r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b642ec5702fb818c5d1c67168cc68fdb
015146489a8e7fcb4ba0ba74cfe757a072705f93
4846d047a23903856bd113d02639ce7e08a1e40030151d302295b2d12df98ffc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4846D047A23903856BD113D02639CE7E08A1E40030151D302295B2D12DF98FFC"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3877
Expires: Thu, 15 Dec 2022 02:12:17 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Thu, 15 Dec 2022 02:56:36 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 00:33:52 GMT
content-type: application/json
age: 2028
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d29881eeb0456eff8cf415ad2ce64ba0
e3cfdd5f56ff88066257ec8f4726f53e3a733bd3
2cd90072f113163f976ddb8bc7017884efd3f764e7e8961b04e3ba5ec0a17d85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CD90072F113163F976DDB8BC7017884EFD3F764E7E8961B04E3BA5EC0A17D85"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Thu, 15 Dec 2022 03:09:17 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: to3IDnBRRFfWzKBJDUMrGER42+9L63Yi3jLHcD3HMWS8DQfk/lb0Omr1GtHCFVlq03/hivBYhzSy8t+WseWUFA==
x-amz-request-id: M5G4Q9FMPMG0J958
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 00:52:34 GMT
age: 906
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html
142.250.74.33200 OK 19 kB URL HTTP/1.1 zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6910)
Hash 371320f20541cb411328da9014e94868
5cf9cfe3beeb3c76b0331d8a2d183ad9d28b6f31
eb22556c7a096882b8e4d373911d46b4c74b189bea3e16a5a4157117f599e7a3
Analyzer Verdict Alert fortinet Phishing
GET /2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html HTTP/1.1
Host: zonfiniti.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 15 Dec 2022 01:07:40 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: private, max-age=0
Last-Modified: Wed, 14 Dec 2022 11:07:05 GMT
ETag: W/"b03caa5508b7a9d7ecc9c8622c0cb1efa7ec382d17f62a18e0f0c91675520379"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19203
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 01:07:40 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Chelsea+Market
142.250.74.106200 OK 350 B URL HTTP/1.1 fonts.googleapis.com/css?family=Chelsea+Market
IP 142.250.74.106:0
Hash 40d16eece24d27dac13236a5cee7d95a
7ed9183c7420beabf6b39db60671b5b283a2ee23
2be4cd48daa4df9e03d2e56021717a5956ea286c7dbceed35815942c5d791024
GET /css?family=Chelsea+Market HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Thu, 15 Dec 2022 01:07:40 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
zonfiniti.blogspot.com/js/cookienotice.js
142.250.74.33200 OK 2.0 kB URL HTTP/1.1 zonfiniti.blogspot.com/js/cookienotice.js
IP 142.250.74.33:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Malware
GET /js/cookienotice.js HTTP/1.1
Host: zonfiniti.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 15 Dec 2022 01:07:40 GMT
Expires: Thu, 22 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 14 Dec 2022 20:52:27 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
bloggerhosting.appspot.com/serve/taolaga.googlepages.com/blogger-widget.js
142.250.74.84404 Not Found 272 B URL HTTP/1.1 bloggerhosting.appspot.com/serve/taolaga.googlepages.com/blogger-widget.js
IP 142.250.74.84:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 9902fb9f7cf3e9a8dd26f45a5cb94113
91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6
GET /serve/taolaga.googlepages.com/blogger-widget.js HTTP/1.1
Host: bloggerhosting.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 404 Not Found
Content-Length: 272
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Dec 2022 01:07:40 GMT
www.statcounter.com/counter/counter_xhtml.js
104.20.218.77200 OK 14 kB URL HTTP/1.1 www.statcounter.com/counter/counter_xhtml.js
IP 104.20.218.77:0
File type ASCII text, with very long lines (43632), with no line terminators
Hash ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
GET /counter/counter_xhtml.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Dec 2022 11:49:46 GMT
ETag: W/"aa70-5efc8553da85f"
Cache-Control: max-age=43200
Expires: Thu, 15 Dec 2022 06:47:13 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 22827
Server: cloudflare
CF-RAY: 779b48a3fd48b500-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f0cd16a4285109b0d728642f1d1df3
833e9fa9eb60302f3f4c0370e52b533befd2e2e2
748e2cfb115a307c593b875812af31efbc2310a2b4309bf35091f9af98dfb980
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0ffd9494d7b15d0c02e09f86eb695397
0650b890aa6e1d7651089bfc3b298d5b8d88650d
ac0d60d80fcd6577aefe03b46683d3f087cbada34717a3e53ec31cfeb0ed11e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.73200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.73:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 14:01:44 GMT
expires: Wed, 13 Dec 2023 14:01:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Dec 2022 06:58:47 GMT
content-type: text/css
age: 126356
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/img/icon18_edit_allbkg.gif
142.250.74.73200 OK 162 B URL HTTP/1.1 www.blogger.com/img/icon18_edit_allbkg.gif
IP 142.250.74.73:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 162
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 18:52:02 GMT
Expires: Tue, 20 Dec 2022 18:52:02 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 13 Dec 2022 14:51:37 GMT
Content-Type: image/gif
Age: 108938
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f0cd16a4285109b0d728642f1d1df3
833e9fa9eb60302f3f4c0370e52b533befd2e2e2
748e2cfb115a307c593b875812af31efbc2310a2b4309bf35091f9af98dfb980
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Thu, 15 Dec 2022 01:07:40 GMT
expires: Thu, 15 Dec 2022 01:07:40 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "a3103820cfc6daca"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2092647672-widgets.js
142.250.74.73200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 142.250.74.73:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 02:10:45 GMT
expires: Fri, 08 Dec 2023 02:10:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 00:55:10 GMT
content-type: text/javascript
age: 601015
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 00f0cd16a4285109b0d728642f1d1df3
833e9fa9eb60302f3f4c0370e52b533befd2e2e2
748e2cfb115a307c593b875812af31efbc2310a2b4309bf35091f9af98dfb980
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yx-ads6.com/banner.php?section=General&pub=235648&format=468x60&ga=g
185.66.200.221200 OK 427 B URL HTTP/1.1 yx-ads6.com/banner.php?section=General&pub=235648&format=468x60&ga=g
IP 185.66.200.221:0
ASN #201702 skHosting.eu s.r.o.
File type ASCII text, with very long lines (427), with no line terminators
Hash ea1461908dcdf7236faecca1e392c319
e4a947d253fb44fcab417f274b6b03e7b2a8a602
8c6c93833fabf11b340c6eae9242550e1d2d286ffb74cfb647c2d900b233b997
GET /banner.php?section=General&pub=235648&format=468x60&ga=g HTTP/1.1
Host: yx-ads6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 15 Dec 2022 01:07:40 GMT
Last-Modified: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c4bdd6ef3e0ef2c33868d96eacf07dec
e37067aed86afe6d61372f325d5485dfcd35a350
56b8dc4555085a686f9cad922e1dc169140ae8d6475e24524096ca6f05576073
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (580)
Hash 3e7852e3ac3d1921ddb7302c569bdb8f
85e8bdb23ef407fb3770ec0a9588d85c725930d3
20cd515349665d62191e0c15ea1b9f3b5c4e35d36313d1e7fdc8af83b9663a78
GET /_/scs/abc-static/_/js/k=gapi.lb.en.ydLROSGdlBE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57931
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 19:13:25 GMT
expires: Wed, 13 Dec 2023 19:13:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Dec 2022 15:21:53 GMT
content-type: text/javascript; charset=UTF-8
age: 107655
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0qMGSpDQgbXzrkU6LbSRnjoJLds0gWp1OiQnKk124nNPSZ4loXVSnFqRidAjX5ClnkKc_ERjP68UvVsnEBzg-hfmCvgW57JqnCi9M419uvRA9lW9AKa86JlpotEe9y-g4=w72-h72-p-k-no-nu
142.250.74.97200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0qMGSpDQgbXzrkU6LbSRnjoJLds0gWp1OiQnKk124nNPSZ4loXVSnFqRidAjX5ClnkKc_ERjP68UvVsnEBzg-hfmCvgW57JqnCi9M419uvRA9lW9AKa86JlpotEe9y-g4=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Hash 85e4c3bdd1fe7c965d5a1177bc632af8
90aaebfc44bb57eff464c47d7824c815fb45ab68
ca917fc0639e7bcee19262b05f5918794645b445f97d448ff4a273a10a82d583
GET /blogger_img_proxy/ANbyha0qMGSpDQgbXzrkU6LbSRnjoJLds0gWp1OiQnKk124nNPSZ4loXVSnFqRidAjX5ClnkKc_ERjP68UvVsnEBzg-hfmCvgW57JqnCi9M419uvRA9lW9AKa86JlpotEe9y-g4=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 16 Dec 2022 01:07:40 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 15 Dec 2022 01:07:40 GMT
server: fife
content-length: 3372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.211.2200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.211.2:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Wed, 14 Dec 2022 18:30:23 GMT
Expires: Wed, 28 Dec 2022 18:30:23 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 23837
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 500d7838b7582b456b8025ffe03ac9a8
ba64ec0d9ae36361848bc1be73a99e7c38575271
0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/_3hrMD8vmVAk/S16QCWRy7jI/AAAAAAAABp8/3_K0I9RP7rQ/w72-h72-p-k-no-nu/Christian+Bautista.jpg
142.250.74.161404 Not Found 1.7 kB URL HTTP/1.1 4.bp.blogspot.com/_3hrMD8vmVAk/S16QCWRy7jI/AAAAAAAABp8/3_K0I9RP7rQ/w72-h72-p-k-no-nu/Christian+Bautista.jpg
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Hash 58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b
GET /_3hrMD8vmVAk/S16QCWRy7jI/AAAAAAAABp8/3_K0I9RP7rQ/w72-h72-p-k-no-nu/Christian+Bautista.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Thu, 15 Dec 2022 01:07:40 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eb84e6a011a9528eb9a80989e38b9273
0dfd05338986086205c7c7cc834710ecd977c595
7ef7ceaad733fe6d750d693f372ad861326524ee9c8c332b02728d85ae98e5e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogtopsites.com/v_77930.gif
3.230.20.126200 OK 181 B URL HTTP/1.1 www.blogtopsites.com/v_77930.gif
IP 3.230.20.126:0
File type GIF image data, version 89a, 80 x 15\012- data
Hash f19b302e783ce24201563d80b2cc6784
e65f4bfaafa44ac5050dce3f8e981bd492e26a88
5294358b5240e0f24d259b9cdeb65e47d5ba3cee7227010e218bd91e99359823
GET /v_77930.gif HTTP/1.1
Host: www.blogtopsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:40 GMT
Content-Type: image/gif
Content-Length: 181
Connection: keep-alive
Server: Apache
yx-ads6.com/bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=167106646084965&xtt=2286513
185.66.200.221200 OK 1.3 kB URL HTTP/1.1 yx-ads6.com/bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=167106646084965&xtt=2286513
IP 185.66.200.221:0
ASN #201702 skHosting.eu s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1277), with no line terminators
Hash a8945673f99c47ed4bf9c8d8be99fd40
2a3b20f2b28e2764560771c0f0fa34c6cae63916
275ee688921d367545aa7a4da00f2e3a3d5ce8dc08a236e26112bc1fad3e42d2
GET /bnr_xload.php?section=General&pub=235648&format=468x60&ga=g&xt=167106646084965&xtt=2286513 HTTP/1.1
Host: yx-ads6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Thu, 15 Dec 2022 01:07:40 GMT
Last-Modified: Thu, 15 Dec 2022 01:07:40 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex, nofollow, noarchive, nosnippet
Set-Cookie: used_ad2558589=1; expires=Thu, 15-Dec-2022 05:00:00 GMT; Max-Age=13939; path=/; domain=yx-ads6.com; secure; HttpOnly; SameSite=None
total_impressions=1; expires=Thu, 15-Dec-2022 05:00:00 GMT; Max-Age=13939; path=/; domain=yx-ads6.com; secure; HttpOnly; SameSite=None
cpa_673873=468x60_432418328_0; expires=Sat, 14-Jan-2023 01:07:41 GMT; Max-Age=2592000; path=/; domain=yx-ads6.com; secure; SameSite=None
bdv.bidvertiser.com/BidVertiser.dbm?pid=252920%26bid=727451
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=252920%26bid=727451
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=252920%26bid=727451 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
www.tv3.com.my/thumbnail.php?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362
35.241.14.17302 Moved Temporarily 170 B URL HTTP/1.1 www.tv3.com.my/thumbnail.php?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362
IP 35.241.14.17:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash c0ffcf253e5066c0170a9462fb922f7d
ee594686b1547563089e5cd952380d85848f5b4f
136a927dfa423d0e3c853e24398da279f1881b693ee5e4797e9269e87fa7d244
GET /thumbnail.php?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362 HTTP/1.1
Host: www.tv3.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 302 Moved Temporarily
Server: nginx/1.10.3 (Ubuntu)
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: text/html
Content-Length: 170
Location: https://www.xtra.com.my?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362
Via: 1.1 google
feeds.feedburner.com/KisahLawakCeritaLucu?format=sigpro
142.250.74.46200 OK 9.2 kB URL HTTP/1.1 feeds.feedburner.com/KisahLawakCeritaLucu?format=sigpro
IP 142.250.74.46:0
Hash 18a019cacafcae704ffbaf84835be889
c01d9046b6df7eb17191fa5b82f853127a4c09d7
7d18d95cd0eefc651f376fe7a47b095c5a37a76e74925bc3aec1a55d5847d87e
GET /KisahLawakCeritaLucu?format=sigpro HTTP/1.1
Host: feeds.feedburner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/xml; charset=utf-8
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
feedburnerv2:
Last-Modified: Wed, 14 Dec 2022 03:00:30 GMT
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 15 Dec 2022 01:07:40 GMT
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Opener-Policy: same-origin
Content-Security-Policy: script-src 'nonce-49cuhyLwCZLFtlRM92w_Gg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/RaichuFeedServer/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/RaichuFeedServer/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/RaichuFeedServer/cspreport
Cross-Origin-Resource-Policy: same-site
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 00:07:58 GMT
age: 3583
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ylx-i.advertica-cdn2.com/logo_n_small.png?1480628810
185.66.200.127200 OK 1.3 kB URL HTTP/1.1 ylx-i.advertica-cdn2.com/logo_n_small.png?1480628810
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type PNG image data, 16 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 961dcad940bcae720f8f0ead6409f9d2
7199f8b763df9aec9c55bad14795e2166e6b1501
a50a9224daca3d84e35717d2c03bea4a7e9c811b2cc598078de2f9b787ed080a
GET /logo_n_small.png?1480628810 HTTP/1.1
Host: ylx-i.advertica-cdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2016 21:46:50 GMT
ETag: W/"58409a4a-631"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
ylx-i.advertica-cdn2.com/aff/pub_5l0n01.png?1480419355
185.66.200.127200 OK 13 kB URL HTTP/1.1 ylx-i.advertica-cdn2.com/aff/pub_5l0n01.png?1480419355
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type PNG image data, 468 x 60, 8-bit colormap, non-interlaced\012- data
Hash 2b02f49a3a1c9571a64c27f7b797ffac
ec9ca4b25519977d042a11c8ad9facfa2258dc13
e517ff3f3bee21f20a0b6bce68911f8eb1679b05d31ca64fd645db324a90cccd
GET /aff/pub_5l0n01.png?1480419355 HTTP/1.1
Host: ylx-i.advertica-cdn2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2016 11:35:55 GMT
ETag: W/"583d681b-333f"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
ebaaa.xyz/b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf
185.66.201.8200 OK 754 B URL HTTP/1.1 ebaaa.xyz/b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
File type ASCII text, with very long lines (475)
Hash 59e7f75c520f12b6b8974cf19b27c7b2
af2f87cc6ac6ffdd1c6ac8b58b0bbf26f00a5292
e18e7bf0770a313a36b0597eaf8d046baff8c27d622510015c08f31623e58b63
GET /b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Content-Encoding: gzip
www.zonfiniti.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
172.217.21.161200 OK 8.8 kB URL HTTP/1.1 www.zonfiniti.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (49741)
Hash dac755ce335f274902eaaff792ef61c9
0b3ca15016f8cfbe34bcaac2d93c0af5a71f6f48
e715757091321d50e84c2323ca2d852c0caffc5cc27554d14eefa84176801bd8
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: www.zonfiniti.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"39a0a9b5cbbdcc341e01bfa5d76e2ca056deb96986d6277cf4b008d79a27a30f"
Date: Thu, 15 Dec 2022 01:07:40 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Wed, 14 Dec 2022 11:07:05 GMT
Content-Encoding: gzip
Content-Length: 8831
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4142a10f9f8b00654bf2dd9035b7ff0e
04d6dbffefaa2111a6ce934a02dd1722884c0999
a1ca4ffdc58347c837ea680726350028638deb27f43eeca7afd8d0b21f3a5c54
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A1CA4FFDC58347C837EA680726350028638DEB27F43EECA7AFD8D0B21F3A5C54"
Last-Modified: Mon, 12 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9253
Expires: Thu, 15 Dec 2022 03:41:54 GMT
Date: Thu, 15 Dec 2022 01:07:41 GMT
Connection: keep-alive
bdv.bidvertiser.com/BidVertiser.dbm?pid=252920%26bid=727451
54.241.51.109200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=252920%26bid=727451
IP 54.241.51.109:0
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=252920%26bid=727451 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
ebaaa.xyz/b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1388892036853&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBa24xWWRyZ0ZNR3hQUkhBMDduS25nMD0=
185.66.201.8200 OK 3.5 kB URL HTTP/1.1 ebaaa.xyz/b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1388892036853&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBa24xWWRyZ0ZNR3hQUkhBMDduS25nMD0=
IP 185.66.201.8:0
ASN #201702 skHosting.eu s.r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (33536), with no line terminators
Hash ac43ef0b958554d00aaedd43fc240352
7814929c76d9220997583713b79b9650418f0cac
c93cea9a96c8abf4c16e9f81e95b4f25de3b9f402fa8e546d584d3b5a7b1c4c0
GET /b180228ef7/bd74f6fd55/?placementName=ROTATOR&type=n&cv=XrdpCpiZprjiZjCjZGkZkCxCkrNkxNpZNrApCrCZZZCCrkjCrxACrCrGCxCZxkkjjiZpCCr_63570&adApiR=loaded_string_7487635b0bce9d250429df012c0426f88d0bd_2558589_1671066460.9962_18069&refferer=431469025_aHR0cDovL3pvbmZpbml0aS5ibG9nc3BvdC5jb20v&width=468&height=60&yxDom=eXgtYWRzNi5jb20=_f0357766f025bd90555c7422a47a29cf&randomA=1388892036853&realRef=L2NETFhpTXhYWUNHeGdMclJKaDVBa24xWWRyZ0ZNR3hQUkhBMDduS25nMD0= HTTP/1.1
Host: ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://yx-ads6.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: total_impressions=1; expires=Thu, 15-Dec-2022 04:59:59 GMT; Max-Age=13938; secure; SameSite=None
used_ad2558589=1; expires=Thu, 15-Dec-2022 04:59:59 GMT; Max-Age=13938; path=/; secure; SameSite=None
Expires: Sun, 01 Jan 2014 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Robots-Tag: noindex,nofollow
Access-Control-Allow-Origin: *
Content-Encoding: gzip
bloggerhosting.appspot.com/serve/taolaga.googlepages.com/blogger-widget.js
142.250.74.84404 Not Found 272 B URL HTTP/1.1 bloggerhosting.appspot.com/serve/taolaga.googlepages.com/blogger-widget.js
IP 142.250.74.84:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 9902fb9f7cf3e9a8dd26f45a5cb94113
91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6
GET /serve/taolaga.googlepages.com/blogger-widget.js HTTP/1.1
Host: bloggerhosting.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 404 Not Found
Content-Length: 272
Content-Type: text/html; charset=UTF-8
Date: Thu, 15 Dec 2022 01:07:41 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 210b7a2584ae55362c4b582e325f37f7
5f1982f961f1c5db96bbb66af075bab3cb535963
cb3767debad90cb8a34ce287de194cdb2a4f7146e7b51560fd2e0eb11fbfbc2f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3898
Cache-Control: max-age=119053
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Etag: "63999230-1d7"
Expires: Fri, 16 Dec 2022 10:11:54 GMT
Last-Modified: Wed, 14 Dec 2022 09:06:56 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
yx-ads6.com/trk/?05838ce63bc33babb77bfbcfa0d30827
185.66.200.221200 OK 43 B URL HTTP/2 yx-ads6.com/trk/?05838ce63bc33babb77bfbcfa0d30827
IP 185.66.200.221:0
ASN #201702 skHosting.eu s.r.o.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /trk/?05838ce63bc33babb77bfbcfa0d30827 HTTP/1.1
Host: yx-ads6.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://yx-ads6.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 01:07:41 GMT
content-type: image/gif
content-length: 43
last-modified: Thu, 15 Dec 2022 01:07:41 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
pragma-directive: no-cache
cache-directive: no-cache
cache-control: public, no-cache
pragma: no-cache
expires: 0
X-Firefox-Spdy: h2
i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
143.204.55.106301 Moved Permanently 167 B URL HTTP/1.1 i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
IP 143.204.55.106:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/z449/Farmgirl1709/arrow.gif HTTP/1.1
Host: i1190.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
X-Cache: Redirect from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5sY3Z9hqAL9o0FjgIbQpjTbJLv1Ye04qRmLBWimY2IcBFDHuqboKBg==
Vary: Origin
www.blogger.com/dyn-css/authorization.css?targetBlogID=8652144738844330194&zx=3215eb0c-6ee3-44d7-9b4d-0ac69968ee61
142.250.74.73200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=8652144738844330194&zx=3215eb0c-6ee3-44d7-9b4d-0ac69968ee61
IP 142.250.74.73:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=8652144738844330194&zx=3215eb0c-6ee3-44d7-9b4d-0ac69968ee61 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 01:07:41 GMT
last-modified: Thu, 15 Dec 2022 01:07:41 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d2b9l3u54v5v39.cloudfront.net/css/default.css
54.230.245.108200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Wed, 14 Dec 2022 06:30:50 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ynCxXeG8Bc49bRaeMqUdPxEzcUTx-6Ah4l2SQ1vTV1j-mf5ndffJIA==
Age: 67011
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
54.230.245.108200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 15 Dec 2022 00:20:21 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 907t_0YhHaxAQyBDuRMrifVF7ZEguUieJv_6faaasvM-DsIC4HmGtA==
Age: 3036
d2b9l3u54v5v39.cloudfront.net/css/248x298.css?cbst=2
54.230.245.108200 OK 2.8 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/248x298.css?cbst=2
IP 54.230.245.108:0
File type ASCII text, with CRLF line terminators
Hash f020440d7f52ee37d70575b0cd5e5b24
82e5372b0edc7d3f383460166f8e0f1e6280aa81
a2df6be8c0eb6d9e62a747d71755fdb0251668c571c984d040d7d6108ffaa5ef
GET /css/248x298.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2817
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:20:30 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Wed, 14 Dec 2022 04:48:28 GMT
ETag: "183bf427890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jnJxRSZeKcwzIlBlVfcA0QyF1N5LIPD1AkNJnpXn9hsc1NP7eGMbMg==
Age: 73153
zonfiniti.blogspot.com/feeds/posts/default/-/Isu%20Semasa?alt=json-in-script&callback=listEntries10
142.250.74.33200 OK 8.5 kB URL HTTP/1.1 zonfiniti.blogspot.com/feeds/posts/default/-/Isu%20Semasa?alt=json-in-script&callback=listEntries10
IP 142.250.74.33:0
File type Unicode text, UTF-8 text, with very long lines (48922)
Hash b31eeae198fcd4fc76d30cf595d55fd6
2bdf5498a8c9b6cc9d96bf4d419af922fb677b8c
374e012c84c04453dc6346a556b5e23ed1c4cc9836e88849e0d0f5e5470c6b0e
GET /feeds/posts/default/-/Isu%20Semasa?alt=json-in-script&callback=listEntries10 HTTP/1.1
Host: zonfiniti.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"e178a7e9182eb0b889e9e8111b55baa5e743abae078599fae8b762b270cdb7ef"
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Wed, 14 Dec 2022 11:07:05 GMT
Content-Encoding: gzip
Content-Length: 8535
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bfb5d3c071cebab21e6ab8647e84b6ba
ebc1553e88dbe512449a31b3cb4c10c659484d7d
cf794ab56bfa29d8e47637d68f5c82e4c60b855a8f6b772f344a72c712da3c4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Catamaran:800&display=swap
142.250.74.106200 OK 9.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Catamaran:800&display=swap
IP 142.250.74.106:0
Hash 13bdd4219f18bfe2579ee9f1a7fd7a9a
d106733ef259e35833c2f86228bfd96016be40a1
7cc3f8cd0276a1798b49f8cf19b5754c98248cb6692294fd519795a1bfeb5b74
GET /css?family=Catamaran:800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ebaaa.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 01:07:41 GMT
date: Thu, 15 Dec 2022 01:07:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
143.204.55.106200 OK 532 B URL HTTP/2 i1190.photobucket.com/albums/z449/Farmgirl1709/arrow.gif
IP 143.204.55.106:0
File type GIF image data, version 89a, 35 x 40\012- data
Hash 3e85da9e9dc96af2b567247503d88710
a9cfb2fb1dd591637aabaf157bd0f4e4fa347f69
5ec5c37c746fef19eb6fa6a02290c44085d6a7b3ce5d441f98ffdb040133f146
GET /albums/z449/Farmgirl1709/arrow.gif HTTP/1.1
Host: i1190.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zonfiniti.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 532
date: Thu, 15 Dec 2022 01:07:41 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="arrow.gif"
expires: Fri, 15 Dec 2023 01:07:41 GMT
server: photobucket
x-amzn-trace-id: Root=1-639a735d-3645441164d8b7a7151a2b9f
x-request-id: mGYUUSq3r5s7bIYzGBLpA
x-cache: Miss from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YOTMdjXq-pbqRW-ViRikpyekutV1jJ9q3WaxLx2TQS2CrhWZpFWpaQ==
vary: Accept, Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4557f99d9d9535e0134db96dfe8063b2
c9b446d4f382a8ee3d73b1b2e77c96c3e4787059
74305a78c814edc962f442dbbc14023e0b96c5822d5aa9f4ef4c8e4bc791fc00
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ebaaa.xyz/genericImages/breaking-news/monster.jpg
185.66.200.127200 OK 28 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/monster.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 720x480, components 3\012- data
Hash f045028c62ae8abf87211bad26764005
c01569b70c6b158825a833afeb0c06c50fc0d257
123f9d2b217640e9080cdc4f05eab6c561663773e2909d915a57146649949274
GET /genericImages/breaking-news/monster.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:27 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7c3-6f44"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/tsunami.jpg
185.66.200.127200 OK 90 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/tsunami.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Hash aae083d8a443d81de09226dad634df2b
f75c55426ac9a86fc284ac7e017bf58f1f458ebf
6c973f95e939da1bf3a25d41cf4f01adcc4397964752140a054506e4abf37cdd
GET /genericImages/breaking-news/tsunami.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:19 GMT
Vary: Accept-Encoding
ETag: W/"5d9da77f-15e0e"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/rocket.jpg
185.66.200.127200 OK 90 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/rocket.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Hash d83eadb5affd612df91f3a3cb5a9b311
9c4c486fd799a56ff1d4b4233aa113e1bde354b4
a7eea983cfe69cd74f1baf8128e27c53d7e790704773157f1fe63900f6f3d3db
GET /genericImages/breaking-news/rocket.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:15 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7b7-160b5"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
feeds.feedburner.com/KisahLawakCeritaLucu?format=sigpro
142.250.74.46200 OK 7.6 kB URL HTTP/1.1 feeds.feedburner.com/KisahLawakCeritaLucu?format=sigpro
IP 142.250.74.46:0
File type XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (2412)
Hash 8d17fd1c09a65f2401bbf2c7520a243e
7b74ff84f06d6d49f33dae7df1fca3a145005aa1
fb825010a0c7dac62d9738ac9402d733997504c7266290cb132a835f0d6d1d5f
GET /KisahLawakCeritaLucu?format=sigpro HTTP/1.1
Host: feeds.feedburner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/xml; charset=utf-8
Vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
feedburnerv2:
Last-Modified: Wed, 14 Dec 2022 03:00:30 GMT
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 15 Dec 2022 01:07:41 GMT
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Report-To: {"group":"RaichuFeedServer","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/RaichuFeedServer/external"}]}
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Security-Policy: script-src 'nonce--5VS7LzEPgTsuFIIXJxN-Q' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/RaichuFeedServer/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/RaichuFeedServer/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/RaichuFeedServer/cspreport
Cross-Origin-Opener-Policy: same-origin; report-to="RaichuFeedServer"
Cross-Origin-Resource-Policy: same-site
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdn.ebaaa.xyz/genericImages/breaking-news/water.jpg
185.66.200.127200 OK 110 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/water.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x670, components 3\012- data
Size 110 kB (109608 bytes)
Hash 8bdddc96b70840beb8f057e0b5fd8eac
1cfa4dc4b8aa7cf268dce8b95e63c37ff67363e3
76cd14c68197e555c4634638a186e7f054d8954cf681a3d39c586c6f33cb09da
GET /genericImages/breaking-news/water.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:24:25 GMT
Vary: Accept-Encoding
ETag: W/"5d9da749-1ac32"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/ufo.jpg
185.66.200.127200 OK 80 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/ufo.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Hash ce68ce0845ec2595c6fb22736a7a3993
bd68e8f1376667b6f82bd1848e84eede8873144c
761c4a9c7a839d56efd94a75123722d0117eaab5f11ec4875949a58a793f80ab
GET /genericImages/breaking-news/ufo.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:05 GMT
Vary: Accept-Encoding
ETag: W/"5d9da771-13b4b"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
push.services.mozilla.com/
54.187.187.233101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.187.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Dk0e5TYYg+pOJzsK+/g1Hw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: O1jd/2P7fWKJU9JyZcp6WZoi6PQ=
cdn.ebaaa.xyz/genericImages/breaking-news/fire.jpg
185.66.200.127200 OK 98 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/fire.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x667, components 3\012- data
Hash d2db288c416f9c5eb2cd2d9da339916a
23c7b7acef5f6da23993636098be40403a723836
9c9912933eeac0c79b35abae05111bddb41ec86e145a24a2e2cff331cf3b1bc2
GET /genericImages/breaking-news/fire.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:37 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7cd-17dc1"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/tornado.jpg
185.66.200.127200 OK 41 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/tornado.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x752, components 3\012- data
Hash e801ddc9ec7fe9b34b75100a753669dd
a2edcefd18e4f7d3973b802e6f449d914e7859a8
287ea86194efa270c206fc838c746f8b5e093a13336c113d67bb8afda3c0ec91
GET /genericImages/breaking-news/tornado.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:36 GMT
Vary: Accept-Encoding
ETag: W/"5d9da790-a397"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/spider.jpg
185.66.200.127200 OK 62 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/spider.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Hash a133e7dc2d2dbfc0fdca06e12ba5832e
e22ab5b81ced7fd6ad5a2d9c836ef0de614b08fb
bd4aff0ac6b3b52037ac1bd9be489b28b51ec2fcb69fd15c61285e49599be769
GET /genericImages/breaking-news/spider.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:25:50 GMT
Vary: Accept-Encoding
ETag: W/"5d9da79e-f2f2"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
cdn.ebaaa.xyz/genericImages/breaking-news/unicorn.jpg
185.66.200.127200 OK 133 kB URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/unicorn.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x563, components 3\012- data
Size 133 kB (132623 bytes)
Hash 6accd45a7ed2cb51971ddec821e20240
c7e58c68eea1bb2d9be338df1c5585e131f2c484
ad49176e99d1fdfb9b548edf6799cd10b8a56c8f70b27dcb850b2ea7b31e5101
GET /genericImages/breaking-news/unicorn.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:24:51 GMT
Vary: Accept-Encoding
ETag: W/"5d9da763-20b52"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=main
188.114.97.1200 OK 1.5 kB URL HTTP/1.1 www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=main
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (716), with CRLF, LF line terminators
Hash 23363e56b565fba60ebb8101731fc727
0cbfc4f15cd0e3db0b7de05c719148ec6f5f16bb
3d3988fa505fb70dc2e5d73fe9175c96899b05efd927a8b681a3d2b42733b168
GET /box/?boxid=782802&boxtag=g6xh0k&sec=main HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Cache-Control: public, must-revalidate, max-age=5
Last-Modified: Thu, 15 Dec 2022 01:07:42 GMT
X-Cache: EXPIRED
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q2A3Ld24o%2FfSCFrd55A8DuuJjY8xzzy2eViIo7OgwklAVplKkyfdyWbe0Bdu7EIdovMD7Iy%2FZGE6pHKKFutJOjFzZ0U8AKU44ISnny7zbXfmABz4MQYNviG8KRPGM5s%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 779b48ab4cecb4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=form
188.114.97.1200 OK 2.3 kB URL HTTP/1.1 www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=form
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (995)
Hash 152879af1b575ff1a0cbc9bb73cd08e5
ae4338b982ba3975289d0bed141bc14f5c294344
7ac9dce3ff318ad640a41ea8e71d634b970c3bd651150aa85d2f7c8dd69eb7e6
GET /box/?boxid=782802&boxtag=g6xh0k&sec=form HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Fri, 15 Dec 2023 01:07:42 GMT
Cache-Control: public, max-age=31536000
X-Cache: EXPIRED
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VpCEmyvknFE6hkVGGADGEic9l6bQssXSiLC3TG7b0lTJNhQLOC4gBqjGZ6naH6PSba4UmehbFRl8Jg6QlG0PYhzlIslqspU5JNqHe5N8Wa%2FrWWZ2v3kvOLo8h%2FhHA5M%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 779b48ab4e00b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cf2e02dae7e023b1c5a15fe1326ad86c
e53b2215941aa2a34d5d2cfddcb3dd22648afe9f
59d7cd7c5538b3e2fb77d12a1f0017d222259e598a57c1d3d8552e9a8d8118aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=css&i=1336622970
188.114.97.1200 OK 763 B URL HTTP/1.1 www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=css&i=1336622970
IP 188.114.97.1:0
File type ASCII text, with CRLF line terminators
Hash d94b95dca9c3e62bfc9ce9e3bdad95fd
ea43174076416f231ed8c04c83db36ddaaaf862d
f6e03d5229a38f8c9457308feb82569bf0b0ef3819477dc324779aeb833e0739
GET /box/?boxid=782802&boxtag=g6xh0k&sec=css&i=1336622970 HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/box/?boxid=782802&boxtag=g6xh0k&sec=main
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: text/css;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Thu, 13 Apr 2023 23:35:56 GMT
Cache-Control: public, max-age=10368000
X-Cache: HIT
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZfeNYuT6viflMpH%2Fwa1rivdlnqdfRvpPeBNMVI%2FRTNL1TAfPe4VOqQbXvBpLEx%2Fmq%2BvjnY028jMpUTGwOvutO0UEnia%2FYybdyxbgcUWVZqrAQY8%2B6GG86RKUTbHOtQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 779b48abde3ab4fa-OSL
alt-svc: h2=":443"; ma=60
static.cbox.ws/jsc/jsc_1593163307.js
188.114.97.1200 OK 17 kB URL HTTP/1.1 static.cbox.ws/jsc/jsc_1593163307.js
IP 188.114.97.1:0
File type ASCII text, with very long lines (538)
Hash d145f5920028cd6628fd2a489864f740
30754798a738b79a9a39c7f2c1f4f3d366e494b2
f534b4a63d6e14e118b76f38c76615b6f759542f1cc987664141ebf760d7e6fe
GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www5.cbox.ws
Connection: keep-alive
Referer: http://www5.cbox.ws/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: application/x-javascript
Content-Length: 16559
Connection: keep-alive
Last-Modified: Fri, 26 Jun 2020 09:21:54 GMT
ETag: "5ef5be32-40af"
Content-Encoding: gzip
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
CF-Cache-Status: HIT
Age: 1900918
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=59acDz55NSh9dvAwxIFc9EKURIFbY88IIgfJV4ijHBXmTkp9d%2Bt%2BWqaXnnvFdlpyDN%2BE6NjuMFR14Eqk9197rCOXGiBdL3YgxJ57gzVjNOrkpiu%2F%2FEmITcokMwN2%2FDuHzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b48ac1832b506-OSL
alt-svc: h2=":443"; ma=60
3.bp.blogspot.com/_CEj8AwvwSNM/S5Ppn-w6byI/AAAAAAAAEDU/zujexeXt05U/icon+untuk++shoutbox+tersembunyi+(7).png
142.250.74.161404 Not Found 832 B URL HTTP/1.1 3.bp.blogspot.com/_CEj8AwvwSNM/S5Ppn-w6byI/AAAAAAAAEDU/zujexeXt05U/icon+untuk++shoutbox+tersembunyi+(7).png
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /_CEj8AwvwSNM/S5Ppn-w6byI/AAAAAAAAEDU/zujexeXt05U/icon+untuk++shoutbox+tersembunyi+(7).png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Thu, 15 Dec 2022 01:07:42 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
216.58.211.13302 Found 476 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
IP 216.58.211.13:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (532)
Hash 38fffc4f8e4ec5d0fbbd9591d7fcde2b
a424fda9c1a1be3dcdea33e67347ada0ab2131cc
d4a3ae4476d592686d211e4e89551a2e790722ce6e9e0630066385554f190c31
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D8652144738844330194%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D3461253438903576866%26origin%3Dhttp://zonfiniti.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zonfiniti.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 01:07:42 GMT
location: https://www.blogger.com/followers.g?blogID=8652144738844330194&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=3461253438903576866&origin=http%3A%2F%2Fzonfiniti.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-P5EnY1Z3Z5Am09rVbW8CdQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 476
server: GSE
set-cookie: __Host-GAPS=1:FhvKYnNE3qrxk09MQ-NevBjGbUiK5A:DQ16zWRW5UbFeQH9;Path=/;Expires=Sat, 14-Dec-2024 01:07:42 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
zonfiniti.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmD8zADLh4RSzwcS8EEz2fXUn4KaPeYTJElI42c_An3iW2yyCOIcUpjqdIMXeuMlQnf3J9k9mYlT8KZ9ymrNCsBem0vIzw
142.250.74.33200 OK 266 B URL HTTP/1.1 zonfiniti.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmD8zADLh4RSzwcS8EEz2fXUn4KaPeYTJElI42c_An3iW2yyCOIcUpjqdIMXeuMlQnf3J9k9mYlT8KZ9ymrNCsBem0vIzw
IP 142.250.74.33:0
File type JSON data\012- , ASCII text, with very long lines (409), with no line terminators
Hash c06cac716285ef796b6b665c441c0b77
272a9162061f67f9b15cd4a6a2a2bcd588db5f6a
8602743410405896fbdf366eb4ce1f075a0de170988b7a5ec0f81765c3bd580a
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmD8zADLh4RSzwcS8EEz2fXUn4KaPeYTJElI42c_An3iW2yyCOIcUpjqdIMXeuMlQnf3J9k9mYlT8KZ9ymrNCsBem0vIzw HTTP/1.1
Host: zonfiniti.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html
Cookie: sc_is_visitor_unique=rx3969099.1671066459.CCCAEE140AB44FCF4FDA50F6C4B0A41D.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 15 Dec 2022 01:07:42 GMT
Expires: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 266
Server: GSE
static.cbox.ws/smilies/1/toocool.gif
188.114.97.1200 OK 927 B URL HTTP/1.1 static.cbox.ws/smilies/1/toocool.gif
IP 188.114.97.1:0
File type GIF image data, version 89a, 15 x 15\012- data
Hash 3f82e8c1bf5ce4081820b23eb3dc2cc8
b98a5afa0ad4a5c28e333342c76894356ca4d3c0
68c2f479655373e535e96617cce5c98cca1752925b8fc237763f57c6d951152e
GET /smilies/1/toocool.gif HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: image/gif
Content-Length: 927
Connection: keep-alive
ETag: "3f6d82cc-39f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 16840976
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AUBpoJs3Qk40yoY7zzFXcnkkiykjv8UEFlRWUCUAURxsbo1ISiOcQpyKNKB6KXFN%2FXJNdnDfr03efzoq3nHPiMMhtdAPkHjzh8aYjw47NhWSNrwoNw4nBkSn%2FQQLulEzVA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b48ac4c0ab52d-OSL
alt-svc: h2=":443"; ma=60
static.cbox.ws/gfx/snd2.png
188.114.97.1200 OK 264 B URL HTTP/1.1 static.cbox.ws/gfx/snd2.png
IP 188.114.97.1:0
File type PNG image data, 48 x 11, 8-bit colormap, non-interlaced\012- data
Hash 9db1fa0b7190fea89091fa74098e58e3
216c202d89f759c7a9d820100c00e90261e8e4ce
c248ad7fabf75b82ad878590021ee5d430231dbaa53b1be3b9160b7aecb9c823
GET /gfx/snd2.png HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www5.cbox.ws/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: image/png
Content-Length: 264
Connection: keep-alive
ETag: "4bb6743a-108"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 23284346
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yigzr%2FSJpd87mml4lZwGQUuGbwefAWQu%2BeBvq%2FAlJp0AFfBs2VQTsOyXKDGr404Sj6Y%2FxhePdnsBjboWEsYsjDLOkBKtStfaHzx6fplkBonEqwHCOdJJTOcF5L6%2BH3wZOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b48ac69a3b523-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f340e8485c80338c159be2ac5f8050c5
704f9da662775b15315248a59353c9af39a1ef0e
2197d905b6847b6ae4eb8b90be3edb8ed0e6c809208590d3a59559e8fce99f8e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widgets.amung.us/tab.js
104.22.75.171200 OK 19 kB IP 104.22.75.171:0
File type ASCII text, with very long lines (29322), with no line terminators
Hash c9ed731944024702b435ba1cc59ef389
80ed46e16bd892d709d35f5ba8dfef01e4d6e320
34b786e8399cc681809345c8e92d95927bc67234f4e592adc1ef2a5d8e4ed449
GET /tab.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 13 Dec 2022 21:48:48 GMT
etag: W/"6398f340-728a"
expires: Fri, 16 Dec 2022 00:34:10 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 2012
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 779b48ad3f2c9902-ARN
tcr.tynt.com/ti.js
172.64.151.83200 OK 16 kB IP 172.64.151.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1213)
Hash a384492ef8f3bb035fc8ecba870e86d3
a6da9b212e2d640261cc1c1a5c98096aef5d8778
9232a4a99aa4630732414441f411afe936b0e95047f3d018e46c40f211fc1ede
GET /ti.js HTTP/1.1
Host: tcr.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 193154
Expires: Sun, 18 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 779b48ad1bd8b50f-OSL
3.bp.blogspot.com/--CaDGF8uXrg/TgIU6LxaDDI/AAAAAAAAAJM/DD0aZFeqczg/s400/zonfiniti.gif
142.250.74.161200 OK 435 B URL HTTP/1.1 3.bp.blogspot.com/--CaDGF8uXrg/TgIU6LxaDDI/AAAAAAAAAJM/DD0aZFeqczg/s400/zonfiniti.gif
IP 142.250.74.161:0
File type GIF image data, version 89a, 19 x 19\012- data
Hash a916069dc5171ae8483ccf858efc22bb
57277f99b85cf5fc298f94d84e73abe8007e4c70
9f34980afb2b810a79bc8999e9653a08364a23732393fc80d093af007449a762
GET /--CaDGF8uXrg/TgIU6LxaDDI/AAAAAAAAAJM/DD0aZFeqczg/s400/zonfiniti.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="zonfiniti.gif"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 435
X-XSS-Protection: 0
Date: Thu, 15 Dec 2022 01:07:42 GMT
Expires: Mon, 12 Dec 2022 01:38:09 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v150"
Content-Type: image/gif
Age: 0
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash d2a60b2bf4ab2febf47553cb38d36ec5
fc7131e8780665fbe2153cbb1ad48d76f3a78c2a
6d8aa3e67bc3b51f605dd10d42e49e44c977b11af28477cb16aa5d959138a141
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 13 Dec 2022 06:34:09 GMT
Expires: Tue, 20 Dec 2022 06:34:08 GMT
Etag: "fc7131e8780665fbe2153cbb1ad48d76f3a78c2a"
Cache-Control: max-age=450985,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 779b48ad38ba0b69-OSL
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP 142.250.74.131:0
Hash aff47672f63686537ecfa161f87944cb
0324a2d912a0545ac6c038a384c977371f8b4e29
dafc50d49230390d57a175b2c9100f0e7c1d7bc18214bd40fb472f53e43e5997
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
whos.amung.us/pingjs/?k=xib8itrntaoj&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&c=t&x=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&y=&a=0&d=1.829&v=27&r=4490
104.22.74.171200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=xib8itrntaoj&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&c=t&x=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&y=&a=0&d=1.829&v=27&r=4490
IP 104.22.74.171:0
File type ASCII text, with no line terminators
Hash 5777dd1091da736f894c25e450f26e13
621f15dc2542726490afff507f7ecba6300b3115
b9ac659bd6961ce0a9aeb177d8319728888af2403a4a663989e818f62519a122
GET /pingjs/?k=xib8itrntaoj&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&c=t&x=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&y=&a=0&d=1.829&v=27&r=4490 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 779b48aedc0c9900-ARN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6e467e0cff2bd4faa86396567236736
e0ea11f9fa497eb7bef619283c31ea2eda18a284
fee86e0774b73a38572997c3777409be9fdd731419b9a234580ad714f763dc7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6e467e0cff2bd4faa86396567236736
e0ea11f9fa497eb7bef619283c31ea2eda18a284
fee86e0774b73a38572997c3777409be9fdd731419b9a234580ad714f763dc7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e0dd7523e886ba9e0688313d09ac3553
9ac60244527182e44da961da0237a3dfc0c29d87
7e724d27272de80268a43beb459c3962a9254de93cd1e80b2eb3a44c4a27eeaf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8381
Expires: Thu, 15 Dec 2022 03:27:23 GMT
Date: Thu, 15 Dec 2022 01:07:42 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6e467e0cff2bd4faa86396567236736
e0ea11f9fa497eb7bef619283c31ea2eda18a284
fee86e0774b73a38572997c3777409be9fdd731419b9a234580ad714f763dc7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 4beafb95d0a662fa7eb81909b51358ff
c4d7240463ae3f6f8b96286fb35174c34aee6964
e39ff4ed5f0ac4c67cf6618e63360e532fe16a1b27e6d17831ef32ef9658a735
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 01:07:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 23:33:40 GMT
Expires: Wed, 21 Dec 2022 23:33:39 GMT
Etag: "c4d7240463ae3f6f8b96286fb35174c34aee6964"
Cache-Control: max-age=598556,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 779b48af89c20b69-OSL
c.statcounter.com/t.php?sc_project=3969099&u1=CCCAEE140AB44FCF4FDA50F6C4B0A41D&java=1&security=3b57bfeb&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&invisible=1&sc_rum_e_s=1799&sc_rum_e_e=1811&get_config=true
104.20.218.77200 OK 2.1 kB URL HTTP/2 c.statcounter.com/t.php?sc_project=3969099&u1=CCCAEE140AB44FCF4FDA50F6C4B0A41D&java=1&security=3b57bfeb&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&invisible=1&sc_rum_e_s=1799&sc_rum_e_e=1811&get_config=true
IP 104.20.218.77:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8d9aacdf03eb55e26b75e3621fdece7c
634044ccb9e6fc3703fdd5afe6f64c606f3a32a8
ac5f1c34edddeac2984e07443dc52c0ecba2ad1d1c56250d2256a8c3f7155943
GET /t.php?sc_project=3969099&u1=CCCAEE140AB44FCF4FDA50F6C4B0A41D&java=1&security=3b57bfeb&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=http%3A//zonfiniti.blogspot.com/2012/07/proses-evakuasi-rakyat-malaysia-di-syria.html&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&invisible=1&sc_rum_e_s=1799&sc_rum_e_e=1811&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zonfiniti.blogspot.com
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 01:07:42 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc3969099.1671066462.0; SameSite=None; Secure; Expires=Tuesday, 14-Dec-2027 09:07:42 +08; Path=/; Domain=.statcounter.com
access-control-allow-origin: http://zonfiniti.blogspot.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 779b48ae7d06b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8381
Expires: Thu, 15 Dec 2022 03:27:23 GMT
Date: Thu, 15 Dec 2022 01:07:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 950417131e4e9f1238fc585984f327b5
da28ff9df8e2e423cce7ae247a3e8c8469507c4b
0504b92466cf49c1072ba9d9776d921c76fbe3a1542bc202e9751d9c40566597
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fdd629d-f240-4f70-976e-0a71b7c9ed76.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5834
x-amzn-requestid: 63e69ca6-85d6-43e2-9d42-ddff1617fd7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dJ9R8EAZoAMFtUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a4272-40e8a981097612402ae21532;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 21:38:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: BUQNBTltYqTVBkbt9QQtXS3vQjvM26E6SuvPdIFqVuq1eusUVL5K3g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 22:32:22 GMT
age: 9320
etag: "da28ff9df8e2e423cce7ae247a3e8c8469507c4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&j=
141.101.120.10200 OK 2.8 kB URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&j=
IP 141.101.120.10:0
File type ASCII text, with very long lines (2077)
Hash 25f1e352ceaca601eea5da78cac9ce08
25c6dc15b97509b5150a910ddea47468249731ba
710a4d124f38a6f805a391a8ca2dae9bbb81f56794bb004517d1dd7099c81b5b
GET /i/?l=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 01:07:42 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Thu, 15-Dec-2022 02:31:02 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Thu, 15-Dec-2022 05:07:42 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1671066462; Domain=dtscout.com; Expires=Sat, 25-Mar-2023 01:07:42 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.752
expires: Thu, 15 Dec 2022 01:07:41 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FxeFCXbTxiV%2BxGpGsQSUdJxBalSq0cycHw8oFDHUG2bfJNf5BaT4s0NktIF2C6AmyGOm5z35Pg7keGtZzSahY6YqOogDKTfm4st0S9YrEs89gJUe7m5K%2B4n4HC2KOAw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b48aebef79933-ARN
content-encoding: br
X-Firefox-Spdy: h2
3.bp.blogspot.com/-76NCLxvkYNE/TXkTnutp1yI/AAAAAAAAAao/udEaud-h8EY/s45-c/saya.jpg
142.250.74.161200 OK 1.6 kB URL HTTP/2 3.bp.blogspot.com/-76NCLxvkYNE/TXkTnutp1yI/AAAAAAAAAao/udEaud-h8EY/s45-c/saya.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 04b575137e8230f700cccd83098b8bdc
bb6c6bc9666a3644b5cf0445ea8fc6121afd908e
4837ea40886e9870f5c00fa8f16f04f529d22a9d21f35e122b2a86a47c3323cd
GET /-76NCLxvkYNE/TXkTnutp1yI/AAAAAAAAAao/udEaud-h8EY/s45-c/saya.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="saya.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1642
x-xss-protection: 0
date: Thu, 15 Dec 2022 01:07:42 GMT
expires: Mon, 05 Dec 2022 15:28:27 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1aa"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-KnA7I-IWlec/UMqIxZ-JnQI/AAAAAAAABCg/yodsxYLrJDA/s45-c/Neko_dance_by_EternalNova.jpg
142.250.74.161200 OK 1.4 kB URL HTTP/2 3.bp.blogspot.com/-KnA7I-IWlec/UMqIxZ-JnQI/AAAAAAAABCg/yodsxYLrJDA/s45-c/Neko_dance_by_EternalNova.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash b2e755489a30fc1c62a7e35c12ae751f
89a70cbe6f364c47a553bdb1786d388a9a1a48dc
365286f2525185561f2c9164fc0f5abfccc751461c2e0525ba043f6bfb50703d
GET /-KnA7I-IWlec/UMqIxZ-JnQI/AAAAAAAABCg/yodsxYLrJDA/s45-c/Neko_dance_by_EternalNova.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Neko_dance_by_EternalNova.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1441
x-xss-protection: 0
date: Thu, 15 Dec 2022 01:07:42 GMT
expires: Fri, 09 Dec 2022 17:02:32 GMT
cache-control: public, max-age=86400, no-transform
etag: "v428"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 08f7321e01de2d111fc8100424937061
01ea459fe9270ea25e3cec2228d1cf3cd61d80b8
36ca62b5281e0d5434f0bf6119b2074eb05f5336db3113b5556d2a4273ed2816
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "36CA62B5281E0D5434F0BF6119B2074EB05F5336DB3113B5556D2A4273ED2816"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8381
Expires: Thu, 15 Dec 2022 03:27:23 GMT
Date: Thu, 15 Dec 2022 01:07:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0d2294cdacdc84b8b19874ba56035a6d
53009a81b15e464d5529d36b1e04b841b2ae034e
67d59aa026b43ed3f698f3853b986fc7c07e4e6e5f7b3551e59238f79978480a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe34f6337-b00d-4487-82ce-cbed5b4f3f4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 71bbe208-11e3-4280-bf09-bff8bd18fcb4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c82fXGmPoAMF3Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63950462-12393ca432808b7f0b2771dc;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 22:12:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7aqhogNxvIgQ_WqzVaVjsoulT568Lgsn_I-nLNpCi_rhcUs7AiCkkQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 17:01:37 GMT
age: 29165
etag: "53009a81b15e464d5529d36b1e04b841b2ae034e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d38060edf5f77bdaa18a4dd3b092c12
50b89e4fbdb88026899ce49cb45b0d6286f303a7
8ff9d03bca03022c717004f96a178d4982d16b575cb70a1a237ca76f90f4f0e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5789
x-amzn-requestid: bb0455df-4252-4b04-a24c-eb101e3e40db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKWBdFAUIAMFaig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a6a09-1e3f6b0d0a59da3807acffee;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 00:27:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QQrpPJpyUuwf5USygp_vUiZ-S2Jt7VUN8yClS2Pt_IUgVwMn-xeDhQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 00:38:36 GMT
etag: "50b89e4fbdb88026899ce49cb45b0d6286f303a7"
content-type: image/jpeg
age: 1746
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e1fb0ddf6ac86d38423a55841c78c6c
d31310f2441c9f7584f3c1605dd3fb38d5af41a6
8e91e724a42f8b0cf953570937c33465903c979297e439438d86c45b3d242d4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7163
x-amzn-requestid: 3c24d190-0c16-4aab-8da4-ab11a91c8e5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dE_HIEdEIAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63984560-4956b65205477bfe244bd4c3;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 09:26:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c4v50kU254dC1EM2QEk8Z6dwH-th3wdnHc4XokHHUaNB-Vfe2AOsDw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 11:40:20 GMT
age: 48442
etag: "d31310f2441c9f7584f3c1605dd3fb38d5af41a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14bcc069-6742-46d6-ba71-3624eec8f34e.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14bcc069-6742-46d6-ba71-3624eec8f34e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c8a26b13c34491d35e416a0a315e9a8
c13edfc689666ab3586b49796a7fcd46bafee29d
bed8dff9ad852fe694ccf3e54b0bb5687bb154981d48bfa8c05fdcd30010185a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F14bcc069-6742-46d6-ba71-3624eec8f34e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5760
x-amzn-requestid: 5e94f6cf-8ab1-4a7a-9714-a3147af61e1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3ftDFHtIAMFwxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392dfec-0ae05a42119198d6052c0f4b;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:12:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5L0NOMl3xdN98bEYyq_3KMSpfqOoXrBOJcHCZW4JpbzdIszkCbKj-w==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 08:35:36 GMT
age: 59526
etag: "c13edfc689666ab3586b49796a7fcd46bafee29d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
synad2.nuffnang.com.my/lr.js
18.138.110.223302 Found 315 B URL HTTP/1.1 synad2.nuffnang.com.my/lr.js
IP 18.138.110.223:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1e5a58c4069ab1dfac01c1427d79281e
3fb8451f31d1b7dcd0a6397eb5197838de52a09c
6909936fd0b322677a32c29850af205428ed53367b5aef713c5efe9dcca8ac18
GET /lr.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 302 Found
Date: Thu, 15 Dec 2022 01:07:42 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/lr.js
Cache-Control: max-age=86400
Expires: Fri, 16 Dec 2022 01:07:42 GMT
Content-Length: 315
Connection: close
Content-Type: text/html; charset=iso-8859-1
synad2.nuffnang.com.my/lb.js
18.138.110.223302 Found 315 B URL HTTP/1.1 synad2.nuffnang.com.my/lb.js
IP 18.138.110.223:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 43e57bdc55f596f50440bc4166523aae
170ea997fd02a695bce16a22a0c6c692aae7bbb6
95f4c6e62743abfc1d7f71e2bf6f2efc5d0ff643e6da4ec7604f3bf69768c5ee
GET /lb.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 302 Found
Date: Thu, 15 Dec 2022 01:07:42 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/lb.js
Cache-Control: max-age=86400
Expires: Fri, 16 Dec 2022 01:07:42 GMT
Content-Length: 315
Connection: close
Content-Type: text/html; charset=iso-8859-1
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2ae931d0f14a81013f782d43b8c7b85
9ec84996b63362ad370ff67b0fd8136a343c1bbf
9b4a2b3e5e2d2b4fac094135fed10a3040598f1208f6b2ec52d95d10aca66ed5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb602c981-caf1-4cfc-b19b-56f816dc7417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9891
x-amzn-requestid: bd9a2e47-190d-4caf-8862-17ee71aeef98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dIB42EEGoAMFgzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63997d05-770fb8ef5b700d0967a610e2;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 07:36:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bzsFDELWGTydN0C621g-uM38VbYICC1qSXlLCkul7U8YL77rwe_zjQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 21:55:28 GMT
age: 11534
etag: "9ec84996b63362ad370ff67b0fd8136a343c1bbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6e467e0cff2bd4faa86396567236736
e0ea11f9fa497eb7bef619283c31ea2eda18a284
fee86e0774b73a38572997c3777409be9fdd731419b9a234580ad714f763dc7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b6e467e0cff2bd4faa86396567236736
e0ea11f9fa497eb7bef619283c31ea2eda18a284
fee86e0774b73a38572997c3777409be9fdd731419b9a234580ad714f763dc7c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 01:07:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&cu=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&cu=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria&cu=http%3A%2F%2Fzonfiniti.blogspot.com%2F2012%2F07%2Fproses-evakuasi-rakyat-malaysia-di-syria.html HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:42 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-lgwI1kzO4iE/UO5k9Lk3wHI/AAAAAAAABhc/GIg0wkzv3bU/s45-c/127.JPG
142.250.74.161404 Not Found 904 B URL HTTP/2 4.bp.blogspot.com/-lgwI1kzO4iE/UO5k9Lk3wHI/AAAAAAAABhc/GIg0wkzv3bU/s45-c/127.JPG
IP 142.250.74.161:0
File type PNG image data, 45 x 45, 8-bit colormap, non-interlaced\012- data
Hash 288ba721beee9352ca47b2a130423c86
5dd28e65cfc52620335ca1a10be532ed9e44ff14
6ee738d016e2e0d81bb5da04d1c97a4b33d9ec9f3bfc3cee450b33d1dd997cc4
GET /-lgwI1kzO4iE/UO5k9Lk3wHI/AAAAAAAABhc/GIg0wkzv3bU/s45-c/127.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Thu, 15 Dec 2022 01:07:42 GMT
server: fife
content-length: 904
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-cVBZSD11hBQ/T4-pGJucH2I/AAAAAAAAACk/8zLsfnyWvqk/s45-c/images%25252B5.jpg
142.250.74.161200 OK 2.7 kB URL HTTP/2 2.bp.blogspot.com/-cVBZSD11hBQ/T4-pGJucH2I/AAAAAAAAACk/8zLsfnyWvqk/s45-c/images%25252B5.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 01a6d0a0e3bae10a9c2a028ed7ff7696
73f339e96aaeef759973fdc9c2a454fea7361cef
da48e2a19e60d1c4979c5f29f3c3624cc53b8fd760dc6a7bd1ba5075683a9f59
GET /-cVBZSD11hBQ/T4-pGJucH2I/AAAAAAAAACk/8zLsfnyWvqk/s45-c/images%25252B5.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="images%2B5.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2655
x-xss-protection: 0
date: Thu, 15 Dec 2022 01:07:43 GMT
expires: Mon, 05 Dec 2022 11:44:25 GMT
cache-control: public, max-age=86400, no-transform
etag: "v29"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 6.7 kB IP 172.64.151.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Hash 1c19de1014ecbb64bf79594584b7e243
e2ab949e99c448f107245a0a39c10e0b30130e9f
5c80cda6336fe83e049aea16c899b4983fa70744beccddd14d75ee0c178c5c77
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 01:07:42 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 207670
expires: Sun, 18 Dec 2022 01:07:42 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 779b48b18d8bb50b-OSL
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=cD2nk8enOr4kMCadbi-bnq&dn=TI&cc=1&r=
67.202.105.34200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=cD2nk8enOr4kMCadbi-bnq&dn=TI&cc=1&r=
IP 67.202.105.34:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=cD2nk8enOr4kMCadbi-bnq&dn=TI&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Fri, 16 Dec 2022 01:07:43 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Thu, 15 Dec 2022 01:07:42 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-&t=Proses%20Evakuasi%20Rakyat%20Malaysia%20di%20Syria HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:43 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200- HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:43 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
static.cbox.ws/snd/blip1.ogg
188.114.97.1206 Partial Content 5.1 kB URL HTTP/1.1 static.cbox.ws/snd/blip1.ogg
IP 188.114.97.1:0
File type Ogg data, Vorbis audio, mono, 32000 Hz, ~32000 bps\012- data
Hash 97ef8f3c18a377cef307beefa888a38d
79d1bfeea428d849ed3400145e903a4488fb7a06
057e92b751d1b83f957b8a1ef9f8de9104c45abdb3f281cbb7b71a0659c3b1b2
GET /snd/blip1.ogg HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://www5.cbox.ws/
HTTP/1.1 206 Partial Content
Date: Thu, 15 Dec 2022 01:07:43 GMT
Content-Type: application/octet-stream
Content-Length: 5123
Connection: keep-alive
etag: "543fdde8-1403"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
CF-Cache-Status: HIT
Age: 41180804
Content-Range: bytes 0-5122/5123
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e6FRdd0aM%2FAdGmyt%2FuNRhv%2BOcpTNTo6qC7gQy1Mxx01Zq0IHf8wN7JrPx5HtRjiD2b9tSontWSbc4Ine9Nv5jFnZJByYSw%2BfDElO%2BaAtC6V93NKWRPlARV4ePPgt5n5Pnw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 779b48b5cf30b52d-OSL
alt-svc: h2=":443"; ma=60
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200- HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:43 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200-
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0&img=https%3A%2F%2Flh3.googleusercontent.com%2Fblogger_img_proxy%2FANbyha3tg0Trr-VQlibaUUqd1rE5lohHhgdPe5tf8Z1p4sFLcIEUn5uS5pXCUMBEGOrNEH_3tN0fRNBu57v6uFMO3rCUTwBJ6fyxr5BuQNNwmmByDIt8aR9LCsvJ6zYPnykpide9yJNgWONmPxYPm2GPQhJ_56MO_kCwIzBSq2HEA2hry860Akrkbrd5qGI%3Dw1200- HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:43 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=cD2nk8enOr4kMCadbi-bnq&lm=0&ts=1671066459766&dn=TI&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 15 Dec 2022 01:07:43 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
www.xtra.com.my/?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362
104.18.14.165404 Not Found 0 B URL HTTP/2 www.xtra.com.my/?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362
IP 104.18.14.165:0
GET /?file=TV3%2FBeritaTV3%2FSLD_PELAJAR_230712_689937473.jpg&w=452&h=362 HTTP/1.1
Host: www.xtra.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://zonfiniti.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Thu, 15 Dec 2022 01:07:43 GMT
content-type: text/html; charset=UTF-8
cf-ray: 779b48a6dfffb51e-OSL
cache-control: public, max-age=300
expires: Thu, 15 Dec 2022 01:12:43 GMT
link: <https://www.xtra.com.my/wp-json/>; rel="https://api.w.org/"
strict-transport-security: max-age=31536000; includeSubDomains
vary: Accept-Encoding
via: 1.1 google
cf-cache-status: MISS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=252920&bid=727451&RD=8695338160132&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=8695338160132&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di
54.241.51.109200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=252920&bid=727451&RD=8695338160132&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=8695338160132&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di
IP 54.241.51.109:0
GET /BidVertiser.dbm?pid=252920&bid=727451&RD=8695338160132&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=8695338160132&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thursday, 15-Dec-2022 01:07:41 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 15-Dec-2021 01:07:41 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Fri, 16-Dec-2022 01:07:41 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Fri, 16-Dec-2022 01:07:41 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5319
CONNECTION: Close
bdv.bidvertiser.com/BidVertiser.dbm?pid=252920&bid=727451&RD=9610649681693&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=9610649681693&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di
54.241.51.109200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=252920&bid=727451&RD=9610649681693&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=9610649681693&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di
IP 54.241.51.109:0
GET /BidVertiser.dbm?pid=252920&bid=727451&RD=9610649681693&DIF=1&bd_ref_v=zonfiniti.blogspot.com&tref=1&win_name=null&docref=&jsrand=9610649681693&js1loc=-&loctitle=%20Proses%20Evakuasi%20Rakyat%20Malaysia%20di HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thursday, 15-Dec-2022 01:07:41 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 15-Dec-2021 01:07:41 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Fri, 16-Dec-2022 01:07:41 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Fri, 16-Dec-2022 01:07:41 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5319
CONNECTION: Close
cdn.ebaaa.xyz/genericImages/breaking-news/shark.jpg
185.66.200.127200 OK 0 B URL HTTP/1.1 cdn.ebaaa.xyz/genericImages/breaking-news/shark.jpg
IP 185.66.200.127:0
ASN #201702 skHosting.eu s.r.o.
GET /genericImages/breaking-news/shark.jpg HTTP/1.1
Host: cdn.ebaaa.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ebaaa.xyz/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 15 Dec 2022 01:07:41 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 09 Oct 2019 09:26:04 GMT
Vary: Accept-Encoding
ETag: W/"5d9da7ac-197f9"
Expires: Sat, 14 Jan 2023 01:07:41 GMT
Cache-Control: max-age=2592000
Access-Control-Allow-Origin: *
X-Cache: HIT
X-Server: cdnbts
Content-Encoding: gzip
bdv.bidvertiser.com/bidvertiser.dbm?pid=252920&bid=727451&RD=26837502272587&DIF=2
54.241.51.109200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=252920&bid=727451&RD=26837502272587&DIF=2
IP 54.241.51.109:0
GET /bidvertiser.dbm?pid=252920&bid=727451&RD=26837502272587&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
HTTP/1.1 200 OK
Date: Thursday, 15-Dec-2022 01:07:42 GMT
Cache-Control: no-store
Last-Modified: Wednesday, 15-Dec-2021 01:07:42 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
sc.tynt.com/script/sc/cD2nk8enOr4kMCadbi-bnq.js
172.64.151.83200 OK 0 B URL HTTP/2 sc.tynt.com/script/sc/cD2nk8enOr4kMCadbi-bnq.js
IP 172.64.151.83:0
GET /script/sc/cD2nk8enOr4kMCadbi-bnq.js HTTP/1.1
Host: sc.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 01:07:43 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=86400, public, s-maxage=172800
last-modified: Wed, 14 Dec 2022 15:06:26 GMT
x-xss-protection: 1; mode=block
x-request-id: 2ac7cf8f-128f-4ae8-8c76-e80c2051bfec
x-content-digest: 6cf5b76c1453c70cf41f794cfa5c5f4f0e0b4d36
x-runtime: 0.002522
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Thu, 15 Dec 2022 19:10:16 GMT
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 779b48b0dd39b50b-OSL
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=zonfiniti.blogspot.com&_ss=2m63u2qcra&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1ph2&_cb=_dtspv.c
141.101.120.10200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=zonfiniti.blogspot.com&_ss=2m63u2qcra&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1ph2&_cb=_dtspv.c
IP 141.101.120.10:0
GET /pv/?_a=v&_h=zonfiniti.blogspot.com&_ss=2m63u2qcra&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1ph2&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zonfiniti.blogspot.com/
Cookie: m=1; oa=1; df=1671066462
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 01:07:42 GMT
content-type: application/javascript
x-t: 0.15
x-c: 0
expires: Thu, 15 Dec 2022 01:07:41 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OMJ5yZODGCO%2BcqeUXgzjSQ0KVPCmtuRllzGpOoCpzt2Y%2BM2LGdkWtw9S2kZwvpAMdriBNJCNscMGuDReY4foJesltFsI4Of5ULpgQEGXpqMVdijDTAfZ5tuo7cLz%2BrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 779b48b05fa39933-ARN
content-encoding: br
X-Firefox-Spdy: h2