postingringan.blogspot.kr/
142.250.74.161302 Moved Temporarily 180 B URL HTTP/1.1 postingringan.blogspot.kr/
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash a5cc50e5601005ebaf520471de35e271
d3de538297b675fa4a0fe6cc250c3479083c1d6b
a6c12c21c12885067781ad62ab08c45af3fbdac4f3018814c5dbf0899bf2645c
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: postingringan.blogspot.kr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://postingringan.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 24 Nov 2022 05:53:50 GMT
Expires: Thu, 24 Nov 2022 05:53:50 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 180
Server: GSE
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4126
Expires: Thu, 24 Nov 2022 07:02:36 GMT
Date: Thu, 24 Nov 2022 05:53:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6125
Expires: Thu, 24 Nov 2022 07:35:55 GMT
Date: Thu, 24 Nov 2022 05:53:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3123
Cache-Control: max-age=106169
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:50 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:23:19 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: uK8wp0XF9QCvcMsE3O3JbYPWKBYj6yeHIXEXZ1vDcBAJRpzMgZiqk2sv4oOa2a+960HSeQyOusg=
x-amz-request-id: 9AE9KAWD2MC6R9VV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 05:43:17 GMT
age: 633
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 05:17:14 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2196
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 05:53:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
postingringan.blogspot.com/
142.250.74.161200 OK 48 kB URL HTTP/1.1 postingringan.blogspot.com/
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14728)
Hash ec287ff8f75de32f5817c91db4def48c
2c3478f1f68c7b7e6995c0f0367a57279dcc96d3
c0e65c4b745a6746132121f58c466406e08f7d33504247bcbba358ed35683f82
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: postingringan.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Thu, 24 Nov 2022 05:53:51 GMT
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: private, max-age=0
Last-Modified: Tue, 08 Nov 2022 18:24:36 GMT
ETag: W/"0c8b071e34a01584c4b9d4bd66fc3a81bb66f99749f12128a4bbaa7b67d74330"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 47497
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
content-type: text/css
age: 120073
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.138200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 22:01:48 GMT
expires: Wed, 22 Nov 2023 22:01:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 114723
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 05:53:51 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
pagead2.googlesyndication.com/pagead/show_ads.js
216.58.207.226200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 216.58.207.226:0
File type ASCII text, with very long lines (3577)
Hash 9c35926ca8507a2e43d6d7bf85d388be
4e13ae3dd2c84cf77707e5d7bc280f57d900737d
0511be309c3e77fc014486344ba464702cd4567ce9a774a86be1848d2dff8adc
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 24 Nov 2022 05:53:51 GMT
Expires: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 3773207773782758856
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36263
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 222708
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
postingringan.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 postingringan.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: postingringan.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Thu, 24 Nov 2022 05:53:51 GMT
Expires: Thu, 01 Dec 2022 05:53:51 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 24 Nov 2022 00:53:02 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 24 Nov 2022 05:11:11 GMT
cache-control: public,max-age=3600
age: 2560
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3008
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Last-Modified: Thu, 24 Nov 2022 05:03:43 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
postingringan.blogspot.com/feeds/posts/default/-/kesehatan?orderby=updated&alt=json-in-script&callback=rcentbytag
142.250.74.161200 OK 18 kB URL HTTP/1.1 postingringan.blogspot.com/feeds/posts/default/-/kesehatan?orderby=updated&alt=json-in-script&callback=rcentbytag
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (65498)
Hash 917ae1cb2a0570703f1490ff76455f84
ac1ee1e3360aab74bed8ff95f60192b5de66a870
7828eb608791cd0d416b422d4aca7c285e882ad1d197423bb97bd8b66d171c3a
GET /feeds/posts/default/-/kesehatan?orderby=updated&alt=json-in-script&callback=rcentbytag HTTP/1.1
Host: postingringan.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"e44fe55515147d0aca6d57cc30010c31bbf2b0acd211d80d48afa9b0e8473e79"
Date: Thu, 24 Nov 2022 05:53:51 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 08 Nov 2022 18:24:36 GMT
Content-Encoding: gzip
Content-Length: 18540
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
themes.googleusercontent.com/static/fonts/roboto/v10/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff
142.250.74.33200 OK 20 kB URL HTTP/2 themes.googleusercontent.com/static/fonts/roboto/v10/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 19812, version 1.1\012- data
Hash c74ddf8e339408e3d7d8082b7e1f5125
e140a63f45f42c4a5f29ea4e2d83a2859c6f99c6
9947e1f452a6580f1089ab62e3b140c96dd7ba65585b7b568c07c6d6947ffb06
GET /static/fonts/roboto/v10/d-6IYplOFocCacKzxwXSOD8E0i7KZn-EPnyo3HZu7kw.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://postingringan.blogspot.com
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
timing-allow-origin: *
content-length: 19812
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 13:04:37 GMT
expires: Sat, 18 Nov 2023 13:04:37 GMT
cache-control: public, max-age=31536000
age: 492554
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w72-h72-p-k-no-nu/mobil.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 4.bp.blogspot.com/-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w72-h72-p-k-no-nu/mobil.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 66986cf03c51f16b0adab55ee1a644e2
9bd4d123ff5d3e5574ca514aade23222b2a22bb1
833b419a0c96d466f5aaee80cc08d14caa8dba0ac0c4dd06f6855f8993d2f229
GET /-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w72-h72-p-k-no-nu/mobil.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v168"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mobil.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 4533
X-XSS-Protection: 0
2.bp.blogspot.com/-4lB-WCeDgKw/VN9Mb2tgi5I/AAAAAAAAAMg/J7YiPDKuBLo/w72-h72-p-k-no-nu/1.jpg
142.250.74.161200 OK 2.2 kB URL HTTP/1.1 2.bp.blogspot.com/-4lB-WCeDgKw/VN9Mb2tgi5I/AAAAAAAAAMg/J7YiPDKuBLo/w72-h72-p-k-no-nu/1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 8dfbb8975d49a40b2b2a3fe786820cfc
1e0db8812bd49042168e889c92601187a9461f86
9be07835181d0c4adf0b1579f352bb9a3327d40c5a1115e0cd6dad4b9715e1d1
GET /-4lB-WCeDgKw/VN9Mb2tgi5I/AAAAAAAAAMg/J7YiPDKuBLo/w72-h72-p-k-no-nu/1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vc9"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 2163
X-XSS-Protection: 0
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7039114450756605&plah=postingringan.blogspot.com&bust=31070924
216.58.207.226200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7039114450756605&plah=postingringan.blogspot.com&bust=31070924
IP 216.58.207.226:0
File type ASCII text, with very long lines (6138)
Size 119 kB (119211 bytes)
Hash a4a2a463da7d9bbb469eb8177c7e394d
2cb7f02154e421485458282665d3f39e8e5a0089
a920d9c2ca199432fef1e7eb46f0b5c0eb953f283d054485c47ef27f32f1d0a5
GET /pagead/managed/js/adsense/m202211140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-7039114450756605&plah=postingringan.blogspot.com&bust=31070924 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 24 Nov 2022 05:53:51 GMT
expires: Thu, 24 Nov 2022 05:53:51 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 10555426079686239882
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119211
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
themes.googleusercontent.com/static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff
142.250.74.33200 OK 22 kB URL HTTP/2 themes.googleusercontent.com/static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff
IP 142.250.74.33:0
File type Web Open Font Format, TrueType, length 21520, version 1.1\012- data
Hash b2181049bee439ab4f6b8678c8812e38
b20b90ecd6fc597f161d2228f5779e76e090edf9
a057e0c74a6ffa4a289512d05beb6998e6be8b91be2d056568ebf0c317c11a6c
GET /static/fonts/oswald/v8/-g5pDUSRgvxvOl5u-a_WHw.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://postingringan.blogspot.com
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
timing-allow-origin: *
content-length: 21520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:40:43 GMT
expires: Wed, 22 Nov 2023 18:40:43 GMT
cache-control: public, max-age=31536000
age: 126788
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
postingringan.blogspot.com/feeds/posts/default/-/Umum?orderby=updated&alt=json-in-script&callback=rcentbytag
142.250.74.161200 OK 38 kB URL HTTP/1.1 postingringan.blogspot.com/feeds/posts/default/-/Umum?orderby=updated&alt=json-in-script&callback=rcentbytag
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (65484)
Hash a90591bc92c980c4b0ea02c1dab92929
f8eab36392e782a8fa620a643c7f2d0d44501ea8
60fb263fd93cf1e585287c71e68a261bf88445d9fc60cfc32a129dcdb76040d5
GET /feeds/posts/default/-/Umum?orderby=updated&alt=json-in-script&callback=rcentbytag HTTP/1.1
Host: postingringan.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"17d6f40f10c36bfd4f1eb7078d41af099c7b7cebcaf5e8431e9e749b5ed58386"
Date: Thu, 24 Nov 2022 05:53:51 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Tue, 08 Nov 2022 18:24:36 GMT
Content-Encoding: gzip
Content-Length: 38135
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w72-h72-p-k-no-nu/bau.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 2.bp.blogspot.com/-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w72-h72-p-k-no-nu/bau.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5d2038a3dcfdc9bd959dc7f5a5e41c1a
3ce6381b7c4a7db44f9e2caa5b71ffaa67e4a0f1
aeef2721bbabc4afc19f581eec0624471830de287912238d273dbe75bf647c79
GET /-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w72-h72-p-k-no-nu/bau.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v181"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bau.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 3133
X-XSS-Protection: 0
4.bp.blogspot.com/-_DEYZPnT0Bo/VRACbwoOlDI/AAAAAAAAASw/OSoqkdhYgrQ/w72-h72-p-k-no-nu/rambut.jpg
142.250.74.161200 OK 3.1 kB URL HTTP/1.1 4.bp.blogspot.com/-_DEYZPnT0Bo/VRACbwoOlDI/AAAAAAAAASw/OSoqkdhYgrQ/w72-h72-p-k-no-nu/rambut.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e81f4367f3a1c1a8a812a78bb0b9e2ce
74be46eab0e9a5581c428b4f8ba32fd5e22ce67c
bf10adf4518fd9008d82780db1ec16b649e5aed96f1ef7fe9522f543f6b64477
GET /-_DEYZPnT0Bo/VRACbwoOlDI/AAAAAAAAASw/OSoqkdhYgrQ/w72-h72-p-k-no-nu/rambut.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v12d"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rambut.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 3101
X-XSS-Protection: 0
2.bp.blogspot.com/-KTLopeZn9nA/VKO6obPuUBI/AAAAAAAAAC8/DGyaZHIr7Kw/w72-h72-p-k-no-nu/basarnas-temukan-1.jpg
142.250.74.161200 OK 4.6 kB URL HTTP/1.1 2.bp.blogspot.com/-KTLopeZn9nA/VKO6obPuUBI/AAAAAAAAAC8/DGyaZHIr7Kw/w72-h72-p-k-no-nu/basarnas-temukan-1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5a9549be2d07c3cb86b877849a078d45
c1d16a9369736708a37c262bf651493ddc1442fc
e22fa10f814df3f397d03382b04cc69f651993c7b52a6f7ce6821e6653be2285
GET /-KTLopeZn9nA/VKO6obPuUBI/AAAAAAAAAC8/DGyaZHIr7Kw/w72-h72-p-k-no-nu/basarnas-temukan-1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v30"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="basarnas-temukan-1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 4645
X-XSS-Protection: 0
4.bp.blogspot.com/-eZloNYSCqc8/VRV5SzNqUOI/AAAAAAAAATo/FzUTDnU21RI/w72-h72-p-k-no-nu/ilustrasi-olga-syahputra-140512-7.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 4.bp.blogspot.com/-eZloNYSCqc8/VRV5SzNqUOI/AAAAAAAAATo/FzUTDnU21RI/w72-h72-p-k-no-nu/ilustrasi-olga-syahputra-140512-7.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 59d02a81550749e120c98e41e1ce691f
78424e94e2475aaec00ba09f7edd7d377df5b5a2
3179b5284b0b50573a9be1392688177ef621f97bb33fdc22b6741befeb5f7ccd
GET /-eZloNYSCqc8/VRV5SzNqUOI/AAAAAAAAATo/FzUTDnU21RI/w72-h72-p-k-no-nu/ilustrasi-olga-syahputra-140512-7.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v13b"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ilustrasi-olga-syahputra-140512-7.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 3587
X-XSS-Protection: 0
1.bp.blogspot.com/-nhZOW5KVttg/VKo7Q91Vm8I/AAAAAAAAAFA/ZGsjbNwH0rE/w72-h72-p-k-no-nu/pengguna%2Bsmartphone.png
142.250.74.161200 OK 2.1 kB URL HTTP/1.1 1.bp.blogspot.com/-nhZOW5KVttg/VKo7Q91Vm8I/AAAAAAAAAFA/ZGsjbNwH0rE/w72-h72-p-k-no-nu/pengguna%2Bsmartphone.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 90ad0e185345640207eb1014abf36a76
fd62cb36c6e37b9c487d5ca6ee2ac418f40885bd
66626275c0bb649731d86384831b8248ddc372459e1d5e8aca8508011317de35
GET /-nhZOW5KVttg/VKo7Q91Vm8I/AAAAAAAAAFA/ZGsjbNwH0rE/w72-h72-p-k-no-nu/pengguna%2Bsmartphone.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v51"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="pengguna smartphone.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 2146
X-XSS-Protection: 0
2.bp.blogspot.com/-IMxYuQhJqSo/VNjG0Hij2jI/AAAAAAAAALs/wQPoRSxnwYk/s1600/syahrul-logo.png
142.250.74.161200 OK 9.1 kB URL HTTP/1.1 2.bp.blogspot.com/-IMxYuQhJqSo/VNjG0Hij2jI/AAAAAAAAALs/wQPoRSxnwYk/s1600/syahrul-logo.png
IP 142.250.74.161:0
File type PNG image data, 350 x 191, 8-bit/color RGB, non-interlaced\012- data
Hash 0cf23352c2f30374d7dc493236d2a882
259ac240c1f24a20ad232069841b948ba19842bf
5567a155e053018d4053aedc80b2ed2c662e076d829b02355f2901fa26fa18b8
GET /-IMxYuQhJqSo/VNjG0Hij2jI/AAAAAAAAALs/wQPoRSxnwYk/s1600/syahrul-logo.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vbc"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="syahrul-logo.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 9056
X-XSS-Protection: 0
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.170200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.170:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:18:13 GMT
expires: Thu, 24 Nov 2022 06:18:13 GMT
cache-control: public, max-age=3600
age: 2138
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png
142.250.74.161200 OK 1.1 kB URL HTTP/1.1 3.bp.blogspot.com/-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png
IP 142.250.74.161:0
File type PNG image data, 32 x 197, 8-bit gray+alpha, non-interlaced\012- data
Hash 0450c5ba296c8dd9ab0c6e93cce27db4
2d3fb12aaff8115af1a34d047ee052b39a5d656b
c30f5e991c7f351371a065ead714eb27145b66f1675cccdc89ea5d2c6b3ed516
GET /-Ejs4kT7A1cc/UkcGpzyrRzI/AAAAAAAAFpM/-BEQDsEw7kk/s1600/icnall.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="icnall.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1081
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 05:49:05 GMT
Expires: Fri, 11 Nov 2022 03:25:36 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 286
ETag: "v1694"
Content-Type: image/png
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
142.250.74.170200 OK 75 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main
IP 142.250.74.170:0
File type ASCII text, with very long lines (1613)
Hash 110765e1accf41111543c29721c78b52
3eeceb853d592a297162325f20f0420e136c875a
b5fb084ee4491e64fca48643106c0eb338212638caafdad88ff91e0d4198b589
GET /_/translate_http/_/js/k=translate_http.tr.no.qvkLIg6MEVc.O/d=1/exm=el_conf/ed=1/rs=AN8SPfoxsXHCM1CnEJ_o5xsmnbdq_po64A/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75035
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 00:23:31 GMT
expires: Thu, 23 Nov 2023 00:23:31 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 12 Nov 2022 06:10:12 GMT
content-type: text/javascript; charset=UTF-8
age: 106220
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ee7dfd7708b6cba74ec79aa7266a4e9e
d36a19314341fcb8effad1ba4a3e5d5e444b5294
62f49a3cbefcd2d52fddf4c35d7d978f2cc3482683fe201667d5f34df67ba13b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F
45.33.2.79302 Found 0 B URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F
IP 45.33.2.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Thu, 24 Nov 2022 05:53:51 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269231.0388680000&uuid=1669269231.0388680000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1oy5BH:t4biuYjY4b-Km3Vf1A7Y5_K1ZPc; expires=Thu, 24-Nov-2022 06:53:51 GMT; Max-Age=3600; Path=/
connection: close
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
log.viva.co.id/iframe
54.230.111.19301 Moved Permanently 167 B IP 54.230.111.19:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /iframe HTTP/1.1
Host: log.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Thu, 24 Nov 2022 05:53:52 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://log.viva.co.id/iframe
X-Cache: Redirect from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: p4TLcPTGCpnrpS1epC44HKUE9jKnGAMhYGjI5QayM4Qv14nGFj0H_g==
4.bp.blogspot.com/-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w100-h100-c/mobil.jpg
142.250.74.161200 OK 6.7 kB URL HTTP/1.1 4.bp.blogspot.com/-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w100-h100-c/mobil.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 552a9dbc4c30cd216f939556b8a26cf3
95a164a4cb1d306334d6d325ecf8f5b1d2549d26
71f25191b63c0180830432e998949f8b27f20328cadebfb9131867bb369083d9
GET /-QsfhBR8BozU/VVNAPQfo2GI/AAAAAAAAAWc/lXA54g9vZn8/w100-h100-c/mobil.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v168"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mobil.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 6725
X-XSS-Protection: 0
www.facebook.com/v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300
157.240.200.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300
Content-Type: text/plain
Server: proxygen-bolt
Date: Thu, 24 Nov 2022 05:53:52 GMT
Connection: keep-alive
Content-Length: 0
push.services.mozilla.com/
54.148.190.4101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.190.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nM6bXEmH8IB6wK9pneiM8w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HPOmH+KqGBSn77lKG9THHY0vBuE=
2.bp.blogspot.com/-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png
142.250.74.161404 Not Found 832 B URL HTTP/1.1 2.bp.blogspot.com/-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png
IP 142.250.74.161:0
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 832
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05681a05de8df6e408ae41032401b73f
f4824b4863e26866b10cd45a8cb422c339997035
97ab2238b53d233622081c75f7c60621eea9ae85c19c7ae958cfdbd685f39ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w100-h100-c/bau.jpg
142.250.74.161200 OK 4.9 kB URL HTTP/1.1 2.bp.blogspot.com/-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w100-h100-c/bau.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash d1badd26ac67d94bafd5b26d407c7926
37b398e5121c83719b1e02cf30792728ee109891
03194181221262405b1f0cd91113023501331edd842dd89b602fc3ff5d117189
GET /-d_RwVznxQao/VVnopTZc6bI/AAAAAAAAAYA/FAmyaVOsxoQ/w100-h100-c/bau.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v181"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="bau.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 4944
X-XSS-Protection: 0
adservice.google.com/adsid/integrator.js?domain=postingringan.blogspot.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=postingringan.blogspot.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=postingringan.blogspot.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 24 Nov 2022 05:53:52 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=postingringan.blogspot.com&callback=_gfp_s_&client=ca-pub-7039114450756605&gpid_exp=1
172.217.21.162200 OK 251 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=postingringan.blogspot.com&callback=_gfp_s_&client=ca-pub-7039114450756605&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (391), with no line terminators
Hash c1fba4b2112a274abf697aac96ec2670
fbf6e68641666fba2076c370dc01cf14f81a77b2
bd99b56cc1dce5b5bf593207e68afd46edfac32474c845270753651325e7ade5
GET /gampad/cookie.js?domain=postingringan.blogspot.com&callback=_gfp_s_&client=ca-pub-7039114450756605&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 24 Nov 2022 05:53:52 GMT
server: cafe
cache-control: private
content-length: 251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1338
Cache-Control: max-age=118378
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:46:50 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
2.bp.blogspot.com/-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w100-h100-c/N1.jpg
142.250.74.161200 OK 5.1 kB URL HTTP/1.1 2.bp.blogspot.com/-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w100-h100-c/N1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 3fabf4012f77009fdd5dd80525ab26f2
dabca5d07f8320deffeca6999d12948a39ccf1e5
ef4262712f8fb55889be9a6ff5061fa7fad0aa3d0ea4350a7aba2c489c693142
GET /-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w100-h100-c/N1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="N1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 5070
X-XSS-Protection: 0
2.bp.blogspot.com/-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w72-h72-p-k-no-nu/N1.jpg
142.250.74.161200 OK 100 B URL HTTP/1.1 2.bp.blogspot.com/-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w72-h72-p-k-no-nu/N1.jpg
IP 142.250.74.161:0
File type gzip compressed data, max compression\012- data
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /-0Xn6XCtgcqI/VKY3tWqiD5I/AAAAAAAAAEI/QiIHrHHLrF8/w72-h72-p-k-no-nu/N1.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v43"
Expires: Fri, 25 Nov 2022 05:53:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="N1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:51 GMT
Server: fife
Content-Length: 3198
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 05681a05de8df6e408ae41032401b73f
f4824b4863e26866b10cd45a8cb422c339997035
97ab2238b53d233622081c75f7c60621eea9ae85c19c7ae958cfdbd685f39ebc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269231.0388680000&uuid=1669269231.0388680000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269231.0388680000&uuid=1669269231.0388680000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /?template=ARROW_3&tdfs=1&s_token=1669269231.0388680000&uuid=1669269231.0388680000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 24 Nov 2022 05:53:52 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Wed, 19 Oct 2022 06:29:28 GMT
ETag: "634f9948-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_O/XgJWGAr15jIdqAC2/ACtIL7BqzYyTUmuVOX+xQbhoAZ0qd7uHiTz/Zf48dJaacgV3Ot5IMaeOIR2YfQoTBNg
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7039114450756605&output=html&h=90&slotname=7066490370&adk=3546611892&adf=3044595745&pi=t.ma~as.7066490370&w=728&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0002&wgl=1&dt=1669269231609&bpp=39&bdt=624&idt=211&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&correlator=8193373146901&frm=20&pv=2&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=396&ady=47&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=pOSD2VGFBu&p=http%3A//postingringan.blogspot.com&dtd=373
142.250.74.34400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7039114450756605&output=html&h=90&slotname=7066490370&adk=3546611892&adf=3044595745&pi=t.ma~as.7066490370&w=728&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0002&wgl=1&dt=1669269231609&bpp=39&bdt=624&idt=211&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&correlator=8193373146901&frm=20&pv=2&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=396&ady=47&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=pOSD2VGFBu&p=http%3A//postingringan.blogspot.com&dtd=373
IP 142.250.74.34:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7039114450756605&output=html&h=90&slotname=7066490370&adk=3546611892&adf=3044595745&pi=t.ma~as.7066490370&w=728&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0002&wgl=1&dt=1669269231609&bpp=39&bdt=624&idt=211&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&correlator=8193373146901&frm=20&pv=2&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=396&ady=47&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7CleE%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=pOSD2VGFBu&p=http%3A//postingringan.blogspot.com&dtd=373 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Thu, 24 Nov 2022 05:53:52 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 06:08:52 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F
45.33.2.79302 Found 0 B URL HTTP/1.1 jqueryapi.info/?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F
IP 45.33.2.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fpostingringan.blogspot.com%2F HTTP/1.1
Host: jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Thu, 24 Nov 2022 05:53:52 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269232.0481800000&uuid=1669269232.0481800000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=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:1oy5BI:4obqagiWwL42_bADGsSJO5cU23s; expires=Thu, 24-Nov-2022 06:53:52 GMT; Max-Age=3600; Path=/
connection: close
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7039114450756605&output=html&h=250&slotname=8682824377&adk=1522257651&adf=3408944079&pi=t.ma~as.8682824377&w=300&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0007&wgl=1&dt=1669269231609&bpp=10&bdt=625&idt=304&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&prev_slotnames=7066490370&correlator=8193373146901&frm=20&pv=1&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=540&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=bZLJb6pjLJ&p=http%3A//postingringan.blogspot.com&dtd=381
142.250.74.34400 Bad Request 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-7039114450756605&output=html&h=250&slotname=8682824377&adk=1522257651&adf=3408944079&pi=t.ma~as.8682824377&w=300&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0007&wgl=1&dt=1669269231609&bpp=10&bdt=625&idt=304&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&prev_slotnames=7066490370&correlator=8193373146901&frm=20&pv=1&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=540&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=bZLJb6pjLJ&p=http%3A//postingringan.blogspot.com&dtd=381
IP 142.250.74.34:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-7039114450756605&output=html&h=250&slotname=8682824377&adk=1522257651&adf=3408944079&pi=t.ma~as.8682824377&w=300&lmt=1667931876&url=http%3A%2F%2Fpostingringan.blogspot.com%2F&host=ca-host-pub-1556223355139109&h_ch=L0007&wgl=1&dt=1669269231609&bpp=10&bdt=625&idt=304&shv=r20221110&mjsv=m202211140101&ptt=5&saldr=sa&abxe=1&prev_slotnames=7066490370&correlator=8193373146901&frm=20&pv=1&ga_vid=1225908574.1669269232&ga_sid=1669269232&ga_hid=370275623&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=149&ady=540&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531706%2C31070924&oid=2&pvsid=781530081068925&nvt=1&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Coe%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=2&uci=a!2&fsb=1&xpc=bZLJb6pjLJ&p=http%3A//postingringan.blogspot.com&dtd=381 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Thu, 24 Nov 2022 05:53:52 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 06:08:52 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-EmaVAI8YFjI/VXQEIqdhLFI/AAAAAAAAAYU/fxIzc_XNl3s/w100-h100-c/susu.jpg
142.250.74.161200 OK 1.5 kB URL HTTP/1.1 3.bp.blogspot.com/-EmaVAI8YFjI/VXQEIqdhLFI/AAAAAAAAAYU/fxIzc_XNl3s/w100-h100-c/susu.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 0609bf2addc7275b53f68e18197a435d
9f44909181fd79bea83ce6bf3328549acd8afcc7
617bdb5dcde9a938befe6851730d96d8d07218b38cc0cf5458a54ed51d3555b8
GET /-EmaVAI8YFjI/VXQEIqdhLFI/AAAAAAAAAYU/fxIzc_XNl3s/w100-h100-c/susu.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v186"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="susu.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 1460
X-XSS-Protection: 0
1.bp.blogspot.com/-ShUvjBZSBxc/VKOWkl4fpCI/AAAAAAAAACQ/-0bMarSHJlk/w100-h100-c/Picture-1.jpg
142.250.74.161200 OK 4.0 kB URL HTTP/1.1 1.bp.blogspot.com/-ShUvjBZSBxc/VKOWkl4fpCI/AAAAAAAAACQ/-0bMarSHJlk/w100-h100-c/Picture-1.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 76fe53f40f9a408b161e8b94b6f9fae5
4cdb1b64f4fa64aa1d1a661f1420d9b0aec33ab1
0b69f8c4ff237d5cd78073797ab62037645a16aeba7deae14b842ff8a9ab44e1
GET /-ShUvjBZSBxc/VKOWkl4fpCI/AAAAAAAAACQ/-0bMarSHJlk/w100-h100-c/Picture-1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v24"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Picture-1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 4034
X-XSS-Protection: 0
1.bp.blogspot.com/-QlTJyGucbVs/VM-BPFrNtJI/AAAAAAAAAJQ/JFOooJhl3Wg/w100-h100-c/kegiatan%2Bwanita.jpg
142.250.74.161200 OK 8.8 kB URL HTTP/1.1 1.bp.blogspot.com/-QlTJyGucbVs/VM-BPFrNtJI/AAAAAAAAAJQ/JFOooJhl3Wg/w100-h100-c/kegiatan%2Bwanita.jpg
IP 142.250.74.161:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 8794cfe18f17bc616dd37648c228e78d
6098eec43ab58f133dac24f1a206a68e83888d70
526c5cadae5a1f57c7dc5d9335c7a55116c8053bd27ce1b950aa28ba99d01a24
GET /-QlTJyGucbVs/VM-BPFrNtJI/AAAAAAAAAJQ/JFOooJhl3Wg/w100-h100-c/kegiatan%2Bwanita.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v95"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kegiatan wanita.gif"
Content-Type: image/gif
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 8802
X-XSS-Protection: 0
4.bp.blogspot.com/-aCGBWdYzVT0/VVNM_49pEzI/AAAAAAAAAW8/gmvg8YJNm1c/w100-h100-c/tv.jpg
142.250.74.161200 OK 5.4 kB URL HTTP/1.1 4.bp.blogspot.com/-aCGBWdYzVT0/VVNM_49pEzI/AAAAAAAAAW8/gmvg8YJNm1c/w100-h100-c/tv.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 79e06093233a944521815db7f084d601
ae1889790ca0b5c71040a44587a947f0b7462cc3
3103e6f960bec88147131500cd91a7e7d8fbe5cf10e42c3e72382c487ba49b68
GET /-aCGBWdYzVT0/VVNM_49pEzI/AAAAAAAAAW8/gmvg8YJNm1c/w100-h100-c/tv.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v170"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="tv.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 5390
X-XSS-Protection: 0
1.bp.blogspot.com/-Q78ZoDnn584/VKOTn29VXzI/AAAAAAAAACE/ZmFBPSnUMrY/w100-h100-c/Picture2.jpg
142.250.74.161200 OK 6.9 kB URL HTTP/1.1 1.bp.blogspot.com/-Q78ZoDnn584/VKOTn29VXzI/AAAAAAAAACE/ZmFBPSnUMrY/w100-h100-c/Picture2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 100x100, components 3\012- data
Hash 0f4d9f9155be89e872100c90b4218227
d773e60259de4ca7ef60431a67f3ac27b3269585
adaf82492dd10b52a72bbdae2163ba1e738f444e1db731476ce9cf249944585f
GET /-Q78ZoDnn584/VKOTn29VXzI/AAAAAAAAACE/ZmFBPSnUMrY/w100-h100-c/Picture2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v21"
Expires: Fri, 25 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Picture2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Thu, 24 Nov 2022 05:53:52 GMT
Server: fife
Content-Length: 6900
X-XSS-Protection: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1338
Cache-Control: max-age=118378
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 14:46:50 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269232.0481800000&uuid=1669269232.0481800000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 www6.jqueryapi.info/?template=ARROW_3&tdfs=1&s_token=1669269232.0481800000&uuid=1669269232.0481800000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /?template=ARROW_3&tdfs=1&s_token=1669269232.0481800000&uuid=1669269232.0481800000&term=Javascript%20Image%20Annotation%20Library&term=Online%20Programming%20Courses&term=Coding%20Certification%20Programs&term=Ethical%20Cracking%20and%20Penetration%20Testing&searchbox=0&showDomain=0&backfill=0 HTTP/1.1
Host: www6.jqueryapi.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Server: openresty
Date: Thu, 24 Nov 2022 05:53:52 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Tue, 15 Nov 2022 08:01:55 GMT
ETag: "63734773-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_VlcM+zWdta4HxVRAyBfrJW8UlXQBWoP5//6BN/A5q0WMX662cD/6jL2vSIu2EW0P07zlw+xHoElr5HM6SmuUhw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (42048)
Hash 3051900d03a657ddbbc9afa8ac11cdbd
557f26734897e137a6678f6d2a81672fc6a34ad2
038035ce01be57324c7e251c8834229b4910f27e3a042912fd7276947e5750df
GET /rsrc.php/v3iEpO4/yt/l/en_US/JGSM2yXjSKh.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:32:28 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: MFGQDQOmV927ya+orBHNvQ==
x-fb-debug: w4l7Sx6wSVLShR32MW0rbYvh+683ddVo7u/iVf8RGsviLXpNpLjwVhqXatYzA5HeC3Hzmkay5fXaHGjjK2PKog==
priority: u=3,i
content-length: 23455
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (18622)
Hash 151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:54:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: XKYCuFqqNH0kZrgnBK9d939R6pWs+fcIzk26id8p6lRkOvr6n2vQtYYz0yMcJoZ8xMvN0Ztyy0Cqwk+0Rwgf4Q==
content-length: 91088
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 4.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (4431)
Hash b113b03774dd681750e13a29e21bb731
7f04db6a230a826eecad3667b4e770b9e72ec31e
193918cbf46245338989996fcd9c0e76f0625e1a39f5ba648a2fac2960a1b16c
GET /rsrc.php/v3/yB/l/0,cross/Z8HwmBQAssQ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:25:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: sROwN3TdaBdQ4Top4hu3MQ==
x-fb-debug: 2+7xHS/eDx07NmhPNkyywIjCCVloU4QlzRZJJgKsbCgCjIDfHNXfHrBmU+/Xx8tnlHsCvyab2/94fUDvDqkzFw==
priority: u=3,i
content-length: 4377
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 3.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (3040)
Hash 67341f39b2ce247e697a10779f128a4d
f02c4778acb39deb48e616259ba730fd59a19fc3
7e7f121969a70cc7962e6b31531a1afca8d5492879b9b52291b2c8014ca0bf76
GET /rsrc.php/v3/yr/l/0,cross/nWIU5H2unqI.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 23 Nov 2023 18:25:56 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: ZzQfObLOJH5pehB3nxKKTQ==
x-fb-debug: xXc3tB6KW2GlKJu1jGtCJl1gxVhj5AQ85x7wZ7SmqXL5xeWj0x3cQ1IVai2V73sS60cXq/nCIPlGg6/Y4DvsgA==
priority: u=3,i
content-length: 3399
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 04:19:34 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: Q4SZcgQTAabjDzD2+gKJKr6ziyQ06wHv6vn8mmXB0+kuQdjy3wTVMUID0BmzHL5OAwJkzyKxHBk01s8b/V0KbA==
content-length: 1657
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.200.14200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.200.14:0
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 03:18:10 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: m+BQtPjWNbih3NkPDP8aeJSIVnefnV7FgVfmHv1ottnMxuFQ7O9P70HznPCRDJbEWaZVpMfMOPytg5/OtxyEfQ==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300
157.240.200.35200 OK 30 kB URL HTTP/2 www.facebook.com/v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300
IP 157.240.200.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20132)
Hash 68373beb0708e2c1b2bee5b038b18450
bdfc3fafb45516c66446a584078af4a9c6e744b0
405d43a48e4fccf1f20740272c13f6bb7f2736dea1f7a4c45bd37c8e04b8fdec
GET /v2.3/plugins/page.php?app_id=&channel=http%3A%2F%2Fstatic.ak.facebook.com%2Fconnect%2Fxd_arbiter%2FNM7BtzAR8RM.js%3Fversion%3D41%23cb%3Df37a7397d8%26domain%3Dpostingringan.blogspot.com%26origin%3Dhttp%253A%252F%252Fpostingringan.blogspot.com%252Ff1f37dc2f8%26relation%3Dparent.parent&container_width=300&hide_cover=false&href=https%3A%2F%2Fwww.facebook.com%2Fpostingringan&locale=en_US&sdk=joey&show_facepile=false&show_posts=false&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 9hOofmpKn14tvrVt+2Y8unQUxHdLdayw8eXur+F0cKtn+ala/e32x4A5NJGjoNFgNkj0d3XfQsydU4xZYVXIMw==
date: Thu, 24 Nov 2022 05:53:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 186f5295f578dc81663537fd23a898a8
212cd5caaa9d44817996854d067e7a4eae843a56
01a37259454aef3bf6436eeac239313c9bb17f58337ad0070c7784f154069e8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 24 Nov 2022 05:53:52 GMT
expires: Thu, 24 Nov 2022 05:53:52 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "34fae0e5dab49917"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js
157.240.200.14200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (1957)
Hash 625fe3459bcab515a2a09f8f7fa62c86
b09e5d144b1a5a10ca4fbdc0beeee4fc56aeb573
2d9073645421109587344b5107e3411f8c42f225114d48174c24676034a3f23c
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: aebb8b86b72c0bfb859a4d595bcc0eed
ETag: "cf19b0d133614338334f292eda730248"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Thu, 24 Nov 2022 06:03:13 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: Yl/jRZvKtRWioJ+Pf6Yshg==
X-FB-Debug: wTiOAMAA7uRPguEORlAx8HkK/4rbY5DuGodrfhesMXrfG3iTYY+s+2Cextzbe+nlIpcjcjRacBlR7tFvQYKQ4A==
Priority: u=3,i
X-FB-TRIP-ID: 1679558926
Date: Thu, 24 Nov 2022 05:53:52 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1687
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1919644966f2b07fbb612dae3a9abbfb
8a6b358e5daa75a09582fb599923b53a36b3c437
de1f22421d1a180a3d957e7abcbb3573e1645197865c136050df5846255b33fa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:52 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 22:12:44 GMT
Expires: Mon, 28 Nov 2022 22:12:43 GMT
Etag: "8a6b358e5daa75a09582fb599923b53a36b3c437"
Cache-Control: max-age=403730,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76efe2fc5f1cb4f7-OSL
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:12:40 GMT
expires: Fri, 24 Nov 2023 05:12:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 2472
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:14:20 GMT
expires: Fri, 24 Nov 2023 05:14:20 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 2372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
142.250.74.163200 OK 910 B URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP 142.250.74.163:0
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 06:42:34 GMT
expires: Thu, 23 Nov 2023 06:42:34 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 83478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
postingringan.blogspot.com/favicon.ico
142.250.74.161200 OK 453 B URL HTTP/1.1 postingringan.blogspot.com/favicon.ico
IP 142.250.74.161:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ce5b15f2019b9eca3a700407acfd2281
22a534558c591db8650a9ddfb10c0cb0ef6facae
e754a827cba7e37641bd4432803c669d0bf1e3c366a9b564c3e71cf44e9d6885
GET /favicon.ico HTTP/1.1
Host: postingringan.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Thu, 24 Nov 2022 05:53:52 GMT
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: private, max-age=86400
Last-Modified: Tue, 08 Nov 2022 18:24:36 GMT
ETag: W/"0c8b071e34a01584c4b9d4bd66fc3a81bb66f99749f12128a4bbaa7b67d74330"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 453
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/all.js?hash=70f296f14702c9a6b42de4af48a9b070
157.240.200.14200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=70f296f14702c9a6b42de4af48a9b070
IP 157.240.200.14:0
File type ASCII text, with very long lines (18605)
Hash 27da59806d718d443144e2e905dca70a
66e24dd486938490caa2673d310ccef5f15f3fc0
4545c15682829dc20385cd9e03bba80931b0041e35fe1e17f80553343870eff1
GET /en_US/all.js?hash=70f296f14702c9a6b42de4af48a9b070 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://postingringan.blogspot.com
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 92a539721dd2ccf2699071894241ff4f
etag: "cf15462a4b455ffe4fa3f78d3f21d389"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 24 Nov 2023 04:47:01 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: J9pZgG1xjUQxROLpBdynCg==
x-fb-debug: /RCwourV2122JvkvHlMCWF1wT5sU3sXN6OaVNgnr5KLuFD2CkcqOHEYFbm4pqXwRBIH90ro/T4pN6CjWgcwvjg==
content-length: 88226
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 05:53:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115
142.250.74.46204 No Content 0 B URL HTTP/1.1 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cross-Origin-Resource-Policy: cross-origin
Content-Security-Policy: script-src 'nonce-MWyVlAarHhTH1RRz_c_qgQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Cross-Origin-Opener-Policy: same-origin
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
142.250.74.163200 OK 1.6 kB URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
IP 142.250.74.163:0
File type PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a931d597decd2553aac6634b766cf2
6ec84fb4a2745b4b71520241be77db1fd1013830
f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e
GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:57 GMT
expires: Fri, 24 Nov 2023 05:42:57 GMT
cache-control: public, max-age=31536000
age: 655
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
widgets.amung.us/small.js
172.67.8.141200 OK 3.5 kB URL HTTP/1.1 widgets.amung.us/small.js
IP 172.67.8.141:0
File type ASCII text, with very long lines (8560), with no line terminators
Hash 08283f674ed2a3a87b0ca0b64950ef28
1d6018c4a9104d337726cfe9f67b43ff37acc0cb
442e1c2e9e1692d86c6c4df3c68167fbddb4ec4ec7fa90258fd683f5a5f3578d
GET /small.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:52 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Fri, 11 Nov 2022 22:14:31 GMT
etag: W/"636ec947-2170"
expires: Fri, 25 Nov 2022 05:53:52 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: MISS
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76efe2ffbaa2b4f9-OSL
log.viva.co.id/iframe
54.230.111.19301 Moved Permanently 0 B IP 54.230.111.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iframe HTTP/1.1
Host: log.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: CloudFront
date: Thu, 24 Nov 2022 05:53:52 GMT
content-length: 0
location: https://www.viva.co.id/iframe
x-cache: FunctionGeneratedResponse from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oLWXjarR_dm-dyTyirAmP0yqkX-_Fn4xESIQ_l3hG7rBHGzJ22FhVA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f7801fe8b983652ae788bc952856c2ed
f3898da21792b146a9f856e87ed3520d76277fb8
faa1bc8a9887e2dc694ff645546ea16cb96ac4bd1b0c460aef95f2cced100d6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/images/cleardot.gif
142.250.74.164200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 24 Nov 2022 05:53:52 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.viva.co.id/iframe
54.230.111.19200 OK 7.8 kB IP 54.230.111.19:0
Hash 11d17ddfb257fb1d13602c1899e7efef
c14eee797cc41d912d31d3e51869c66df357a681
b73a653dc705bb4a4c1ef5fb4c12791e656cd115993056706166c99c3c4b9822
GET /iframe HTTP/1.1
Host: www.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Thu, 24 Nov 2022 05:52:09 GMT
server: nginx
cache-control: max-age=60, public
last-modified: Thu, 24 Nov 2022 05:52:09 GMT
vivabuild: appcode=new-web
expires: Thu, 24 Nov 2022 05:53:09 GMT
viewtype: Desktop
cache-tag: listing
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
content-encoding: gzip
vary: Accept-Encoding,Accept-Encoding,User-Agent
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3tyHc1uXj7SZi-vN4ojezaJ3AletxWgbdoBWAjAnLL3dh5ixyy9rrw==
age: 103
X-Firefox-Spdy: h2
public.viva.co.id/asset-viva/responsive-web/img/logo.png?v=2.12
104.20.150.112200 OK 3.1 kB URL HTTP/2 public.viva.co.id/asset-viva/responsive-web/img/logo.png?v=2.12
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9b123585e66053c958cfc4d2e7b75254
fce7b1f1f2288c5bbeb80170f76c84ff47d6b261
a3f20a6498cfe60fda02750e0b71d3ed290bc2a898b9e61d7c29b26eff77ce16
GET /asset-viva/responsive-web/img/logo.png?v=2.12 HTTP/1.1
Host: public.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:52 GMT
content-type: image/webp
content-length: 3068
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=3609
content-disposition: inline; filename="logo.webp"
etag: "32f4946e8b56d5c5c371901373356d30"
last-modified: Tue, 07 Dec 2021 06:21:06 GMT
vary: Accept
x-amz-id-2: QTT+hpfitVSitzkdZOcJec4IyvxPFL23kdZbLuJgM16hcrbSWX5Lyn71w42IsKL4Fkp9MrOkl4w=
x-amz-request-id: 07FGMV9FZ0800G3F
cache-control: max-age=31536000
cf-cache-status: HIT
age: 77688
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe301f8e9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.viva.co.id/asset-viva/responsive-web/img/icon-profile-iframe.jpg?v=2.12
104.20.150.112200 OK 708 B URL HTTP/2 public.viva.co.id/asset-viva/responsive-web/img/icon-profile-iframe.jpg?v=2.12
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 128x128, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 980e391d7f0a9a262eee56fb0a80efe5
030bb321a34e4abb63addc02c71b6d8b81435595
2e9dece66ae05f5730db235d623f71c4bbf77eea95ee2a8c3ad3c3dc30359200
GET /asset-viva/responsive-web/img/icon-profile-iframe.jpg?v=2.12 HTTP/1.1
Host: public.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:52 GMT
content-type: image/webp
content-length: 708
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=1511
content-disposition: inline; filename="icon-profile-iframe.webp"
etag: "33f5bb3f3fc9a51ebdfbcebb8a4ea88d"
last-modified: Tue, 07 Dec 2021 06:21:18 GMT
vary: Accept
x-amz-id-2: Wd6pG3ut8j/iDrNR3RfSM9PK3nuduX6Dj/pEYmvaMDQ3Hxw/c7ZtE1WUf6xvv97Q+ZNY1yUdkUE=
x-amz-request-id: 4FB7RGEKBBJWGN4R
cache-control: max-age=31536000
cf-cache-status: HIT
age: 77610
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe301f8f0b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.viva.co.id/asset-viva/responsive-web/img/widgetviva-iconlist.png?v=2.12
104.20.150.112200 OK 222 B URL HTTP/2 public.viva.co.id/asset-viva/responsive-web/img/widgetviva-iconlist.png?v=2.12
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1ad034d6551b6e80c0922ab1ef7b6eed
f4878a48ed5cb1c7643365a795f3860a8b97aa17
777a88e9eda22474709e7b40e0bb909fb230e6e82d786bea66d872d25d84fcc0
GET /asset-viva/responsive-web/img/widgetviva-iconlist.png?v=2.12 HTTP/1.1
Host: public.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:52 GMT
content-type: image/webp
content-length: 222
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1238
content-disposition: inline; filename="widgetviva-iconlist.webp"
etag: "bf5278500c686aac127f96c9079c2f9b"
last-modified: Tue, 07 Dec 2021 06:20:55 GMT
vary: Accept
x-amz-id-2: kPdQmRzmGIPs+xC9lzaP6UeGMFFTC2wj8VJOicFgIj5aA4t/LRDKh2fHFqvjpAVrW58jFrW3LuM=
x-amz-request-id: 4FB0ZE573XSXMQQB
cache-control: max-age=31536000
cf-cache-status: HIT
age: 77610
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe30208fdb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2019/06/22/5d0d606b965a8-ki-joko-bodo_325_183.jpg
104.20.150.112200 OK 6.4 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2019/06/22/5d0d606b965a8-ki-joko-bodo_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 23ae1027f78f08d9a9562ef1db8981ed
26dc535d3564e8442e2e430db6240cfa2dc89815
75c2976c70274132be4f9de16a3cb00982e6f64a96c558b19abaae346280cec5
GET /media/frontend/thumbs3/2019/06/22/5d0d606b965a8-ki-joko-bodo_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:52 GMT
content-type: image/webp
content-length: 6370
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=12004
content-disposition: inline; filename="5d0d606b965a8-ki-joko-bodo_325_183.webp"
etag: "0cd9676bb01be59e6b6786523b77c089"
last-modified: Fri, 21 Jun 2019 22:55:42 GMT
vary: Accept
x-amz-id-2: OZekFzA4Z8qJ3E9B5inSOXToANqvj2tafYCmTKZkx0GuFXZ3PZlImh1paSoV+nVzQFgUaya5cug=
x-amz-request-id: K67F2Z7K7G2B1GG7
cache-control: max-age=31536000
cf-cache-status: HIT
age: 171872
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302191fb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/23/637e3ed9c40ea-pemain-timnas-jerman-protes-atas-larangan-ban-kapten-one-love-oleh-fifa_325_183.jpg
104.20.150.112200 OK 20 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/23/637e3ed9c40ea-pemain-timnas-jerman-protes-atas-larangan-ban-kapten-one-love-oleh-fifa_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 495736e5e5a77e925e0dbc7f7cba5c9e
68f66b55a869365b1843c22a5c82998930e89fe3
359cc69ae372df1017cfb473de635a3d22ddb95f6d6a3643dc71fead8955e4a9
GET /media/frontend/thumbs3/2022/11/23/637e3ed9c40ea-pemain-timnas-jerman-protes-atas-larangan-ban-kapten-one-love-oleh-fifa_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 19808
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=29783, status=webp_bigger
etag: "ef60c2cad33592278fd56e707b29bb8e"
last-modified: Wed, 23 Nov 2022 15:40:12 GMT
x-amz-id-2: fp1B+Mtew4tJjVQRicwOguTaiyvVlGYqc4YVPoQK2bw3F5/lRIVlt7kZNLqF+9pG1KCLNUkM2Qs=
x-amz-request-id: 7J1XK10BJQ5W6CF9
cache-control: max-age=31536000
cf-cache-status: HIT
age: 34195
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3027973b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2019/08/07/5d4ae7d77bbdd-imei_325_183.jpg
104.20.150.112200 OK 9.1 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2019/08/07/5d4ae7d77bbdd-imei_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 81963e554c4da50521a693e3e77bc361
e0b1b6362a086f1b11eec6ef574c7b40ba7083ad
ae4be91b9aff13f062cbb734e53f666535a6b3212313e3f15b48476a2aca8a82
GET /media/frontend/thumbs3/2019/08/07/5d4ae7d77bbdd-imei_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 9136
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=15657
content-disposition: inline; filename="5d4ae7d77bbdd-imei_325_183.webp"
etag: "7638b5410022508004c0d121f5426bf4"
last-modified: Wed, 07 Aug 2019 15:01:45 GMT
vary: Accept
x-amz-id-2: IfTqgi6va9YEH97vr4vq3dRb3t5wl+INfAmFCeJ11TQYQaHOZByB1YnJkhUu9SroxVXsEinLnuk=
x-amz-request-id: ZJ162PTDNZXKGY4X
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1121
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3027979b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637edb77b1a94-viva-otomotif-tim-mitsubishi-ralliart-di-ajang-axcr-2022_325_183.jpg
104.20.150.112200 OK 20 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637edb77b1a94-viva-otomotif-tim-mitsubishi-ralliart-di-ajang-axcr-2022_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 7d3e23d97657b60160f01eb423d9297b
1088f01b0e6b553c061f448d05745cd9047d6e6c
d1b9bcea14664c78c6a122ff07bebedea595ad21ac2ffe8c90ab092de7b40778
GET /media/frontend/thumbs3/2022/11/24/637edb77b1a94-viva-otomotif-tim-mitsubishi-ralliart-di-ajang-axcr-2022_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 20096
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=31016, status=webp_bigger
etag: "ebc5cbcb1ec0fe29953b7b603f9ae0be"
last-modified: Thu, 24 Nov 2022 02:48:27 GMT
x-amz-id-2: kiT/bmdtkjGF/KPJdwRQAX7KfOccwBXQ8Eocrl753gEVex1DMoEZciRADXXsZVookZgUybHO+5g=
x-amz-request-id: FCARPXWPNP78S0E5
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1120
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3028985b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef0f567871-viva-militer-prajurit-denpom-iii-4-serang-banten-bersama-korban_325_183.jpg
104.20.150.112200 OK 16 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef0f567871-viva-militer-prajurit-denpom-iii-4-serang-banten-bersama-korban_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 8adb6f69c00cfe634b754faad31232a5
0231d7db27195a775fe9bcae17fed90e98c4271c
a2b9eeeeb495df2f85a61f638234b625c90a0421021dff906736023b4169c086
GET /media/frontend/thumbs3/2022/11/24/637ef0f567871-viva-militer-prajurit-denpom-iii-4-serang-banten-bersama-korban_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 15924
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=23884, status=webp_bigger
etag: "97f9d5dc0b3eef050f8c3fbe65076c8c"
last-modified: Thu, 24 Nov 2022 04:20:08 GMT
x-amz-id-2: T/kDsgJWGRFQivQTdW5/QoHV2HSVecLZpjy41OMiOIdSILnoKby/swHBP8+z8Ho1DSlV0FlgZNs=
x-amz-request-id: X9WKNSWBQ1MDVN5N
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4115
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b7b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.viva.co.id/asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3_-gs51os.woff2?v=2.12
104.20.150.112200 OK 20 kB URL HTTP/2 public.viva.co.id/asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3_-gs51os.woff2?v=2.12
IP 104.20.150.112:0
File type Web Open Font Format (Version 2), TrueType, length 20348, version 1.0\012- data
Hash 9c43f43c6a98e7a4c8f27827ff455c9f
60b73cbb826b0710af3988a30873b3c47e43b511
bf6c1e2f8c250b7efeb5d250181599880b1c17efc3c94466aa5d847454bf14ef
GET /asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3_-gs51os.woff2?v=2.12 HTTP/1.1
Host: public.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.viva.co.id
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: binary/octet-stream
content-length: 20348
x-amz-id-2: Q97+3fneVQFiPMUTOBpfcwOx5tqP6SzmtYYQoxZAC/fQI35UHoU0cNgU35+CrAsvdrEMDNC3m/M=
x-amz-request-id: 2GWWTGHHASZXFXVX
access-control-allow-origin: https://www.viva.co.id
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 07 Dec 2021 06:21:04 GMT
etag: "9c43f43c6a98e7a4c8f27827ff455c9f"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 93208
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9c2b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.viva.co.id/asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2?v=2.12
104.20.150.112200 OK 21 kB URL HTTP/2 public.viva.co.id/asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2?v=2.12
IP 104.20.150.112:0
File type Web Open Font Format (Version 2), TrueType, length 21080, version 1.0\012- data
Hash fa61eccc5d911d604a8739a7c9dc8bcb
73488928ed4cd9f726f0129fc6c969908161091a
4c52e4274ebdbe29cd5b4983d888c247496b6d3bb55e05d4c0769d1b946d14f8
GET /asset-viva/responsive-web/fonts/barlow/7cHqv4kjgoGqM7E3t-4s51os.woff2?v=2.12 HTTP/1.1
Host: public.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.viva.co.id
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: binary/octet-stream
content-length: 21080
x-amz-id-2: 67axAHTr08yYogTF9ag+UVdvA3xCJYp0xYWZxG0yFDa+o1cwRAdhpT+43laQw88SzRCkby/q+ic=
x-amz-request-id: 2GWRNPJQHT15DCKR
access-control-allow-origin: https://www.viva.co.id
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 07 Dec 2021 06:21:03 GMT
etag: "fa61eccc5d911d604a8739a7c9dc8bcb"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 93208
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9cab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1919644966f2b07fbb612dae3a9abbfb
8a6b358e5daa75a09582fb599923b53a36b3c437
de1f22421d1a180a3d957e7abcbb3573e1645197865c136050df5846255b33fa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 22:12:44 GMT
Expires: Mon, 28 Nov 2022 22:12:43 GMT
Etag: "8a6b358e5daa75a09582fb599923b53a36b3c437"
Cache-Control: max-age=403729,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76efe302db68b4ed-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efb3037668-viral-aksi-suporter-timnas-jepang-tuai-banyak-pujian_325_183.jpg
104.20.150.112200 OK 15 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efb3037668-viral-aksi-suporter-timnas-jepang-tuai-banyak-pujian_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash f5fab8b5d9d8f2e97776858b5859b280
4a039b4c34afb2c4341c810626d75f1c75ccc545
3e74575799f034d6763c3c4567bdbbe71edf96e536071ab739ee8b86342f3dd1
GET /media/frontend/thumbs3/2022/11/24/637efb3037668-viral-aksi-suporter-timnas-jepang-tuai-banyak-pujian_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 14969
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=21948, status=webp_bigger
etag: "d1f4ede5f429edc79fbc74c3bbd4b7e7"
last-modified: Thu, 24 Nov 2022 05:03:49 GMT
x-amz-id-2: psqWSFFMrFW2Jt1UAlt0OwT3l1pxiSaTEcoydTS89StmVAW/tHkXdtPc7+QG4BAgazlA9LpjHsY=
x-amz-request-id: 0CAJRT2K5X5JDKP6
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3022920b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2016/03/22/56f0c83670b70-transportasi-online_325_183.jpg
104.20.150.112200 OK 11 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2016/03/22/56f0c83670b70-transportasi-online_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 00f04530ecbc379c6b9d4898e0382b96
03a7f79325962c40d0975b57927228f34db25e51
05b683fe276dd1d2acb5ea100fc726db48837da4d270d9d062307495d08dc95f
GET /media/frontend/thumbs3/2016/03/22/56f0c83670b70-transportasi-online_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 10956
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=21955
content-disposition: inline; filename="56f0c83670b70-transportasi-online_325_183.webp"
etag: "24e862dd638508e375a732626ae9eb62"
last-modified: Thu, 22 Nov 2018 23:03:27 GMT
vary: Accept
x-amz-id-2: 3euHl47epqlMk/g2HhepVdHT00EU0lJY5dW7XBLehJa7+P9K5M6k/qVJBm70NrnNBwt074tWEJ8=
x-amz-meta-s3cmd-attrs: atime:1538551379/ctime:1521029506/gid:501/gname:viva-share/md5:24e862dd638508e375a732626ae9eb62/mode:33188/mtime:1520620365/uid:501/uname:viva-share
x-amz-request-id: 63F0HY0J02DTS10W
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3021919b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637f02561d895-presiden-jokowi-meninjau-langsung-penanganan-korban-gempa-di-cianjur_325_183.jpg
104.20.150.112200 OK 22 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637f02561d895-presiden-jokowi-meninjau-langsung-penanganan-korban-gempa-di-cianjur_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 0e3630fe8e09f295e6fdfdd8f2a0e9d5
61b717a6d520d4bc652b45fbaff5003d4bef7e0c
47c9262441279afc1395d9b10c92f45183dc54f70e364b17790cae5a2b088e1c
GET /media/frontend/thumbs3/2022/11/24/637f02561d895-presiden-jokowi-meninjau-langsung-penanganan-korban-gempa-di-cianjur_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 22203
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=33892, status=webp_bigger
etag: "1ad58257834cd9fca579f324c78ce962"
last-modified: Thu, 24 Nov 2022 05:34:16 GMT
x-amz-id-2: TSL9fTEXASBBPRAznI4jB2jwUcAzZY+wfrLe+wY0i5MjPfW24j85FWF5HR4Y8jkN6o9nXjAAzj0=
x-amz-request-id: QWWR6F1086CN82C8
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3020901b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/10/25/635807697839d-adidas-bekerjasama-dengan-yeezy-milik-kanye-west_325_183.jpeg
104.20.150.112200 OK 6.7 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/10/25/635807697839d-adidas-bekerjasama-dengan-yeezy-milik-kanye-west_325_183.jpeg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ed4afd555c9b3a8ae948e4d0137d6ef4
206ff0a885860d4f419625d3850d82ab28493948
d556fb768d24bf7e76e2da4f11206b5c93bc4d2869ac38fd7311a21e71556316
GET /media/frontend/thumbs3/2022/10/25/635807697839d-adidas-bekerjasama-dengan-yeezy-milik-kanye-west_325_183.jpeg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 6680
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=13795
content-disposition: inline; filename="635807697839d-adidas-bekerjasama-dengan-yeezy-milik-kanye-west_325_183.webp"
etag: "694ac8655d856c1c49cab997d4a3448c"
last-modified: Tue, 25 Oct 2022 15:57:33 GMT
vary: Accept
x-amz-id-2: U6Re/7rKcC60V4RH/J9Dkdw1Er4TNpBXy4miCA7sQXGOw28iDz4U6A/5h3vAOqscmzCrU8q967U=
x-amz-request-id: 452MWEJZRT4E23HZ
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3020905b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637f002a3d280-tim-k9-sar-ditpolsatwa-polri-kerahkan-anjing-pelacak-cari-korban-gempa-cianjur_325_183.jpg
104.20.150.112200 OK 21 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637f002a3d280-tim-k9-sar-ditpolsatwa-polri-kerahkan-anjing-pelacak-cari-korban-gempa-cianjur_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash ba47ce0f5e98579c9942ae039828ad95
53f0beea8ffbfd7dabd114fba8938a7b0584b4d9
5985e40b8f6253a353a1693776fbb591eae4b44d1c343bfde59f152aa5a9fa88
GET /media/frontend/thumbs3/2022/11/24/637f002a3d280-tim-k9-sar-ditpolsatwa-polri-kerahkan-anjing-pelacak-cari-korban-gempa-cianjur_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 21046
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=32424, status=webp_bigger
etag: "3d38c69962b186d7b91be40fe4e7c5e9"
last-modified: Thu, 24 Nov 2022 05:25:01 GMT
x-amz-id-2: im5pe2b4ee51ipP0Obz29IxUGWJk34RamgXebUbDyYNmUzRJFunyppLPhPhdTdmyuNnkn1bm/+o=
x-amz-request-id: 1NFZ9334DSTH874M
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3020900b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637eefb0cb5ae-chery-tiggo-7-pro_325_183.jpg
104.20.150.112200 OK 11 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637eefb0cb5ae-chery-tiggo-7-pro_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash bab1e03f5318b22db20c637337e5c552
f3b1b1a82b4cc03a55a53b231eb5ba436b2144d7
fbcff38a48369640eb8cdf7dd96e9233dbd0b3d577de45eb8019a5f4e27bb01e
GET /media/frontend/thumbs3/2022/11/24/637eefb0cb5ae-chery-tiggo-7-pro_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 11334
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=18012
content-disposition: inline; filename="637eefb0cb5ae-chery-tiggo-7-pro_325_183.webp"
etag: "a08ae4e3714db5b679d705d4b6533b5c"
last-modified: Thu, 24 Nov 2022 04:14:43 GMT
vary: Accept
x-amz-id-2: MflPF7b8SN1GAbGlwf0kGzLECxCPFWEFJxMzZAqWiHN8eUbvS3C1zf0yyRmvpETlaDa5zrWiOL8=
x-amz-request-id: 0BF3RBY3KRSS1XQD
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302191ab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/10/27/635a041ea534f-sidang-lanjutan-brigjen-hendra-kurniawan-dan-agus-nurpatria_325_183.jpg
104.20.150.112200 OK 11 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/10/27/635a041ea534f-sidang-lanjutan-brigjen-hendra-kurniawan-dan-agus-nurpatria_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash e5eedffe221ff504ef2ab1691b4abf1b
11b522dc1657025d538ba4808034c6e198dc7a02
5d6642ad02c290dde2473a84729195eebf72d5e878e91115d7ff6024e7de50c7
GET /media/frontend/thumbs3/2022/10/27/635a041ea534f-sidang-lanjutan-brigjen-hendra-kurniawan-dan-agus-nurpatria_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 11042
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=17664
content-disposition: inline; filename="635a041ea534f-sidang-lanjutan-brigjen-hendra-kurniawan-dan-agus-nurpatria_325_183.webp"
etag: "6bd70b47cd9a370b000821278d371508"
last-modified: Thu, 27 Oct 2022 04:08:04 GMT
vary: Accept
x-amz-id-2: tA/ktk5DnNKheUs0gy7pJxNa42eiaVnhnF5U4a9gapdDH+mkqC8fNvmqlChTojpXdy2Bv48pQ38=
x-amz-request-id: AVJ6J1S2QMYJ0B36
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302191bb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2021/09/08/61386641adb54-wulan-guritno_325_183.jpg
104.20.150.112200 OK 9.1 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2021/09/08/61386641adb54-wulan-guritno_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 6607d1343aa448fb47c7902a586de834
2ca29eea85dc2629f1f886f6cc8336efe5e574b7
9592467e7cbcbb572b031c3bd6c687195da19109a4f88db305e462eb97c2a3ea
GET /media/frontend/thumbs3/2021/09/08/61386641adb54-wulan-guritno_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 9062
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=14840
content-disposition: inline; filename="61386641adb54-wulan-guritno_325_183.webp"
etag: "f193fec924f8c23b2ee20894de6f76a0"
last-modified: Wed, 08 Sep 2021 07:29:07 GMT
vary: Accept
x-amz-id-2: BQuAWOi+YMz8XDsvp6aiWe1uJW3xRRdzbSgv7JpV5Zx9J1847SdswV+Ecx5clhmJA0Zv5uh9HEQ=
x-amz-request-id: 8PZR42NWK889R1HQ
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3024946b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/03/30/62436a7066016-pengamat-politik-rocky-gerung-saat-acara-bimtek-anggota-legislatif-pks_325_183.jpg
104.20.150.112200 OK 7.5 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/03/30/62436a7066016-pengamat-politik-rocky-gerung-saat-acara-bimtek-anggota-legislatif-pks_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 57ba9f5f032ea553cdcfd3316f1dc5d5
590332cf6ba05671e38e0382547af36425cd8b7f
6822d743bdf74b0538cbb45b878e1168dba2f5e17396f50195b9b4e5819c5f07
GET /media/frontend/thumbs3/2022/03/30/62436a7066016-pengamat-politik-rocky-gerung-saat-acara-bimtek-anggota-legislatif-pks_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 7538
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=14081
content-disposition: inline; filename="62436a7066016-pengamat-politik-rocky-gerung-saat-acara-bimtek-anggota-legislatif-pks_325_183.webp"
etag: "3bc7ab0845f2f7e5dc3b7017c72dbec3"
last-modified: Tue, 29 Mar 2022 20:22:10 GMT
vary: Accept
x-amz-id-2: UK8B4iydxjmqcVZiXudqS0SKGtUkY9iB+f6CzLcnunTtIQsnUDH/dw1EBmnej10OT+nyd9xSOjU=
x-amz-request-id: H1RMPYZH8V6R9RH1
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3021916b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/07/24/62dd0e4eb766c-suasana-saat-olah-tkp-di-lokasi-penembakan-di-jalan-cemara-iii-banyumanik-semara_325_183.jpg
104.20.150.112200 OK 17 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/07/24/62dd0e4eb766c-suasana-saat-olah-tkp-di-lokasi-penembakan-di-jalan-cemara-iii-banyumanik-semara_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 25ef0e9b3ef0118402a4d120d65fb9b9
035f4db325d36aad92dd7c0ea8d5a1643442ee67
e5b6c1773b5d58d804f5e2f0f05fdfa33d2bb54dced4a7fbcc2503df3c413e27
GET /media/frontend/thumbs3/2022/07/24/62dd0e4eb766c-suasana-saat-olah-tkp-di-lokasi-penembakan-di-jalan-cemara-iii-banyumanik-semara_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 17345
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=26076, status=webp_bigger
etag: "75b3089bed5f6f33deeb95e8fde1ddd7"
last-modified: Sun, 24 Jul 2022 09:18:09 GMT
x-amz-id-2: VhFZioCcoKRb6jsTI20+Ew11J7Z8IgAFV8tW+4/6mvRsfjhNNs7eJLK6Fy/SVtI7dPRQy0nPE+o=
x-amz-request-id: 7CM9YZZAR0JM5YPR
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3024945b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efcac22515-menteri-pertahanan-prabowo-subianto-menerima-penetapan-indonesia-sebagai-tuan-ru_325_183.jpg
104.20.150.112200 OK 13 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efcac22515-menteri-pertahanan-prabowo-subianto-menerima-penetapan-indonesia-sebagai-tuan-ru_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash de15359c9cfb154f58951e0d0a2a896a
e7ff58570805fcb5d87420b5d19c36bda20c49e4
f013531ce4e3dbb91c8f22e4f8ad5545317e36621dd06f6f0ac064234fdf76ee
GET /media/frontend/thumbs3/2022/11/24/637efcac22515-menteri-pertahanan-prabowo-subianto-menerima-penetapan-indonesia-sebagai-tuan-ru_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 13206
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=20013
content-disposition: inline; filename="637efcac22515-menteri-pertahanan-prabowo-subianto-menerima-penetapan-indonesia-sebagai-tuan-ru_325_183.webp"
etag: "ea79d10fe72bd564412d6338a56bf905"
last-modified: Thu, 24 Nov 2022 05:10:06 GMT
vary: Accept
x-amz-id-2: d/pS+uvKM5vALuqm4EjrMuzMLi0IdkajJ4wIYIeYJCDCjX5vhdsaYCFZzASYCG78HJtYUyAdojg=
x-amz-request-id: G4K2NVR2YA52VDKR
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302594eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/18/63775a91018d0-menpora-zainudin-amali-dan-dirut-lib-ferry-paulus_325_183.jfif
104.20.150.112200 OK 15 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/18/63775a91018d0-menpora-zainudin-amali-dan-dirut-lib-ferry-paulus_325_183.jfif
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash f5885b6078fea4010e34d5db18454dfd
b1ddc06f9c7211ea6f32ac2023eedb46dea2cea7
eb075eb84f43958150e3c3c058b3a60ef00d41c9dad251806338b4ff34116fbe
GET /media/frontend/thumbs3/2022/11/18/63775a91018d0-menpora-zainudin-amali-dan-dirut-lib-ferry-paulus_325_183.jfif HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 15053
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=22234, status=webp_bigger
etag: "358fb41ecfaa11f000078d61f09a9dd8"
last-modified: Fri, 18 Nov 2022 10:12:35 GMT
x-amz-id-2: vtqsLfpXvMGMOsQqk7OdEbNu4zIZTq2lLh2mFDEYlkiZCH224063EgawKYeXQbYlji14fAW2xaI=
x-amz-request-id: SC8C47Z2PCFPGYFX
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025951b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/09/06/6316ce2405bbd-lumba-lumba_325_183.jpg
104.20.150.112200 OK 14 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/09/06/6316ce2405bbd-lumba-lumba_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b17c7db6b804305d12ef56c50c858263
29690946779b1231239031169caf0efba8deefaa
726dd3232213b2b477c5f07d82f2fd9e1a562fd27fe4b8ebb0a6e3467a8b558e
GET /media/frontend/thumbs3/2022/09/06/6316ce2405bbd-lumba-lumba_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 13614
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=20507
content-disposition: inline; filename="6316ce2405bbd-lumba-lumba_325_183.webp"
etag: "db9a58b50dedba35c63d42125e355a2d"
last-modified: Tue, 06 Sep 2022 04:35:51 GMT
vary: Accept
x-amz-id-2: PLD1nh3yIZe0qc5Q4OQUueXLtTYVVaVazc1xkPhns+lIHp7FvASwOx0yk6uGYTipmdeaflLDU9I=
x-amz-request-id: GS0GJC1GMBX24J58
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025952b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/22/637cb63006ab5-anindya-bakrie-tengah-raih-penghargaan-iwapi-award-2022_325_183.jpg
104.20.150.112200 OK 18 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/22/637cb63006ab5-anindya-bakrie-tengah-raih-penghargaan-iwapi-award-2022_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash dce4b62abefa8d2ad72a693c7f7f29ae
3650797468d575c184f671931bf5f65763c57a2f
ef06e229061e8174502a9dad54ea6b66a9ff9d9ebc7fd9dd714b9d239c7187cf
GET /media/frontend/thumbs3/2022/11/22/637cb63006ab5-anindya-bakrie-tengah-raih-penghargaan-iwapi-award-2022_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 18021
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=26702, status=webp_bigger
etag: "93227532d335a84a780005cc126aa238"
last-modified: Tue, 22 Nov 2022 11:44:52 GMT
x-amz-id-2: v9yes+d89uiBuRiUFQAfqpqwUS33eLdlsUwYzTz+8YE1ty3vsmZmSV1PXwvcm9eq4FdNzGB8C9U=
x-amz-request-id: 1HJHW5FZERD79Q0W
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025954b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efbd486d34-sejumlah-warga-mengantre-tes-pcr-di-kawasan-panjiayuan-distrik-chaoyang-beijin_325_183.jpg
104.20.150.112200 OK 14 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efbd486d34-sejumlah-warga-mengantre-tes-pcr-di-kawasan-panjiayuan-distrik-chaoyang-beijin_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash e076d55808a2e8ffa47f56329e72979c
7e005ecb9c2ced8331b4c75e0c3dbb115e1328df
d61c9d6c192c2a0e7c299cfe4714cee92ca94671ee33eb112c94f027b5cc6e2c
GET /media/frontend/thumbs3/2022/11/24/637efbd486d34-sejumlah-warga-mengantre-tes-pcr-di-kawasan-panjiayuan-distrik-chaoyang-beijin_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 14507
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=21784, status=webp_bigger
etag: "ca9852a1bab039f4bfc2b470526cf832"
last-modified: Thu, 24 Nov 2022 05:06:30 GMT
x-amz-id-2: J+kE8u8YyZ9yFRgeMGEtvvS4K98sKZv4HcCVXdgHUFMN0CEnmM5yvl1SXn10ZQ33yLqyARW3LsA=
x-amz-request-id: 3TEDNH6CGPB68191
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025953b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efa36dab22-polisi-mengevakuasi-mayat-korban-pembunuhan-di-pacet-kabupaten-mojokerto_325_183.jpg
104.20.150.112200 OK 10 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637efa36dab22-polisi-mengevakuasi-mayat-korban-pembunuhan-di-pacet-kabupaten-mojokerto_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea2556c9e34a3e5fd14c68dc1709dd56
b60aaae8b05982fe9018790e22dbf5e694752456
387ddb3ce41158ac5da99d93929cc1f0b3cfa3c1ffdebe06f10a6d721b29d1b2
GET /media/frontend/thumbs3/2022/11/24/637efa36dab22-polisi-mengevakuasi-mayat-korban-pembunuhan-di-pacet-kabupaten-mojokerto_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 10458
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=16781
content-disposition: inline; filename="637efa36dab22-polisi-mengevakuasi-mayat-korban-pembunuhan-di-pacet-kabupaten-mojokerto_325_183.webp"
etag: "d4b5c8d11014738452925baf88c3395f"
last-modified: Thu, 24 Nov 2022 04:59:37 GMT
vary: Accept
x-amz-id-2: ma3lI8ZYii7G3I5UBEvb4uPMXhRKLMNZTNQMDcubqG8Zic58Vka68N/a6gRcOKCQrb4z2CBV/68=
x-amz-request-id: G3RE5039CDZQQS5X
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025956b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-KPDQW3
142.250.74.168200 OK 70 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KPDQW3
IP 142.250.74.168:0
File type ASCII text, with very long lines (8829)
Hash 2926dd56d64be78c93b230216945770b
af5c46c438e764f20cc8ffed074efa0c151582fb
698ca5f827290aa95ab9027d955b67fad672bb5964df4ccc78cae1404de995de
GET /gtm.js?id=GTM-KPDQW3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 24 Nov 2022 05:53:53 GMT
expires: Thu, 24 Nov 2022 05:53:53 GMT
cache-control: private, max-age=900
last-modified: Thu, 24 Nov 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 70042
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2018/11/08/5be40794457d9-pekerja-mengangkut-karung-berisi-beras-stok-rasta-raskin-beras-untuk-warga-pras_325_183.jpg
104.20.150.112200 OK 18 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2018/11/08/5be40794457d9-pekerja-mengangkut-karung-berisi-beras-stok-rasta-raskin-beras-untuk-warga-pras_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash f61accbdf6c7ec296de340d0a3362b85
445212fbf7129b7a56723648583f0dd22459b8b8
5dc6bb55c7d5d4881c97779d4d3e68a7c2c991744d05d3a4fbc4242c48f99622
GET /media/frontend/thumbs3/2018/11/08/5be40794457d9-pekerja-mengangkut-karung-berisi-beras-stok-rasta-raskin-beras-untuk-warga-pras_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 18015
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=27471, status=webp_bigger
etag: "c2cc743605701a3547080d021d4efc1c"
last-modified: Thu, 22 Nov 2018 12:44:13 GMT
x-amz-id-2: zQG7jT1HoHnWS6euzs5IGCJM4U5+Mt7wlKgfWQPqL5piRKM6XeOvotXRZoPZ1oaJtvOkZV0+Kwg=
x-amz-request-id: CBSRVN66PYZ3QJZ6
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3027972b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/20/6379ad77c4006-pemimpin-oposisi-malaysia-anwar-ibrahim-menunjukkan-surat-suaranya_325_183.jpg
104.20.150.112200 OK 5.7 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/20/6379ad77c4006-pemimpin-oposisi-malaysia-anwar-ibrahim-menunjukkan-surat-suaranya_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b918473bc7105ae46dc234ef8af0790
c0653acfd68b537153f6bf374f1cbf117765f4da
29318698ea20ffb624f19a15aed4c049f0f0f7aa28f3903eff0b69bdd8d796b7
GET /media/frontend/thumbs3/2022/11/20/6379ad77c4006-pemimpin-oposisi-malaysia-anwar-ibrahim-menunjukkan-surat-suaranya_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 5706
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11663
content-disposition: inline; filename="6379ad77c4006-pemimpin-oposisi-malaysia-anwar-ibrahim-menunjukkan-surat-suaranya_325_183.webp"
etag: "7a19ea0fdc439e0f8605db514d28892a"
last-modified: Sun, 20 Nov 2022 04:30:50 GMT
vary: Accept
x-amz-id-2: nD8YZNrEUohJp/MufyLdQC9PiGI7UXjwYMRAO0yCZQoOg/qN6DarnxPSM7srCuOhP3Tg+bny6sE=
x-amz-request-id: WR9ABD1AAR2DBHBS
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3025957b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2021/12/07/61af4821aecb7-sheila-dara-aisha_325_183.jpg
104.20.150.112200 OK 8.2 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2021/12/07/61af4821aecb7-sheila-dara-aisha_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 005db9cc47969a0fb5205cb3aefa2aef
d92d3ba34586c7b303739c0f63b0a76044eeef75
65ecdf62c9730c4d9ecd7eabf44e185e61d48fe41facfeb749e54b0a0b5de2ca
GET /media/frontend/thumbs3/2021/12/07/61af4821aecb7-sheila-dara-aisha_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 8158
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=14978
content-disposition: inline; filename="61af4821aecb7-sheila-dara-aisha_325_183.webp"
etag: "f8deaf9080b3e711e3ae90427e36a38b"
last-modified: Tue, 07 Dec 2021 11:40:20 GMT
vary: Accept
x-amz-id-2: VGD0HQXtX5rY4xEfmmO+EMGvbJlcLIX8O4rvP4+7FWoj+07hJZcSaOTIzyxUHqHUEKs2evSzRMo=
x-amz-request-id: 9VZW0BTTH1R6M308
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3027970b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef5231bae3-campaign-kontroversial-balenciaga_325_183.jpeg
104.20.150.112200 OK 17 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef5231bae3-campaign-kontroversial-balenciaga_325_183.jpeg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 3a7fe18fe52be74a447a05566ed13bcb
8c6961b49380d559fb70fe289b2d72521aeca7b5
792efaeccc66f40b95ac010d19c31775e28ffc60d7c6a6454140020e3ba0974d
GET /media/frontend/thumbs3/2022/11/24/637ef5231bae3-campaign-kontroversial-balenciaga_325_183.jpeg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 17223
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=26080, status=webp_bigger
etag: "31ee5937a41441013c91dbaa03762038"
last-modified: Thu, 24 Nov 2022 04:37:59 GMT
x-amz-id-2: X6bZQsU3MVi6EwglQ1ufDTPJY0XeovhX+xq1XoZ9w4cs/Zdr2aKPpQ1wvwApW20Q3SkmduzcBxA=
x-amz-request-id: 5DAS47MDE0JES8C0
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe3027977b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef3743c534-unjuk-rasa-di-pabrik-iphone-terbesar-di-dunia-di-kota-zhengzhou-china_325_183.jpg
104.20.150.112200 OK 12 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef3743c534-unjuk-rasa-di-pabrik-iphone-terbesar-di-dunia-di-kota-zhengzhou-china_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 181c8268edcb17a1f133f52849cd7609
efb57c4e3e3c560ab179405c33f81f5761b5da60
d06837f8bc7097148dc4b1ee5c48c5088f273b1114b39b30c2c500007b053bab
GET /media/frontend/thumbs3/2022/11/24/637ef3743c534-unjuk-rasa-di-pabrik-iphone-terbesar-di-dunia-di-kota-zhengzhou-china_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 12244
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=18686
content-disposition: inline; filename="637ef3743c534-unjuk-rasa-di-pabrik-iphone-terbesar-di-dunia-di-kota-zhengzhou-china_325_183.webp"
etag: "23b3ca920e585060727138d0a75f0a9d"
last-modified: Thu, 24 Nov 2022 04:30:46 GMT
vary: Accept
x-amz-id-2: U+2SUXHFERvokepkmKRiS2WhdYL7nXwn/kQUclT7rJNRNU1JXGniMPG/gJb2DJ2jO1NdYN402Oo=
x-amz-request-id: FEWWKHX185N6MHEX
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302897eb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2021/04/28/6088eb5913559-mau-kuliah-sambil-kerja-wajib-banget-jalankan-tips-ini_325_183.jpg
104.20.150.112200 OK 12 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2021/04/28/6088eb5913559-mau-kuliah-sambil-kerja-wajib-banget-jalankan-tips-ini_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4c6c3cc7ee6ff241d03266baf5b27b4c
fb39956882d4af5b10252e94ac00e66c8e4cd687
d734e3ecea3cc7d098310862cd0acf6889e964a7ddacce40044decdb81ea81cf
GET /media/frontend/thumbs3/2021/04/28/6088eb5913559-mau-kuliah-sambil-kerja-wajib-banget-jalankan-tips-ini_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 12528
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=19106
content-disposition: inline; filename="6088eb5913559-mau-kuliah-sambil-kerja-wajib-banget-jalankan-tips-ini_325_183.webp"
etag: "110fe86cbb74c2546b313416c591738e"
last-modified: Wed, 28 Apr 2021 04:58:03 GMT
vary: Accept
x-amz-id-2: qm8FEHLRm6G4t0m31T5s9B/S4N1msGwShgPH3wsU+XbXIAJjN4xlMNTCUx1xX/xxwRorukESRRg=
x-amz-request-id: QH586WXX3JT8QTCZ
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302897db51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ee2e35f94c-kepulauan-widi-maluku-utara-dilelang-di-situs-asing_325_183.jpg
104.20.150.112200 OK 19 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ee2e35f94c-kepulauan-widi-maluku-utara-dilelang-di-situs-asing_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 9343357c4482a156f2f06935d3cfe8d5
436ed3a47283512a68014385e5e8f475aca4d5d2
b3fcc098d1ffed547a7164eaae5bfbee005e136154b962fde912407361cf779b
GET /media/frontend/thumbs3/2022/11/24/637ee2e35f94c-kepulauan-widi-maluku-utara-dilelang-di-situs-asing_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 18847
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=28860, status=webp_bigger
etag: "cd578cbc7c8c99d45117b1ab4f268e1c"
last-modified: Thu, 24 Nov 2022 03:20:05 GMT
x-amz-id-2: zd06f1mm08u31xAYVMvkD5dNyCz8O3UB6L1tQmazToEaBBES2hAngwQYsdIKenOpCeyGJPmYMCI=
x-amz-request-id: V7CPA9GTR4C0FCR9
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302b9a7b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef40065cdc-viral-video-pria-curi-cd-wanita-di-jemuran_325_183.jpg
104.20.150.112200 OK 9.5 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef40065cdc-viral-video-pria-curi-cd-wanita-di-jemuran_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 04fa682fee0098cf11e0f52094055bc8
0dfc069ce0ecdbdc077bf0a5796a02d639823d9a
ad1530abb0e8634f9bb070aa0779074faadf9b316a7e971769d6e10194335c9e
GET /media/frontend/thumbs3/2022/11/24/637ef40065cdc-viral-video-pria-curi-cd-wanita-di-jemuran_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 9504
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=16064
content-disposition: inline; filename="637ef40065cdc-viral-video-pria-curi-cd-wanita-di-jemuran_325_183.webp"
etag: "41b4a050954fe95621b58d267abc6a75"
last-modified: Thu, 24 Nov 2022 04:33:06 GMT
vary: Accept
x-amz-id-2: Ejp/8mR5I2Vp7OLMz67dvj2N5JJeTf0nnWGrLpW37a3jzktsk7N6tVCSIAedl4TW2IJEDKFCva0=
x-amz-request-id: 3BK4EP8V6VG7M1MQ
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302b9a9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef1418c226-kursi-saksi-untuk-terdakwa-hendra-kurniawan-dan-agus-nurpatria-kosong_325_183.jpg
104.20.150.112200 OK 8.1 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ef1418c226-kursi-saksi-untuk-terdakwa-hendra-kurniawan-dan-agus-nurpatria-kosong_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d38fc489bbaadba94fe516a859beece5
a677f3aeb1ffc8a7f19f225680d70b96af8a1579
ea8970650d7112a502e625f1b98f7d7fe847e99b2b0105eb83d90f1b81212f0d
GET /media/frontend/thumbs3/2022/11/24/637ef1418c226-kursi-saksi-untuk-terdakwa-hendra-kurniawan-dan-agus-nurpatria-kosong_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 8106
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=14850
content-disposition: inline; filename="637ef1418c226-kursi-saksi-untuk-terdakwa-hendra-kurniawan-dan-agus-nurpatria-kosong_325_183.webp"
etag: "846c9cb134c1bc984d3aa1d901db7cf8"
last-modified: Thu, 24 Nov 2022 04:21:24 GMT
vary: Accept
x-amz-id-2: y55HOmNdy3gC92ewk4ts+tSG5O/OFMBnGVeHoDFTpBnlu/RLJdg6VBH4jneD3t+3F8ZcD3Iom34=
x-amz-request-id: MXRRYBJ0NG10A24H
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b5b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 1919644966f2b07fbb612dae3a9abbfb
8a6b358e5daa75a09582fb599923b53a36b3c437
de1f22421d1a180a3d957e7abcbb3573e1645197865c136050df5846255b33fa
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 22:12:44 GMT
Expires: Mon, 28 Nov 2022 22:12:43 GMT
Etag: "8a6b358e5daa75a09582fb599923b53a36b3c437"
Cache-Control: max-age=403729,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76efe302bc57b4f7-OSL
thumb.viva.co.id/media/frontend/thumbs3/2022/07/11/62cba8c3928a5-menko-perekonomian-airlangga-hartarto_325_183.jpg
104.20.150.112200 OK 13 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/07/11/62cba8c3928a5-menko-perekonomian-airlangga-hartarto_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2af245a00932b7f2dfd7442ffaf9c192
f46610e3f4e1dada72595c05c77b307a38c2e6fd
3de4877c78a6378dae2730a1649e599209f640738e854995cb3e35a2ef5fc987
GET /media/frontend/thumbs3/2022/07/11/62cba8c3928a5-menko-perekonomian-airlangga-hartarto_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 12856
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=19833
content-disposition: inline; filename="62cba8c3928a5-menko-perekonomian-airlangga-hartarto_325_183.webp"
etag: "13e33fccc9a91f57c74330ab5f8826b4"
last-modified: Mon, 11 Jul 2022 04:36:21 GMT
vary: Accept
x-amz-id-2: AOBG8dpwgT2E0sSOA9zJ0CzSlg/vdK7njMKeCGK+VyMczwcWtcy156NCMDUnxUvuRap5BePZyGI=
x-amz-request-id: X60DZJ89SYV0CVGC
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b0b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/11/636dd9d0c66a0-wamenkumham-edward-omar-sharif-hiariej-saat-serahkan-rkuhp-ke-dpr_325_183.jpg
104.20.150.112200 OK 13 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/11/636dd9d0c66a0-wamenkumham-edward-omar-sharif-hiariej-saat-serahkan-rkuhp-ke-dpr_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 492b6f91b72ba45f91b0b6bcfcd0dca7
15699d46e436173aebeea0f12ffe3f5942c43b81
1eb900341034f6e3f08d943b02cfb042c8cfbe2cb59fcb932eaa3453ff2803b7
GET /media/frontend/thumbs3/2022/11/11/636dd9d0c66a0-wamenkumham-edward-omar-sharif-hiariej-saat-serahkan-rkuhp-ke-dpr_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 13248
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=19941
content-disposition: inline; filename="636dd9d0c66a0-wamenkumham-edward-omar-sharif-hiariej-saat-serahkan-rkuhp-ke-dpr_325_183.webp"
etag: "79a456f21e81537385df04b898a3821f"
last-modified: Fri, 11 Nov 2022 05:12:51 GMT
vary: Accept
x-amz-id-2: PYPKBFru0F8IVc2YRHlHBud/G7eWpP1q/CFCTydcryePv+Oede6O5IptyYVt9EffufRLRbvGNDU=
x-amz-request-id: P3WFVJFNBJ0KQY2Z
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9bbb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2020/12/21/5fe07b3b57f32-e-sim-mempermudah-kita-untuk-mempunyai-konektivitas-internet-2_325_183.jpg
104.20.150.112200 OK 5.8 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2020/12/21/5fe07b3b57f32-e-sim-mempermudah-kita-untuk-mempunyai-konektivitas-internet-2_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f900c93a2c8024f6a6aad09f55321af0
eadf8efe594873e52961d22468465b58889ddbf8
f10d9344505682138666019348eb9fda7640bc19bca2acfe0ceaccedda9e9c6b
GET /media/frontend/thumbs3/2020/12/21/5fe07b3b57f32-e-sim-mempermudah-kita-untuk-mempunyai-konektivitas-internet-2_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 5804
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=11643
content-disposition: inline; filename="5fe07b3b57f32-e-sim-mempermudah-kita-untuk-mempunyai-konektivitas-internet-2_325_183.webp"
etag: "79a16013f68faa058e664ca02bab0d88"
last-modified: Mon, 21 Dec 2020 10:38:53 GMT
vary: Accept
x-amz-id-2: Kj8yzoM6uWZRlRnr7K2pBYYtYpZdYVr/qukEGxuHjS1SohLVcUGQRUaT464yiRb2nKEu3ipxRA4=
x-amz-request-id: 5JGMT0V6PN5NSXV2
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b6b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ee6ccf3926-viva-militer-kapal-induk-hms-queen-elizabeth-r08-angkatan-laut-inggris_325_183.jpeg
104.20.150.112200 OK 13 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637ee6ccf3926-viva-militer-kapal-induk-hms-queen-elizabeth-r08-angkatan-laut-inggris_325_183.jpeg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 1edac0a20ca86f6f115dc3522fe32389
f048cedde4ec5395b6ec3cd708168268a9a7a5be
038af1db637df71bcef60fc594c72a86be483429e9ad0e60265e27a838f852ca
GET /media/frontend/thumbs3/2022/11/24/637ee6ccf3926-viva-militer-kapal-induk-hms-queen-elizabeth-r08-angkatan-laut-inggris_325_183.jpeg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 12862
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=19321, status=webp_bigger
etag: "dc6ab046b91c9d73c55637ed5eb2d617"
last-modified: Thu, 24 Nov 2022 03:36:47 GMT
x-amz-id-2: raDsAA06hy5fMLiRrMgskITf3T+7I6T6JpHrBjnbswL+2Sq0nWjEUQmIHbIALVU2YKuTP3Ombiw=
x-amz-request-id: NEDRXFZQMHMKSQM1
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b9b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2019/11/25/5ddb6f6b53b4f-pelaku-pencurian-modus-pecah-kaca-kendaraan_325_183.jpg
104.20.150.112200 OK 9.3 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2019/11/25/5ddb6f6b53b4f-pelaku-pencurian-modus-pecah-kaca-kendaraan_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e9d665e14212e1f913a4d0fe4d1a496
88c612b2afea12931a802727e87b2a66f85b178d
af13d4091107209a5598cce880c8bdbee08deed0f7910f4e6afc3659782c310d
GET /media/frontend/thumbs3/2019/11/25/5ddb6f6b53b4f-pelaku-pencurian-modus-pecah-kaca-kendaraan_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 9304
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=18885
content-disposition: inline; filename="5ddb6f6b53b4f-pelaku-pencurian-modus-pecah-kaca-kendaraan_325_183.webp"
etag: "becc318ba3a73c7a77bf8178aa412141"
last-modified: Fri, 03 Jul 2020 11:04:07 GMT
vary: Accept
x-amz-id-2: SeTH8WlFkuRNbkB1BDeYm4u3gSNHwiipqc/K0MkoMVPerH3HGvvO5pCMRbsoje/cbZTpPLudtaw=
x-amz-request-id: ES96FBAH3HW9VXQ1
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9bfb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2021/11/19/61970b399f9ca-dirjen-phi-dan-jamsos-indah-anggoro-putri_325_183.jpg
104.20.150.112200 OK 9.5 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2021/11/19/61970b399f9ca-dirjen-phi-dan-jamsos-indah-anggoro-putri_325_183.jpg
IP 104.20.150.112:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 325x183, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1c4346c8810e6643a84685bdd19fd338
a56e0f1545f08e589d2520786c583b372bc2b58e
c109a674a13eb00d62fa3db285170973c9d6c66180295f851f8d0b9b06248990
GET /media/frontend/thumbs3/2021/11/19/61970b399f9ca-dirjen-phi-dan-jamsos-indah-anggoro-putri_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/webp
content-length: 9512
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=17244
content-disposition: inline; filename="61970b399f9ca-dirjen-phi-dan-jamsos-indah-anggoro-putri_325_183.webp"
etag: "27e63443aa421d5b5655f312ad48ebef"
last-modified: Fri, 19 Nov 2021 02:26:04 GMT
vary: Accept
x-amz-id-2: z0K+zCvBJoqDmO56baQAxjNQAeZMj3HTyCha7aI5buw8GsjQUyiWWE8qu4+3m8oVVcXcAuusuXM=
x-amz-request-id: 2X078682P1MFRN7X
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9b1b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637eeeecb2f42-para-supir-truk-kargo-melakukan-aksi-pemogokan-di-yeosu-korea-selatan-9-juni-2_325_183.jpg
104.20.150.112200 OK 16 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/24/637eeeecb2f42-para-supir-truk-kargo-melakukan-aksi-pemogokan-di-yeosu-korea-selatan-9-juni-2_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 76d22859236b3dcb55c809fea7a3de53
3cee6eda580a6f93225232f90c6a62e848510747
a97ddecf6cba4485504560d9b92f415eb566b8e69c1bf4bafa178bc2911ecef7
GET /media/frontend/thumbs3/2022/11/24/637eeeecb2f42-para-supir-truk-kargo-melakukan-aksi-pemogokan-di-yeosu-korea-selatan-9-juni-2_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 16287
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=24585, status=webp_bigger
etag: "500ba05b09ee075726e8ff8271c633e3"
last-modified: Thu, 24 Nov 2022 04:11:27 GMT
x-amz-id-2: RzRdZBovhDc3u9XzTv9PeBb7KYZMFhz1dyw9lIEy444zrkKM4GK9BorUTUIhd7bLvWAqesYDjbE=
x-amz-request-id: S2T4RPAJ2NV8EG8V
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9c0b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/10/25/63576dec6df71-ceo-psis-semarang-yoyok-sukawi_325_183.jpg
104.20.150.112200 OK 15 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/10/25/63576dec6df71-ceo-psis-semarang-yoyok-sukawi_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash 3916ec586b03ee8331f6f24dbf8b3cca
ff89b2a1efae0bc2a6fc36a4e72925e8b01280a2
fa7a425ece457b24dc407d2caf0a145c1974bcf2068edc9d340a19f20e469b9c
GET /media/frontend/thumbs3/2022/10/25/63576dec6df71-ceo-psis-semarang-yoyok-sukawi_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 14947
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=22171, status=webp_bigger
etag: "8e061865489acb95cdc039891b4a22a6"
last-modified: Tue, 25 Oct 2022 05:02:39 GMT
x-amz-id-2: eQxaTTbhtpsq3QgJ6Vw88WbZubXFAEpP/SW4i6JkcYfja5nne+QENpqt7HyB31UppcFyI2llW2c=
x-amz-request-id: 0B7CF8MA01937KHB
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302c9acb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
thumb.viva.co.id/media/frontend/thumbs3/2022/11/21/637a656f52d43-pemain-ekuador-rayakan-gol-enner-valencia_325_183.jpg
104.20.150.112200 OK 16 kB URL HTTP/2 thumb.viva.co.id/media/frontend/thumbs3/2022/11/21/637a656f52d43-pemain-ekuador-rayakan-gol-enner-valencia_325_183.jpg
IP 104.20.150.112:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x183, components 3\012- data
Hash f7993f19b3b100596fd146c26173f470
cdded876731f941bec2c28ebb1739f68855cc979
8cc1f26da2b9154064d349d26c3d6fa0b0e87e4ab7825ee1b8751ec8aa3b5275
GET /media/frontend/thumbs3/2022/11/21/637a656f52d43-pemain-ekuador-rayakan-gol-enner-valencia_325_183.jpg HTTP/1.1
Host: thumb.viva.co.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: image/jpeg
content-length: 16358
cf-bgj: imgq:85,h2pri
cf-polished: degrade=85, origSize=24671, status=webp_bigger
etag: "9ecedcf5098fcce34148a9f0030ba864"
last-modified: Sun, 20 Nov 2022 17:35:45 GMT
x-amz-id-2: O9yo2h3bzyR2h4gbEVUdDwDm09FhxTLhSd3IO0J5VvPM/2vadiWhmt0qERhC3jaq0I1fqAAU7nA=
x-amz-request-id: FVAWGNCHY6YNPVSG
cache-control: max-age=31536000
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
server: cloudflare
cf-ray: 76efe302d9beb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.96200 OK 1.9 kB URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.96:0
File type ASCII text, with very long lines (3936)
Hash 95ead88a8555078b6f6bb9f697a8a4ec
1fbbfb3a67372b6b034d295a717e6601344e7216
4e0f7c7a56fc7a7bfc3d73b3ea4b4981c676efaaa126b6576e2b4f21eba78a88
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 01:57:21 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: O4osbQt9u4Ygr_PfzBpUY1I1wCqcnidjlpTc6vbA-k16uEMiJofjOw==
age: 14193
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Thu, 24 Nov 2022 06:30:16 GMT
Date: Thu, 24 Nov 2022 05:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Thu, 24 Nov 2022 06:30:16 GMT
Date: Thu, 24 Nov 2022 05:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Thu, 24 Nov 2022 06:30:16 GMT
Date: Thu, 24 Nov 2022 05:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2183
Expires: Thu, 24 Nov 2022 06:30:16 GMT
Date: Thu, 24 Nov 2022 05:53:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:19 GMT
age: 28594
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb94ecb5881a7e49d964e4287d11e7a4
4b131a189db1b615e2519a28cad83d78297ab67f
f3693e29eb7b72361093434142e3f18969c1a0b02350fab430fa29c7c127bd1a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe021fc4e-f76c-4fe9-9470-b59452c93459.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11401
x-amzn-requestid: 3bc374eb-7d70-4b95-94a7-2ad06cae4726
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtHcmoAMFxgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-333793987245ff9e741b9aed;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kkI9Vh2vZeJPwz2JVL5MErsBBwk8-2Jo49yc0sFqv5pxIyBi6azFIw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 28590
etag: "4b131a189db1b615e2519a28cad83d78297ab67f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 29207
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4157f2c5c3c77ce699324ecb08f47c7
a7d9135f9d01ba13c3cdaf8b038c70212f159297
2305f7afee95bb34d9e8dbff571c6b146ba7b694be96e9e925c32d1f41785916
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d85d03d-8fcf-42f4-bada-e7f488f04307.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7462
x-amzn-requestid: 1f6fb14d-83e0-43d3-9dab-5bc83af1a7c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwV3HV9oAMFs9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9425-634d43db6308e0be596aa5a0;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GW5UTfY7-TwPWTno9z1e21a2cA9fmU7GfHFYWdL-zQvMLxeq-S9Trg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 22:03:54 GMT
age: 28199
etag: "a7d9135f9d01ba13c3cdaf8b038c70212f159297"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ac60e832454b4658f4f7f09b2c120c4
4c20adfe72d6b01777f840445d57c891230e5b32
ec1f4393eebaf1c4229fbda2524bd150191ca4067fe368e6a35ad4d65b8df59c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7327507d-2df2-4ca9-b67f-331be1f7aba4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8776
x-amzn-requestid: 7c511f0c-198d-44d5-bc52-29f698fca910
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvynEFBoAMFdJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9343-686e25237fb06f5031ffa88e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: we5qPtOUBgvPwa1oq8jplahjNZ6iiNlQn2Eyvl5_xuXWEKy6CmTR9Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 28593
etag: "4c20adfe72d6b01777f840445d57c891230e5b32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1404c6b865808ea73ca5b2062fefecc0
c66fd3a955cd81ab93474fb1aabc4c19d5775bcc
0a92ca52eff8baa4ba43bdb29008c59bcd37c55e78ac657de25819e980ea8e96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5545
x-amzn-requestid: 215b9f9b-4941-4c13-a1d4-6fdc5b453fad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtEkIIAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-27081b9e0dc1de6522299e4e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SFO53-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xr183esurgfu-4jjQtCS5s_np_CtltrPx48zpq-NMwZbcGnAwTxtkg==
via: 1.1 68914922a694954838e87fc9b0aa10fe.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:52:56 GMT
age: 28857
etag: "c66fd3a955cd81ab93474fb1aabc4c19d5775bcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=ku66kw83op2i&t=Portal%20Media%20Informasi&c=s&x=http%3A%2F%2Fpostingringan.blogspot.com%2F&y=&a=0&d=2.082&v=27&r=9880
172.67.8.141200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=ku66kw83op2i&t=Portal%20Media%20Informasi&c=s&x=http%3A%2F%2Fpostingringan.blogspot.com%2F&y=&a=0&d=2.082&v=27&r=9880
IP 172.67.8.141:0
File type ASCII text, with no line terminators
Hash bb5ad7e74b300ddcc1642c2c55154494
a19dc60bfa6b19dae6f76c86b106ed3c594b4b86
d8b8c49f40d79b8fa81687b70f8c65987dc3dbbff6896f78d48e5e96be4e1ad9
GET /pingjs/?k=ku66kw83op2i&t=Portal%20Media%20Informasi&c=s&x=http%3A%2F%2Fpostingringan.blogspot.com%2F&y=&a=0&d=2.082&v=27&r=9880 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:53 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76efe303feb3b50f-OSL
sb.scorecardresearch.com/b?c1=2&c2=8429568&ns__t=1669269233190&ns_c=UTF-8&c8=&c7=https%3A%2F%2Fwww.viva.co.id%2Fiframe&c9=http%3A%2F%2Fpostingringan.blogspot.com%2F
143.204.55.96204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=2&c2=8429568&ns__t=1669269233190&ns_c=UTF-8&c8=&c7=https%3A%2F%2Fwww.viva.co.id%2Fiframe&c9=http%3A%2F%2Fpostingringan.blogspot.com%2F
IP 143.204.55.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=2&c2=8429568&ns__t=1669269233190&ns_c=UTF-8&c8=&c7=https%3A%2F%2Fwww.viva.co.id%2Fiframe&c9=http%3A%2F%2Fpostingringan.blogspot.com%2F HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 24 Nov 2022 05:53:53 GMT
set-cookie: UID=1402d3c3c59b28d2b2f75861669269233; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Yp3SJSx9bu-pYnufjxOyB4Qvu41WG9qhBaD72NOLX32LAVEqiRdXww==
X-Firefox-Spdy: h2
ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
216.58.207.206200 OK 94 B URL HTTP/2 ampcid.google.com/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP 216.58.207.206:0
File type JSON data\012- , ASCII text
Hash c2144a6b5539facf69724cd8b26dcd81
4893942b88fdcc2e7c9ae52ecc1da5774855b27f
b293ac83010e12a3b2c3efc7185fb005ab4c64c1fa023747a3cb05d53b772115
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://www.viva.co.id
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 05:53:53 GMT
server: ESF
cache-control: private
content-length: 94
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.viva.co.id
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
sb.scorecardresearch.com/c2/8429568/cs.js
143.204.55.96302 Found 0 B URL HTTP/2 sb.scorecardresearch.com/c2/8429568/cs.js
IP 143.204.55.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c2/8429568/cs.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-length: 0
date: Thu, 24 Nov 2022 05:53:53 GMT
location: /internal-c2/default/cs.js
x-cache: Miss from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XW7fHSwVgTfSCwWQE8N9BG4NZ_2u982n5FPUG72Ouvm8fe0_kiuiew==
X-Firefox-Spdy: h2
sb.scorecardresearch.com/internal-c2/default/cs.js
143.204.55.96200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/internal-c2/default/cs.js
IP 143.204.55.96:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /internal-c2/default/cs.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.viva.co.id/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 0
last-modified: Mon, 01 Mar 2021 20:42:20 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 05:53:45 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fQ2DpwiMSBqbAz_cNbES7yZYjuuj5-o2nVNPl9xRhxFo1dz9giSVTw==
age: 9
X-Firefox-Spdy: h2
ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
142.250.74.110200 OK 23 B URL HTTP/2 ampcid.google.no/v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM
IP 142.250.74.110:0
File type JSON data\012- , ASCII text
Hash e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9
POST /v1/publisher:getClientId?key=AIzaSyA65lEHUEizIsNtlbNo-l2K18dT680nsaM HTTP/1.1
Host: ampcid.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 33
Origin: https://www.viva.co.id
Connection: keep-alive
Referer: https://www.viva.co.id/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 24 Nov 2022 05:53:53 GMT
server: ESF
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.viva.co.id
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 24bbb1799a4197ca54d07a718929c244
306e1db159c6462ac16527788f772c0615f3741d
5f3ac2e0666918f3c4a525d1d0e811059b5f5143c10883e8c9dd8726938f3797
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 05:53:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 23:33:45 GMT
Expires: Wed, 30 Nov 2022 23:33:44 GMT
Etag: "306e1db159c6462ac16527788f772c0615f3741d"
Cache-Control: max-age=581390,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76efe305bd56b4ed-OSL
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi&cu=http%3A%2F%2Fpostingringan.blogspot.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0&t=Portal%20Media%20Informasi HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!ku66kw83op2i&dn=TC&cc=1&r=
67.202.105.34200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!ku66kw83op2i&dn=TC&cc=1&r=
IP 67.202.105.34:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!ku66kw83op2i&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Fri, 25 Nov 2022 05:53:54 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Thu, 24 Nov 2022 05:53:54 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
67.202.105.33204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0
IP 67.202.105.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!ku66kw83op2i&lm=0&ts=1669269233574&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Thu, 24 Nov 2022 05:53:54 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash fdd426230fc6d944211201eb8bb9aa8c
9e45a44aa7f38231001fd10e25def211714bdf3a
3fb27cd549f11bd7bfd961cf3c5a4fa7e5f4b39565a65ce45846f423e5bcf4cd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 05:53:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.46200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.46:0
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://postingringan.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 24 Nov 2022 05:53:51 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+617; expires=Sat, 23-Nov-2024 05:53:51 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
themes.googleusercontent.com/static/fonts/roboto/v10/2UX7WLTfW3W8TclTUvlFyQ.woff
142.250.74.33200 OK 0 B URL HTTP/2 themes.googleusercontent.com/static/fonts/roboto/v10/2UX7WLTfW3W8TclTUvlFyQ.woff
IP 142.250.74.33:0
GET /static/fonts/roboto/v10/2UX7WLTfW3W8TclTUvlFyQ.woff HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://postingringan.blogspot.com
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
timing-allow-origin: *
content-length: 21132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 07:34:51 GMT
expires: Fri, 17 Nov 2023 07:34:51 GMT
cache-control: public, max-age=31536000
age: 598740
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t.dtscout.com/i/?l=http%3A%2F%2Fpostingringan.blogspot.com%2F&j=
172.64.163.7200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fpostingringan.blogspot.com%2F&j=
IP 172.64.163.7:0
GET /i/?l=http%3A%2F%2Fpostingringan.blogspot.com%2F&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Thu, 24-Nov-2022 07:17:13 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Thu, 24-Nov-2022 09:53:53 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1669269233; Domain=dtscout.com; Expires=Sat, 04-Mar-2023 05:53:53 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.502
expires: Thu, 24 Nov 2022 05:53:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZEUkWyHUlLv%2Bm37jj1%2B1CSsOw0BDpWIr4sJAKDnyyN%2FsSzbC4D9iqr1bnPpDx9a7fYQs%2FKP52dllzlwWav31uHOExqyMgX%2FguIwOQ6UtAmyUZbTHDOgvVTg8MhNIVlbi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76efe301dcc37308-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=postingringan.blogspot.com&_ss=7cqpago5z8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1mok&_cb=_dtspv.c
172.64.163.7200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=postingringan.blogspot.com&_ss=7cqpago5z8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1mok&_cb=_dtspv.c
IP 172.64.163.7:0
GET /pv/?_a=v&_h=postingringan.blogspot.com&_ss=7cqpago5z8&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=1mok&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Cookie: m=1; oa=1; df=1669269233
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: application/javascript
x-t: 0.158
x-c: 0
expires: Thu, 24 Nov 2022 05:53:52 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5l%2FNtB%2FnyQJbZZV33yErQwnmRyPsLF8NbVXR9rJbrUwKQPzFTirOnNxZZqwvlD%2FqHJ2qkfApnNj23TdFwVD0r1oOIElsT05c3%2F94l8%2BMGUO0vbMEI3Z8WbJv5I2lGXNM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76efe3032da77308-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 0 B IP 172.64.151.83:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://postingringan.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 05:53:53 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 224941
expires: Sun, 27 Nov 2022 05:53:53 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 76efe3070e5ab505-OSL
X-Firefox-Spdy: h2