Report - aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html

Report Overview

Submitted URL
aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-11-26 03:43:12
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	3.1 kB	142.250.74.161
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	219 kB	142.250.74.161
bdv.bidvertiser.com	289264	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	642 B	18 kB	54.241.51.109
www.blogblog.com	28878	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.5 kB	216.58.207.201
aniekelate.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	23 kB	142.250.74.161
lh3.ggpht.com	7184	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	812 B	8.3 kB	142.250.74.161
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
www.statcounter.com	11621	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	305 B	15 kB	104.20.229.67
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	75 kB	216.58.207.201
resources.blogblog.com	13274	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	937 B	216.58.207.201
www.feedburner.com	139695	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	334 B	2.1 kB	142.250.74.46
www.advertlets.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	303 B	374 B	103.224.182.246
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	103 kB	142.250.74.174
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	744 B	92 kB	31.13.72.12
i155.photobucket.com	492446	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	762 B	2.0 kB	143.204.55.54
lh6.ggpht.com	12395	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	435 B	4.2 kB	142.250.74.1
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	634 B	49 kB	142.250.74.170
sites.google.com	3163	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	843 B	2.4 kB	142.250.74.142
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	318 B	656 B	142.250.74.98
themes.googleusercontent.com	9661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	874 B	169 kB	142.250.74.33
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.1 kB	93.184.220.29
lh4.ggpht.com	11959	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	917 B	52 kB	142.250.74.161
www.linkwithin.com	115766	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	724 B	3.19.188.212
lh5.ggpht.com	10355	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	828 B	7.8 kB	142.250.74.161
synad2.nuffnang.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	866 B	2.6 kB	18.138.110.223
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.237.163.41
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
tags.h12-media.com	133206	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	8.0 kB	154.51.131.137
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	9.1 kB	142.250.74.35
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	808 B	40 kB	142.250.74.161
4.bp.blogspot.com	11215	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	285 kB	142.250.74.161
cleverjump.org	459253	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	6.6 kB	217.23.10.44
i710.photobucket.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	358 B	603 B	143.204.55.54
26ed6613-a-62cb3a1a-s-sites.googlegroups.com	806377	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	712 B	2.2 kB	173.194.222.137
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	796 B	2.4 kB	34.102.187.140
www.samsengfb.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	6.9 kB	190.2.139.23
www.widgeo.net	774083	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	659 B	4.5 kB	104.26.10.22

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	Phishing
2022-11-26	medium	aniekelate.blogspot.com/js/cookienotice.js	Phishing
2022-11-26	medium	www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741	Malware
2022-11-26	medium	cleverjump.org/hit/get-uid.php	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.blogger.com/navbar.g?targetBlogID=1412073176525199628&blogName=Bebelan+Anie+Kelate&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://aniekelate.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aniekelate.blogspot.com/&targetPostID=148682675234763496&blogPostOrPageUrl=aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html&vt=-5996949271882396595&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faniekelate.blogspot.com&pfname=&rpctoken=42004649	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=1412073176525199628&blogName=Bebelan+Anie+Kelate&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://aniekelate.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aniekelate.blogspot.com/&targetPostID=148682675234763496&blogPostOrPageUrl=aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html&vt=-5996949271882396595&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faniekelate.blogspot.com&pfname=&rpctoken=42004649 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 0f33e12fa3290716d243f3162bb63cb0 32f9b00bfd7449ebd5382871d1c083db9c1b2b95 82c53629d9ff53cc334633ac037d1dc1f843008d6e1347ce784b9f255bacb42f Loading...

	aniekelate.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-25
Pretty URL aniekelate.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 06:12:33 Times Seen113432 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	cleverjump.org/counter.js	5.6 kB	2023-03-07	2023-12-02
Pretty URL cleverjump.org/counter.js IP 217.23.10.44 ASN #49981 WorldStream B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:33 Last Seen2023-12-02 19:09:25 Times Seen27 Hash 83126dc4af783a2179ab362a5bbec530 b1fe91477d92ab09066f28ddda5b31a4bf0f1689 cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4 Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:23 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 82b37d5e95d1e985a554cf000e9bb15c 8973b2e12ea8de1b8a14c8b7ea3be6c1c25eae07 4c6520efed0ab3222ea84da3fb4d6cdc929353fdfa0ac12422253be3ffcf525a Loading...

	connect.facebook.net/en_US/all.js#xfbml=1	3.1 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/en_US/all.js#xfbml=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:26:19 Last Seen2023-03-11 20:26:34 Times Seen1 Hash 1985953800de26f0f2cbbf39629526ac 9cb0b1385710876b93111c0e65998da1e54e501c aebc60762a9a85408f33fccfbc9fb9a36a3b96435305bbfa400be96c44d04a0a Loading...

	www.widgeo.net/geocompteur/geocity.php?c=geocity_orange&id=1955922&adult=0&cat=societe	5.4 kB	2023-03-07	2023-03-14
Pretty URL www.widgeo.net/geocompteur/geocity.php?c=geocity_orange&id=1955922&adult=0&cat=societe IP 104.26.10.22 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:48:03 Last Seen2023-03-14 15:26:37 Times Seen1 Hash 3b7cb1f9b4044d4c9a6a91a2b8763736 4e27ff6dc66b4a66cde10a5edf6f3c5dd1d281b6 f87f4996e59585ddef68f4ccc96ee119ca87d95530114806249af6d0072cbb6e Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-25
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 06:08:35 Times Seen47938 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	129 kB	2023-03-08	2023-11-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-11-05 00:33:19 Times Seen5 Hash ebaa2506c5b4b13ecfc737a1e3b7eb3d e75a7603d9e5016c0c774ab99d5c0b9b756e1a03 9e6d60f06b6332ed1831d9d501e602656f3c884480c6d7034542866281ea3086 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js	79 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:35 Last Seen2024-04-25 04:38:28 Times Seen5310 Hash 73a9c334c5ca71d70d092b42064f6476 b75990598ee8d3895448ed9d08726af63109f842 517364f2d45162fb5037437b5b6cb953d00d9b2b3b79ba87d9fe57ea6ee6070c Loading...

	www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741	33 kB	2023-03-11	2023-03-11
Pretty URL www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741 IP 190.2.139.23 ASN #49981 WorldStream B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:26:30 Last Seen2023-03-11 20:26:30 Times Seen1 Hash e6e18541a19f09f42587f2fe19c241f1 d6e838305945ecedea70190b2e7da5efa796c16f 3342e885d5005d8483444e6555fc3bdd03d84abd2647857de0a9d8635e562d52 Loading...

	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	29 B	2023-03-11	2023-03-11
Pretty URL aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:26:30 Last Seen2023-03-11 20:26:30 Times Seen1 Hash 461a73de347c2025db476dc1f37f52cb df6ae19932820ef37341331a4e9bf38d4ade8210 f97e9bc75e2f667ab0c0a3a7a1890f6ffe24ce0c6ca551dac9e5c2f42193b86b Loading...

	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	302 B	2023-03-07	2024-04-25
Pretty URL aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 06:12:12 Times Seen28685 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	842 B	2023-03-11	2023-03-11
Pretty URL aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:26:30 Last Seen2023-03-11 20:26:30 Times Seen1 Hash 35d58191fd27449fb03a8858caa7bb2d 047ab305193771396ad81fc1a54aecaf6c18977b 9379d8f752f53b3883b5189bfac5a12ab73a99e61f6ea8462596bb783fa4fbfe Loading...

	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	269 B	2023-03-07	2024-04-25
Pretty URL aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 06:08:34 Times Seen27999 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	176 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 56e3c588ced8ba4b5f2fc17026a9d57e 85f89594b97d49984b826d511fb82271bfddb85b b1370ea109344f61415c6a6414837fd2089a02bcd1d6bc88fad765fe7640541a Loading...

	connect.facebook.net/en_US/all.js?hash=eb2de57aec0c369c6f321578628c90dc	314 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/en_US/all.js?hash=eb2de57aec0c369c6f321578628c90dc IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:26:30 Last Seen2023-03-11 20:27:29 Times Seen1 Hash 5dde9828adaf7605ed3505e46cf1df8d 1c928df136fd5f8862998c5186c6d5ae6ef7bb66 be2f5e003087f8c41a7337f9fc3898fc595cef600761621067ca94e2223b95e6 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 07:38:34 Times Seen37056277 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.statcounter.com/counter/counter_xhtml.js	44 kB	2023-03-07	2024-03-30
Pretty URL www.statcounter.com/counter/counter_xhtml.js IP 104.20.229.67 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:55 Last Seen2024-03-30 16:46:15 Times Seen13 Hash 366890db672c87ff79dd22a7534643d2 e7b0da6b49f35363f125deb595ff67ccb0dc222c 38773f599cca495f0904c3d5a9981fc081b743a8d9aa106ed17e0d9b03ae6598 Loading...

	aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html	275 B	2023-03-07	2024-04-25
Pretty URL aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 06:12:32 Times Seen57361 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317136	9.0 kB	2023-03-08	2023-04-05
Pretty URL bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317136 IP 54.241.51.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:33 Last Seen2023-04-05 02:07:26 Times Seen129 Hash 0d489677aaa27440619b64706f2cafe9 b87bf2207059e1db5a939e804c7e586e7b8ad125 0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539 Loading...

	www.blogger.com/navbar.g?targetBlogID=1412073176525199628&blogName=Bebelan+Anie+Kelate&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://aniekelate.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aniekelate.blogspot.com/&targetPostID=148682675234763496&blogPostOrPageUrl=aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html&vt=-5996949271882396595&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faniekelate.blogspot.com&pfname=&rpctoken=42004649	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=1412073176525199628&blogName=Bebelan+Anie+Kelate&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://aniekelate.blogspot.com/search&blogLocale=en&v=2&homepageUrl=aniekelate.blogspot.com/&targetPostID=148682675234763496&blogPostOrPageUrl=aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html&vt=-5996949271882396595&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Faniekelate.blogspot.com&pfname=&rpctoken=42004649 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js	17 kB	2023-03-08	2023-03-26
Pretty URL www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:26:24 Last Seen2023-03-26 03:01:41 Times Seen2 Hash f18def4ccec463cf908f91e7cba7f2c1 02d95f67edd84a44c82255ca7abcdbf7f4d0cee5 12b91cbf31131a10b1fc2aa05047c027caeac0d6e0ca5deadf418fff63d68082 Loading...

	apis.google.com/js/plusone.js	55 kB	2023-03-08	2023-03-11
Pretty URL apis.google.com/js/plusone.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:17 Last Seen2023-03-11 23:53:02 Times Seen1 Hash a4bece00b52ca0d44160fe7a02cabddb b2ab847e582b5609e479a6d4c19577a2f664dfbd 4cc6846b69ba46bb297b9fdc8a711094d88a1a6b33f1a13297cbe154713d7c72 Loading...

		Size	First Seen	Last Seen
	#1 Write - b7686c19d265e5fd56d22283f426856b	15 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:26:30 Last Seen2023-03-11 20:26:30 Times Seen1 Hash b7686c19d265e5fd56d22283f426856b 04cea231b20f62d43dc3f67f5b7c9636d02e9336 778022637abcf5d20af3f037da94fd0340a0ccd1a9c886d2549bdb13f0c78dfe Loading...

HTTP Transactions (110)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5962
Expires: Sat, 26 Nov 2022 05:22:21 GMT
Date: Sat, 26 Nov 2022 03:42:59 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6554
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Last-Modified: Sat, 26 Nov 2022 01:53:45 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 03:17:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1530
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8190
Expires: Sat, 26 Nov 2022 05:59:29 GMT
Date: Sat, 26 Nov 2022 03:42:59 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 4GFqsKjazpvshztRcydohYGXaQPR0ojA6rpFE/fo63N8w0bi/A+D1FoPNC+lUtLnkwVlwUSQ9sw=
x-amz-request-id: 8H4FCJP3Z5QTYEHC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 03:41:03 GMT
age: 116
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html

142.250.74.161

200 OK

19 kB

URL HTTP/1.1
aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4240)
Size
19 kB (19300 bytes)
Hash
56796f0b61f54d55ac64e8d7b013c768
4679ea668f339fd2c6391e27ff726ceb2d59612d
99ca102cd3976eb0671214001c23a39702489762adc35b66ec1bea46e8515e12

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2013/05/gambar-erra-fazira-dan-anaknya-engku.html HTTP/1.1
Host: aniekelate.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 26 Nov 2022 03:42:59 GMT
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: private, max-age=0
Last-Modified: Fri, 25 Nov 2022 12:16:01 GMT
ETag: W/"608d8bb07e6c1be368316c77114e32189b342e44f48886429038ef519762a396"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19300
Server: GSE

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 03:42:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js

142.250.74.170

200 OK

27 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (820)
Size
27 kB (27266 bytes)
Hash
88ed7d5a26ffff39cbae41fa7b2c615d
5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3

HTTP Headers

GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 27266
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 20 Nov 2022 06:04:02 GMT
Expires: Mon, 20 Nov 2023 06:04:02 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 509937
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js

142.250.74.170

200 OK

20 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.3.2/jquery.min.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (39660)
Size
20 kB (19926 bytes)
Hash
6ad9e9100f68042a634e403e56e3744a
3d148af6eb9f86b03d5a815f4fb3a49c7b2df356
72bbdea3217793991ab87a6c7cb165d267551810d3d88b5fd2fd489748d04b7a

HTTP Headers

GET /ajax/libs/jquery/1.3.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 19926
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 15:26:56 GMT
Expires: Fri, 24 Nov 2023 15:26:56 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 130563
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

aniekelate.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
aniekelate.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: aniekelate.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 03:00:59 GMT
Expires: Thu, 01 Dec 2022 03:00:59 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 24 Nov 2022 00:53:02 GMT
Content-Type: text/javascript
Age: 175320

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280

154.51.131.137

301 Moved Permanently

212 B

URL HTTP/1.1
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
212 B (212 bytes)
Hash
fcfe676ab627a22720dc3fef78eab91b
4d2413a9e993b244f910e225eb1302b314aeeb73
e000cc4af59d694536fb13b1092e9414f6e0e3888da02874c0876d2eca48418d

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280
Server: Microsoft-IIS/10.0
Date: Sat, 26 Nov 2022 03:42:59 GMT
Content-Length: 212

www.statcounter.com/counter/counter_xhtml.js

104.20.229.67

200 OK

14 kB

URL HTTP/1.1
www.statcounter.com/counter/counter_xhtml.js
IP
104.20.229.67:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (43632), with no line terminators
Size
14 kB (14093 bytes)
Hash
ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e

HTTP Headers

GET /counter/counter_xhtml.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:42:59 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Nov 2022 14:36:48 GMT
ETag: W/"aa70-5ee4c73a81602"
Cache-Control: max-age=43200
Expires: Sat, 26 Nov 2022 06:13:37 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 34162
Server: cloudflare
CF-RAY: 76ff9e085d79b509-OSL

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom

154.51.131.137

301 Moved Permanently

249 B

URL HTTP/1.1
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
249 B (249 bytes)
Hash
5799e0e68ef11f974b99fd89204172af
5e7eb09100a411282cacba7c44592cf7578bb9d3
ac30887bee0c593e79b8c8c978626374504e337be360d4fb661c4c872b4ef3cf

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom
Server: Microsoft-IIS/10.0
Date: Sat, 26 Nov 2022 03:42:59 GMT
Content-Length: 249

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right

154.51.131.137

301 Moved Permanently

249 B

URL HTTP/1.1
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
249 B (249 bytes)
Hash
8ecc94a41c3ff47dfd21fc2d2bd9ef51
f622492988a2a3d787aa55d68ff3e55fe8674b10
89a8b73edcd434521dacb01b8009d44cabc5a2908a7a7a13a5c3bb0685c056b6

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right
Server: Microsoft-IIS/10.0
Date: Sat, 26 Nov 2022 03:42:59 GMT
Content-Length: 249

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f575aee4f3f9ed92647e6efd5d92b195
ed485eaa177873f0cb7f42817c6d0a4435cf3a76
ef7c5f6de7d3e3c93a6863c1e6525d172fe699807f79ea3183d69dece05f0009

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741

190.2.139.23

200 OK

6.6 kB

URL HTTP/1.1
www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741
IP
190.2.139.23:0
ASN
#49981 WorldStream B.V.

File type
HTML document text\012- HTML document, ASCII text, with very long lines (15979)
Size
6.6 kB (6634 bytes)
Hash
461326ea13e0217b361a8f311a75753e
d31c5f57213b7437d6a7fb626ffb65502c8895d7
8659efeddc146c0b2775a9e13824efc0980d721966e5e2e5516ecc5d524a082f

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741 HTTP/1.1
Host: www.samsengfb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Sat, 26 Nov 2022 03:42:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
X-Powered-By: PHP/7.2.34
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2a03384abe9f9728677b1f7b876b4694
41c1c401e79ac5b6edc6fc3cce8b4d085c565ac1
744b3562ef1851ca3c0413020ef5c40e71af514e6ff8da065f6ea9f846e70717

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:42:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

216.58.207.201

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:12:52 GMT
expires: Wed, 22 Nov 2023 18:12:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 18:53:15 GMT
content-type: text/css
age: 293407
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2342155703-widgets.js

216.58.207.201

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56726 bytes)
Hash
1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b

HTTP Headers

GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 387656
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

142.250.74.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 03:42:59 GMT
expires: Sat, 26 Nov 2022 03:42:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js

216.58.207.201

200 OK

6.6 kB

URL HTTP/2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1441)
Size
6.6 kB (6573 bytes)
Hash
f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde

HTTP Headers

GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 18:59:43 GMT
expires: Wed, 22 Nov 2023 18:59:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 19:52:12 GMT
content-type: text/javascript
age: 290596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

3.bp.blogspot.com/-rgF7CL3lFdw/Ubr64aUYrgI/AAAAAAABtAA/f2Lj1Qq2cWo/w72-h72-p-k-no-nu/Real-Mermaid-Caught-on-Camera-Seen-on-Animal-Planet-565x317.jpg

142.250.74.161

200 OK

2.1 kB

URL HTTP/1.1
3.bp.blogspot.com/-rgF7CL3lFdw/Ubr64aUYrgI/AAAAAAABtAA/f2Lj1Qq2cWo/w72-h72-p-k-no-nu/Real-Mermaid-Caught-on-Camera-Seen-on-Animal-Planet-565x317.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
2.1 kB (2118 bytes)
Hash
215be6b7100481db1c5fdffea7895469
3db0a20546dc2f7bf34ee275fd2fefb2cb9ead3a
d2267ddfd8a72b84de0eac0597858e39a96817d34225de44fb844b92b9a2733e

HTTP Headers

GET /-rgF7CL3lFdw/Ubr64aUYrgI/AAAAAAABtAA/f2Lj1Qq2cWo/w72-h72-p-k-no-nu/Real-Mermaid-Caught-on-Camera-Seen-on-Animal-Planet-565x317.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Real-Mermaid-Caught-on-Camera-Seen-on-Animal-Planet-565x317.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2118
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1b401"
Content-Type: image/jpeg
Age: 6747

lh4.ggpht.com/-Opmydfiotkg/UY64q45WyPI/AAAAAAABlQE/MtVmfvF3PxM/w72-h72-p-k-no-nu/4o2itlraQ9_thumb%25255B1%25255D.jpg?imgmax=800

142.250.74.161

200 OK

3.6 kB

URL HTTP/1.1
lh4.ggpht.com/-Opmydfiotkg/UY64q45WyPI/AAAAAAABlQE/MtVmfvF3PxM/w72-h72-p-k-no-nu/4o2itlraQ9_thumb%25255B1%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.6 kB (3574 bytes)
Hash
eaf59d9f97dfcbb25b6a905ea160bb47
525c08ea78b9f969adf30067485d121ee9fa45a1
c6de6d7b040a41b627bbf58e9d30e78ef0a5e51f0c55ca06dec1db3f28bc02af

HTTP Headers

GET /-Opmydfiotkg/UY64q45WyPI/AAAAAAABlQE/MtVmfvF3PxM/w72-h72-p-k-no-nu/4o2itlraQ9_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="4o2itlraQ9_thumb[1].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3574
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19501"
Content-Type: image/jpeg
Age: 6747

3.bp.blogspot.com/--75H3iRhYhs/UWSZVK_MEyI/AAAAAAAA7x8/oeFnTDNap4Q/s72-c/168437_1802777510716_6075141_a.jpg

142.250.74.161

200 OK

3.0 kB

URL HTTP/1.1
3.bp.blogspot.com/--75H3iRhYhs/UWSZVK_MEyI/AAAAAAAA7x8/oeFnTDNap4Q/s72-c/168437_1802777510716_6075141_a.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.0 kB (2989 bytes)
Hash
618f03401052046c8420cffd4f6ccd9c
4c71f8cc34782da2ad4f5a44b01a68f3a0bc860f
77bde2e7864e9b8a3f6ce3e3d80914879384207989423370c81028f3a776a99e

HTTP Headers

GET /--75H3iRhYhs/UWSZVK_MEyI/AAAAAAAA7x8/oeFnTDNap4Q/s72-c/168437_1802777510716_6075141_a.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="168437_1802777510716_6075141_a.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2989
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sat, 19 Nov 2022 03:47:35 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6747
ETag: "vef20"
Content-Type: image/jpeg

apis.google.com/js/plusone.js

142.250.74.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/plusone.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c

HTTP Headers

GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Sat, 26 Nov 2022 03:43:00 GMT
expires: Sat, 26 Nov 2022 03:43:00 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "34fae0e5dab49917"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.linkwithin.com/widget.js

3.19.188.212

404 Not Found

162 B

URL HTTP/1.1
www.linkwithin.com/widget.js
IP
3.19.188.212:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87

HTTP Headers

GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive

3.bp.blogspot.com/-UQn2GAtco_0/U0Nn-YX6DWI/AAAAAAABZRs/EFQz7zIMC-o/s72-c/pakai+tudung+tapi+seksi.jpeg

142.250.74.161

200 OK

3.1 kB

URL HTTP/1.1
3.bp.blogspot.com/-UQn2GAtco_0/U0Nn-YX6DWI/AAAAAAABZRs/EFQz7zIMC-o/s72-c/pakai+tudung+tapi+seksi.jpeg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.1 kB (3079 bytes)
Hash
6e45b7967ba56d5acbb4bc6489d34ae0
df158f16e15c047f963588d11e0ee565a323503a
b46cb83ea3cd77840e3dc1020052e5415699c043add0eb4f1eb0f50863e1f9d2

HTTP Headers

GET /-UQn2GAtco_0/U0Nn-YX6DWI/AAAAAAABZRs/EFQz7zIMC-o/s72-c/pakai+tudung+tapi+seksi.jpeg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="pakai tudung tapi seksi.jpeg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3079
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1651c"
Content-Type: image/jpeg
Age: 6747

lh3.ggpht.com/-DSZzK_NIbj8/UEfgRawqWfI/AAAAAAAAbg4/mp_RyiK4Nzk/w72-h72-p-k-no-nu/image_thumb%25255B2%25255D.jpg?imgmax=800

142.250.74.161

200 OK

4.2 kB

URL HTTP/1.1
lh3.ggpht.com/-DSZzK_NIbj8/UEfgRawqWfI/AAAAAAAAbg4/mp_RyiK4Nzk/w72-h72-p-k-no-nu/image_thumb%25255B2%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.2 kB (4196 bytes)
Hash
2a1e335091c23d65e85b11379d25e1d9
00c404494f349ea3bd9033644f6a990f1fab8abe
32dbcbcc7be41e6508c5ef3904a74b643dc82b0bbf20f65634cc78f266a13cb2

HTTP Headers

GET /-DSZzK_NIbj8/UEfgRawqWfI/AAAAAAAAbg4/mp_RyiK4Nzk/w72-h72-p-k-no-nu/image_thumb%25255B2%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="image_thumb[2].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4196
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Fri, 25 Nov 2022 03:01:00 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6747
ETag: "v6e0e"
Content-Type: image/jpeg

lh3.ggpht.com/-SUsGA9y8Rqc/UYxKS2CDc7I/AAAAAAABk2M/MUuzODYUxl0/w72-h72-p-k-no-nu/ne_02.1_thumb%25255B1%25255D.jpg?imgmax=800

142.250.74.161

200 OK

3.2 kB

URL HTTP/1.1
lh3.ggpht.com/-SUsGA9y8Rqc/UYxKS2CDc7I/AAAAAAABk2M/MUuzODYUxl0/w72-h72-p-k-no-nu/ne_02.1_thumb%25255B1%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.2 kB (3179 bytes)
Hash
dd7d3629ef0b78e8a9c29d6adc55b6e5
bb070e5f04f24b55ef71ee5214e625db2d550213
ae01c4d2a515589b416366c9b00218466df867888a4b1996b4025bd64a0b5b53

HTTP Headers

GET /-SUsGA9y8Rqc/UYxKS2CDc7I/AAAAAAABk2M/MUuzODYUxl0/w72-h72-p-k-no-nu/ne_02.1_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ne_02.1_thumb[1].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3179
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:42:00 GMT
Expires: Sun, 27 Nov 2022 03:42:00 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v19363"
Content-Type: image/jpeg
Age: 60

connect.facebook.net/en_US/all.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/1.1
connect.facebook.net/en_US/all.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1957)
Size
1.7 kB (1686 bytes)
Hash
19f3ebcf8882a9e4df0dffe74519883c
4a8a26d9f0ca92c05cea3428f6f2c879b089ab86
445bc6fca2543267da8dcd150528b5e456934bb1fc6a983a3bf7bf4f03e7f6d0

HTTP Headers

GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 1985953800de26f0f2cbbf39629526ac
ETag: "d471b803aaecb4b7b5841fee3444b730"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Sat, 26 Nov 2022 03:55:40 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: GfPrz4iCqeTfDf/nRRmIPA==
X-FB-Debug: 9zI9E2d2v6VeZdoQG6hSsaWPNj18xxNyuq0qshHWFgDXoC3OMoCrPWWZn7gGNUiystxutgft7f/f8/Nsii1T/w==
X-FB-TRIP-ID: 1904183273
Date: Sat, 26 Nov 2022 03:43:00 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686

www.widgeo.net/geocompteur/geocity.php?c=geocity_orange&id=1955922&adult=0&cat=societe

104.26.10.22

200 OK

2.0 kB

URL HTTP/1.1
www.widgeo.net/geocompteur/geocity.php?c=geocity_orange&id=1955922&adult=0&cat=societe
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (2149)
Size
2.0 kB (2036 bytes)
Hash
a8847b4c51707a70c275ad40f47c497f
9d522afaee3d4093626d474468d20ec51f7bb9e7
acfca2cab05002f318d7678734cb1a7f1437dc226e795b6cad01c45ebb1da3a8

HTTP Headers

GET /geocompteur/geocity.php?c=geocity_orange&id=1955922&adult=0&cat=societe HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: application/javascript
Content-Length: 2036
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Fri, 02-Dec-2022 03:42:59 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 03:42:59 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WsfSS4dwBDFMnZu0tF99n3JpcKX58gMZfUyN3fsMuZmB8iOeQ1mCq3g2QPc%2BmTSv3TrJ1pzW13XumuatclxilOI5jSH8Ly4T6qTSE2Il074ue%2BJnnvUra5Zj9V%2FbjOVF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff9e085dccb503-OSL
alt-svc: h2=":443"; ma=60

i155.photobucket.com/albums/s282/theviejo/recurso_10_7.jpg

143.204.55.54

301 Moved Permanently

167 B

URL HTTP/1.1
i155.photobucket.com/albums/s282/theviejo/recurso_10_7.jpg
IP
143.204.55.54:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /albums/s282/theviejo/recurso_10_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_10_7.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lSFXUuvPR38kOf1oRSCROx7XcoRZ4GevTTguJXgdGq32fGP-vCCZ2A==
Vary: Origin

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.201

200 OK

162 B

URL HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
content-type: image/gif
age: 305945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-jgPsV3AMLxg/T-yLGY1_d2I/AAAAAAAAEbo/TyLvwwhPV-o/w72-h72-p-k-no-nu/rendang.jpg

142.250.74.161

200 OK

4.1 kB

URL HTTP/1.1
4.bp.blogspot.com/-jgPsV3AMLxg/T-yLGY1_d2I/AAAAAAAAEbo/TyLvwwhPV-o/w72-h72-p-k-no-nu/rendang.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.1 kB (4094 bytes)
Hash
1147828ab5c791193bd72c81e483acae
1b7ed0d2a58e7a2888dde4ceb9421eed310ed04b
4198f88ae355b52d024c3995e11fd61f6c45c0ab006ac0e2d2f9e2f08110eb08

HTTP Headers

GET /-jgPsV3AMLxg/T-yLGY1_d2I/AAAAAAAAEbo/TyLvwwhPV-o/w72-h72-p-k-no-nu/rendang.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="rendang.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4094
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:34 GMT
Expires: Sun, 27 Nov 2022 01:50:34 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v11ba"
Content-Type: image/jpeg
Age: 6746

sites.google.com/site/unwanted86/javascript/animatedrecentpost.js

142.250.74.142

302 Found

216 B

URL HTTP/2
sites.google.com/site/unwanted86/javascript/animatedrecentpost.js
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
216 B (216 bytes)
Hash
39e83bbb13ffce196029a2df35b63b32
7b13d6e23356c2708d0a179a117d242c0e152584
eadf76ac5391f5337c16d17794e8e2a09441670121611336c723b1b699b61958

HTTP Headers

GET /site/unwanted86/javascript/animatedrecentpost.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
x-robots-tag: noarchive
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 03:43:00 GMT
last-modified: Sun, 22 Aug 2010 22:19:41 GMT
etag: "1282515581476"
location: https://sites.google.com/site/unwanted86/javascript/animatedrecentpost.js?attredirects=0
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 216
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317136

54.241.51.109

200 OK

9.0 kB

URL HTTP/1.1
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317136
IP
54.241.51.109:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
9.0 kB (9014 bytes)
Hash
0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539

HTTP Headers

GET /BidVertiser.dbm?pid=361547%26bid=1317136 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014

3.bp.blogspot.com/-nl6XDk2Ln_s/TxyDYsxcC8I/AAAAAAAAAIg/C8dFsyqYlos/s72-c/tyra-banks-bald-head.jpg

142.250.74.161

404 Not Found

1.7 kB

URL HTTP/1.1
3.bp.blogspot.com/-nl6XDk2Ln_s/TxyDYsxcC8I/AAAAAAAAAIg/C8dFsyqYlos/s72-c/tyra-banks-bald-head.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size
1.7 kB (1742 bytes)
Hash
58a17151a9a7dc2d32cedfff483923a8
a16dc81e6f06a4b14410119c5d02360276fcdc75
f7b3785f331b99dfd1cde553845fb0bfc5b1b4d48f1628aff98c0cd561ac041b

HTTP Headers

GET /-nl6XDk2Ln_s/TxyDYsxcC8I/AAAAAAAAAIg/C8dFsyqYlos/s72-c/tyra-banks-bald-head.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 404 Not Found
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: image/png
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 1742
X-XSS-Protection: 0

bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317133

54.241.51.109

200 OK

9.0 kB

URL HTTP/1.1
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1317133
IP
54.241.51.109:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
9.0 kB (9014 bytes)
Hash
0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539

HTTP Headers

GET /BidVertiser.dbm?pid=361547%26bid=1317133 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs

142.250.74.174

200 OK

58 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
58 kB (57794 bytes)
Hash
813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 236802
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280

154.51.131.137

200 OK

1.3 kB

URL HTTP/2
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (705), with CRLF line terminators
Size
1.3 kB (1337 bytes)
Hash
66229ba085fabe0975b650931b440ba3
d20b1ed33a0d14c965d3f2d6d6cd651f1b840902
01e171e095331678c2826ccefc6ce1279891fdd6fe2b96188af236eb003435ab

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=336x280 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Sat, 26 Nov 2022 03:42:59 GMT
content-length: 1337
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.98

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.98:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 10:51:13 GMT
Expires: Fri, 09 Dec 2022 10:51:13 GMT
Cache-Control: public, max-age=1209600
Age: 60707
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8

www.blogblog.com/1kt/transparent/white80.png

216.58.207.201

200 OK

96 B

URL HTTP/1.1
www.blogblog.com/1kt/transparent/white80.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 20 x 20, 1-bit colormap, non-interlaced\012- data
Size
96 B (96 bytes)
Hash
94a1820903fb1f98de19df188a6ad531
599ad7d04fd5b1fa13f334e95240a5a9f4a66583
6e232a3693a281342acc16b293dddeafcf91579f1b52df2cf22303b17c2a0e57

HTTP Headers

GET /1kt/transparent/white80.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 96
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 12:39:32 GMT
Expires: Wed, 30 Nov 2022 12:39:32 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 18:51:51 GMT
Content-Type: image/png
Age: 227008

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i155.photobucket.com/albums/s282/theviejo/recurso_10_7.jpg

143.204.55.54

200 OK

746 B

URL HTTP/2
i155.photobucket.com/albums/s282/theviejo/recurso_10_7.jpg
IP
143.204.55.54:0
ASN
#16509 AMAZON-02

File type
RIFF (little-endian) data, Web/P image\012- data
Size
746 B (746 bytes)
Hash
e4122d87cb9a5f68196feea53f8c15bb
00e6127fd0c2d6dbf19a6bd7b4af50fce0c44dbe
f1c68f26be0dc943e60667b1cfff7aa3706dcf91614c1ae9ade2d15250fa11bc

HTTP Headers

GET /albums/s282/theviejo/recurso_10_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
content-length: 746
date: Thu, 24 Nov 2022 03:01:00 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_10_7.webp"
expires: Fri, 24 Nov 2023 03:01:00 GMT
server: photobucket
x-amzn-trace-id: Root=1-637ede6c-5f5c830f001a5f0a5021cd41
x-request-id: LJyhsq8nTcWULOCbVRbpM
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CxRMYbEWymx2R2HiR0Wu6Oz3AQIT1P2rsqsdBzzrBjsFAhft2qWoCw==
age: 175320
vary: Accept, Origin
X-Firefox-Spdy: h2

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=728x90

154.51.131.137

200 OK

1.3 kB

URL HTTP/2
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=728x90
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (704), with CRLF line terminators
Size
1.3 kB (1335 bytes)
Hash
f80f2606dc583da50e3fe9a91fb50096
89d499f14cfaacb858867877a3b6ed09e5424dc1
38fd6bfdd9a18d288c773272df470c283ac1ea2df52b103a7afd549553af2fb2

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=728x90 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Sat, 26 Nov 2022 03:43:00 GMT
content-length: 1335
X-Firefox-Spdy: h2

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom

154.51.131.137

200 OK

1.3 kB

URL HTTP/2
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (716), with CRLF line terminators
Size
1.3 kB (1346 bytes)
Hash
138b1c92bce9441c44f7397bc99706ad
149ae795e1811ce9e83fedd59be339b321328fb3
b5a604aa39478641ac45a1c4b0d158d731eaea950120fa003d82011e24af3bed

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Sat, 26 Nov 2022 03:43:00 GMT
content-length: 1346
X-Firefox-Spdy: h2

tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right

154.51.131.137

200 OK

1.3 kB

URL HTTP/2
tags.h12-media.com/tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right
IP
154.51.131.137:0
ASN
#174 COGENT-174

File type
ASCII text, with very long lines (715), with CRLF line terminators
Size
1.3 kB (1345 bytes)
Hash
ed01fd18f608b038ee0cd7fc586f47f5
24d3162967d61d62566c75d90a05b0bccc28e80e
f0edc414a24e8778898eb79200a933657f2f9a25b74b3e3f650018cab6194bcb

HTTP Headers

GET /tags.js?site=7c2531d1cfb1ebec5d0980e460ccc092&type=sliding&size=120x600&name=From+Right HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Sat, 26 Nov 2022 03:43:00 GMT
content-length: 1345
X-Firefox-Spdy: h2

www.blogger.com/dyn-css/authorization.css?targetBlogID=1412073176525199628&zx=0b3fb78e-1bb4-40fe-a564-84a66377dbf5

216.58.207.201

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1412073176525199628&zx=0b3fb78e-1bb4-40fe-a564-84a66377dbf5
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=1412073176525199628&zx=0b3fb78e-1bb4-40fe-a564-84a66377dbf5 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 03:43:00 GMT
last-modified: Sat, 26 Nov 2022 03:43:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

4.bp.blogspot.com/-sLtBF0uhx3s/T8o1DAur7tI/AAAAAAAACgY/LT2RBwg7rbs/s1600/ert.jpg

142.250.74.161

200 OK

84 kB

URL HTTP/1.1
4.bp.blogspot.com/-sLtBF0uhx3s/T8o1DAur7tI/AAAAAAAACgY/LT2RBwg7rbs/s1600/ert.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1090x290, components 3\012- data
Size
84 kB (83873 bytes)
Hash
7a24f6e479883b65a999dc1923608118
a2cbff8e7b6cd2176dd629823d34f7ab0d118349
b0d35cd8c5fc6cbb3ee76e7cbfd5f4aabb6a374c7ce5cff14dad96d587bc70c2

HTTP Headers

GET /-sLtBF0uhx3s/T8o1DAur7tI/AAAAAAAACgY/LT2RBwg7rbs/s1600/ert.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="ert.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 83873
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "va06"
Content-Type: image/jpeg
Age: 6747

lh5.ggpht.com/-zOvBdCOXrbY/UfvJKlSfuPI/AAAAAAABzLE/0Gzt-d_7FQ8/w72-h72-p-k-no-nu/Hidangan-Babi-565x366_thumb%25255B1%25255D.jpg?imgmax=800

142.250.74.161

200 OK

3.6 kB

URL HTTP/1.1
lh5.ggpht.com/-zOvBdCOXrbY/UfvJKlSfuPI/AAAAAAABzLE/0Gzt-d_7FQ8/w72-h72-p-k-no-nu/Hidangan-Babi-565x366_thumb%25255B1%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.6 kB (3599 bytes)
Hash
751bf004cc219cf9a55f63735bb31864
094bcaacf9736d0b847dbade255d5df52100ae10
d4bc73cca87d42fb94ca7aa2d27e49382f703977ec293c1dece9957e7f65fca9

HTTP Headers

GET /-zOvBdCOXrbY/UfvJKlSfuPI/AAAAAAABzLE/0Gzt-d_7FQ8/w72-h72-p-k-no-nu/Hidangan-Babi-565x366_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh5.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Hidangan-Babi-565x366_thumb[1].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3599
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:34 GMT
Expires: Fri, 25 Nov 2022 03:01:00 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6746
ETag: "v1ccb2"
Content-Type: image/jpeg

lh5.ggpht.com/-IiyWkx7gSKI/T9_YUsEXDgI/AAAAAAAAC7c/t61j6v7gnGw/w72-h72-p-k-no-nu/srigala_thumb%25255B5%25255D.jpg?imgmax=800

142.250.74.161

200 OK

3.2 kB

URL HTTP/1.1
lh5.ggpht.com/-IiyWkx7gSKI/T9_YUsEXDgI/AAAAAAAAC7c/t61j6v7gnGw/w72-h72-p-k-no-nu/srigala_thumb%25255B5%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.2 kB (3235 bytes)
Hash
c9cfcf25e20c1c09bca749682b1d09ec
7a8e98986bf61caee4a4679fc3b2ec6865e65c25
a1719c6e540189a9c53b6e930b5c0c92f66ac13d8d46bac1061a9260655de96c

HTTP Headers

GET /-IiyWkx7gSKI/T9_YUsEXDgI/AAAAAAAAC7c/t61j6v7gnGw/w72-h72-p-k-no-nu/srigala_thumb%25255B5%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh5.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="srigala_thumb[5].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3235
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Fri, 25 Nov 2022 03:01:00 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6747
ETag: "vbb7"
Content-Type: image/jpeg

www.widgeo.net/img/logopm.png

104.26.10.22

200 OK

714 B

URL HTTP/1.1
www.widgeo.net/img/logopm.png
IP
104.26.10.22:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
714 B (714 bytes)
Hash
3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08

HTTP Headers

GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 15 Dec 2022 19:43:44 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 892756
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CyWGRIfIRpLi4lHbWdV3R5gtVLy0UvSrFsQhuZ68%2BE8e60m2aZM4xmsQRgweepEy%2Bgiwv5fGXSFM2dGMJuxoF5Ccam%2FA7G7LIg32IVSOLwg0HjxeEtzLm9h4H7LqsPA7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76ff9e0acecdb503-OSL
alt-svc: h2=":443"; ma=60

lh6.ggpht.com/-sH3SInNLVQ8/UXjoovh7ZMI/AAAAAAABimA/3Ddgw7BTcQM/w72-h72-p-k-no-nu/526376_10151404511131915_59978550_n_thumb%25255B1%25255D.jpg?imgmax=800

142.250.74.1

200 OK

3.7 kB

URL HTTP/1.1
lh6.ggpht.com/-sH3SInNLVQ8/UXjoovh7ZMI/AAAAAAABimA/3Ddgw7BTcQM/w72-h72-p-k-no-nu/526376_10151404511131915_59978550_n_thumb%25255B1%25255D.jpg?imgmax=800
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.7 kB (3695 bytes)
Hash
96740dcad6fdb69dd4025b4a865c5927
80f075a9a99069478097106112fdf626f76e380e
94463e6f5d071fded9243cc3112a380f53d20eec13ab77c4b30fc1f5da9728bd

HTTP Headers

GET /-sH3SInNLVQ8/UXjoovh7ZMI/AAAAAAABimA/3Ddgw7BTcQM/w72-h72-p-k-no-nu/526376_10151404511131915_59978550_n_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="526376_10151404511131915_59978550_n_thumb[1].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3695
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 00:52:55 GMT
Expires: Sun, 27 Nov 2022 00:52:55 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v18a61"
Content-Type: image/jpeg
Age: 10205

themes.googleusercontent.com/image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD

142.250.74.33

301 Moved Permanently

0 B

URL HTTP/1.1
themes.googleusercontent.com/image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sat, 26 Nov 2022 03:43:00 GMT
Location: https://themes.googleusercontent.com/image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

1.bp.blogspot.com/-F1HPYGAW8AQ/TnE42IeUyEI/AAAAAAAADk0/WBGduwHyaDc/s72-c/Myvi_EXTREME_3_4_FRONT_LEFT_C.jpg

142.250.74.161

200 OK

3.3 kB

URL HTTP/1.1
1.bp.blogspot.com/-F1HPYGAW8AQ/TnE42IeUyEI/AAAAAAAADk0/WBGduwHyaDc/s72-c/Myvi_EXTREME_3_4_FRONT_LEFT_C.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.3 kB (3326 bytes)
Hash
e214dcb520106f80f45216102370368a
ee450ee79d7a8ebce5f4d4819d6e4583d474b0ca
1663f0d5743e44b72949f17bd51454e370ef70d984a2f8019fa9edf3de733cfb

HTTP Headers

GET /-F1HPYGAW8AQ/TnE42IeUyEI/AAAAAAAADk0/WBGduwHyaDc/s72-c/Myvi_EXTREME_3_4_FRONT_LEFT_C.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Myvi_EXTREME_3_4_FRONT_LEFT_C.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3326
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "ve4d"
Content-Type: image/jpeg
Age: 6747

sites.google.com/site/unwanted86/javascript/animatedrecentpost.js?attredirects=0

142.250.74.142

302 Found

464 B

URL HTTP/2
sites.google.com/site/unwanted86/javascript/animatedrecentpost.js?attredirects=0
IP
142.250.74.142:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (425)
Size
464 B (464 bytes)
Hash
7f69a4868f601446da729fe67adc6d05
1e833a5af52d446312df2ab610d478d97cfc07b5
dd192023f2d6034576bd38095d07aba0d4a3ad35b7cb33aca52db860928b0f0f

HTTP Headers

GET /site/unwanted86/javascript/animatedrecentpost.js?attredirects=0 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://26ed6613-a-62cb3a1a-s-sites.googlegroups.com/site/unwanted86/javascript/animatedrecentpost.js?attachauth=ANoY7cq8yhElnnf9YraM45wzZ0UbCCILJxRHlJyra-WFDInhsBTpL2igcmQwCrXrmnz-GolViDvVsg1CqGsIt18jciPxwW9DLN129htbw4UheYoKlEG0PIrq4yrKQ-7xsyCGQhl-AgF1QqQlvjlCPXm2g0FFq0C5FqgHyestTBX_RMkOafvMp8ZHKphK_7EtNk9iteM0VIicr8hrPib-LPaPXSzBOnWCMDntVBTSMehSiLzGjYkjzCQ%3D&attredirects=0
content-encoding: gzip
date: Sat, 26 Nov 2022 03:43:00 GMT
expires: Sat, 26 Nov 2022 03:43:00 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 464
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.advertlets.com/_/js/advertlets_lite.js

103.224.182.246

404 Not Found

196 B

URL HTTP/1.1
www.advertlets.com/_/js/advertlets_lite.js
IP
103.224.182.246:0
ASN
#133618 Trellian Pty. Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /_/js/advertlets_lite.js HTTP/1.1
Host: www.advertlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 404 Not Found
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

3.bp.blogspot.com/-zTrPas1dTNM/UNNA2gPvmfI/AAAAAAAAZRU/zTatLuSFDTg/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+2.jpg

142.250.74.161

200 OK

59 kB

URL HTTP/1.1
3.bp.blogspot.com/-zTrPas1dTNM/UNNA2gPvmfI/AAAAAAAAZRU/zTatLuSFDTg/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+2.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x312, components 3\012- data
Size
59 kB (58962 bytes)
Hash
2283b07390749eaa4fbacc94d4211301
500ff3f8151ee922d12682bc9068c9041432b31c
65fa886851e4ef18d74f3ae4e3cc80e8369c17ac8ac4f073d506564cb45bf350

HTTP Headers

GET /-zTrPas1dTNM/UNNA2gPvmfI/AAAAAAAAZRU/zTatLuSFDTg/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+2.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6515"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 58962
X-XSS-Protection: 0

lh4.ggpht.com/-v7sxban1B-4/UaOpRBagSdI/AAAAAAABoqg/96CgqfPaY9U/gambar%252520Erra%252520Fazira%252520%252520dan%252520anaknya%25252C%252520Engku%252520Aleesya%252520yang%252520ceria%2525202_thumb%25255B1%25255D.jpg?imgmax=800

142.250.74.161

200 OK

48 kB

URL HTTP/1.1
lh4.ggpht.com/-v7sxban1B-4/UaOpRBagSdI/AAAAAAABoqg/96CgqfPaY9U/gambar%252520Erra%252520Fazira%252520%252520dan%252520anaknya%25252C%252520Engku%252520Aleesya%252520yang%252520ceria%2525202_thumb%25255B1%25255D.jpg?imgmax=800
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 366x286, components 3\012- data
Size
48 kB (47570 bytes)
Hash
30d2dee0f34c7e7fd9cc742a95a82bf6
8167129f32a856083239c2ff3a16a80e5837cc65
4c39f2f271dee60d03a867ae1ea4d9f58ff1104c748157dd8617e021855c558e

HTTP Headers

GET /-v7sxban1B-4/UaOpRBagSdI/AAAAAAABoqg/96CgqfPaY9U/gambar%252520Erra%252520Fazira%252520%252520dan%252520anaknya%25252C%252520Engku%252520Aleesya%252520yang%252520ceria%2525202_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1a2a8"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 2_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 47570
X-XSS-Protection: 0

4.bp.blogspot.com/-CL0UaqstldU/TvVAlM1ACWI/AAAAAAAABWM/PSpKeaOpPL0/s80/DSC05641.JPG

142.250.74.161

200 OK

3.7 kB

URL HTTP/1.1
4.bp.blogspot.com/-CL0UaqstldU/TvVAlM1ACWI/AAAAAAAABWM/PSpKeaOpPL0/s80/DSC05641.JPG
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 60x80, components 3\012- data
Size
3.7 kB (3676 bytes)
Hash
c93233f793ed806ff86fdae4d003228c
e9809624b85984532903836e7b80b6ee8588ef52
e056e562bab90ce13baba9feb03d199524cfff4ef5d656d960d565a0d56d80b6

HTTP Headers

GET /-CL0UaqstldU/TvVAlM1ACWI/AAAAAAAABWM/PSpKeaOpPL0/s80/DSC05641.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="DSC05641.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3676
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v563"
Content-Type: image/jpeg
Age: 6747

www.linkwithin.com/pixel.png

3.19.188.212

200 OK

83 B

URL HTTP/1.1
www.linkwithin.com/pixel.png
IP
3.19.188.212:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Size
83 B (83 bytes)
Hash
ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081

HTTP Headers

GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes

4.bp.blogspot.com/-cYBCuJzufmA/UGAJpE3IxiI/AAAAAAAAmew/1shrbYQftxI/w72-h72-p-k-no-nu/nakula-base.jpg

142.250.74.161

200 OK

4.7 kB

URL HTTP/1.1
4.bp.blogspot.com/-cYBCuJzufmA/UGAJpE3IxiI/AAAAAAAAmew/1shrbYQftxI/w72-h72-p-k-no-nu/nakula-base.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.7 kB (4686 bytes)
Hash
2df028482d12cfc7d8b71148fba998ba
e68bc2b4e19e1144a5e52b1bf8f8508e085ef635
ed9ea8f93f95c043d2e894f833ed72fcb25965e98fcc15f5aa90f61e7a1474fa

HTTP Headers

GET /-cYBCuJzufmA/UGAJpE3IxiI/AAAAAAAAmew/1shrbYQftxI/w72-h72-p-k-no-nu/nakula-base.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="nakula-base.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4686
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v99ec"
Content-Type: image/jpeg
Age: 6747

4.bp.blogspot.com/-jCpk2ghbRGo/UNNA1XlrtWI/AAAAAAAAZRI/aUojlT-lSVY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+12.jpg

142.250.74.161

200 OK

52 kB

URL HTTP/1.1
4.bp.blogspot.com/-jCpk2ghbRGo/UNNA1XlrtWI/AAAAAAAAZRI/aUojlT-lSVY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+12.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
52 kB (52030 bytes)
Hash
ff4d1bdfdb8f46e975fc6c136162aea8
3ea4ae3696ef0929783670b3dfd4f960cc01bf0e
310883ca3b0c6ea2ffd36036cca0147cbd00b12db8261289f030bc2917670f6d

HTTP Headers

GET /-jCpk2ghbRGo/UNNA1XlrtWI/AAAAAAAAZRI/aUojlT-lSVY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+12.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6512"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 12.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 52030
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

synad2.nuffnang.com.my/lmn.js

18.138.110.223

302 Found

316 B

URL HTTP/1.1
synad2.nuffnang.com.my/lmn.js
IP
18.138.110.223:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
316 B (316 bytes)
Hash
0b51d68ad3aa17a93ef618d7479f6dd6
a81c838d670ba94af83ddaf7d9f5bcdc4477373a
fea7caa1b9f39836624981f4498503e8f593e343824e2dd366390cf91c6283fd

HTTP Headers

GET /lmn.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 302 Found
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/lmn.js
Cache-Control: max-age=86400
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Content-Length: 316
Connection: close
Content-Type: text/html; charset=iso-8859-1

synad2.nuffnang.com.my/j.js

18.138.110.223

302 Found

314 B

URL HTTP/1.1
synad2.nuffnang.com.my/j.js
IP
18.138.110.223:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
314 B (314 bytes)
Hash
57577e65e048d98e8b1deceb81e22a3d
c261ab50058de936852f367d6b5555f3f99fc290
1d5c5d863b0436f2c77e48b9568f171f343afd9f293697e1bb0ebc7dbbb1cd99

HTTP Headers

GET /j.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 302 Found
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/j.js
Cache-Control: max-age=86400
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Content-Length: 314
Connection: close
Content-Type: text/html; charset=iso-8859-1

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogblog.com/1kt/transparent/header_gradient_shade.png

216.58.207.201

200 OK

424 B

URL HTTP/1.1
www.blogblog.com/1kt/transparent/header_gradient_shade.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 88 x 300, 8-bit colormap, non-interlaced\012- data
Size
424 B (424 bytes)
Hash
68d74f6988b7bcb8d69e382c1769f6af
956161f38d64d4fbf81cafe0b009339dcdbcb73c
4bf4e9296165fffe3661a6a978e175f37f9ff65e6ac2beb9f40a92e2d96710c3

HTTP Headers

GET /1kt/transparent/header_gradient_shade.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 424
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 11:18:25 GMT
Expires: Wed, 30 Nov 2022 11:18:25 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 21:54:19 GMT
Content-Type: image/png
Age: 231875

www.blogblog.com/1kt/transparent/tabs_gradient_shade.png

216.58.207.201

200 OK

185 B

URL HTTP/1.1
www.blogblog.com/1kt/transparent/tabs_gradient_shade.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size
185 B (185 bytes)
Hash
a2d40695f173ddb461829cb8bf9b3dd8
530a14dc6f0baa0de1f90c5a17c28126e0daa812
9f9fb5396ea8566bb59a43a174a5ec23bf4e04ec9cc18b85b69af22d9206ddd6

HTTP Headers

GET /1kt/transparent/tabs_gradient_shade.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 185
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 00:58:15 GMT
Expires: Wed, 30 Nov 2022 00:58:15 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 06:50:29 GMT
Content-Type: image/png
Age: 269085

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
490d1c41e2c1a3eab342897ce2cd7cf9
7149af5d9797e2164e27017a232d8ab4486ea468
fe9ddbc5c58cab3d45c1f557244d72009e8ba777d57c308650fd828a785db291

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE9DDBC5C58CAB3D45C1F557244D72009E8BA777D57C308650FD828A785DB291"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13462
Expires: Sat, 26 Nov 2022 07:27:22 GMT
Date: Sat, 26 Nov 2022 03:43:00 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

3.bp.blogspot.com/-UV1q3CJPHNk/UNNA0dFC_DI/AAAAAAAAZRA/KLTY8OdgfUE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+11.jpg

142.250.74.161

200 OK

52 kB

URL HTTP/1.1
3.bp.blogspot.com/-UV1q3CJPHNk/UNNA0dFC_DI/AAAAAAAAZRA/KLTY8OdgfUE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+11.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
52 kB (51516 bytes)
Hash
8c9d3b6d3cc414f3afd2eed89514074d
97b7d0cf7d38af8f282ad11ed9b530212c914430
d0c22f3317b342c6dfcc402b41ed8d38e14af817db615fc0ce61c9df0e092d88

HTTP Headers

GET /-UV1q3CJPHNk/UNNA0dFC_DI/AAAAAAAAZRA/KLTY8OdgfUE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+11.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6510"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 11.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 51516
X-XSS-Protection: 0

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 03:11:11 GMT
cache-control: public,max-age=3600
age: 1909
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

synad2.nuffnang.com.my/k.js

18.138.110.223

302 Found

314 B

URL HTTP/1.1
synad2.nuffnang.com.my/k.js
IP
18.138.110.223:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
314 B (314 bytes)
Hash
2dc70b6c45bf3273ce02cc411906180e
3e706e22af3600df7ca611184af391f70755d256
32a8cb54b2eda028acc7b6cc832de6dcc6f82b4ec288620ec870def3f74b1b6c

HTTP Headers

GET /k.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 302 Found
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/k.js
Cache-Control: max-age=86400
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Content-Length: 314
Connection: close
Content-Type: text/html; charset=iso-8859-1

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e4d661d999b855142d472fd230fb4ab3
b4be1feeaccc98768ec3393929772bd8f75deed7
97a1c1b509250dd99cde7f76b53a43b7ee415011744414d83f5980df2e11dc60

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cleverjump.org/counter.js

217.23.10.44

200 OK

5.6 kB

URL HTTP/1.1
cleverjump.org/counter.js
IP
217.23.10.44:0
ASN
#49981 WorldStream B.V.

File type
ASCII text, with CRLF line terminators
Size
5.6 kB (5571 bytes)
Hash
83126dc4af783a2179ab362a5bbec530
b1fe91477d92ab09066f28ddda5b31a4bf0f1689
cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4

HTTP Headers

GET /counter.js HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: application/javascript
Content-Length: 5571
Last-Modified: Wed, 20 Jan 2021 12:50:32 GMT
Connection: keep-alive
ETag: "60082718-15c3"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f92478f7e0ef5ffb5bfe1d942c88ce8d
9e3362d9d9b4c7c54ea56950ea1a1604925281a0
375f83cab3d7d75045aaa6c58c101dc81ad3ee4017984321b1a2e25baf9863c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/-ljB-9IhbK0g/UNNAzYF3nUI/AAAAAAAAZQ8/ftDxEwRMzkY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+1.jpg

142.250.74.161

200 OK

36 kB

URL HTTP/1.1
4.bp.blogspot.com/-ljB-9IhbK0g/UNNAzYF3nUI/AAAAAAAAZQ8/ftDxEwRMzkY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+1.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
36 kB (35708 bytes)
Hash
ecc52538596857bee17e1becadc79724
574fd7d8f62e4f5d7ff8cb13b9df264a6d67b572
8adce3259a26dc6fce51668640255edca5a8685e4bb78ebda81f672f09bf8fd7

HTTP Headers

GET /-ljB-9IhbK0g/UNNAzYF3nUI/AAAAAAAAZQ8/ftDxEwRMzkY/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v650f"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 35708
X-XSS-Protection: 0

cleverjump.org/hit?z0;s1280*1024*24;ftryGCgSAQ4FDgKsEO3UK2Ne1QRkgc9;cshb2;r;uhttp%3A%2F%2Faniekelate.blogspot.com%2F2013%2F05%2Fgambar-erra-fazira-dan-anaknya-engku.html;hBebelan%20Anie%20Kelate%3A%20Gambar%20Erra%20Fazira%20dan%20anaknya%2C%20Engku%20Aleesya%20yang%20ceria;0.41332690428794605

217.23.10.44

200 OK

0 B

URL HTTP/1.1
cleverjump.org/hit?z0;s1280*1024*24;ftryGCgSAQ4FDgKsEO3UK2Ne1QRkgc9;cshb2;r;uhttp%3A%2F%2Faniekelate.blogspot.com%2F2013%2F05%2Fgambar-erra-fazira-dan-anaknya-engku.html;hBebelan%20Anie%20Kelate%3A%20Gambar%20Erra%20Fazira%20dan%20anaknya%2C%20Engku%20Aleesya%20yang%20ceria;0.41332690428794605
IP
217.23.10.44:0
ASN
#49981 WorldStream B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /hit?z0;s1280*1024*24;ftryGCgSAQ4FDgKsEO3UK2Ne1QRkgc9;cshb2;r;uhttp%3A%2F%2Faniekelate.blogspot.com%2F2013%2F05%2Fgambar-erra-fazira-dan-anaknya-engku.html;hBebelan%20Anie%20Kelate%3A%20Gambar%20Erra%20Fazira%20dan%20anaknya%2C%20Engku%20Aleesya%20yang%20ceria;0.41332690428794605 HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
P3P: CP=CleverJump
Set-Cookie: _cjuh=PDU9uwuqznP1nl7jBHhNDmHJmTEirC; expires=Sun, 26-Nov-2023 03:43:00 GMT; Max-Age=31536000; path=/hit; httponly; SameSite=None; Secure

4.bp.blogspot.com/-5FiwerPExao/UNNA4p3ZJ_I/AAAAAAAAZRg/_upVhcxhrZo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+6.jpg

142.250.74.161

200 OK

54 kB

URL HTTP/1.1
4.bp.blogspot.com/-5FiwerPExao/UNNA4p3ZJ_I/AAAAAAAAZRg/_upVhcxhrZo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+6.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
54 kB (54190 bytes)
Hash
16645ef23226299533364a5841903657
2a6de4a515dbf684555d931ccb33c0be6eb71439
30fb7a668b6d9fb033de78039b5c8f1d4f2169872feea2f03a5ba6b711b90b2f

HTTP Headers

GET /-5FiwerPExao/UNNA4p3ZJ_I/AAAAAAAAZRg/_upVhcxhrZo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+6.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6518"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 6.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 54190
X-XSS-Protection: 0

i710.photobucket.com/albums/ww103/kamasutrabergambar/kamasutra_468x60_2.jpg

143.204.55.54

403 Forbidden

243 B

URL HTTP/1.1
i710.photobucket.com/albums/ww103/kamasutrabergambar/kamasutra_468x60_2.jpg
IP
143.204.55.54:0
ASN
#16509 AMAZON-02

File type
XML 1.0 document text\012- XML document, ASCII text
Size
243 B (243 bytes)
Hash
001719f2b5281ddee32ef89d4066e6d8
574d2a113c5696284f41d83a1373473fa4a18ffb
3c352cc34e52f21ebe2b23acdcc9ac7fd6b61ba2369ed54ae40e3dce21512a43

HTTP Headers

GET /albums/ww103/kamasutrabergambar/kamasutra_468x60_2.jpg HTTP/1.1
Host: i710.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 403 Forbidden
Content-Type: application/xml
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: AmazonS3
X-Cache: Error from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3eSbc4kZftMlhmc6ROrEgE_X7lrK_VG27ElzUJSfsrzdTfFoWrNffA==

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4697
Cache-Control: max-age=110528
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:25:09 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

26ed6613-a-62cb3a1a-s-sites.googlegroups.com/site/unwanted86/javascript/animatedrecentpost.js?attachauth=ANoY7cq8yhElnnf9YraM45wzZ0UbCCILJxRHlJyra-WFDInhsBTpL2igcmQwCrXrmnz-GolViDvVsg1CqGsIt18jciPxwW9DLN129htbw4UheYoKlEG0PIrq4yrKQ-7xsyCGQhl-AgF1QqQlvjlCPXm2g0FFq0C5FqgHyestTBX_RMkOafvMp8ZHKphK_7EtNk9iteM0VIicr8hrPib-LPaPXSzBOnWCMDntVBTSMehSiLzGjYkjzCQ%3D&attredirects=0

173.194.222.137

200 OK

1.4 kB

URL HTTP/2
26ed6613-a-62cb3a1a-s-sites.googlegroups.com/site/unwanted86/javascript/animatedrecentpost.js?attachauth=ANoY7cq8yhElnnf9YraM45wzZ0UbCCILJxRHlJyra-WFDInhsBTpL2igcmQwCrXrmnz-GolViDvVsg1CqGsIt18jciPxwW9DLN129htbw4UheYoKlEG0PIrq4yrKQ-7xsyCGQhl-AgF1QqQlvjlCPXm2g0FFq0C5FqgHyestTBX_RMkOafvMp8ZHKphK_7EtNk9iteM0VIicr8hrPib-LPaPXSzBOnWCMDntVBTSMehSiLzGjYkjzCQ%3D&attredirects=0
IP
173.194.222.137:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2566), with CRLF line terminators
Size
1.4 kB (1394 bytes)
Hash
31e1c67012a965c0946f9b1a57e37522
3e4f432c76e07fb51f7d172c646b1e51a9e6dbd5
a2c830719561d83caa19ddab4ad05324909ed460ae65366eee128260a5df41b9

HTTP Headers

GET /site/unwanted86/javascript/animatedrecentpost.js?attachauth=ANoY7cq8yhElnnf9YraM45wzZ0UbCCILJxRHlJyra-WFDInhsBTpL2igcmQwCrXrmnz-GolViDvVsg1CqGsIt18jciPxwW9DLN129htbw4UheYoKlEG0PIrq4yrKQ-7xsyCGQhl-AgF1QqQlvjlCPXm2g0FFq0C5FqgHyestTBX_RMkOafvMp8ZHKphK_7EtNk9iteM0VIicr8hrPib-LPaPXSzBOnWCMDntVBTSMehSiLzGjYkjzCQ%3D&attredirects=0 HTTP/1.1
Host: 26ed6613-a-62cb3a1a-s-sites.googlegroups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 03:43:00 GMT
last-modified: Sun, 22 Aug 2010 22:19:41 GMT
etag: "1282515581476"
content-disposition: attachment; filename="animatedrecentpost.js"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 1394
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

3.bp.blogspot.com/-Kw6s0lFQVic/UNNA5h4gVyI/AAAAAAAAZRo/yBk9m8UmSRA/s1600/gambar+Erra+Fazira++dan+anaknya%252C+Engku+Aleesya+yang+ceria+7.jpg

142.250.74.161

200 OK

44 kB

URL HTTP/1.1
3.bp.blogspot.com/-Kw6s0lFQVic/UNNA5h4gVyI/AAAAAAAAZRo/yBk9m8UmSRA/s1600/gambar+Erra+Fazira++dan+anaknya%252C+Engku+Aleesya+yang+ceria+7.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
44 kB (44546 bytes)
Hash
27e9769e36d3406d26c32e71c268d358
e894aa2e91f683827bb12e19c2043d8c54c7f404
ee29d47fe8b0728691aa2b44009887f760d51b84a37c83a3eaf9c432a8437138

HTTP Headers

GET /-Kw6s0lFQVic/UNNA5h4gVyI/AAAAAAAAZRo/yBk9m8UmSRA/s1600/gambar+Erra+Fazira++dan+anaknya%252C+Engku+Aleesya+yang+ceria+7.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v651a"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 7.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 44546
X-XSS-Protection: 0

1.bp.blogspot.com/-klE-zExxc2M/UNNA3mnEYAI/AAAAAAAAZRY/8Iauz5Z8Qfo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+4.jpg

142.250.74.161

200 OK

35 kB

URL HTTP/1.1
1.bp.blogspot.com/-klE-zExxc2M/UNNA3mnEYAI/AAAAAAAAZRY/8Iauz5Z8Qfo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+4.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 444x484, components 3\012- data
Size
35 kB (35163 bytes)
Hash
94963616c885fef55005bb7ddc9198b1
bf53350221413c7be65de771a77fa20f7f45c9c3
a47dae32c188ea0ed155a8439b072a3c5097672f2f0c3df53bb9e620bebb99b3

HTTP Headers

GET /-klE-zExxc2M/UNNA3mnEYAI/AAAAAAAAZRY/8Iauz5Z8Qfo/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+4.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6516"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 4.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 35163
X-XSS-Protection: 0

3.bp.blogspot.com/-qnRSQPBsTcw/UNNA6upU4ZI/AAAAAAAAZRw/WCkHcJVW7JE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+8.jpg

142.250.74.161

200 OK

50 kB

URL HTTP/1.1
3.bp.blogspot.com/-qnRSQPBsTcw/UNNA6upU4ZI/AAAAAAAAZRw/WCkHcJVW7JE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+8.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x314, components 3\012- data
Size
50 kB (50530 bytes)
Hash
22d865ca46c1d3b7a9a6b3ac49d5cd02
a74c755b8ea4951da4b502c468db28cb4dfa3b2e
2235e690651265336a6d2923ab31468d1e385e5a16403cfff66d9c7389e980e3

HTTP Headers

GET /-qnRSQPBsTcw/UNNA6upU4ZI/AAAAAAAAZRw/WCkHcJVW7JE/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+8.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v651c"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 8.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 50530
X-XSS-Protection: 0

themes.googleusercontent.com/image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD

142.250.74.33

200 OK

168 kB

URL HTTP/2
themes.googleusercontent.com/image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1800x2699, components 3\012- data
Size
168 kB (168013 bytes)
Hash
7ee3746ae0a6700164cb1fd3ca54483a
ffeb6d4e14ff136150531dbade87668b2db4563e
e74fa1a411c6eeeb0d1d415a04e2fc5dde7dcd42503b8c105e4754dbb117de61

HTTP Headers

GET /image?id=1IgO1wWgj0K_rUZAoQza9BXyXF8I_PEFrP-DP9u0fUqePLlRNOTLtrSyYQglz9OZfPNqD HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aniekelate.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Sun, 27 Nov 2022 03:43:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 03:43:00 GMT
server: fife
content-length: 168013
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cleverjump.org/hit/get-uid.php

217.23.10.44

200 OK

30 B

URL HTTP/1.1
cleverjump.org/hit/get-uid.php
IP
217.23.10.44:0
ASN
#49981 WorldStream B.V.

File type
ASCII text, with no line terminators
Size
30 B (30 bytes)
Hash
e9b6b26b3db40657eb0f3de26ad619ac
4bdae5723b50327a6383196b8ffa10d40ac393d3
46f43e66f92abb7da4d1770aedd770da966c319d8e4126c82e8436486083e8ce

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /hit/get-uid.php HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aniekelate.blogspot.com
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Cookie: _cjuh=PDU9uwuqznP1nl7jBHhNDmHJmTEirC
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Sat, 26 Nov 2022 03:43:00 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Access-Control-Allow-Origin: http://aniekelate.blogspot.com
Access-Control-Allow-Credentials: true

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f92478f7e0ef5ffb5bfe1d942c88ce8d
9e3362d9d9b4c7c54ea56950ea1a1604925281a0
375f83cab3d7d75045aaa6c58c101dc81ad3ee4017984321b1a2e25baf9863c0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/-8zA2rAWPb64/UNNA7y3CRgI/AAAAAAAAZR4/63tB4DVh3Q0/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+9.jpg

142.250.74.161

200 OK

43 kB

URL HTTP/1.1
4.bp.blogspot.com/-8zA2rAWPb64/UNNA7y3CRgI/AAAAAAAAZR4/63tB4DVh3Q0/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+9.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 400x267, components 3\012- data
Size
43 kB (42787 bytes)
Hash
4e0acc1515040732e174f45190e52653
58ada59a7037880b087380c34bda02e70cc99b91
d7096348d96de6e38aa1146c74b76a39b2e245c0d11d66c0651fd3685e96bbbb

HTTP Headers

GET /-8zA2rAWPb64/UNNA7y3CRgI/AAAAAAAAZR4/63tB4DVh3Q0/s1600/gambar+Erra+Fazira++dan+anaknya,+Engku+Aleesya+yang+ceria+9.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v651e"
Expires: Sun, 27 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gambar Erra Fazira  dan anaknya, Engku Aleesya yang ceria 9.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 26 Nov 2022 03:43:00 GMT
Server: fife
Content-Length: 42787
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

2.bp.blogspot.com/-mnw-f-x458g/UD56nKC1TOI/AAAAAAAAZ-A/KoGz2nYaAxg/s72-c/chicken-biryani.jpg

142.250.74.161

200 OK

2.6 kB

URL HTTP/1.1
2.bp.blogspot.com/-mnw-f-x458g/UD56nKC1TOI/AAAAAAAAZ-A/KoGz2nYaAxg/s72-c/chicken-biryani.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
gzip compressed data\012- data
Size
2.6 kB (2642 bytes)
Hash
de5c7155bbfdbf7a07e3c593ebcffc12
2cfb886a68981a274f70abdecb892cb7fe75b3ed
ec775dbda6bb4ca2d08bdf2e8770b00a6046fdb3c17f46dfa25ca74391740442

HTTP Headers

GET /-mnw-f-x458g/UD56nKC1TOI/AAAAAAAAZ-A/KoGz2nYaAxg/s72-c/chicken-biryani.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="chicken-biryani.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 5597
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 01:50:33 GMT
Expires: Sun, 27 Nov 2022 01:50:33 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v67e0"
Content-Type: image/jpeg
Age: 6747

push.services.mozilla.com/

44.237.163.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.163.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9GoGWxnv1JjcqFIFt0WaDw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5Q4FrANae/toWBJhzZnvrBjclu0=

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 03:43:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 03:43:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Sat, 26 Nov 2022 07:05:22 GMT
Date: Sat, 26 Nov 2022 03:43:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b989dd-5b05-43e6-807e-30a5611591c1.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b989dd-5b05-43e6-807e-30a5611591c1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12505 bytes)
Hash
9443750de7962c9e235cbb6dbda24df0
05de7f68103849bd0cd80a704ef97685d0150800
d84e37f9bfd9888a385364c52cdc0d817aa680ee0a83e579ca1f1083f1131468

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53b989dd-5b05-43e6-807e-30a5611591c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12505
x-amzn-requestid: a89c780f-e1a4-451e-842b-656ba43958be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOeHzfIAMFpGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358f-3478b6c81d94ec65388bd3da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5zG4aexCKPFQiK74gstk7S4kWT20BfHdu07UOz955omfjsCulbFUyA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 21397
etag: "05de7f68103849bd0cd80a704ef97685d0150800"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:20:28 GMT
age: 69753
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56b1fea9-e9cd-44f8-a1ed-26557538d958.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12319 bytes)
Hash
8a82cc688f934411a894427bd493c429
fd67260f92d7faee2360956e8d2ed50a00c1dbcf
fbd1a487dac7233861d173e711218d3e3402bc71f538025c540b93696309dc67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56b1fea9-e9cd-44f8-a1ed-26557538d958.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12319
x-amzn-requestid: 6973e196-9eb3-4aea-9c60-b8e2158641ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOoGkgIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813590-62965d4c607d4f0a060265d9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZUiheZX0bPmTE4Zf5_sGeCDjBt4KrAGDyGF_a_3x4pqjR-K4mMSYEg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 21397
etag: "fd67260f92d7faee2360956e8d2ed50a00c1dbcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6789 bytes)
Hash
926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -6kE-HDfLIQMtzuaOuArCjtxgpQUgxMrpjcT7pDIdY7CDlJNK1GZWA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
age: 21397
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 20636
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 81513
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.feedburner.com/fb/images/pub/feed-icon32x32.png

142.250.74.46

200 OK

1.4 kB

URL HTTP/1.1
www.feedburner.com/fb/images/pub/feed-icon32x32.png
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1441 bytes)
Hash
f3b2f178bb0fa4f2701ff218f6a6930d
2a1bc7c9589c8d1cde0b96e00c660b6480caf909
55070d3be787cd8ccee8ea0fd75f0e11e944e6f70231f0dcb4c5ae348fcba6be

HTTP Headers

GET /fb/images/pub/feed-icon32x32.png HTTP/1.1
Host: www.feedburner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/pichu-static
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="pichu-static"
Report-To: {"group":"pichu-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/pichu-static"}]}
Content-Length: 1441
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 26 Nov 2022 03:43:02 GMT
Expires: Sat, 26 Nov 2022 03:43:02 GMT
Cache-Control: public, max-age=0
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/png
Age: 0

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
966255e8eae5f73b5fe45aab88646f99
57eadbf09ae6a8170cdfe3b0691b908f49e2c08d
a99ecadf4c294cebf0c392ea036f508443cb471c44773cc5ea0212ab86074cbe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3439
Cache-Control: max-age=95593
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:02 GMT
Etag: "63805041-1d7"
Expires: Sun, 27 Nov 2022 06:16:15 GMT
Last-Modified: Fri, 25 Nov 2022 05:18:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/all.js?hash=eb2de57aec0c369c6f321578628c90dc

31.13.72.12

200 OK

88 kB

URL HTTP/2
connect.facebook.net/en_US/all.js?hash=eb2de57aec0c369c6f321578628c90dc
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (18318)
Size
88 kB (88201 bytes)
Hash
3f8c2f114b6aa065e4ff81129b52b3b1
aea60e03f90dc62a8e344819c29897220807f8b2
06372bc6ca132d7b92f6741869a93d9fb52046845a02b3ce07b681132d6b838d

HTTP Headers

GET /en_US/all.js?hash=eb2de57aec0c369c6f321578628c90dc HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aniekelate.blogspot.com
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5dde9828adaf7605ed3505e46cf1df8d
etag: "671b11856d345a4376059ebfc6f7bc08"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sun, 26 Nov 2023 02:43:23 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: P4wvEUtqoGXk/4ESm1KzsQ==
x-fb-debug: 9Gq9hFRqchaOOcQ8xwFh0qzYx1cgt4sY/RdMMylJiTGJyIIUUevubOy1iPAQsM+ElXF6TtXFxrSR/0t1lW5h4g==
content-length: 88201
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 03:43:02 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
966255e8eae5f73b5fe45aab88646f99
57eadbf09ae6a8170cdfe3b0691b908f49e2c08d
a99ecadf4c294cebf0c392ea036f508443cb471c44773cc5ea0212ab86074cbe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3439
Cache-Control: max-age=95593
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:43:02 GMT
Etag: "63805041-1d7"
Expires: Sun, 27 Nov 2022 06:16:15 GMT
Last-Modified: Fri, 25 Nov 2022 05:18:57 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

aniekelate.blogspot.com/favicon.ico

142.250.74.161

200 OK

412 B

URL HTTP/1.1
aniekelate.blogspot.com/favicon.ico
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: aniekelate.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aniekelate.blogspot.com/2013/05/gambar-erra-fazira-dan-anaknya-engku.html
Cookie: cj_uid=PDU9uwuqznP1nl7jBHhNDmHJmTEirC

HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Sat, 26 Nov 2022 03:43:02 GMT
Date: Sat, 26 Nov 2022 03:43:02 GMT
Cache-Control: private, max-age=86400
Last-Modified: Fri, 25 Nov 2022 12:16:01 GMT
ETag: W/"608d8bb07e6c1be368316c77114e32189b342e44f48886429038ef519762a396"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations