5.ggpht.com/-ht9tVSeQGME/Uu7YtHOOh8I/AAAAAAAB09w/i2UgHvWCqy8/w72-h72-p-k-no-nu/ammar%252520alfian%252520dan%252520puteri%252520sarah%252520liyana_thumb%25255B2%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3cff932ad564ae102975c393e129b7f7
047f45eb1bbe90db06040e850f1f1ce85637268c
ff44947af141ef251091c21d0d0625a709964d4ff16291a0bd6960e7e52a0b6b
GET /-ht9tVSeQGME/Uu7YtHOOh8I/AAAAAAAB09w/i2UgHvWCqy8/w72-h72-p-k-no-nu/ammar%252520alfian%252520dan%252520puteri%252520sarah%252520liyana_thumb%25255B2%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh5.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d3dd"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ammar alfian dan puteri sarah liyana_thumb[2].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 3763
X-XSS-Protection: 0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ab9b4970febf2e6a823ef47161cdb57d
0be05eeda17d17decf0b5f62e12ceef6cbead0e7
9de402cfb3e14440b0b8ca3751f9374a0c6a452928229b91a4dcf12f8bdc966d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9DE402CFB3E14440B0B8CA3751F9374A0C6A452928229B91A4DCF12F8BDC966D"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16898
Expires: Tue, 13 Dec 2022 08:40:23 GMT
Date: Tue, 13 Dec 2022 03:58:45 GMT
Connection: keep-alive
fonts.gstatic.com/s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2
200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17988, version 1.0\012- data
Hash bf6a5846cb67a28b10fc51624b7c2021
aecc7ba490ee2def0bec0ad3bd79ba0caa0a4347
cb9dc64865a8ff81a07712442c9647fe79d1b371cdcbad6047d46bc7ee8254da
GET /s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17988
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 08 Dec 2022 08:18:29 GMT
Expires: Fri, 08 Dec 2023 08:18:29 GMT
Cache-Control: public, max-age=31536000
Age: 416416
Last-Modified: Tue, 19 Apr 2022 19:21:54 GMT
Content-Type: font/woff2
i66.photobucket.com/albums/h260/toonybug/templatestag.png
200 OK 6.1 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/templatestag.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 034aa733dacc7922e2d827d110a6277b
2bc7f2d7a43f541078f389e430a513d42451165b
aa1194a4bde2d3989823fb461bff38780122f52b25260bd8bbf4ae269627dd46
GET /albums/h260/toonybug/templatestag.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6098
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="templatestag.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-05d555371571125256d75201
x-request-id: -eYy9l7oQBCRZJVANvqgB
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dXgUBZUAhCoZ8Ypegp5ZC3bgKaLAy_-ys-d5bwjUN42VDiYbkX-UVw==
vary: Accept, Origin
X-Firefox-Spdy: h2
lh4.ggpht.com/-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 3.8 kB URL HTTP/1.1 lh4.ggpht.com/-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6d44f9ff4dafb7f7036b7e167fe48ef6
068bcbf6060a0dcdcbf090bedc35eca7c010b918
d9b6a03bfe14f0b19950f9dfa65124dcfedef7911bbc6f2d617e6168fc7707d7
GET /-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d582"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="che-ta-565x412_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 3798
X-XSS-Protection: 0
lh4.ggpht.com/-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800
200 OK 10 kB URL HTTP/1.1 lh4.ggpht.com/-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800
IP
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash dd502572853db49ef8a798cfb13b6d8d
3494238ed0b579d79f4668c4eec5e0f13772b5c8
a3fbca281f00823eb27c96b9bec08202a005143a6d98bbc2ee46ffd3c84a9f6f
GET /-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d4fc"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 10538
X-XSS-Protection: 0
cleverjump.org/counter.js
200 OK 5.6 kB URL HTTP/1.1 cleverjump.org/counter.js
IP
ASN #49981 WorldStream B.V.
File type ASCII text, with CRLF line terminators
Hash 83126dc4af783a2179ab362a5bbec530
b1fe91477d92ab09066f28ddda5b31a4bf0f1689
cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4
GET /counter.js HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: application/javascript
Content-Length: 5571
Last-Modified: Wed, 20 Jan 2021 12:50:32 GMT
Connection: keep-alive
ETag: "60082718-15c3"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes
s10.histats.com/js15.js
200 OK 4.4 kB IP
File type HTML document, ASCII text, with very long lines (11088), with no line terminators
Hash 688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5
GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
date: Tue, 13 Dec 2022 03:57:51 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 141429541
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:8D46_2E69C9F0:0050_6397F875_9910:0353
x-iplb-instance: 40746
i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
200 OK 866 B URL HTTP/2 i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cc4c3239458044ac24fec670759abe98
1d82930aeb5ee83c27c9cf18e4032c5ccc79fa9e
7e7869c41d518540d17a4197002c2d327bb3b39714f2ae67ede24aeaabc2a6f9
GET /albums/s282/theviejo/recurso_9_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 866
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_9_7.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-3032fb5c42b04155329f2dc9
x-request-id: tJRQ39G-fQh8ZudVf4HQu
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GvS5_RTL2GCMzmTM6NmTkiIBVLJky-GVzhcrClW5AJsphYd8Cclr7g==
vary: Accept, Origin
X-Firefox-Spdy: h2
lh4.ggpht.com/-Uo1r4vG6Evw/UuXTYLmKgPI/AAAAAAAB05g/0ahmGwmbBy0/w72-h72-p-k-no-nu/unnamed_thumb%25255B1%25255D.png?imgmax=800
200 OK 8.8 kB URL HTTP/1.1 lh4.ggpht.com/-Uo1r4vG6Evw/UuXTYLmKgPI/AAAAAAAB05g/0ahmGwmbBy0/w72-h72-p-k-no-nu/unnamed_thumb%25255B1%25255D.png?imgmax=800
IP
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 8f474c54a04021627ccc07ca81641f17
6b019ccd8dedc19f06701fa5bbf22d53171d14dd
17a948dbb4a19718c9c8c2abca2c23324549519b6770bff4f6dd44a11d0ef5f8
GET /-Uo1r4vG6Evw/UuXTYLmKgPI/AAAAAAAB05g/0ahmGwmbBy0/w72-h72-p-k-no-nu/unnamed_thumb%25255B1%25255D.png?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d399"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="unnamed_thumb[1].png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 8771
X-XSS-Protection: 0
ocsp.digicert.com/
200 OK 278 B IP
Hash 6f43677950007d0987cef0cccdc3a9a0
0b4018148fee1827de5c4568da0b59b48c5da4d8
c1d1f907f9aaa840f7894445a14849206979bc638e88f865803b0943d6772223
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6015
Cache-Control: max-age=111262
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Etag: "6396f094-116"
Expires: Wed, 14 Dec 2022 10:53:07 GMT
Last-Modified: Mon, 12 Dec 2022 09:12:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
lh5.ggpht.com/-nwC7xKUA8KQ/UndBNF9B2xI/AAAAAAAB0p8/4vZM86A0lgI/w72-h72-p-k-no-nu/image-2_thumb.jpg?imgmax=800
200 OK 3.6 kB URL HTTP/1.1 lh5.ggpht.com/-nwC7xKUA8KQ/UndBNF9B2xI/AAAAAAAB0p8/4vZM86A0lgI/w72-h72-p-k-no-nu/image-2_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash c47e4d5b98303464c85206ef41862245
32f59431620e9009f98fd7c0c2719d67d4db4d3e
5cc1620c33674f31bb380e475f35c8de7510950625db46ac58928062124a2d12
GET /-nwC7xKUA8KQ/UndBNF9B2xI/AAAAAAAB0p8/4vZM86A0lgI/w72-h72-p-k-no-nu/image-2_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh5.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d2a0"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="image-2_thumb.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 3597
X-XSS-Protection: 0
lh4.ggpht.com/-BUIH_W3x3HE/U0IE64TuXQI/AAAAAAAB1XU/eN66XkMzk6E/w72-h72-p-k-no-nu/jue_aziz.jpg_480_480_0_64000_0_1_0_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 3.7 kB URL HTTP/1.1 lh4.ggpht.com/-BUIH_W3x3HE/U0IE64TuXQI/AAAAAAAB1XU/eN66XkMzk6E/w72-h72-p-k-no-nu/jue_aziz.jpg_480_480_0_64000_0_1_0_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7dee9ca440c7883ad673561de319d682
2c283d27d740450d951204e867a893376a9df4b5
bd448a11b2a6a869ae085a7e0437618294b8af7bdd341ea435961f175bda29fc
GET /-BUIH_W3x3HE/U0IE64TuXQI/AAAAAAAB1XU/eN66XkMzk6E/w72-h72-p-k-no-nu/jue_aziz.jpg_480_480_0_64000_0_1_0_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d576"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="jue_aziz.jpg_480_480_0_64000_0_1_0_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 3689
X-XSS-Protection: 0
lh4.ggpht.com/-u22LP26bu44/UpMO9rtyDOI/AAAAAAAB0rw/T3Xquc17E_k/w72-h72-p-k-no-nu/dd_thumb%25255B1%25255D.png?imgmax=800
200 OK 8.4 kB URL HTTP/1.1 lh4.ggpht.com/-u22LP26bu44/UpMO9rtyDOI/AAAAAAAB0rw/T3Xquc17E_k/w72-h72-p-k-no-nu/dd_thumb%25255B1%25255D.png?imgmax=800
IP
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 3c20c84938547212709744dfb79751d9
fc873a48542dc4dbfd6d229b63a4e612a385d453
44344877f8cb30434e35b8369f8cc62e69bf7a84689de8d71bd6d40ed03da6d4
GET /-u22LP26bu44/UpMO9rtyDOI/AAAAAAAB0rw/T3Xquc17E_k/w72-h72-p-k-no-nu/dd_thumb%25255B1%25255D.png?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d2bd"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="dd_thumb[1].png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 8398
X-XSS-Protection: 0
www.rahsiakuihraya.com/images/ban3.gif
200 OK 2.6 kB URL HTTP/1.1 www.rahsiakuihraya.com/images/ban3.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
GET /images/ban3.gif HTTP/1.1
Host: www.rahsiakuihraya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
If-Modified-Since: Mon, 12 Dec 2022 17:45:01 GMT
If-None-Match: "6397689d-9f7"
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 10 Dec 2022 14:25:16 GMT
ETag: "639496cc-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_KtgrS35it06UYLDHWX2lqjXc6cYq/W2GL8Ir/NcJhmYxNo3vs/U052xfSkl3wbZgp1eOKi6QVqfWzvZapoVRww
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
ocsp.digicert.com/
200 OK 278 B IP
Hash 6f43677950007d0987cef0cccdc3a9a0
0b4018148fee1827de5c4568da0b59b48c5da4d8
c1d1f907f9aaa840f7894445a14849206979bc638e88f865803b0943d6772223
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=105247
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Etag: "6396f094-116"
Expires: Wed, 14 Dec 2022 09:12:52 GMT
Last-Modified: Mon, 12 Dec 2022 09:12:52 GMT
Server: nginx
Content-Length: 278
www.widgeo.net/tcm_t_u.js
200 OK 0 B URL HTTP/2 www.widgeo.net/tcm_t_u.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: application/javascript
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 04:31:38 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 343625
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yBZasWPoqBKmoBgIS6zzwBUawm572%2BmP3%2FaHOHvmmGmT2I%2Fq9ZVjV%2F%2B429zJVVjD1mMbtDtnmPPbTInFJywgbuOfMWAJ9qEjvuz%2FoHq8sigHJRVETzkV%2BQ1aCEC2UUKu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87daa650b41-OSL
X-Firefox-Spdy: h2
lh4.ggpht.com/-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 2.9 kB URL HTTP/1.1 lh4.ggpht.com/-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 8a50e82a9915eff28da70a19a17d0028
73eb91985dfc5fd3d47f758377583806c19e0cb7
78dde5e67f2750f95cbfe0c2cb7713648833c57ccf2c382b9daab6e27a4944e5
GET /-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d353"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Fullscreen-capture-12272013-13356-PM_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 2853
X-XSS-Protection: 0
cleverjump.org/hit?z0;s1280*1024*24;fJeRViw0X6LaL5jW5cfrst3X036MeYS;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai;hPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai;0.2288808288790375
200 OK 0 B URL HTTP/1.1 cleverjump.org/hit?z0;s1280*1024*24;fJeRViw0X6LaL5jW5cfrst3X036MeYS;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai;hPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai;0.2288808288790375
IP
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?z0;s1280*1024*24;fJeRViw0X6LaL5jW5cfrst3X036MeYS;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai;hPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai;0.2288808288790375 HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
P3P: CP=CleverJump
Set-Cookie: _cjuh=nuwujWbSmwPMzDu0Hdr6xjLKHe9dL3; expires=Wed, 13-Dec-2023 03:58:45 GMT; Max-Age=31536000; path=/hit; httponly; SameSite=None; Secure
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:45 GMT
Connection: close
Content-Length: 326
lh6.ggpht.com/-w8Cq-r9-h0g/UfD1iIC98MI/AAAAAAAByec/t9cN2pEbSjk/w72-h72-p-k-no-nu/3%252520Peserta%252520Ratu%252520Cantik%252520Malaysia%252520Mohon%252520Maaf-Sara%252520Amelia_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 2.7 kB URL HTTP/1.1 lh6.ggpht.com/-w8Cq-r9-h0g/UfD1iIC98MI/AAAAAAAByec/t9cN2pEbSjk/w72-h72-p-k-no-nu/3%252520Peserta%252520Ratu%252520Cantik%252520Malaysia%252520Mohon%252520Maaf-Sara%252520Amelia_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d39a47f6c5d8436133130b4a50c72895
d5540366a80ad592882fd3c988b045b2ee4b54fa
f886dd9041fa1ccaa4eae2f1ae1f68ff705b6e0371c5c50053c985afa62d54d1
GET /-w8Cq-r9-h0g/UfD1iIC98MI/AAAAAAAByec/t9cN2pEbSjk/w72-h72-p-k-no-nu/3%252520Peserta%252520Ratu%252520Cantik%252520Malaysia%252520Mohon%252520Maaf-Sara%252520Amelia_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1c9e8"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="3 Peserta Ratu Cantik Malaysia Mohon Maaf-Sara Amelia_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 2688
X-XSS-Protection: 0
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: I5s8esWKC+mGdzvavqMSIA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WUNB5aMXR1/pwoamqiyR18eb2Ys=
i66.photobucket.com/albums/h260/toonybug/postimage.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/postimage.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/postimage.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/postimage.png
X-Cache: Redirect from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PVTcUcytggUi_FyIxIvcDVeauWqOsr1iCy9dBy7zx3nAKlQDtJX0CA==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/divider-9.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/divider-9.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/divider-9.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/divider-9.png
X-Cache: Redirect from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: i5tEJ8A8bVc2qIX_-Pz_rCoWbCrCnmxhui_eo3RbaRrCEVaILQgt9w==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/header2-12.png
200 OK 88 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/header2-12.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash e77dc4b55a98f0276e869e8233aad288
f77186296a3c1a292896bb5f14300fc3cc73e517
1ab90235b5b9dd020b47882fad9b575eb25f3af7bd95362ad95c9089ab53b146
GET /albums/h260/toonybug/header2-12.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 88336
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="header2-12.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-490009613584ff663f1b6500
x-request-id: W6dnNcDx9Uw6P2wu7wib_
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MfOeMIWfDedKJbMs42d7ZunXwn0N7DGBKw7V_is99HRw-IbSAGcS2A==
vary: Accept, Origin
X-Firefox-Spdy: h2
d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
200 OK 2.9 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
IP
File type ASCII text, with CRLF line terminators
Hash 4168b5a2517e8d07be159017f22759e7
ade414bcff8b8babb58bf6369fdbc7b8e2cf67b6
816427321da11d1632fac7711648e373bcbc01cf8b7b372d7b9178827906430a
GET /css/88x726.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2866
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:19:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Tue, 13 Dec 2022 03:02:55 GMT
ETag: "8ae83247890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9FdoWwZC9SzNS_MjNpzZQnmtBpYf5vaU7Fz7tpyO_zeJfLyZ7zPTDg==
Age: 3973
d2b9l3u54v5v39.cloudfront.net/css/default.css
200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Mon, 12 Dec 2022 07:39:52 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4S1h9zo1f6vGAPj9vzRav95fWNKk2_c46ap1CpVxakcUSLEYaglnrw==
Age: 77278
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Tue, 13 Dec 2022 00:31:10 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RfGs42ySCBulbtyZHlTVh9bjnHRm0yirrwpi_93a1JSfNZ6JgCwK1A==
Age: 13307
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9d393636662ea6c91b4acf9096773bff
509537a9148d4d534a8a28909f78a9aa132000e4
c69389901921d203c2d2388a5f800c283e5dc93ae8e8c1553c123c17159d52fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C69389901921D203C2D2388A5F800C283E5DC93AE8E8C1553C123C17159D52FC"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5598
Expires: Tue, 13 Dec 2022 05:32:03 GMT
Date: Tue, 13 Dec 2022 03:58:45 GMT
Connection: keep-alive
www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=form
204 No Content 0 B URL HTTP/1.1 www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=form
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /box/?boxid=438668&boxtag=56x6cw&sec=form HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Wed, 13 Dec 2023 03:58:45 GMT
Cache-Control: public, max-age=31536000
X-Cache: MISS
www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=main
200 OK 653 B URL HTTP/1.1 www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=main
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d0d05a23cb23fe35908361694e15b565
d14818ca4dc04d998081b92c3975ff6e9f6dcdea
1fe598dd28104053751c17c7371ef1e42ec25c08b513993cbc93a4f6b4b9c716
GET /box/?boxid=438668&boxtag=56x6cw&sec=main HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Wed, 17 Nov 2004 05:00:00 GMT
Last-Modified: Mon, 13 Dec 2021 03:58:45 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Cache: MISS
Content-Encoding: gzip
www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai
200 OK 2.1 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (322)
Hash 628cc0b5d2be13c5deec9aab9574fa64
af81ea829ad51704160bc5e29dab730ea7db9529
451221d2a846b1a28658fe957f5d8892dc6f9e79bb0f757b669130bbcf28da76
GET /geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: monpays=NO; expires=Mon, 13-Mar-2023 03:58:44 GMT; Max-Age=7776000; path=/
pays=Norway; expires=Mon, 13-Mar-2023 03:58:44 GMT; Max-Age=7776000; path=/
ville=Oslo; expires=Mon, 13-Mar-2023 03:58:44 GMT; Max-Age=7776000; path=/
idcompteurcc_2052431=done; expires=Wed, 14-Dec-2022 03:58:44 GMT; Max-Age=86400; path=/
online_idcompteurcc_2052431=done; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
originecc_2052431=United%2BStates%2523United%2BStates%2BCity%252314211%257CCanada%2523Canada%2BCity%25234671%257CCanada%2523Burnaby%25232312%257CUnited%2BStates%2523Boardman%25232043%257CUnited%2BStates%2523Chicago%2523844%257CUnited%2BStates%2523Fort%2BLauderdale%2523656%257CRussian%2BFederation%2523Moscow%2523629%257CNew%2BZealand%2523Auckland%2523528%257CMalaysia%2523Kuala%2BLumpur%2523252%257CGermany%2523Frankfurt%2BAm%2BMain%2523216%257CUnited%2BStates%2523Wilmington%2523202%257CUnited%2BStates%2523Seattle%2523186%257CKorea%252C%2BRepublic%2Bof%2523Jungnang%2523183%257CUnited%2BStates%2523Los%2BAngeles%2523179%257CUnited%2BStates%2523San%2BJose%2523170%257CMalaysia%2523Malaysia%2BCity%2523160%257CUnited%2BKingdom%2523United%2BKingdom%2BCity%2523151%257CNetherlands%2523Netherlands%2BCity%2523150%257CCanada%2523Toronto%2523145%257CUnited%2BKingdom%2523London%2523142%257CRussian%2BFederation%2523Kazan%2523128%257CUnited%2BStates%2523Raleigh%2523126%257CUnited%2BStates%2523Lenexa%2523114%257CIreland%2523Dublin%2523105%257CRussian%2BFederation%2523Saint%2BPetersburg%252397%257CUnited%2BKingdom%2523Bath%252396%257CUnited%2BStates%2523Las%2BVegas%252389%257CSingapore%2523Singapore%252382%257CKorea%252C%2BRepublic%2Bof%2523Korea%252C%2BRepublic%2Bof%2BCity%252381%257C; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
online_2052431=1; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
jour_2052431=20; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
total_2052431=33129; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
bonus_2052431=2208; expires=Wed, 14-Dec-2022 03:58:44 GMT; Max-Age=86400; path=/
bonus_j_2052431=62; expires=Tue, 13-Dec-2022 04:01:44 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Tue, 13 Dec 2022 04:01:44 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CDyEv4dxbi9kf8GTtRz8SnnIVij%2Bhj4Ztpm1ALC1Gb2uR1LV9YIXuTEKreuWq5oTGh%2Fn5N7jViZryQgsXjU74XeTY8%2FFB2EUaqbIvcshyyexF2RNdaQPINfm1WAok2Ok"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 778bc87d0a63b4fd-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.linkwithin.com/widget.js
404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
cleverjump.org/hit/get-uid.php
200 OK 30 B URL HTTP/1.1 cleverjump.org/hit/get-uid.php
IP
ASN #49981 WorldStream B.V.
File type ASCII text, with no line terminators
Hash 56a881325714339a8c23602cc2bb766f
eb2b451ffc3cb7e89f7292b354764ff1e4370cfd
c4290d983e0060f41a8a8eb982a55fc40362bc19558089c7bdc092fe1c28d266
Analyzer Verdict Alert fortinet Malware
GET /hit/get-uid.php HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Cookie: _cjuh=nuwujWbSmwPMzDu0Hdr6xjLKHe9dL3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: http://pak-janggut.blogspot.com
Access-Control-Allow-Credentials: true
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 3.9 kB URL HTTP/1.1 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 18:45:45 GMT
ETag: W/"6390df59-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=36c8Ib5JDkYr70t%2FYE1XgCSg7ZWXEARYVYYlmXSIkYMFlH%2BwRtUlrIa%2B1HY45wFoGZt%2FT9GaAzzmGWddxWtUJIzBtwHancUWAJTZXCnHjA2z4%2F6G9YNvLy0gX14jz8ge"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 778bc87fab31b4fd-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Thu, 15 Dec 2022 03:58:45 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
www.widgeo.net/geocompteur/shadow/flag_canada.png
200 OK 886 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_canada.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9dfda6415875b226812181f7ea64fcc8
6cdf4ed8b0a4d6a748510ab74d772183a55bdf38
b5e378613935ec7dabd4e11e095b4141b16462909085a185e3a093c8900e6a55
GET /geocompteur/shadow/flag_canada.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 886
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1148
content-disposition: inline; filename="flag_canada.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 11 Jan 2023 21:27:27 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 23477
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zHWLCjU%2BoM3%2BEXIDHAsn0GFpIOEsJHPxhp0nqhzMQuCt7%2BcKfpbV48IAYkwqwQ1%2FnCIcg2VfUXdhUszagKUCkp%2B3uyReqNQaPyFWxfRvSGTKEB5N0XP7mXgajQ1lN1F%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f8b060b41-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png
200 OK 680 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 852881aef6d6a8bca3123c3201f64c74
0e5ef2c61383bb79c8a6ea068d9a688631d844fa
41c20a2d0dc8fe26ec1e5c7e71b5d82fc09e7ce0bd30db7abb516474f5c186a1
GET /geocompteur/shadow/flag_russian%20federation.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 680
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=857
content-disposition: inline; filename="flag_russian%20federation.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 03:12:56 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1298748
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uwZPOXn4j6k1uX6X%2BaGLnWiHbAnSTUdLyQzvjRUVeerhv6ZZxAvjaVfAOdci0gfFkuFq7Q0v4JYh3i1diDXpYdmjps6oHZchPwOGrq1no%2B8eF1CZNJOUC6Hd7anZbnW%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f8b070b41-OSL
X-Firefox-Spdy: h2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.460.0
200 OK 2.4 kB URL HTTP/2 bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.460.0
IP
Hash f311d9122f9a23a691938f7c99378b5f
6b37e705a66cfd9f09ebdd0be99c33a434b3fbf0
c2f9fb3ca36967265a8e9abae554b7bc4a090e9ce63a0e71e94e8ac8c76ac305
GET /5/3294720/?oo=1&js_build=iclick-v1.460.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: application/json
x-trace-id: 3561d2ccd895f45ffb963cac84239f1d
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://pak-janggut.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=6fda6e70b77b48d79ef19e04a8809f46; expires=Wed, 13 Dec 2023 03:58:45 GMT; path=/; secure; SameSite=None
oaidts=1670903925; expires=Wed, 13 Dec 2023 03:58:45 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_new%20zealand.png
200 OK 940 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_new%20zealand.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8719b63ac81155fd64422298ef8a8b25
c034b5869772ddf1675ebdbeb3c0d3c540738c24
b313f56a36c855a1a34a02b96910ee4307e553a28a6e52bc64e2ab1bc2cfdae5
GET /geocompteur/shadow/flag_new%20zealand.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 940
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1173
content-disposition: inline; filename="flag_new%20zealand.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 07 Jan 2023 05:41:08 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 425857
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7iqpKJDTLPJWRLhp1qBLe182Xp9DfSEV92KshBqakzh3ZIB77D3H1pKZ%2F6uP%2BccvZ4pOXbfII0Db0%2FNfLxDvrs4CC4P4iSSdbVvhorRh%2BEdagiuPDBhqRXuTraIaWZTR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f8b080b41-OSL
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
200 OK 26 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 32943ba90ebbdd7d200591daec86d3fb
49f9ec73bdd20c2ccb73fb0c5c93ef6f56339478
6202b87013e76a02c71a2246c4ca6a58fca9be5067e26c715b1198e3d44df87f
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 27373c151135cc1a83e76a36ef5908d9
cache-control: max-age=86400
last-modified: Mon, 12 Dec 2022 14:42:08 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Wed, 14 Dec 2022 03:52:19 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 386
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bJmPQJ3b9B%2BVnh%2FQ6Div4eHvdcGt%2Fsh5OptJSimwR1xC5g5NjepiPHP1bE2Og0MDCf9RJO4xn30AbqmDThIcX9oyClmWqvtt92hH1QXuaaIRE9kpfscgIT6IVcrmU6VX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 778bc87d2890b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
200 OK 1.2 kB URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0fca0f8c1f72968c8849d783accae326
6d6f3b4500a3f1fccc3474d59c716b2f60a59ea4
c1319ad29f9822f08a6740f0b89e91127cfb11a449f99528f0a7928156032c9e
GET /geocompteur/shadow/flag_united%20kingdom.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 1220
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1459
content-disposition: inline; filename="flag_united%20kingdom.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Tue, 27 Dec 2022 07:58:53 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1367991
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rCgD3m6a6l2k7G%2F6lgTtOdijlKxMbSokTHHrJSPG2gfpokAj3sQrBviKOOwHwQ1l6Fvvg4S3rUCnFfd4VtOiyIB5fm8MwqWDWZBmmnAHzHMv8UQaKQ939hPNxqjZQM1S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f9b0e0b41-OSL
X-Firefox-Spdy: h2
www.widgeo.net/hitparade.php?pagexiti=geocity_rose
200 OK 1.8 kB URL HTTP/2 www.widgeo.net/hitparade.php?pagexiti=geocity_rose
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9439f199e069e3885c319c51f713edfc
915102a39a760339fe7ddeb2b323f7ce00e46c56
4a0639805105bcbf1e211fa03cb377548711b3fb4403d615f48ac74c814b06b3
GET /hitparade.php?pagexiti=geocity_rose HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Tue, 13 Dec 2022 04:01:44 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Td8bJYDCCyydogu%2BLZHYjrfLT6f4Lj5%2FKsM5pLFfm65iawCowbuPfL6d1YWT7HnS5Q0EqbGGhxyb5fQJvVIxJ3OMfCV%2F%2B9JXyy4ejDDp24E3Z7POttxKifAb%2F6p6esCs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87d9a620b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169949&RD=0897027818363&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=0897027818363&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
200 OK 6.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169949&RD=0897027818363&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=0897027818363&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
IP
Hash 86da4f9f07b3b31f15da3216e3e2bddd
07174ce8ccaf1302a3ba6d6451a7cd7c6b2f0f35
fba899950964a2c0e8eaa4bcac293309d5355967b9c4486526b394295489d1c7
GET /BidVertiser.dbm?pid=361547&bid=1169949&RD=0897027818363&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=0897027818363&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:45 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:45 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:45 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:45 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close
www.widgeo.net/geocompteur/shadow/flag_korea,%20republic%20of.png
200 OK 814 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_korea,%20republic%20of.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ec4b0c854ec18061c7bafbe9ac9d1c3b
77c850ef6479e29a631dba64d06ccc1eefb1adc6
48f6236fb62cb417c5d00552052f378bfd1a82ca9f21f341c69390fd346fd439
GET /geocompteur/shadow/flag_korea,%20republic%20of.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 814
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1163
content-disposition: inline; filename="flag_korea,%20republic%20of.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 17 Dec 2022 10:21:59 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2223405
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tILWcjv75M%2Bq9TXPbR4P823LH3h1%2Baknd%2BhiVB0XR2TJXgXsx%2BXcUFnEUEliwbdLCY3TuNj0vOfBlSddTGK91mr7tICFKYVWFyDhrwEzDjArB0miKhDSPt%2FfjXJGkjAX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f9b0c0b41-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_singapore.png
200 OK 768 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_singapore.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 931d98f74f8bbb82364a40f7c3c5ea3b
f844a679d51126b38659a25e9c71c748da392714
04f122230781518f0b5807695a1c731e33bea9ba0264d612c799485074204627
GET /geocompteur/shadow/flag_singapore.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 768
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=939
content-disposition: inline; filename="flag_singapore.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Tue, 03 Jan 2023 21:38:37 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 714008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F7lP48YzgcZCWm66Fe6QH7lpmfZKTsqgZ0tRXcXqUGtG19dzKHTd49Nm9nz%2BRMf7BQkMEkb3bfxqC1BGybxUXpBBxfKlpCM99aJxov2VZjARR9uhlbtGTwmVlQL8P85g"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f9b110b41-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_ireland.png
200 OK 712 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_ireland.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8e55f246106bcd5ae49ef1a026ec80d3
a5afe18fe64456cbb16e31287f4106228267f584
eaf4b1563a65fb7bd06ace795835a00a4f491a48506996bd65c161d35002351e
GET /geocompteur/shadow/flag_ireland.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 712
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=937
content-disposition: inline; filename="flag_ireland.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 23 Dec 2022 12:40:14 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1696710
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ht%2Fckm6EtZ6PC2BiBur0%2Bo%2B4Ll7JltCEyLIYUxLO6S3hr5bS%2Fgyzdu8jpV6ecXnZCsK7O6M2Nl6k1ewZjQ64ry7a7MiZF9IHMA20MZHgjroaQt7xeKkyGKH85zCkCUZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87f9b100b41-OSL
X-Firefox-Spdy: h2
i66.photobucket.com/albums/h260/toonybug/postimage.png
200 OK 2.0 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/postimage.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7c97b842c78875c6ec36e6f15281a0d7
6c74bf1c6f860006eeaf58b4c5d73aeed3a52ce7
a561536555277e841424fa2139b09af34ad672769e8a51ad8f9e316f519d4dc5
GET /albums/h260/toonybug/postimage.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1964
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="postimage.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-47bd67ef61d72436596fa7d1
x-request-id: ZsbpG1X7sc9_S_AGHK24O
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0palmblHfcthyXKgSHs6SRXWzljroxLcjN4on1Vz_LZptrCIZuPlcA==
vary: Accept, Origin
X-Firefox-Spdy: h2
lh4.ggpht.com/-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800
200 OK 3.7 kB URL HTTP/1.1 lh4.ggpht.com/-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cd4d4e7e31d96aeee8c5d2645204feb1
2c5ad6e598a082bbf8fbfae666232b651ccb4356
32f36c233bbe9822faa2809e8958dfdcc4b66bf55f4d9b1c6a05903347bbd4ee
GET /-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d554"
Expires: Wed, 14 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="fizz_thumb.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: fife
Content-Length: 3671
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a33409f980e81b54f660035dd9c14cfb
8399645bbd14b6a968328c6552b837e3368948a3
9cf6b1845f29636c04e711a6bf1e7937773c6c4522e2ba66dd6c43bfef34b33b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4cfff21eb23d58996d9e27a376974cb5
79c2ffbc0f6594a69eaa643edee1757760fb848e
7916a7a170a38e6b445dadcf83d3fac44305960c6c15f756e0cde0a6a6e90970
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
IP
File type ASCII text, with very long lines (20080)
Hash 53967dbbb0ca555f500be4f69fdf41c9
8213f419185fefb4660b29462d9d79e6c28d6c43
7bd875167529e7ed4e7bd59b2143182acffdaf3631911d9a4d309e384a5d02cb
GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 13 Dec 2022 03:58:45 GMT
expires: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76265
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 1f984d58053be39408d40ea947d38943
871048440e5ee63f08e83909802a4cae099d24d2
cf34f29cecf5262d96efec6d5302d083733a55809df7a1c60ebbacce89ada95f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0f3dad0d025c4b6b8abd5d698f00cfbd
3a82ecac8709c7acd620316502a0e774ac3b1170
8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i66.photobucket.com/albums/h260/toonybug/divider-9.png
200 OK 24 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/divider-9.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1e9929d28305d0d1ee747a5cc2720950
7e30aa627a668c6fb4255263eea518d48a39f847
3ec6ad44f4ed89b90afc1db1d8f36e87558691e4741d00ddd804dbb22e7bf145
GET /albums/h260/toonybug/divider-9.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23600
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="divider-9.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-68bf5a777ffbd95a69fce0ba
x-request-id: cyQhhshMwtTES6GiO9gwf
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4IT11zbH2gFKU01ix8MnCorrvEMqnn36AAlyT6UKIDV9cZAMkILRKA==
vary: Accept, Origin
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/img/tmp/geocity_rose.png
200 OK 1.5 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/geocity_rose.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash fd8fcb06a3c68c043307fabecea3593f
0e5bc3f93162c0ead5a509577d5e044220bb0a34
20b0d8b04ef5ea8054fa50e23cb038e81f2af5b15bde64a1af632a9a65e6c5b9
GET /geocompteur/img/tmp/geocity_rose.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/city_css.php?c=geocity_rose
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: image/webp
content-length: 1456
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=2256
content-disposition: inline; filename="geocity_rose.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 11 Jan 2023 08:32:30 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 69973
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2HKt6dg6vl4umlga0NG7CVrwGV3boKz%2BMNuvQEEB1GN9HvA%2BFd9Dukcl15t1bWO1Lq0zVjjNuyOQ6RGBK%2Fd1yQuh4CFHycd3xyIDnd8PvAwHhPT1PnfU9MSvMBxE7o3l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc8807b3b0b41-OSL
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1167641&RD=58972975810065&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=58972975810065&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
200 OK 5.8 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1167641&RD=58972975810065&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=58972975810065&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
IP
Hash 7fc9ada49c2e36fb1875dba485e77e5c
0b9a3eaac99281ed66cbb0be33bba91860c51dce
377caab88c4b6a4fcff09560accad52ba85b844d6586b6bc5a3ebd1bdb55937f
GET /BidVertiser.dbm?pid=361547&bid=1167641&RD=58972975810065&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=58972975810065&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:45 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:45 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:45 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:45 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2e5ee531cc0386adab9fe3d62f530231
16ec934be53e9ce97d40aedf906430551ad1b58a
0259d529060dc76765ae2bfb9bb5f513662c41e1b6608ec3a950d8b4b04ec056
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kekcoklat.com/images/banner/banner180.gif
200 OK 58 kB URL HTTP/1.1 www.kekcoklat.com/images/banner/banner180.gif
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 180 x 60\012- data
Hash a741428fab4e3f6215f41f8a41200be3
2f2110a1ea3f1fe6be661d72e61b51c7fdbb2a87
68fc167c81c53c0f80769227b3db5ce7cbddef69e0c00fc3512714edf03faf91
GET /images/banner/banner180.gif HTTP/1.1
Host: www.kekcoklat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 08 May 2012 04:36:55 GMT
Accept-Ranges: bytes
Content-Length: 57811
Keep-Alive: timeout=5, max=75
Content-Type: image/gif
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
200 OK 25 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Dec 2022 12:33:42 GMT
expires: Sun, 10 Dec 2023 12:33:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 228303
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:52:41 GMT
expires: Tue, 12 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 32764
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/
302 Found 149 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/
IP
File type HTML document, ASCII text
Hash d4e5f07304ece73511dd72f6277892a9
b303984cd72f238ae9f711124fcdf0a50ce2209d
b3dabf7ce03fe6bf4f84b11b4891511fa8460b0d2715804f774c75ceb91d1a26
GET /hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 149
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=2B48879A-813B-4824-A590-F44B6EC5FD1C; Path=/; Domain=xiti.com; Expires=Sat, 13 Jan 2024 03:58:45 GMT; HttpOnly
atidx=2B48879A-813B-4824-A590-F44B6EC5FD1C; Path=/; Domain=xiti.com; Expires=Sat, 13 Jan 2024 03:58:45 GMT; HttpOnly; Secure
atid=2B48879A-813B-4824-A590-F44B6EC5FD1C; Path=/; Domain=xiti.com; Expires=Sat, 13 Jan 2024 03:58:45 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OOQJ5R3I0U0JmMcM9KhgC7AUFiLlgAU85WiwlnUHemRYlUGhfVxKwQ==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2e5ee531cc0386adab9fe3d62f530231
16ec934be53e9ce97d40aedf906430551ad1b58a
0259d529060dc76765ae2bfb9bb5f513662c41e1b6608ec3a950d8b4b04ec056
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ac4256479ee5f383b192e09c799dd82d
4caa07eee49d14260e509293194a9307f558130b
8af6f00413bfc875b297146fc0581c3c2cffc78ea728eb3289736a191128553c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
200 OK 373 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
IP
File type GIF image data, version 89a, 39 x 25\012- data
Hash 29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
GET /hit.xiti?s=281802&p=geocity_rose&hl=3x58x43&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Tue, 13 Dec 2022 03:58:46 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7us01eOy5DEqgmv7ES_PiqBajXrVOLm3OobVLFQk65On0Pa79W1JJQ==
X-Firefox-Spdy: h2
i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
200 OK 227 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Size 227 kB (226614 bytes)
Hash ef7477fb8ee9a569a09ee99354e024bc
1a7406d2f52fe0a9ead58edd224c0994a9c82fe5
6c1d19b7a44d5762cb0d83a48844d4d109b1a64f31278a9673e6a69fce21fa44
GET /albums/h260/toonybug/background2-20.jpg HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 226614
date: Tue, 13 Dec 2022 03:58:46 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="background2-20.webp"
expires: Wed, 13 Dec 2023 03:58:46 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-526817742495148f08dabb49
x-request-id: ECCw4M3hPcCenjhNvOld5
x-cache: Miss from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: V-CoJB20co24l8-yPCbiLjBn_zkxrqX5pHhV8u2A0QgK5_WV1HW6Pw==
vary: Accept, Origin
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
302 Found 474 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (503)
Hash 35a8c7ab8ed735cb3510c3d3b3a2c6f1
a89d15abfe5788f1ccfa933a08ed232d0cdb6b8e
19daab06b791533304a0bf49784913a44f9d2cba91d1b61a1fa5a016149d1ae5
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.geaHZXF2-fw.O/d%253D1/rs%253DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 13 Dec 2022 03:58:46 GMT
location: https://www.blogger.com/followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpak-janggut.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-nWqr_4wSIpCBQAUf7lSz0A' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 474
server: GSE
set-cookie: __Host-GAPS=1:AagdkojOLntFH8OTe2yKZ4h_0GQdDg:CGccQVbgAQKb8sSV;Path=/;Expires=Thu, 12-Dec-2024 03:58:46 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169953 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
www.shamsuriyadi.com/ccimages/banner180.gif
415 Unsupported Media Type 1 B URL HTTP/1.1 www.shamsuriyadi.com/ccimages/banner180.gif
IP
ASN #38182 Extreme Broadband - Total Broadband Experience
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /ccimages/banner180.gif HTTP/1.1
Host: www.shamsuriyadi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 415 Unsupported Media Type
Date: Tue, 13 Dec 2022 03:58:44 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: close
Server: imunify360-webshield/1.18
d2b9l3u54v5v39.cloudfront.net/css/58x466.css?cbst=2
200 OK 2.8 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/58x466.css?cbst=2
IP
File type ASCII text, with CRLF line terminators
Hash d58909e3606e94cade8eca195ab40f2e
e6363f5074ba81376c31b4cd770f0b0344621e24
68cec5539b0b468c927628d857780b25c5be36223db516828dce541b1c167c00
GET /css/58x466.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2831
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:19:13 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Mon, 12 Dec 2022 06:03:37 GMT
ETag: "ec706f147890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AZiohPb0iIcNHCCNYy6lh5w9PWE79RzXzmG1dINk3iInO7PknAWAVA==
Age: 78909
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb6b7affcab2b32d113fed499e663b71
bd1a5ee0a85c497bc5e10c7baa9b84e06188a668
a475dbafedab35e26c9c8cededc8844a6647899aec7106d116cf73556748ef75
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A475DBAFEDAB35E26C9C8CEDEDC8844A6647899AEC7106D116CF73556748EF75"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5672
Expires: Tue, 13 Dec 2022 05:33:18 GMT
Date: Tue, 13 Dec 2022 03:58:46 GMT
Connection: keep-alive
www.widgeo.net/geocompteur/geowidget_js.js
200 OK 519 B URL HTTP/2 www.widgeo.net/geocompteur/geowidget_js.js
IP
File type ASCII text, with very long lines (866)
Hash ad6d42f5be218120f21692dc218b7a40
4479514c4524b1fdc2577391f217c9316029a888
8c6af324c6c8464619bd07cabfc646e95efb378c2953084092fdd7ce3078c10b
GET /geocompteur/geowidget_js.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2217
cache-control: public, max-age=604800
expires: Tue, 13 Dec 2022 13:05:49 GMT
last-modified: Thu, 13 Feb 2020 12:35:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 571976
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ITR0UkzYAZ7GIw989C85LBKL1a%2Bg7i3KDDsoQV3vztYgAd4sx5bQ25y7%2F16wzbQ2S5gh7lOv9%2BFE4bostFwsvpYBfSLENPRZ9DBLQX4klGhIQ7uVZK8UgZtDLfTa%2BfRe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc8809b410b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Tue, 13 Dec 2022 06:07:14 GMT
Date: Tue, 13 Dec 2022 03:58:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Tue, 13 Dec 2022 06:07:14 GMT
Date: Tue, 13 Dec 2022 03:58:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Tue, 13 Dec 2022 06:07:14 GMT
Date: Tue, 13 Dec 2022 03:58:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7708
Expires: Tue, 13 Dec 2022 06:07:14 GMT
Date: Tue, 13 Dec 2022 03:58:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffebdc4d5-a724-47ca-a30a-bce3e96bbbe3.jpeg
200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffebdc4d5-a724-47ca-a30a-bce3e96bbbe3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f6f26cc088c96e477fab6eb3bfac37b
7c2728ee396b9aa4d8c32300fb3695e04fcb9d6c
29f7be917aa2ada98958c1e5cc12073417573a46376b35334535587e09c37948
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffebdc4d5-a724-47ca-a30a-bce3e96bbbe3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3666
x-amzn-requestid: 9eb88928-c5fe-4a71-bc9b-a3aa9ffc2d06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDWgPE_CoAMFv7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63979e01-6ed9af730d773de1607af63c;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 21:32:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JzqwfGNChytZ0rnnQTInbqSC4ffPe2Z6xmCFHszQfrWN_kF_De1qbw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 22:00:35 GMT
age: 21491
etag: "7c2728ee396b9aa4d8c32300fb3695e04fcb9d6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d2b9l3u54v5v39.cloudfront.net/css/598x158.css?cbst=2
200 OK 2.8 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/598x158.css?cbst=2
IP
File type ASCII text, with CRLF line terminators
Hash 68d57d3699fb5df19a82f9792073203f
8cba5e108ef62b9b68d991eca1a1c409bb016f01
49617ae18de9b53d3d940741d580dbe36ba050c5d07cd32fd937904cf00bde2d
GET /css/598x158.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2817
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:21:47 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Tue, 13 Dec 2022 03:18:41 GMT
ETag: "82363f707890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: L7OsAJSC1xrro_aNWqz67DrXkEd9-vKAZ7uDD-XTEi0Mh8q2HoaOsg==
Age: 2478
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8b0477fb90d103e2155bbf7ab47d877
ab668e755bd742b165fa3ba46a4c486c616a7ff6
40e2282cf64da6034f73a2ff0c0d060550caa364244d5bdf282d2f54719d48ad
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2263c6ae-1846-44f1-8b25-471bca417daf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4703
x-amzn-requestid: 975cb427-5feb-4c36-bcfe-bed0cc9bd3b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czpW4Hh4IAMFeRA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639155c5-63d6d97371f11d6012edae68;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 03:11:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BouIqIrg_vfxBH0weDXiqoEBcSV8_d4qDVB3Er5PeIrZz249iHdqGQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 08:18:10 GMT
age: 70836
etag: "ab668e755bd742b165fa3ba46a4c486c616a7ff6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f04b28ebe01f335e6e1d773112c7d070
ea682fd3c71e781da58cd8f3560ef0a8563832c1
327124aea2d405fb773ba0266d3a394cb65f2245cd9181da29b9fc620a889d80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703d359edb819eaefc6ccae224bbde15
4b8d7b5ff7cf1333bd0019b2d72cf2aadef6caf8
0452d24052bef979fd13f1a0fefb4c7803ff91c5afa3c871f85b73eb08f15489
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefb81a20-e06f-4f47-bfa8-916a4837d754.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12144
x-amzn-requestid: 0d00ec22-808c-4f60-98b1-87eef4aad829
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6n0yFORIAMFskA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394201e-58f1a5c87fc341bf56fa9d68;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 05:58:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sW4dQXExyH6JvbdtSgIPJUiifHh-VfbfcG5hKMaJ4tZA3pO-fobF6w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 04:10:33 GMT
age: 85693
etag: "4b8d7b5ff7cf1333bd0019b2d72cf2aadef6caf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3bd4c12-e778-472e-ac9c-d2cd99425501.jpeg
200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3bd4c12-e778-472e-ac9c-d2cd99425501.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f885add3e7cb373da8fbb0e773b169d0
b5d9aea1fcf2c7139710dd8b1cf06f595f59e3a2
8e527efa846977908cbf1b9b82f6a09fc84a512f62286c5ef4410b6ffd76d3cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3bd4c12-e778-472e-ac9c-d2cd99425501.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6619
x-amzn-requestid: 3f7210b8-b010-4d13-9ea2-ab331dfb6700
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c0rHIHhjoAMFixQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6391befa-090c90f7543e16cb678e0524;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 10:39:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: USIXU8S44hzxs_HMcUDEwyxD-DkuIxUBtawh1uMo4p_7PGLMSwewLw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 07:44:31 GMT
age: 72855
etag: "b5d9aea1fcf2c7139710dd8b1cf06f595f59e3a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba22bdf-55a7-4e1e-9034-79415392197a.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba22bdf-55a7-4e1e-9034-79415392197a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6788236cae1083aaf5a1cf95f1a6c9b
3825506ecfd360bf5352979023f445748373be3b
544d94a4896d3db29f3b6e518503f82776a3feaa55a5e9114b5572da1e667691
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ba22bdf-55a7-4e1e-9034-79415392197a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9676
x-amzn-requestid: 6d84c903-9bdb-4255-8324-d87d99cd1979
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDWgGHZZoAMFtwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63979e00-7964e1ca60e88ca45822b963;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r4L6lushe7nGkttIzAH9dCCjcQ6oVWYMUpMyAubdHl-Rjbh4byzlaA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 21:53:49 GMT
age: 21897
etag: "3825506ecfd360bf5352979023f445748373be3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7707
Expires: Tue, 13 Dec 2022 06:07:14 GMT
Date: Tue, 13 Dec 2022 03:58:47 GMT
Connection: keep-alive
2.bp.blogspot.com/-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/*
200 OK 1.8 kB URL HTTP/2 2.bp.blogspot.com/-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 99fab51d6ad334c42a05f0db6cc8532f
b5619d3d6a023d183e3524204ce1181536583572
2c634c594cdc4cc67f259a1af221cc120b66c2326bc7ca6afec0cda9daadb901
GET /-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/* HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="*.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1810
x-xss-protection: 0
date: Tue, 13 Dec 2022 01:07:20 GMT
expires: Sun, 04 Dec 2022 03:05:07 GMT
cache-control: public, max-age=86400, no-transform
age: 10287
etag: "v52c"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0af3d170e1aabf9c790605c13ca1859b
a4e84853e7f600d113ad5027c5ef240c9aa4756b
4933ac8f5a581588974240bb192ef7d1798b7e67428c98acd454ec0948848b29
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9036
x-amzn-requestid: 24df0710-a186-4d2d-9957-ff0ff45ff945
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDWfdGQpoAMFqeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63979dfc-6b5ffd0173b00d7b29cc81b6;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 21:32:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8FPKH3nLXJEpUbHUf_XGNTfbqRd7aG50u-OivbpasSh3O0L1fPFj_Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 22:00:36 GMT
age: 21491
etag: "a4e84853e7f600d113ad5027c5ef240c9aa4756b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
1.bp.blogspot.com/-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg
200 OK 1.5 kB URL HTTP/2 1.bp.blogspot.com/-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 2c53c52d7f8e27257535cfddaf818761
2b0aaeae7b0e715d7c6194e514591fd0c2a350b4
8d10c19235052321c5bf4aa25f86083366ca7c2c25e4ed71991d1902148bbd52
GET /-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="boa.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1508
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Sat, 10 Dec 2022 18:28:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v545e"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG
200 OK 2.0 kB URL HTTP/2 3.bp.blogspot.com/-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4baee26cd326fe1bac951002f135cb97
fb115c64a6e8c90954147e1685e7bf84b099c56e
caac06f13c005445b14fd2479ddda47be11487bd12e0db5d395a9f3a9e0e763b
GET /-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v56c"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="DSC05641.JPG"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 1953
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 926c6fac10f2d3c07155c52b700f06fc
7c51b25933c36ea1250b247168576a5516850e7a
a521012166a29f58da1581c7256da394ddef678434577d1f536f3631ebb39369
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f04b28ebe01f335e6e1d773112c7d070
ea682fd3c71e781da58cd8f3560ef0a8563832c1
327124aea2d405fb773ba0266d3a394cb65f2245cd9181da29b9fc620a889d80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b15a4989aefac89ff5e03c444cf0a8c0
da92bc0874b7beecbe255074ebb13b13fe43ec16
71a3c022e201a5122beb86d015f5507f6e348fddbceccfae8f74afae2d893f67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b15a4989aefac89ff5e03c444cf0a8c0
da92bc0874b7beecbe255074ebb13b13fe43ec16
71a3c022e201a5122beb86d015f5507f6e348fddbceccfae8f74afae2d893f67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg
200 OK 2.4 kB URL HTTP/2 4.bp.blogspot.com/-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash afad5c0f078b437134f587059f3dbf9c
f82a657abf5ad086ea0294bec117a5b676409727
71e5321d2134f07f83b4369c454d6549f533f9d67e4a742d0b3c07aacb7a93bc
GET /-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="IMG_20190222_212513-01.jpeg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2386
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Fri, 09 Dec 2022 06:26:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3c3b"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b15a4989aefac89ff5e03c444cf0a8c0
da92bc0874b7beecbe255074ebb13b13fe43ec16
71a3c022e201a5122beb86d015f5507f6e348fddbceccfae8f74afae2d893f67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c
200 OK 2.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 58bc498fa916d7a72d1ea6e06d248f64
b3852656d68829ae2d8428db8ae4717b0c4b0399
be198d54609961e3b6073376518d11c221b70256977810598d49fa6129c0bc78
GET /a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2315
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Wed, 07 Dec 2022 00:19:59 GMT
cache-control: public, max-age=86400, no-transform
etag: "v8298"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 23b92920e9ad09cdeabe3f51c10652c6
574d077eb61c84d57f6478f63816dfed1af83aeb
b128dddccab1de7e2589b38697887b18ea1297911cce834bdf50fd506f284b90
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg
200 OK 1.7 kB URL HTTP/2 2.bp.blogspot.com/-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 3ca675e0655fedbc0a2188cbb234afa8
2c8e15607147f1191fdc2c1e36a88ab4831a78c3
60b1608bc686e7d47d25ce10e7f37950a5dd115c56f42545299bcda6ca84fb5a
GET /-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="3.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1707
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Tue, 13 Dec 2022 16:03:49 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f04b28ebe01f335e6e1d773112c7d070
ea682fd3c71e781da58cd8f3560ef0a8563832c1
327124aea2d405fb773ba0266d3a394cb65f2245cd9181da29b9fc620a889d80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 926c6fac10f2d3c07155c52b700f06fc
7c51b25933c36ea1250b247168576a5516850e7a
a521012166a29f58da1581c7256da394ddef678434577d1f536f3631ebb39369
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 926c6fac10f2d3c07155c52b700f06fc
7c51b25933c36ea1250b247168576a5516850e7a
a521012166a29f58da1581c7256da394ddef678434577d1f536f3631ebb39369
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b15a4989aefac89ff5e03c444cf0a8c0
da92bc0874b7beecbe255074ebb13b13fe43ec16
71a3c022e201a5122beb86d015f5507f6e348fddbceccfae8f74afae2d893f67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b15a4989aefac89ff5e03c444cf0a8c0
da92bc0874b7beecbe255074ebb13b13fe43ec16
71a3c022e201a5122beb86d015f5507f6e348fddbceccfae8f74afae2d893f67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f04b28ebe01f335e6e1d773112c7d070
ea682fd3c71e781da58cd8f3560ef0a8563832c1
327124aea2d405fb773ba0266d3a394cb65f2245cd9181da29b9fc620a889d80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif
200 OK 3.4 kB URL HTTP/2 4.bp.blogspot.com/_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 6e7b6548fbba2f4c7ebf3063af3db330
75d615a98bb4cc181351d6d3592fe7a64abe7e0c
ed91f355e8a19ac0f139736c37970c621dfd8c671b789ca03ecd83d9e9202f68
GET /_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v572"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="dn100x50.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 3429
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg
200 OK 2.2 kB URL HTTP/2 3.bp.blogspot.com/-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 0516e8aaee06ea09a4b340e0b82181b3
6ed562b861805c6e191128a9869ad2e384c33c49
331cea53b7ce5d6095a1cb7f180c96e7d9acc69065c6559635722ae1afcc3463
GET /-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v3278"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="irfan3.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 2179
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c
200 OK 2.0 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 987e36f034d079170ec0f71f30d7153e
1437ae261b298e1a4aa2f66f6b41b32dd93fc94b
099658a1b178270d676d5598760ada77dac5e399e5c73e537bfb47ba3d6622b5
GET /a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v24a2"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 2039
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png
200 OK 3.0 kB URL HTTP/2 2.bp.blogspot.com/-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png
IP
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 420b8479d6a82697e5a84e7d4fcbcfda
1087ab065b87e34f659de2e18d07d2f59b74a2bd
062a3b33b7eecc1336b7f7b7b9129201091e945104a8d0017a4261753c2fbd13
GET /-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6b21"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1657207902075.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 3027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c
200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4a6ddb0ab06a55a944665233057e143a
f0f3d7c859f5206d783e82b0ff0f48fb5e3441f7
2d5aae9caa5fe36a4ea0510adb4d36de1d7e83ceb3c07543882376eca63a3e2d
GET /a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1893
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Tue, 13 Dec 2022 09:13:10 GMT
cache-control: public, max-age=86400, no-transform
etag: "v11f"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE
200 OK 5.2 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash cdaf673bfe7dbc5e729bcfa73bf9ef22
36d5da096e666cb65c0e50f91812441c297ca197
c5d90b055ad482aeae4510e7b7a51d8e003388c94a0e524b41da32002b7bde8b
GET /p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v323d"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 5177
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE
200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 1377170ceb9a6f6b23761f26fa15ae67
46838ef55fa2bfb9b79b410f0ae68286c08db0e3
6dfc06e20d620704d268bdcd08e805918b19228b081a25542de1454101452ca2
GET /p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vbe2d"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 3339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE
200 OK 4.2 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash dffcc95ac2f05220da08a60accb12d7d
1d14320be034c6f7bad646e4e7a446d1ccbca0aa
520d2a43c8eeb16590a2a8b538f34ce166bcb3b23e3d565100ed5872d6987abe
GET /p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b9b"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 4197
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE
200 OK 5.5 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 214954def0d349df98a04a6d3a8638ac
3770b41d6ba7d798c4b7d3a629230e0231e3acff
3964579f74a9550bbd726706541193eeaceb5db31ca1cf234f29942d1893e3b9
GET /p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v131c"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 5543
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/*
200 OK 1.9 kB URL HTTP/2 3.bp.blogspot.com/-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash b70a390b0b8c4f4bee8829cc1a59d1dd
46917da08d914b4cc594a1332b163c98004ab337
60b54b8ea208150f2cbbced26a89bd408ebfd9366b6186dc9e7b445ef25624ab
GET /-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/* HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="*.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1941
x-xss-protection: 0
date: Tue, 13 Dec 2022 03:58:47 GMT
expires: Mon, 12 Dec 2022 22:05:24 GMT
cache-control: public, max-age=86400, no-transform
etag: "vab8"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA
200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 9019a1e07522f0e04d33c5e7dd75f59e
1e23f221a4200e67ce4ac9fe81cd15593ad5a259
6f259a700e64b7ebdbcdc159c28b3f97c8de16827b02c131aac85b25da7561c7
GET /p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v290f"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 4825
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/*
200 OK 1.2 kB URL HTTP/2 3.bp.blogspot.com/-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 423e44e1f3bc9ca1a9e53e6d39169a6f
148addc1613b225d191d2c8d46985c70d81ae7e8
2daf6ebc1e8581e6dcb816e7f4ef64c3c9f8f42773440f3e5d4c260825dc6432
GET /-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/* HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vba1"
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="*.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 1151
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE
200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 2aef9032987f0b48a3d42bf9ae5811a3
db4c78d61bc66b106e6163f2ecc4605bf408331c
b5c66faa840338ac9d19262cb06fbc15bfe4f965bbf71b956f6f25b18965b09e
GET /p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 3809
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE
200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 846538a41e9d5e1dcec315a103d57e2b
237d7df220da8aa15cd2c8644bf05d03beed5bb0
4403b2a019bbe8f90dd58478a4b32281ae0024ef9f4bbf6b16b27540fc60cae1
GET /p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6101"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 4423
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.feedburner.com/fb/images/pub/i_heart_fb.gif
200 OK 1.7 kB URL HTTP/1.1 www.feedburner.com/fb/images/pub/i_heart_fb.gif
IP
File type GIF image data, version 89a, 89 x 32\012- data
Hash 9d1a9e12e20db57876534f01de99d1ca
c2ba81d7d1f5189970efabab533b8c3d5ee1990e
bf428aaa348d904fc5a772bd2bc2e1404d6b8e305c1924c8391e397ada7beafd
GET /fb/images/pub/i_heart_fb.gif HTTP/1.1
Host: www.feedburner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/pichu-static
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="pichu-static"
Report-To: {"group":"pichu-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/pichu-static"}]}
Content-Length: 1743
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 03:58:47 GMT
Expires: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=0
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/gif
Age: 0
widgets.amung.us/colored.js
200 OK 3.2 kB URL HTTP/1.1 widgets.amung.us/colored.js
IP
File type ASCII text, with very long lines (8596), with no line terminators
Hash fb2d2d6ae1380dd532a4f653267faf5e
5f1c850f1872fc8b43ec5bb2ebc29a76c77292b9
df88edf6843167ac3284b229fca9e2ef641db2c5b7abce9f638d7fc5d260713f
GET /colored.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:47 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 01 Dec 2022 21:21:03 GMT
etag: W/"63891abf-2194"
expires: Wed, 14 Dec 2022 03:45:39 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 788
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 778bc88c1e999927-ARN
lh3.googleusercontent.com/p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw
200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 672c6a659f5b4e0fccde03020e6e91c2
bd61f22277929a2132c6cc7e081d87ab5e2a9496
ebac13e4b0796f7e385d84ee6daf306265af10c8b67354790b78d7b2af946dda
GET /p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v271e"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 13 Dec 2022 03:58:47 GMT
server: fife
content-length: 3391
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
200 OK 4.4 kB URL HTTP/2 d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
IP
File type GIF image data, version 87a, 253 x 43\012- data
Hash 40da375b710fa50b7ac80e6fa6631301
1fb8573a11db47e18dcb9d63b59703698a515d38
4d87f9330df397e20ff54a229705d34c3db2e1cc25c247046aa033b42b2e6482
GET /buatcoklat.com.gif HTTP/1.1
Host: d39f23jfph0ylk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 4361
last-modified: Sat, 02 Jul 2022 06:39:13 GMT
accept-ranges: bytes
server: AmazonS3
date: Tue, 13 Dec 2022 03:12:20 GMT
etag: "40da375b710fa50b7ac80e6fa6631301"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: enGFD7IOtwh5LcSNg9sPIjdHCeQyC1uk6rF4YPGrIOeZlX6A2NuHtw==
age: 2788
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=eae529f47989ea1f628ee620996f967a
200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=eae529f47989ea1f628ee620996f967a
IP
File type ASCII text, with very long lines (18734)
Hash db31d3151ca2a9763c0faef86c52c857
3c0f319585c6ed32db72e357d5e206ae783ecd85
f767a3172ee1527b141e744da24fc4e25a27cef54b164ae99350e7a8fa492e4a
GET /en_US/all.js?hash=eae529f47989ea1f628ee620996f967a HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b92f2ec3522687f61e07ad0096a93c1c
etag: "37c3ec2544496aedb71a9eca8da2c175"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 13 Dec 2023 03:27:17 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 2zHTFRyiqXY8D674bFLIVw==
x-fb-debug: EHBf+jlNfLIt98EVVP8aIAq7XYRYj7LNuJBoXZxfm3rpgsMRsCThx/itGsXaXUfpgS00GPeVeeJgHpYwZgyifw==
content-length: 86815
x-fb-trip-id: 1679558926
date: Tue, 13 Dec 2022 03:58:47 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 56e4eac87fe93f52fc4cc1f8b10c6ca6
4a4ecee9801077d8a0558b623143a710bc3d39ad
4485e3aa578a0a1c12688701737c08d9cd674cb605f1d2ab47c09ce307738d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4485E3AA578A0A1C12688701737C08D9CD674CB605F1D2AB47C09CE307738D27"
Last-Modified: Mon, 12 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17296
Expires: Tue, 13 Dec 2022 08:47:03 GMT
Date: Tue, 13 Dec 2022 03:58:47 GMT
Connection: keep-alive
pak-janggut.blogspot.com/favicon.ico
200 OK 412 B URL HTTP/1.1 pak-janggut.blogspot.com/favicon.ico
IP
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/search/label/Faezah%20Elai
Cookie: ck_TCM_pop=1; HstCfa1960718=1670903923397; HstCla1960718=1670903923397; HstCmu1960718=1670903923397; HstPn1960718=1; HstPt1960718=1; HstCnv1960718=1; HstCns1960718=1; cj_uid=nuwujWbSmwPMzDu0Hdr6xjLKHe9dL3
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Tue, 13 Dec 2022 03:58:47 GMT
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 10 Dec 2022 14:53:52 GMT
ETag: W/"31ca276a91db0f797e92e975b9ca1bcbe641ad242c16fba93fa754407f6bad0d"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP
Hash 667891c699d74cd28b15b2de0fdbeed5
740465a8c026d74e9af15637935f5414daee5545
e8eaca11510bf1e71ac6ee82107ee3bad6118c4ed1c1a78bddb37782fc098a45
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 13 Dec 2022 03:58:47 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s4.histats.com/stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1670903923397&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:-108555665&@b3:1670903923&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%20Elai&@w
200 OK 103 B URL HTTP/1.1 s4.histats.com/stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1670903923397&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:-108555665&@b3:1670903923&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%20Elai&@w
IP
File type ASCII text, with no line terminators
Hash 1240236fab0382e498874bcc2dbcce54
b93f292eace3f2e2b942865d671aee5a08221619
ea362d154227750a61199a6f2f250003d7b17217e36133e365e03bb9839548a6
GET /stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1670903923397&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:-108555665&@b3:1670903923&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%20Elai&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:48 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 103
Connection: close
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1167641&RD=73875814652474&DIF=2
200 OK 10 kB URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1167641&RD=73875814652474&DIF=2
IP
Hash 096cf348f0068d652c2128f18cc46da4
b90081b21984348905e9593393b2110e9dbc4c9f
a876e91a38cad8b3ef87b7c76ca065b4c230fdaec10fd73892ce153e8b36d6ab
GET /bidvertiser.dbm?pid=361547&bid=1167641&RD=73875814652474&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:47 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:47 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
503 Service Unavailable 326 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Tue, 13 Dec 2022 03:58:52 GMT
Connection: close
Content-Length: 326
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169954&RD=6590265364177&DIF=2
200 OK 326 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169954&RD=6590265364177&DIF=2
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /bidvertiser.dbm?pid=361547&bid=1169954&RD=6590265364177&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:47 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:47 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
whos.amung.us/pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&y=&a=0&d=8.412&v=27&r=2146
200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&y=&a=0&d=8.412&v=27&r=2146
IP
File type ASCII text, with no line terminators
Hash d2428a02047f7448c67dc8f454386e8f
d98add564e27679dc3526e41c566f8e30a4a3d69
d3e6f88427c33bd209e7315719175cb5ee4f8b2a06958633f9763edf722eb919
GET /pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&y=&a=0&d=8.412&v=27&r=2146 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:52 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 778bc8aa893e9903-ARN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 0cfba7a4237d49a4786c3b82cdc1beaa
7bd43cc330804d66cfd392567e048fa1f214c50d
cea4ff98dd355823fb395415bea8af57a1eae234998194d1ddc99b25afebd52f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 11 Dec 2022 11:33:40 GMT
Expires: Sun, 18 Dec 2022 11:33:39 GMT
Etag: "7bd43cc330804d66cfd392567e048fa1f214c50d"
Cache-Control: max-age=458686,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 778bc8acb81cfac8-OSL
widgets.amung.us/colwid/?c=ff77e82d00ca
200 OK 4.0 kB URL HTTP/1.1 widgets.amung.us/colwid/?c=ff77e82d00ca
IP
File type PNG image data, 116 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 54c64aa8587c69df6f10b0763891b0b4
74f60d1fa9eb41d431dd3fe36d91e0c274ab7608
79d32b58eba104fc11044721004222599f3c6a2769f33ad0b7522f4536c5592c
GET /colwid/?c=ff77e82d00ca HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 13 Dec 2022 03:58:53 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
content-disposition: filename=wau-widget.png
expires: Wed, 14 Dec 2022 03:58:53 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
CF-Cache-Status: MISS
Last-Modified: Tue, 13 Dec 2022 03:58:53 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 778bc8ac48b59927-ARN
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1670903931069&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1670903931069&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1670903931069&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah%20Elai&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Tue, 13 Dec 2022 03:58:53 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=10579032272318&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=10579032272318&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=10579032272318&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=10579032272318&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
IP
GET /BidVertiser.dbm?pid=361547&bid=1169953&RD=10579032272318&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=10579032272318&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:47 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:47 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:47 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:47 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 7615
CONNECTION: Close
cdn.tynt.com/tc.js
200 OK 0 B IP
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:53 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 45141
expires: Fri, 16 Dec 2022 03:58:53 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 778bc8ad880c0afe-OSL
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&j=
200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&j=
IP
GET /i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FFaezah%2520Elai%23&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:48 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Tue, 13-Dec-2022 05:22:08 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Tue, 13-Dec-2022 07:58:48 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1670903928; Domain=dtscout.com; Expires=Thu, 23-Mar-2023 03:58:48 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.578
expires: Tue, 13 Dec 2022 03:58:47 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=chnEkFWlWPnKJ9iSLQ1CNg7W4%2FaUnnns3hhI%2F1gYJVuVFbq9gKN6aZJNt1PabnqyGm%2FCfO31Krgng%2BmK582Wt9ElCRhpfHr2S63ErVJAg%2BTw9C5nSB6ubsaxwO17ulM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc88daaf80a3d-ARN
content-encoding: br
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169954&RD=4168430352692&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=4168430352692&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169954&RD=4168430352692&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=4168430352692&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
IP
GET /BidVertiser.dbm?pid=361547&bid=1169954&RD=4168430352692&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=4168430352692&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:46 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:46 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:46 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:46 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 4161
CONNECTION: Close
www.widgeo.net/tcm.js
200 OK 0 B IP
GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3693
cache-control: public, max-age=604800
expires: Sat, 17 Dec 2022 08:08:57 GMT
last-modified: Wed, 12 Oct 2022 00:08:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 244187
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MROTw66euurYne8LlPzBsIp%2FX%2F8lIEisVdlKqhTamklC%2F%2B2F4Dl%2BqeSAD4FJl%2BGXAy1BiY5DyulJYRICwmhFVCjkVKj%2Bkk9mJILxeiYWvYSJHAjPR9qA9U9n%2Frx%2F%2FK%2BO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 778bc87dda7c0b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 13 Dec 2022 03:58:45 GMT
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=6549644999104&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6549644999104&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=6549644999104&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6549644999104&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah
IP
GET /BidVertiser.dbm?pid=361547&bid=1169953&RD=6549644999104&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6549644999104&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Faezah HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:46 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:46 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:46 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 14-Dec-2022 03:58:46 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 7615
CONNECTION: Close
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 0 B URL HTTP/2 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geocity_rose
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 13 Dec 2022 03:58:45 GMT
content-type: application/javascript
last-modified: Mon, 12 Dec 2022 12:08:17 GMT
etag: W/"639719b1-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=caLpoPT824l%2Fut5tGnbsPN2bLEYaNJ7eWAzHVpTDHQCq34EiaTqVeA74CQ8pGwIj670MqwqmQXX%2BN3dFLugZEHxqlqlw0h2CWwM%2BE2rC6tmZyww1Vk3kj%2F9ezPDp4%2B58"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 778bc87f3afa0b41-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 15 Dec 2022 03:58:45 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169953&RD=9389000525134&DIF=2
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169953&RD=9389000525134&DIF=2
IP
GET /bidvertiser.dbm?pid=361547&bid=1169953&RD=9389000525134&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:47 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:47 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169949&RD=95945199438474&DIF=2
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169949&RD=95945199438474&DIF=2
IP
GET /bidvertiser.dbm?pid=361547&bid=1169949&RD=95945199438474&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Tuesday, 13-Dec-2022 03:58:47 GMT
Cache-Control: no-store
Last-Modified: Monday, 13-Dec-2021 03:58:47 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
172.217.21.161
149.56.240.31
157.240.240.1
104.22.75.171
190.2.139.23
23.33.119.27
113.23.169.115
46.105.201.240