r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11621
Expires: Fri, 09 Dec 2022 06:01:33 GMT
Date: Fri, 09 Dec 2022 02:47:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9267
Expires: Fri, 09 Dec 2022 05:22:19 GMT
Date: Fri, 09 Dec 2022 02:47:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8832
Expires: Fri, 09 Dec 2022 05:15:04 GMT
Date: Fri, 09 Dec 2022 02:47:52 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 02:08:16 GMT
content-type: application/json
age: 2376
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Znm6kOwNLKVGkSO4NQar3UPav2D8eEjdIiP3DiDhzP8pf9lr/tjvn/hlkH/HBRnb6lFV62/v2q8=
x-amz-request-id: K02FEKQ23078BDFK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 01:50:03 GMT
age: 3469
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 02:47:52 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
catatanmathin.blogspot.com/2011/07/download-ghostbusters-sanctum-of-slime.html
172.217.21.161200 OK 25 kB URL HTTP/1.1 catatanmathin.blogspot.com/2011/07/download-ghostbusters-sanctum-of-slime.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24589)
Hash 5392b2be734e0978a73e3c04d17b5ffe
7fef2f61ec202dfdafb18bbf4d2587a4668a7652
c6a1e07b76946526bdf07f3b248dde196134174c2c0bbfdc73164ae5468c6461
Analyzer Verdict Alert fortinet Phishing
GET /2011/07/download-ghostbusters-sanctum-of-slime.html HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 09 Dec 2022 02:47:52 GMT
Date: Fri, 09 Dec 2022 02:47:52 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 01 Dec 2022 01:03:31 GMT
ETag: W/"d4f9feea4379439223cb6ddb9faedda027224f7ab295b493264687059a0749e0"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 25208
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 441b529e2ca0056bb63de39cc6799309
a04959efdd659a6f23c253a2fe72fca75831da45
b8f306586f1ad4c1ce7fb8486ae25638e5ec06304af8bdf6f0022af290246b02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
catatanmathin.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 catatanmathin.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/2011/07/download-ghostbusters-sanctum-of-slime.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 09 Dec 2022 02:47:52 GMT
Expires: Fri, 16 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 08 Dec 2022 21:55:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:01:43 GMT
expires: Wed, 06 Dec 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: text/css
age: 218769
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
142.250.74.106200 OK 29 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (889)
Hash f33c44c3656d46d3e787c675dea161fc
1610a78e9c1bed45c4707414a25622b81a1092a7
bcc450ae9e7809cbef2f18cabd0e2120747a9841cb97d35775b17b25e77bd370
GET /ajax/libs/mootools/1.3.1/mootools-yui-compressed.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 28586
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 16:50:01 GMT
expires: Wed, 06 Dec 2023 16:50:01 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 208671
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a7a8eecec19b58f9286e9ce32471f3ba
f9e32a22a8ac6b1e5b29b91444183990b6e4c83e
69b0a2bff905b13caa305b1fcbb2db96a7f3bc60ccb4fba45b169e9ee86da4c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2092647672-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 02:10:45 GMT
expires: Fri, 08 Dec 2023 02:10:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 00:55:10 GMT
content-type: text/javascript
age: 88627
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png
142.250.74.161200 OK 7.6 kB URL HTTP/1.1 3.bp.blogspot.com/-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png
IP 142.250.74.161:0
File type PNG image data, 142 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e14aa1c43f9bd38ea1d4a3f88468b12
7e346de29d8c7d80a3bf22f47a89f528fe4e9206
284d254ea73d9905e311a5bd97183ef8b45ef77766fdf66acff55617da6556cc
GET /-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Sat, 10 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="download.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:52 GMT
Server: fife
Content-Length: 7623
X-XSS-Protection: 0
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 09 Dec 2022 02:47:52 GMT
expires: Fri, 09 Dec 2022 02:47:52 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png
142.250.74.161200 OK 919 B URL HTTP/1.1 3.bp.blogspot.com/-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f2d4c679a1c9d22d7b94bdd7cbb3555d
67dd08e62830861199cf789f43c6264d2176a743
4285e671aa668c14b3c1e23e0bf95cbdb051feea776af3862c4505ede90184f1
GET /-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="date.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 919
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 01:07:00 GMT
Expires: Tue, 29 Nov 2022 06:12:21 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6052
ETag: "v1abb"
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4b1c4d797d1d2fef94993a69a7cb423a
d4d0f3b2eccd29dddef0f1ec51309de97c6c05a4
d2f98268392005d93b5bce9c019c360400b09ac369fc8e8cbc1edba7ed6d929d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png
142.250.74.161200 OK 1.6 kB URL HTTP/1.1 1.bp.blogspot.com/-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d1e3744d8a65d004047b2ed8311b49ae
7b777bda47b84437dea4935fa835c21227f44b18
7bbd453552fbbe6837b0e05af365c5869ae5bf72ba4bbcd306ab2fb6b0563d08
GET /-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d32"
Expires: Sat, 10 Dec 2022 02:47:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rss.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:52 GMT
Server: fife
Content-Length: 1647
X-XSS-Protection: 0
resources.blogblog.com/img/blank.gif
216.58.207.233200 OK 43 B URL HTTP/1.1 resources.blogblog.com/img/blank.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 11:18:22 GMT
Expires: Tue, 13 Dec 2022 11:18:22 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 19:52:21 GMT
Content-Type: image/gif
Age: 228570
1.bp.blogspot.com/_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png
142.250.74.161200 OK 608 B URL HTTP/1.1 1.bp.blogspot.com/_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash aeeb89a0648d7514aaad4875e9664548
59069d509d667c609147c1fdd24817944ad778e3
594e22be98bf18f07504fef7b4c0bb36ee0c801feacbd53e17297bad508932ab
GET /_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="folder.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 608
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:52 GMT
Expires: Sun, 04 Dec 2022 19:54:20 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v31cf"
Content-Type: image/png
Age: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 17:26:49 GMT
expires: Thu, 07 Dec 2023 17:26:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 120063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.cpmfun.com/getad.php?34555;62124;160x600
3.130.253.23302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;160x600
IP 3.130.253.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;160x600 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Fri, 09 Dec 2022 02:47:52 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
www.cpmfun.com/getad.php?34555;62124;728x90
3.130.253.23302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;728x90
IP 3.130.253.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;728x90 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Fri, 09 Dec 2022 02:47:52 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
www.cpmfun.com/getad.php?34555;62124;468x60
3.130.253.23302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;468x60
IP 3.130.253.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;468x60 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Fri, 09 Dec 2022 02:47:52 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.34200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.34:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 08 Dec 2022 15:28:11 GMT
Expires: Thu, 22 Dec 2022 15:28:11 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 40781
myblogtalk.com/bloggertemplates/js/recentposts_thumbnail.js
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 myblogtalk.com/bloggertemplates/js/recentposts_thumbnail.js
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /bloggertemplates/js/recentposts_thumbnail.js HTTP/1.1
Host: myblogtalk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 09 Dec 2022 02:47:52 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Tue, 06 Dec 2022 22:15:21 GMT
ETag: "638fbef9-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_G98lbBQBHHLYghq0CiGssSu9swzewKKfo8jl+suFInBG4LaWA7Eb6I3nbYukuTAXt0CI6X5j6CC6w1DTC+8EGA
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
www.getfreebl.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8
104.21.95.245200 OK 198 B URL HTTP/1.1 www.getfreebl.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8
IP 104.21.95.245:0
File type GIF image data, version 87a, 66 x 13\012- data
Hash 93e044bd37ec47fb3f7d7b1464b887b8
9c02ef252e5daca616e282d9221399b6a565968c
796b371a139266064cb546fa61c52a0891be30866727fa048da835b4082aab61
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8 HTTP/1.1
Host: www.getfreebl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:52 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I6oXiwNmOHuYvKbnmdo2E6MPIr4XqiwpwVCtAn2QusrSfRC3py3ItTKZaTUrHb%2Fa8Q9k6fVFpjfNHLb02tHrZh%2BYkxSvqO38iCjpqnSgP1tGZW4QF5HWr18mbdWkAHhWq3i%2Fhw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776a6b2b4cbbb4f1-OSL
alt-svc: h2=":443"; ma=60
www.indonesia-blogger.com/img/indonesiablogger.jpg
3.33.152.147404 Not Found 125 B URL HTTP/1.1 www.indonesia-blogger.com/img/indonesiablogger.jpg
IP 3.33.152.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /img/indonesiablogger.jpg HTTP/1.1
Host: www.indonesia-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 404 Not Found
Date: Fri, 09 Dec 2022 02:47:52 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-2-177.eu-west-2.compute.internal
X-Request-Id: 01a23783-9293-4560-ba0f-911e94797b8c
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 09 Dec 2022 02:47:52 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
4.bp.blogspot.com/-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png
142.250.74.161200 OK 492 B URL HTTP/1.1 4.bp.blogspot.com/-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a648d7aa740e4c6791502493458d8bfd
e8ec628d74fb5731c2712474378695dfbaedf3b6
24588da675dcec2f9a03c1688c3ecbf638c36afd7b308644f44264ccdf3d4a35
GET /-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="comments.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 492
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 01:07:00 GMT
Expires: Mon, 28 Nov 2022 21:27:23 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6053
ETag: "v1abf"
Content-Type: image/png
4.bp.blogspot.com/-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png
142.250.74.161200 OK 871 B URL HTTP/1.1 4.bp.blogspot.com/-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b56db8b49702539b80881cea2b626cd9
93c297610f65fdc8e62413578b4636bbd8f6a053
6ff1dcf3605772068aae35e25f264a0d19897e19cedc06e3638a417a9cab24e7
GET /-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="user.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 871
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 01:07:00 GMT
Expires: Tue, 06 Dec 2022 11:53:20 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6053
ETag: "v1abd"
Content-Type: image/png
4.bp.blogspot.com/-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png
142.250.74.161200 OK 1.7 kB URL HTTP/1.1 4.bp.blogspot.com/-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e6b5a5d05450681a488d10c5c834d85c
4f1e875d05e396ce4915acf4f3e2d8f6ce1be38a
9b512679727afdce95c5c9457668452138aa2d002ec8571dc7a0147376b34513
GET /-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d3c"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="twitter.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 1715
X-XSS-Protection: 0
1.bp.blogspot.com/-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 1.bp.blogspot.com/-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6339733a30fe7ca383cce6dbc9c6a345
a553c7827ea2db685a8f9e793cb0e6848a1aa20c
028ddf385ac2e72b5cd30c697d5a18d9a3077c900173ad9416cc89adbcf53ed7
GET /-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd5f"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="l15v33a60sfM.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 4270
X-XSS-Protection: 0
lh6.ggpht.com/__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg
142.250.74.33200 OK 4.0 kB URL HTTP/1.1 lh6.ggpht.com/__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 160x30, components 3\012- data
Hash 6f5473f8ff780dc86fdbc6e894d6c232
97e50914e062065584e844f2f4d08c7698a8ee0c
cbcc46fba44756bd74a2f9207a115892657ba35f1828af1b3fcbdee5283d0026
GET /__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="toplinkindo-backlink-gratis.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3984
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 01:39:01 GMT
Expires: Sun, 27 Nov 2022 08:40:29 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 4132
ETag: "v1a"
Content-Type: image/jpeg
2.bp.blogspot.com/-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 2.bp.blogspot.com/-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1b1cc2bc8f5f5ec707abfefe17eba8d0
02ab0d3fc7a92e9307ac960506157d933f4cedc5
0a378e81d6627ce6a114417b968a63f5c9e713e4497034442c86fc0825b4a3b8
GET /-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v638"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="GZ2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 3406
X-XSS-Protection: 0
1.bp.blogspot.com/-b4yNZsGOYdU/TfjdDZSC-9I/AAAAAAAAA-o/Hz3Pzi9Mrhc/s1600/Ghostbusters+Sanctum+of+Slime.jpg
142.250.74.161200 OK 33 kB URL HTTP/1.1 1.bp.blogspot.com/-b4yNZsGOYdU/TfjdDZSC-9I/AAAAAAAAA-o/Hz3Pzi9Mrhc/s1600/Ghostbusters+Sanctum+of+Slime.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 249x320, components 3\012- data
Hash bd46d4af893307f74aa678fd45e239b5
c75d809a044eba7fd536570f6fc656cf3aab2393
0842a1eb94b1c3025f48abb3b12216ce83a588dabf77f105214f53d4e82ff4c3
GET /-b4yNZsGOYdU/TfjdDZSC-9I/AAAAAAAAA-o/Hz3Pzi9Mrhc/s1600/Ghostbusters+Sanctum+of+Slime.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Ghostbusters Sanctum of Slime.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 32692
X-XSS-Protection: 0
b.babylon.com/RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif
198.143.128.241200 OK 14 kB URL HTTP/1.1 b.babylon.com/RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif
IP 198.143.128.241:0
File type GIF image data, version 89a, 468 x 60\012- data
Hash c44c9574bebeff922bdb72c414d242bb
1be3e31b29c12c8b9e7d60094bc61ba96185f475
70110462297faaafe58b5b78e7e9174251f51f26235fdfefe8afc394e9a6bcee
GET /RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif HTTP/1.1
Host: b.babylon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.13.4
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: image/gif
Content-Length: 13689
Last-Modified: Mon, 07 Mar 2011 13:44:35 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4d74e143-3579"
Expires: Fri, 16 Dec 2022 02:47:53 GMT
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.getfreebacklinks.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D
172.67.146.176200 OK 190 B URL HTTP/1.1 www.getfreebacklinks.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D
IP 172.67.146.176:0
File type GIF image data, version 87a, 57 x 13\012- data
Hash d29e7a6d10bbb104307b470e78af84fc
329584c8653afb19f76d9aa8b01591328250ec9e
96368a48f2485e3f9eecdf67d98d1e8251aa399bce316d83d64f2c48683320b6
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D HTTP/1.1
Host: www.getfreebacklinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Cy5vrQXj8%2FUNFbSz8E6FpRzsnNKz4NwTvLNKFaFaB1qgNRonCJOEBlhW%2BAtF7l2gWtYZkyPPUR9mzimvG6QRoWStCbMlfPFrF%2BY8uUVnF1WlJ7tE%2B%2FO%2B3SBPq7JxBXdXHt8HW4UyXT4aps%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776a6b2cef53b4f4-OSL
alt-svc: h2=":443"; ma=60
www.blogger.com/img/icon_delete13.gif
216.58.207.233200 OK 140 B URL HTTP/1.1 www.blogger.com/img/icon_delete13.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 13\012- data
Hash e7f55c98f18368f2ba26a008b1d40fc3
bb509d770d2d149060707c2c2c01776e86b858c4
69ff07a31a102649f3e0d08a967c39b134286293b85aac0885b3102a9120f1a6
GET /img/icon_delete13.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 140
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 12:50:27 GMT
Expires: Tue, 13 Dec 2022 12:50:27 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 06 Dec 2022 09:53:20 GMT
Content-Type: image/gif
Age: 223046
4.bp.blogspot.com/-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 4.bp.blogspot.com/-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d13894eb6bbe94782030fd197c09c2fe
228940f44739dd137373a38b07c3fdf156dc9b29
52b375b6052de8023c4a60b2f534314b9cfcdfeb573ef2fe6afcff2cc11e8fa4
GET /-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="918782_front.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 3257
X-XSS-Protection: 0
1.bp.blogspot.com/-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png
142.250.74.161200 OK 198 B URL HTTP/1.1 1.bp.blogspot.com/-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png
IP 142.250.74.161:0
File type PNG image data, 1 x 39, 8-bit/color RGB, non-interlaced\012- data
Hash 2de4c2aa8c424bf111d912e872112671
bc417d22a2ad721c0fc0bd75c8ead8f285ed1316
c3c4b37bf63eed14ee3b70c6ac4f8d53fec24001a1efb59741cd28899428dfbd
GET /-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d26"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="background.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 198
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6ec5f6261a8262e9f94b29627f54cefe
7ac766cf2ac8c2d960ec033388a767ff8a7d45e2
5f6ee11d840909fc5272c2c32f7874d55f49d831abc88d527e35562d218890f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/1.1 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.21sme.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF
188.114.96.1200 OK 174 B URL HTTP/1.1 www.21sme.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF
IP 188.114.96.1:0
File type GIF image data, version 87a, 51 x 13\012- data
Hash d76bfe9b99f78abd741502e4538077d3
d486a9b973ecd181a5929a258b80eb855f79577f
0c23d0c7a6061e70e67e8188b6ca5983740bdf5196b9ff654eeb72c6a1fc30a5
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF HTTP/1.1
Host: www.21sme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vvc2SDYB6NTGYfQw9LyR6DWNUGQbJhAcdOBg5y6QihyXSH%2Fds%2FNIibTuHgP5RXJsW1fLwkmA18fjFD%2BXQbQnBNyj8WTfBrwcotu5dLKJxtrDxWUJ0KrwrNOvuqxaUOfB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776a6b2d0dc6b4fd-OSL
alt-svc: h2=":443"; ma=60
3.bp.blogspot.com/-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png
142.250.74.161200 OK 29 kB URL HTTP/1.1 3.bp.blogspot.com/-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png
IP 142.250.74.161:0
File type PNG image data, 400 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 093bb52031f634f36f2f40ff7fce6cbf
138a52b41a2d0cdf4ce544ac83a32435b12c28f6
99d0ec300e04188c93e2660874c446d643b45b2bdf481ef518973eeb7f837792
GET /-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="logo (1).png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 28802
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18e"
Content-Type: image/png
Age: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4a5c2a2d50893431367319c3eb5fd0bc
c076b77d1c599d2711a212258ffd5dc4eca82925
0c98da58e2abb90a770dbd9d97277cd8836fb79fc15aace4a95d1fb5ee4c1db4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-tt7VsCXGigg/Tfjc_AgnvEI/AAAAAAAAA-g/ltfKei_afqM/s320/Ghostbusters+Sanctum+of+Slime+Screen+1.jpg
142.250.74.161200 OK 40 kB URL HTTP/1.1 4.bp.blogspot.com/-tt7VsCXGigg/Tfjc_AgnvEI/AAAAAAAAA-g/ltfKei_afqM/s320/Ghostbusters+Sanctum+of+Slime+Screen+1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x239, components 3\012- data
Hash 8aaffb3382678b03ac88261c14dfeeba
fdbef737da6d8924e5560be77bc67a332d6d5a4d
7e1afc498f870d9fa13c8fe2b53374639c8463d23852e433b58d6aa5b0fc3459
GET /-tt7VsCXGigg/Tfjc_AgnvEI/AAAAAAAAA-g/ltfKei_afqM/s320/Ghostbusters+Sanctum+of+Slime+Screen+1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Ghostbusters Sanctum of Slime Screen 1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 40447
X-XSS-Protection: 0
3.bp.blogspot.com/-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png
142.250.74.161200 OK 216 B URL HTTP/1.1 3.bp.blogspot.com/-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 3f37e57d243324924f49895bc0ba3cbf
bcba23548fccfbd6faf8993e2a8bc7d76667a7aa
0d8c7b85f61cd88a4ad74c1f888f25b47f53f6580673e886d233337d9ffc6fd1
GET /-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nav-background.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 216
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d2c"
Content-Type: image/png
Age: 0
2.bp.blogspot.com/-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg
142.250.74.161200 OK 109 kB URL HTTP/1.1 2.bp.blogspot.com/-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1354x326, components 3\012- data
Size 109 kB (108866 bytes)
Hash fb6c3db9dc1d7c18fd3e588b02ad88bb
4b84a72431eab85a4e91da2ea57456e30777f22a
aed02f4632cc9e3cf53496a3dfa7ad66e2b06a0a773aeb0376b87ba63df8bfe9
GET /-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3151"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wrapper-bg.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 108866
X-XSS-Protection: 0
kewlrank.com/getrank.php?id=1345997975&type=8915
66.115.173.179301 Moved Permanently 0 B URL HTTP/1.1 kewlrank.com/getrank.php?id=1345997975&type=8915
IP 66.115.173.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getrank.php?id=1345997975&type=8915 HTTP/1.1
Host: kewlrank.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: http://www.kewlrank.com/getrank.php?id=1345997975&type=8915
x-litespeed-cache: hit
content-length: 0
date: Fri, 09 Dec 2022 02:47:53 GMT
server: LiteSpeed
blog-indonesia.com/image/6.gif
54.231.136.85403 Forbidden 2.1 kB URL HTTP/1.1 blog-indonesia.com/image/6.gif
IP 54.231.136.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b43a994b8b85d0e8ae9335d728b7361f
5ed538414f2b55481edd739ba13e510a1948735f
3dee65f0bcaaa8b10673d9c53a5d5f0f34128592f33361c7b79972754b996ead
GET /image/6.gif HTTP/1.1
Host: blog-indonesia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 403 Forbidden
Last-Modified: Tue, 29 Nov 2016 14:33:11 GMT
ETag: "b43a994b8b85d0e8ae9335d728b7361f"
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: MYD56EC6VH8TMNCJ
x-amz-id-2: UopM8eqI/7AExlKVZwSioZlVJtLR+HXioAIdTFiCfQzojVbRcKSgnfFFUel+SKewrI19y2rzS6g=
Content-Type: text/html
Date: Fri, 09 Dec 2022 02:47:52 GMT
Server: AmazonS3
Content-Length: 2116
3.bp.blogspot.com/-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png
142.250.74.161200 OK 205 B URL HTTP/1.1 3.bp.blogspot.com/-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 1579a27da6d50f52b3c5d75c132c26a0
d77d7e9ed5962a30e553c7393d7e7d049f246ee0
86c0d2ae2ba9ad439047133fa4b5ef09f8e72f2c9796a726e18043d100ff731c
GET /-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d30"
Expires: Sat, 10 Dec 2022 02:47:53 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nav-separator.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: fife
Content-Length: 205
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6310
Cache-Control: max-age=115448
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:53 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:52:01 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
2.bp.blogspot.com/-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png
142.250.74.161200 OK 269 B URL HTTP/1.1 2.bp.blogspot.com/-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 351cf19b039906ed0289f7e334c380dd
6f7c59afdf6b1a83d899ef91dbf584f5ea666f54
a1e1ab88d8451a8e574c41abd004ad637890fca960604775d6a1b95bae83f936
GET /-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nav-background-hover.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 269
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d2e"
Content-Type: image/png
Age: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 02:07:59 GMT
age: 2394
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
2.bp.blogspot.com/-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png
142.250.74.161200 OK 18 kB URL HTTP/1.1 2.bp.blogspot.com/-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png
IP 142.250.74.161:0
File type PNG image data, 320 x 96, 8-bit/color RGB, non-interlaced\012- data
Hash fcd4a39da940202a0513759b7de4e016
a62692cbcd620aa88390a4a71865d4ea7a62a9f6
be4513677ddcd7c367a014afc356acfeef187becf564c9c3e2b1edf327940f3a
GET /-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="im.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 18462
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd6"
Content-Type: image/png
Age: 0
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 672e9816f2059e90ee40b9efe07df42b
ac327cffe78164363b761e271d35752ab1064e35
a8c7982d78468f8437b34bba28ec774b7573907df4b4b48ff956cfab9f73ccb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4158
Cache-Control: max-age=112215
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:53 GMT
Etag: "6391a4f2-118"
Expires: Sat, 10 Dec 2022 09:58:08 GMT
Last-Modified: Thu, 08 Dec 2022 08:48:50 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
2.bp.blogspot.com/-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 2.bp.blogspot.com/-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d7f8f4a2c062fc9a1c4c9df41895d0b9
0bf9d62ecee908e1af77bcd4d49ce2691b8c0ef0
6f8042b0d9b1baff22b2453a5f286e7e846b42c6185c20aa060d47dfb50e6d21
GET /-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="9318517337.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4255
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v582"
Content-Type: image/jpeg
Age: 0
www.allseotools.net/ads/s-backlink.png
207.226.173.130301 Moved Permanently 0 B URL HTTP/1.1 www.allseotools.net/ads/s-backlink.png
IP 207.226.173.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/s-backlink.png HTTP/1.1
Host: www.allseotools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.3
Location: http://www.valencia-hotels.net/en/allseotools.html
X-Request-Id: 8f272a3384f2dbd67971042d2ea638b2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3efba413105136df49e26776557a92b4
976f8dbb5800c58b95686de239abad58bed02d5f
c25a0060abb749ef5fe64da269ed4f88e65ab15762e22b41a2f47cc8aacdab68
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C25A0060ABB749EF5FE64DA269ED4F88E65AB15762E22B41A2F47CC8AACDAB68"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1170
Expires: Fri, 09 Dec 2022 03:07:23 GMT
Date: Fri, 09 Dec 2022 02:47:53 GMT
Connection: keep-alive
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/2 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.18.0 (Ubuntu)
date: Fri, 09 Dec 2022 02:47:53 GMT
content-type: text/html
content-length: 178
location: https://auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
X-Firefox-Spdy: h2
www.overshopping.com/images/backlink.gif
103.224.182.246200 OK 0 B URL HTTP/1.1 www.overshopping.com/images/backlink.gif
IP 103.224.182.246:0
ASN #133618 Trellian Pty. Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/backlink.gif HTTP/1.1
Host: www.overshopping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: Apache/2.4.38 (Debian)
Set-Cookie: __tad=1670554073.4863844; expires=Mon, 06-Dec-2032 02:47:53 GMT; Max-Age=315360000
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
www.blogger.com/dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 02:47:53 GMT
last-modified: Fri, 09 Dec 2022 02:47:53 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg
142.250.74.161200 OK 5.7 kB URL HTTP/1.1 2.bp.blogspot.com/-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e226b85479bf5849041a2326b972c276
5eeef32eb4ed0bc4c2305ad1ec78f2121d609bbb
19132f2999312daebd9394b1182375d3ff2c89ba570351e59d352e526fa1077a
GET /-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Portable Grand Theft Auto III (Rip).jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5686
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 02:47:53 GMT
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v6e2"
Content-Type: image/jpeg
Age: 0
push.services.mozilla.com/
35.161.136.21101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.136.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6amZek55LRAnpmleEhi38A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: NpG/y2b8I8ykXeemW3qHKqOhJqI=
www.allnewssite.com/images/backlink.gif
198.57.150.161200 OK 720 B URL HTTP/1.1 www.allnewssite.com/images/backlink.gif
IP 198.57.150.161:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 80 x 15\012- data
Hash 1b808dee3dc3b51fd622764bb88175d4
50d9a5e3015dba344a56076630ed22369158c456
3c39ebbb1a782a061ddf999d5ead0753eed961bc9708ad0ef0659a23be37d1c1
GET /images/backlink.gif HTTP/1.1
Host: www.allnewssite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:53 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 06 Mar 2018 21:48:32 GMT
Accept-Ranges: bytes
Content-Length: 720
Keep-Alive: timeout=5, max=75
Content-Type: image/gif
www.kewlrank.com/getrank.php?id=1345997975&type=8915
66.115.173.179404 Not Found 6.7 kB URL HTTP/1.1 www.kewlrank.com/getrank.php?id=1345997975&type=8915
IP 66.115.173.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7739)
Hash 514ade453aa7769629e4e11563ce7c3b
24f697396f21ee576e4f75cca0bfac8a3d7151dc
d93b56cd6cb881a995c33793fadbb89c95fd185d849d3067125d9661f04d16ad
GET /getrank.php?id=1345997975&type=8915 HTTP/1.1
Host: www.kewlrank.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.kewlrank.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: gzip
vary: Accept-Encoding
content-length: 6684
date: Fri, 09 Dec 2022 02:47:53 GMT
server: LiteSpeed
scr.kliksaya.com/js-ad.php?zid=108301
134.119.176.28302 Found 11 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=108301
IP 134.119.176.28:0
ASN #29066 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /js-ad.php?zid=108301 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 09 Dec 2022 02:47:53 GMT
location: http://ww1.kliksaya.com/?sub1=e067ddd0-776b-11ed-814c-c8bd7d08ed84
server: nginx
set-cookie: sid=e067ddd0-776b-11ed-814c-c8bd7d08ed84; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 06:02:00 GMT; max-age=2147483647; HttpOnly
ww1.kliksaya.com/?sub1=e067ddd0-776b-11ed-814c-c8bd7d08ed84
64.190.63.136403 Forbidden 110 B URL HTTP/1.1 ww1.kliksaya.com/?sub1=e067ddd0-776b-11ed-814c-c8bd7d08ed84
IP 64.190.63.136:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash a91ee3cb35185cccc15e68e9c76c5441
59ae4770e2c926731d216c4aae03130d66fef18f
da14c9f38411534fa596d36202c22c26f146b9d814a1d4e52e7fad08c9a2dbce
GET /?sub1=e067ddd0-776b-11ed-814c-c8bd7d08ed84 HTTP/1.1
Host: ww1.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
HTTP/1.1 403 Forbidden
date: Fri, 09 Dec 2022 02:47:54 GMT
content-type: text/html
transfer-encoding: chunked
vary: Accept-Encoding
server: NginX
content-encoding: gzip
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0uTQS0FlEyz41bWjs5WNPAQ_iNUNw9v1jC7vlfMrNy3BGLdzYS2ql-wo7PWUjbnLZ0GHSAOnvgBNRfaylOmRZPaGcGOe44uqJv8IO7moAkwTIcuSUSMdTqbt32uMSzHPY=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha0uTQS0FlEyz41bWjs5WNPAQ_iNUNw9v1jC7vlfMrNy3BGLdzYS2ql-wo7PWUjbnLZ0GHSAOnvgBNRfaylOmRZPaGcGOe44uqJv8IO7moAkwTIcuSUSMdTqbt32uMSzHPY=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 5da98740c5daeba05928e814d307a103
852ebdddf0777663dd847eb9c80cd2533b92f747
4563e0de19026771343468cb8235017b0f73051286a5767fc8c3fe6364694740
GET /blogger_img_proxy/ANbyha0uTQS0FlEyz41bWjs5WNPAQ_iNUNw9v1jC7vlfMrNy3BGLdzYS2ql-wo7PWUjbnLZ0GHSAOnvgBNRfaylOmRZPaGcGOe44uqJv8IO7moAkwTIcuSUSMdTqbt32uMSzHPY=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 02:47:54 GMT
server: fife
content-length: 1732
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7375
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:47:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7375
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:47:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7375
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:47:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7375
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:47:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7b8c1870f03a90aac6370fc69516f95f
1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb
f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7375
Expires: Fri, 09 Dec 2022 04:50:49 GMT
Date: Fri, 09 Dec 2022 02:47:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34a9b9b25e57f612db5560cd05e44cce
433e295328d6c821a1df907c232bff4195e2860b
139dc677e5725c98a5d90d19b206a34a4c9f43ad87cf1d322881381e992bd5b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 26914070-22ad-49fd-bacb-7842dcb203b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2LZPGd-oAMF5OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63925907-5c62555a65327ff934ae232e;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gkClPXMpz53Lmf56qAHXyd3IcOjTGjcBonaTpq2_4v7XRxPFv8q8QA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:49:12 GMT
age: 17922
etag: "433e295328d6c821a1df907c232bff4195e2860b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb00a2a503a690cee3e4dd729b5bc9bd
cfb1e5bcab2148a777889680e6e36b9d7e8917ec
7e4583ae78ab597639f53669ac2d67d1ebd26be3278c2fc3fc95af934178c116
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yL-FrFYh-3PuCZCpCHYg--ebTS7wMmMQ7IE2mgimDVsKWFEtKC2gVQ==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 05:44:09 GMT
age: 75825
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 17790
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 18:34:32 GMT
age: 29602
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9316e6fcb6eb5f47473eb710872f09e5
368be3ba9d57fb8ed8a936041bb0f4154ae680f1
aa0d429845b669baf996324cb7a5d4b001558c48480b4da43e9b81bdbc335e7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdad09879-539d-47c2-b00f-c42de83925b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10517
x-amzn-requestid: 23d8ce86-b859-43b5-8daa-bed31c10ed24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwV5JEuGoAMFVmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6390036d-320dbe9f7805aa015f368a57;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4n0-mwpoP40Sb-pGAx3b0DkzVaAwencDR4XBRMcl9o6ysPM5C5DzLA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 03:46:05 GMT
age: 82909
etag: "368be3ba9d57fb8ed8a936041bb0f4154ae680f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955c6ac69b89f6cbd497df53fcb2ae1b
2506152cdd1056533116feb9350124356e570e54
fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 10:15:09 GMT
age: 59565
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash fb8568d1b03d4cd2cc7f423aef817e2e
6a1f75627351f8adae5f4f40d85dc91b4ac6b3d5
b40d4018a0f0692d5847ec8d8f1d2a5a34c2c9ddafa7f28632aab373eeb6f5e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 02:47:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.mypagerank.net/services/seomonitor/seomonitor.php?aut=84281
172.67.193.187200 OK 145 B URL HTTP/1.1 www.mypagerank.net/services/seomonitor/seomonitor.php?aut=84281
IP 172.67.193.187:0
File type GIF image data, version 87a, 76 x 13\012- data
Hash 9fd5af09c0efba4e4a73ba5d4c4dc3f8
3eaf8fa98453365c02097079f18df015c903f880
c5166cb52210e1d5379fcf64a8d3f638f162038a39926dec063fc3e6c3b126f3
GET /services/seomonitor/seomonitor.php?aut=84281 HTTP/1.1
Host: www.mypagerank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:57 GMT
Content-Type: image/png
Content-Length: 145
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2013 05:00:00 GMT
Cache-Control: max-age=604800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GRU9%2BPbX6HntlAY8unyC7l0Md3lYYUzTTby6wKyHS9utBCoshHyXCgk9OJ0RLaObWeOdXiyVQM7oZz3yiGrXFengFqbOTU0SuxXhrp0a7w5AQHbeyaEbFzo8Gpi0jPvHvTk9R8k%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776a6b453c48fab4-OSL
alt-svc: h2=":443"; ma=60
sstatic1.histats.com/0.gif?1994839&101
149.56.240.129200 OK 43 B URL HTTP/1.1 sstatic1.histats.com/0.gif?1994839&101
IP 149.56.240.129:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /0.gif?1994839&101 HTTP/1.1
Host: sstatic1.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:57 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
catatanmathin.blogspot.com/2011/07/YOUR-FAVICON-URL
172.217.21.161404 Not Found 23 kB URL HTTP/1.1 catatanmathin.blogspot.com/2011/07/YOUR-FAVICON-URL
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (24589)
Hash 828d16e02026b8a2a1ea0168b37ed322
edeb0b444d71731835e941fd73c26d10a6b2c96b
d70e8878a6bcd97363a664b16b99aedeec1c369a4e7e8ab22fc1a858781dab2e
Analyzer Verdict Alert fortinet Phishing
GET /2011/07/YOUR-FAVICON-URL HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/2011/07/download-ghostbusters-sanctum-of-slime.html
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Fri, 09 Dec 2022 02:47:57 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23217
Server: GSE
www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
172.67.70.191200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
IP 172.67.70.191:0
GET /domain_profile.cfm?d=cpmfun.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 02:47:53 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Mon, 04-Dec-2023 02:47:53 GMT; path=/
site_version=HDv3; expires=Mon, 04-Dec-2023 02:47:53 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BP0OjTxrIGKk0mtsOtsg6%2F0lcgsVs8LSNZf3F9Pzqq9JJqMznYlHfhFZnq%2B4YJLtYcrsTQbEpqIS8trivNN%2BW%2F2RGtuubX%2FL9NGaX%2F98bKdC7YSj9ptvhfO%2BhIAjnB1KzTTct8g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776a6b2e7ab5b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80404 Not Found 0 B URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Fri, 09 Dec 2022 02:47:53 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
172.67.70.191200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
IP 172.67.70.191:0
GET /domain_profile.cfm?d=cpmfun.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 02:47:53 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Mon, 04-Dec-2023 02:47:53 GMT; path=/
site_version=HDv3; expires=Mon, 04-Dec-2023 02:47:53 GMT; path=/
captcha-tracker=; expires=Thu, 08-Dec-2022 02:47:53 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oLg1GDmGGhu6PzTGnGSDlCVVHtda390nVaOSgCdL%2BL7qJv7WDvwvRnnpV9dRfACpkHkJwS4OG%2BNkV2y5guJ4Bf4n6QgMiurKbFvpbfFIFvmHhC%2Byor%2FoZHG%2BREiFlL6dTIXBPSg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 776a6b2f7b88b505-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.valencia-hotels.net/en/allseotools.html
82.223.110.146200 OK 0 B URL HTTP/1.1 www.valencia-hotels.net/en/allseotools.html
IP 82.223.110.146:0
GET /en/allseotools.html HTTP/1.1
Host: www.valencia-hotels.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 02:47:53 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Rnd: q21rnDZ1T4DN2uQ5
Set-Cookie: lang=1; path=/; domain=.valencia-hotels.net
_mobile=0; path=/; domain=.valencia-hotels.net
btest=297; path=/; domain=.valencia-hotels.net
bteststep=5; path=/; domain=.valencia-hotels.net
btesthotel=297; expires=Sun, 08-Jan-2023 02:47:53 GMT; Max-Age=2592000; path=/; domain=.valencia-hotels.net
_wsl=q21rnDZ1T4DN2uQ5; expires=Wed, 07-Jun-2023 02:47:53 GMT; Max-Age=15552000; path=/; domain=.valencia-hotels.net
currency=22; path=/; domain=.valencia-hotels.net
subacc=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
cutype=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
from=2022-12-09; path=/; domain=.valencia-hotels.net
to=2022-12-10; path=/; domain=.valencia-hotels.net
use_dates=0; path=/; domain=.valencia-hotels.net
adults=2; path=/; domain=.valencia-hotels.net
children=0; path=/; domain=.valencia-hotels.net
rooms_info=%5B%7B%22adults%22%3A2%2C%22children%22%3A%5B%5D%7D%5D; path=/; domain=.valencia-hotels.net
_sort=0; expires=Fri, 09-Dec-2022 01:47:53 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
csort=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
corder=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
Content-Encoding: gzip
Server: Apache/1.3.37 (CentOS)Communique/4.2.1
X-Powered-By: PHP/7.1.3-3-1+deb.sury.org~trusty+1
X-Request-Id: 7c61a660235f15fd484ac49aebdf87c9