r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4453
Expires: Sat, 28 Jan 2023 13:38:20 GMT
Date: Sat, 28 Jan 2023 12:24:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3673
Expires: Sat, 28 Jan 2023 13:25:20 GMT
Date: Sat, 28 Jan 2023 12:24:07 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 11:35:29 GMT
content-type: application/json
age: 2918
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12664
Expires: Sat, 28 Jan 2023 15:55:11 GMT
Date: Sat, 28 Jan 2023 12:24:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: diWkr+9UF98zB5rM/wfnw5mSqg66k6CoUhK4O6WauRfVtZmwV6MRRqq3B3rd9OzmCPDLQfioMh6mGOIJufwT7A==
x-amz-request-id: 0A2BP9H73KDJSG7M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 12:20:58 GMT
age: 189
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 12:24:07 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
216.58.207.193200 OK 38 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (41571)
Hash cf4ef1104d9e5a9a75b7ff67193a31fc
df627e5b8fc42f81756ae81d0d9926b4e1b889d1
8405eef0775623f3b200576db4eb51150b01da65a37cb59028a01a8d20caa4bb
NIDS Severity Alert suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M1
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M2
suricata low ET HUNTING [TW] Likely Javascript-Obfuscator Usage Observed M3
GET /2019/03/mmt-walimatul-khitan.html HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 28 Jan 2023 12:24:07 GMT
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
ETag: W/"af119cb890a7cb000d5b1104ef1b4afa9f9bbe1a7d89c8597a0513f1962e5916"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 38137
Server: GSE
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
142.250.74.106200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP 142.250.74.106:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 18351732b1849ba758e98884e186b3c8
d735af8661eda41ff4ffbf76e6a284a0e2deb81c
bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 26 Jan 2023 08:57:11 GMT
Expires: Fri, 26 Jan 2024 08:57:11 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 185216
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:27:21 GMT
expires: Fri, 26 Jan 2024 03:27:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 25 Jan 2023 14:53:31 GMT
content-type: text/css
age: 205006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/js/cookienotice.js
216.58.207.193200 OK 2.0 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/js/cookienotice.js
IP 216.58.207.193:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 28 Jan 2023 12:24:07 GMT
Expires: Sat, 04 Feb 2023 12:24:07 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 28 Jan 2023 10:49:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.blogger.com/static/v1/widgets/1253685842-widgets.js
216.58.207.233200 OK 156 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1253685842-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Size 156 kB (156311 bytes)
Hash 282c3db331d4d3d06779b0b8a60ef7c2
c0450142786dc1ce0f3875608b38591ff7eaaf1b
6c3f04bab4d89e7ea271ecb6ffd98b1fb47634d30cc10aa52169c4d2bdefce77
GET /static/v1/widgets/1253685842-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 156311
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 01:57:07 GMT
expires: Tue, 23 Jan 2024 01:57:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 00:54:53 GMT
content-type: text/javascript
age: 469620
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
native.propellerclick.com/1?z=3076114
139.45.197.235404 Not Found 7 B URL HTTP/1.1 native.propellerclick.com/1?z=3076114
IP 139.45.197.235:0
File type ASCII text, with no line terminators
Hash 3b66fb7a307f3ca29bd59b2f354055bd
d6ae6ccb37eb272d94d4a5191fa50372f4d06bba
de68e8f959bc131328db7581860711517d6ae1eb03aa047043dc7f826906e5a4
GET /1?z=3076114 HTTP/1.1
Host: native.propellerclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 28 Jan 2023 12:24:07 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
X-Trace-Id: 1eb209cfa2caefbe7391f59b52c82618
Access-Control-Expose-Headers: X-Sc
X-Sc: 4KdnrdofxFOHMlcU
Set-Cookie: scm=1; expires=Sun, 28 Jan 2024 12:24:07 GMT; secure; SameSite=None
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 24fb829cf6626607036d3aa12e254f2f
993cd8ca527ef8b5ac101471af4589f477bc9f42
54e2f3602c541ad1e17294295b78c571e84d62907e0797f6248c0ed73a5ba4b9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/loader.js
142.250.74.35200 OK 20 kB URL HTTP/2 www.gstatic.com/charts/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (2134)
Hash f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 12:10:34 GMT
expires: Sat, 28 Jan 2023 13:10:34 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 813
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/AHs97-kmCUXX_6JnuCUP1WQcbIC8bEqAohDaGSI9sC7lEw21iZGXXGIaXxWVQu9fNJBwsE0xS4n7FnyzbtHckC325e_qSaqVvZiy2-B946VwMfVMbA
142.250.74.97200 OK 4.5 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AHs97-kmCUXX_6JnuCUP1WQcbIC8bEqAohDaGSI9sC7lEw21iZGXXGIaXxWVQu9fNJBwsE0xS4n7FnyzbtHckC325e_qSaqVvZiy2-B946VwMfVMbA
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash 9978077d20133765c87f98f2c0d516bb
639ca9fba9e6e8ab391e163fd598c364a1fde919
a8eaf172b97d0a9a3930e0ed091e674fdd595d92a740fe17b03be09c7ce81aa7
GET /blogger_img_proxy/AHs97-kmCUXX_6JnuCUP1WQcbIC8bEqAohDaGSI9sC7lEw21iZGXXGIaXxWVQu9fNJBwsE0xS4n7FnyzbtHckC325e_qSaqVvZiy2-B946VwMfVMbA HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Sun, 29 Jan 2023 12:24:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sat, 28 Jan 2023 12:24:07 GMT
server: fife
content-length: 4484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 166bf2c6932f048996b3fe12e1cf3db9
9489d067ac8215775dda446a4c291e6db1e8ab3f
896314990eb656b725f8ec5d3753e70bf71e956c142a15b45773a77bb7d6ff24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 11:49:03 GMT
age: 2105
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/feeds/posts/default/-/Mmt?alt=json-in-script&callback=relpostimgcuplik&max-results=50
216.58.207.193200 OK 8.7 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/feeds/posts/default/-/Mmt?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (33084)
Hash d4d147f3dbef6a03ecf84d41dc42520d
79d68a733f7116b1f405e68f8805bb2d7b51b546
fea42047bb1734d1852bef5961af66e4e2b3a8945e5f348ada38328207525e7a
GET /feeds/posts/default/-/Mmt?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"54d3238fd6a89124caa796a75d9c15e4ba72deee52e80beb7b0eed25af7a5cce"
Date: Sat, 28 Jan 2023 12:24:07 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 12:24:08 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
Content-Encoding: gzip
Content-Length: 8681
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16985
Expires: Sat, 28 Jan 2023 17:07:13 GMT
Date: Sat, 28 Jan 2023 12:24:08 GMT
Connection: keep-alive
pl15188736.pvclouds.com/8d/e4/52/8de4527f955fee61d57370b3d481b7b7.js
192.243.61.225200 OK 21 kB URL HTTP/1.1 pl15188736.pvclouds.com/8d/e4/52/8de4527f955fee61d57370b3d481b7b7.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60145), with no line terminators
Hash 6540f73da909ae2c737e04185c0011be
16c881fdb3e708b62d68825336cb6a21259fcea8
c2811e76977e3bb5e8d5a8b37cbb00112f1c2741ea6c0f94fec20d4533dd6682
Analyzer Verdict Alert fortinet Malware
GET /8d/e4/52/8de4527f955fee61d57370b3d481b7b7.js HTTP/1.1
Host: pl15188736.pvclouds.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ddbf0dc8de18208d15affda971d8b232
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ae01.alicdn.com/kf/HTB1KKqdXY5YBuNjSspo762eNFXaA/EN_300_250.png
23.38.200.42200 OK 19 kB URL HTTP/2 ae01.alicdn.com/kf/HTB1KKqdXY5YBuNjSspo762eNFXaA/EN_300_250.png
IP 23.38.200.42:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77565c5c2fe44e6d1d9d789c86ec4402
f3cf648f0dfe15d3084c4bf29d43d8426d857b4c
c56f013cd65ae27b8541a967f26de0ed6cb6296fc05907173c1b7be577f8a028
GET /kf/HTB1KKqdXY5YBuNjSspo762eNFXaA/EN_300_250.png HTTP/1.1
Host: ae01.alicdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
last-modified: Sat, 05 Nov 2022 22:27:06 GMT
server: Akamai Image Manager
content-length: 18926
content-type: image/webp
cache-control: private, no-transform, max-age=46187
expires: Sun, 29 Jan 2023 01:13:55 GMT
date: Sat, 28 Jan 2023 12:24:08 GMT
from-req-dns-type: NA
network_info: NO_OSLO_50304
served-from: 23.36.79.28
timing-allow-origin: *
X-Firefox-Spdy: h2
bukhoryprint.files.wordpress.com/2011/06/sunatan.jpg
192.0.72.30301 Moved Permanently 162 B URL HTTP/1.1 bukhoryprint.files.wordpress.com/2011/06/sunatan.jpg
IP 192.0.72.30:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2011/06/sunatan.jpg HTTP/1.1
Host: bukhoryprint.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://bukhoryprint.files.wordpress.com/2011/06/sunatan.jpg
2.bp.blogspot.com/-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg
142.250.74.161400 Bad Request 1.6 kB URL HTTP/1.1 2.bp.blogspot.com/-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fbe36eb2eecf1b90451a3a72701e49d2
ae56ea57c52d1153cec33cef91cf935d2d3af14d
e8f2ded5d74c0ee5f427a20b6715e65bc79ed5c4fc67fb00d89005515c8efe63
GET /-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 400 Bad Request
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 1555
X-XSS-Protection: 0
www.arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
104.21.94.37301 Moved Permanently 350 B URL HTTP/1.1 www.arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
IP 104.21.94.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d299fc3fd83d75a774fca2369a4fdba4
6a9fd5438fd7b3442fb5b4b53f93a4a69a21b7d0
e3a6d9ab93ae7c81ba16eb02fe730be556d1bf4c74cdcf056f0777b7ea34a92f
GET /wp-content/uploads/2019/01/chuwi-laptop.jpg HTTP/1.1
Host: www.arisurachman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HK3XEoMXYVdPPnB776yzjm1BXJjvIpXVSnSj5dvw%2FrQrbtURSA%2FwZgXrwkyOwWoghSxZG%2BJO7YPfyzfIFbI082OAX%2B5c9aPR9Y2jw8lHl5xxv4nxDuHR8Dwe3FBv%2BMHQPxYFBlG3NQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7909b40c18e2fab4-OSL
alt-svc: h2=":443"; ma=60
www.arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
104.21.94.37301 Moved Permanently 352 B URL HTTP/1.1 www.arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
IP 104.21.94.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0a750501b590ebee0ccc1a61b1f092e5
532f8905854d689a80d042678a9570d5f6dfdf7d
5b3edfbfed7a19d061aaab4070cf06dae2f3f05e6fd61e7982cf6c4352b582f3
GET /wp-content/uploads/2019/01/Screenshot_117.png HTTP/1.1
Host: www.arisurachman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OVcOrat%2BT6yj65d%2Bnojq2afKU4UiAPEFiyd69PhAhUjtlnHdWJdKLSWy2490nbefih16Cc5IjHF7f2C2DxonfCue9z%2FsnqWANiZTuPw1UeXOuCArXHYV1LfBsrgXjZW5sI%2Bc0UB4Yw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7909b40c1c390b65-OSL
alt-svc: h2=":443"; ma=60
4.bp.blogspot.com/-hfF-IZCK7yo/Ujg0OXlL3PI/AAAAAAAAAkE/WoNoyzeurs0/s1600/ISLAMIC+background+I+(3x2)m.jpg
142.250.74.161200 OK 479 kB URL HTTP/1.1 4.bp.blogspot.com/-hfF-IZCK7yo/Ujg0OXlL3PI/AAAAAAAAAkE/WoNoyzeurs0/s1600/ISLAMIC+background+I+(3x2)m.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1066, components 3\012- data
Size 479 kB (479092 bytes)
Hash cb04627bc944a105b454a0f62066773c
38132532a0bf55da4951b2efabf2d15e24a35827
2c8c86dacaa489320e4d6a7226ba2417f64a48ea964cc450e05cce134d99262a
GET /-hfF-IZCK7yo/Ujg0OXlL3PI/AAAAAAAAAkE/WoNoyzeurs0/s1600/ISLAMIC+background+I+(3x2)m.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v242"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ISLAMIC background I (3x2)m.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 479092
X-XSS-Protection: 0
native.propellerclick.com/1?z=3076114
139.45.197.235404 Not Found 7 B URL HTTP/1.1 native.propellerclick.com/1?z=3076114
IP 139.45.197.235:0
File type ASCII text, with no line terminators
Hash 3b66fb7a307f3ca29bd59b2f354055bd
d6ae6ccb37eb272d94d4a5191fa50372f4d06bba
de68e8f959bc131328db7581860711517d6ae1eb03aa047043dc7f826906e5a4
GET /1?z=3076114 HTTP/1.1
Host: native.propellerclick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID
X-Trace-Id: 8944bdf7f707921d4819267a2f8e95d8
Access-Control-Expose-Headers: X-Sc
X-Sc: 4KdnrdofxFOHMlcU
Set-Cookie: scm=1; expires=Sun, 28 Jan 2024 12:24:08 GMT; secure; SameSite=None
cdn.slidesharecdn.com/ss_thumbnails/undanganaqiqah-121108194128-phpapp01-thumbnail-4.jpg?cb=1352403723
151.101.194.152200 OK 63 kB URL HTTP/1.1 cdn.slidesharecdn.com/ss_thumbnails/undanganaqiqah-121108194128-phpapp01-thumbnail-4.jpg?cb=1352403723
IP 151.101.194.152:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x1180, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d1482365d2eb6fa77dd043556453ad64
065083428fd010d7b9ad8dbe5265a63c401bcf79
ca46e6ac65f52c4878a6efcb04c487516cf97f087742ffb00af029c676af17a9
GET /ss_thumbnails/undanganaqiqah-121108194128-phpapp01-thumbnail-4.jpg?cb=1352403723 HTTP/1.1
Host: cdn.slidesharecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 63380
Content-Type: image/webp
Etag: "7MaA/hQj4tsKgkhUpVdcoUaGfNvSO5giYP41HgB5Dqk"
Fastly-Io-Info: ifsz=140075 idim=768x1180 ifmt=jpeg ofsz=63380 odim=768x1180 ofmt=webp
Fastly-Stats: io=1
Server: AmazonS3
X-Amz-Id-2: xtAoVxSKGUWZQ3ga9L8Efx9ozz01/u6vqti/eBPoCPU1nJgscdUcWAo0jAMMeZg9iSgsqzt1nXI=
X-Amz-Request-Id: MHA8X4K99KM04893
X-Amz-Version-Id: null
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Sat, 28 Jan 2023 12:24:08 GMT
Age: 562172
X-Served-By: cache-iad-kcgs7200040-IAD, cache-bma1670-BMA
X-Cache: HIT, MISS
X-Cache-Hits: 1, 0
X-Timer: S1674908648.331035,VS0,VE94
Vary: Accept
Expires: Sat, 04 Feb 2023 12:24:08 GMT
Cache-Control: max-age=604800
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
burcin6ghazi.blogspot.com/feeds/posts/default/-/Mmt%20Walimatul%20Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50
216.58.207.193200 OK 8.7 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/feeds/posts/default/-/Mmt%20Walimatul%20Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (33122)
Hash 93316e7393da58215343a6380ffb1ddf
8947b2b701c865fe81119ed1ad27eb1e17447c1c
d3e13d120430d0b5fb339c24955d0a68685fed113e2c9ba838a7977c34d39b01
GET /feeds/posts/default/-/Mmt%20Walimatul%20Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"5ddc7d697dc965cb924d7213e320c55f890fc25401639321e879bba46ddd2a02"
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
Content-Encoding: gzip
Content-Length: 8700
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.224.148.171101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.224.148.171:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R9rtE8HatJJb+SEKE0ueRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iRxjxPnYQyTrwbAd1CqUAEQfbAw=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-tDkYvWSy4tE/U9IC4GkyGoI/AAAAAAAACrk/8ENxKL5ai8c/s1600/UND2.jpg
142.250.74.161200 OK 64 kB URL HTTP/1.1 2.bp.blogspot.com/-tDkYvWSy4tE/U9IC4GkyGoI/AAAAAAAACrk/8ENxKL5ai8c/s1600/UND2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 822x311, components 3\012- data
Hash 7293f020ef0706b69aaab022c2db75b3
5704b3d03ab7f16d5b4015fcc524610abaa36b84
806ef530ecff58ce38f847c73764b56a6e68912c656ed8bc870cf2ca7a376d86
GET /-tDkYvWSy4tE/U9IC4GkyGoI/AAAAAAAACrk/8ENxKL5ai8c/s1600/UND2.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v37d7"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="UND2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 63943
X-XSS-Protection: 0
3.bp.blogspot.com/-yjORnqkapIw/WDZdUqg_q4I/AAAAAAAAAA8/okJt11jcbs4qnNclZ_C_Da2AN_Meu1dHQCEw/s1600/btn_close.gif
142.250.74.161200 OK 436 B URL HTTP/2 3.bp.blogspot.com/-yjORnqkapIw/WDZdUqg_q4I/AAAAAAAAAA8/okJt11jcbs4qnNclZ_C_Da2AN_Meu1dHQCEw/s1600/btn_close.gif
IP 142.250.74.161:0
File type PNG image data, 52 x 15, 8-bit colormap, non-interlaced\012- data
Hash ce1aead7ab51d2e2b54039d110d5e982
e336c37f62f576227a14a967920c8bf35f6c384f
b71cf896a5f94a588a72d02e8a2946ba2379fe6ff40e02b556d2d6934f02d659
GET /-yjORnqkapIw/WDZdUqg_q4I/AAAAAAAAAA8/okJt11jcbs4qnNclZ_C_Da2AN_Meu1dHQCEw/s1600/btn_close.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="btn_close.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 436
x-xss-protection: 0
date: Sat, 28 Jan 2023 08:55:42 GMT
expires: Sun, 22 Jan 2023 10:33:13 GMT
cache-control: public, max-age=86400, no-transform
age: 12506
etag: "v11"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/--l4L-BZnPf4/Vrr4UeNCLEI/AAAAAAAAAEM/OaozcPktW3I/s484/Undangan-Kertas-Syukuran-Khitanan-unik.jpg
142.250.74.161200 OK 81 kB URL HTTP/1.1 2.bp.blogspot.com/--l4L-BZnPf4/Vrr4UeNCLEI/AAAAAAAAAEM/OaozcPktW3I/s484/Undangan-Kertas-Syukuran-Khitanan-unik.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 484x363, components 3\012- data
Hash d9f6374f07222c5dad3245a45fac4597
30b0f6ec44d6b19074578a4df4099000632f7edb
75c7c1de0e1e24d03793b24264a94d4991e1c9420997ff0d8f62cb79ff5e03cf
GET /--l4L-BZnPf4/Vrr4UeNCLEI/AAAAAAAAAEM/OaozcPktW3I/s484/Undangan-Kertas-Syukuran-Khitanan-unik.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v49"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Undangan-Kertas-Syukuran-Khitanan-unik.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 81270
X-XSS-Protection: 0
3.bp.blogspot.com/-3ypydr9U3DI/U9DHOBQy-vI/AAAAAAAAAbs/hvhfDPIpevI/s1600/share.png
142.250.74.161200 OK 6.5 kB URL HTTP/2 3.bp.blogspot.com/-3ypydr9U3DI/U9DHOBQy-vI/AAAAAAAAAbs/hvhfDPIpevI/s1600/share.png
IP 142.250.74.161:0
File type PNG image data, 42 x 215, 8-bit/color RGBA, non-interlaced\012- data
Hash cec253475401f4f33d472c8a538ae16d
4996fc455596a42fe466df5931490ea9443a93eb
e6ae4e6751e18f746dd724021763c974b8ab038a2316ff78117ae81fd0fd6812
GET /-3ypydr9U3DI/U9DHOBQy-vI/AAAAAAAAAbs/hvhfDPIpevI/s1600/share.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="share.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 6485
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:55:03 GMT
expires: Sat, 28 Jan 2023 14:44:39 GMT
cache-control: public, max-age=86400, no-transform
age: 8945
etag: "v1bc"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-Ad0SNDPqAbQ/WGM7p8QP9jI/AAAAAAAAE10/H2TBrSEOfZ45lYQakhQEz1tAfpdI8E4EwCLcB/s72-c/Undangan%2BAqiqah%2Bselapanan%2Bsyukuran%2Bformat%2Bms%2Bword.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 2.bp.blogspot.com/-Ad0SNDPqAbQ/WGM7p8QP9jI/AAAAAAAAE10/H2TBrSEOfZ45lYQakhQEz1tAfpdI8E4EwCLcB/s72-c/Undangan%2BAqiqah%2Bselapanan%2Bsyukuran%2Bformat%2Bms%2Bword.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash fe031fa383824647c340c717676490a2
e3f5385c70dcf30b311986b3162817023c88dae4
bcb0970003b86a5cbb3b67948cde174cf2b2ae015db5bf6d7184217ed824a3f3
GET /-Ad0SNDPqAbQ/WGM7p8QP9jI/AAAAAAAAE10/H2TBrSEOfZ45lYQakhQEz1tAfpdI8E4EwCLcB/s72-c/Undangan%2BAqiqah%2Bselapanan%2Bsyukuran%2Bformat%2Bms%2Bword.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v135e"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Undangan Aqiqah selapanan syukuran format ms word.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 3591
X-XSS-Protection: 0
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0349e6d78e3182b23c8a0b92b3b0a8b3
0fc1da04b464f7b1e7ff4f56b3ee95d72417f1d1
79840bcd7e18738f712f7d87bbbfdb05269e357d388523676ce4333cc8a2f2d4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=91342
Date: Sat, 28 Jan 2023 12:24:08 GMT
Etag: "63d3d217-1d7"
Expires: Sun, 29 Jan 2023 13:46:30 GMT
Last-Modified: Fri, 27 Jan 2023 13:31:03 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FD8g-JxrR1snU0NECtrsw5UOyWtJaWc2ZLrGbvaqPUCQECylT4RyeQ==
Age: 927
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7aa39f6d36d5f61782ab265b425647ef
08348416e84e3c36cdb8aad9a5b72070ce00d9b5
c595e935d3b4504f9b4518d98f50d4462a99627c17fd67a15f71d3f352510001
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shaggyselectmast.com/pixel/purst?dl=0&th=0&sc=0&rs=1357&rd=1357&fd=837&bv=22.10.v.9&tmpl=70
192.243.59.13200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/purst?dl=0&th=0&sc=0&rs=1357&rd=1357&fd=837&bv=22.10.v.9&tmpl=70
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1357&rd=1357&fd=837&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
simplewebanalysis.com/stats
35.156.167.37200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.156.167.37:0
File type ASCII text, with no line terminators
Hash 4b3eb0a050cf211db68e05ef6687d368
8c68f4f2233809a314dc5731a831d2ef15147b3d
17c2af1ec9bb77f5786641fe67ce644b3e700aad9f095f1b7e9e0c34208c5b55
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://burcin6ghazi.blogspot.com
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 28 Jan 2023 12:24:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://burcin6ghazi.blogspot.com
access-control-allow-credentials: true
set-cookie: uid_id2=a355d626-a59f-4ee2-a83d-6a7b2d465e72:2:1; expires=Tue, 25 Jan 2033 12:24:08 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/feeds/posts/default/-/Walimatul?alt=json-in-script&callback=relpostimgcuplik&max-results=50
216.58.207.193200 OK 24 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/feeds/posts/default/-/Walimatul?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (65453)
Hash 47b90bc96e68ce46eff9792fa0755fa1
f49c2d0904859a40572319720f9ee29e6ba67fec
959e692a1fed4ae238b04ad3cf3f5b713ef6884bc352c54aa77ceeeac415dc33
GET /feeds/posts/default/-/Walimatul?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"ac564cb933a2ddbcd625e7fbecfe504e13e7e7d30c807cc43ede1f8ead4b8d96"
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
Content-Encoding: gzip
Content-Length: 24057
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-CTPD0WxDvC0/WhGM09QtBQI/AAAAAAAABy0/uUXEGpvjIJkQPjDPYLWZR_ZMagRIQbWYgCLcBGAs/s72-c/contoh%2Bundangan%2B40%2Bhari%2Bwafat.jpg
142.250.74.161200 OK 2.2 kB URL HTTP/1.1 3.bp.blogspot.com/-CTPD0WxDvC0/WhGM09QtBQI/AAAAAAAABy0/uUXEGpvjIJkQPjDPYLWZR_ZMagRIQbWYgCLcBGAs/s72-c/contoh%2Bundangan%2B40%2Bhari%2Bwafat.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 4242ff8bb46d0f19c53953a8c7bb4ec7
65d08ed12c140fb9b8f98eed3e1585de83a5a2fc
f373875a60ae2f2af52611cf99e5d59ec7a38c27e098fb21dc874ecef19e233e
GET /-CTPD0WxDvC0/WhGM09QtBQI/AAAAAAAABy0/uUXEGpvjIJkQPjDPYLWZR_ZMagRIQbWYgCLcBGAs/s72-c/contoh%2Bundangan%2B40%2Bhari%2Bwafat.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v732"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="contoh undangan 40 hari wafat.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 2200
X-XSS-Protection: 0
undanganterbaru.com/wp-content/uploads/2017/08/Contoh-Undangan-Khitanan-Anak.jpg
206.2.163.23301 Moved Permanently 0 B URL HTTP/1.1 undanganterbaru.com/wp-content/uploads/2017/08/Contoh-Undangan-Khitanan-Anak.jpg
IP 206.2.163.23:0
ASN #139646 HONG KONG Megalayer Technology Co.,Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/08/Contoh-Undangan-Khitanan-Anak.jpg HTTP/1.1
Host: undanganterbaru.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Server: nginx
Location: http://www.undanganterbaru.com/wp-content/uploads/2017/08/Contoh-Undangan-Khitanan-Anak.jpg
Content-Type: text/html
1.bp.blogspot.com/-1HCXk-cvyiU/VPRx-o9hz7I/AAAAAAAAAPQ/y03oVq5JlIU/s72-c/Screenshot_004.jpg
142.250.74.161200 OK 3.7 kB URL HTTP/1.1 1.bp.blogspot.com/-1HCXk-cvyiU/VPRx-o9hz7I/AAAAAAAAAPQ/y03oVq5JlIU/s72-c/Screenshot_004.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 335debae861c6aac82be9bc4d2b49627
0931d62d9447a7c20c06e367b5e5b79284edb513
9f50cb1e4acb195d3038654ae5db465087b724ba646ccb0e37243bb387baef8d
GET /-1HCXk-cvyiU/VPRx-o9hz7I/AAAAAAAAAPQ/y03oVq5JlIU/s72-c/Screenshot_004.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vf5"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Screenshot_004.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 3711
X-XSS-Protection: 0
burcin6ghazi.blogspot.com/feeds/posts/default/-/Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50
216.58.207.193200 OK 59 kB URL HTTP/1.1 burcin6ghazi.blogspot.com/feeds/posts/default/-/Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP 216.58.207.193:0
File type Unicode text, UTF-8 text, with very long lines (65475)
Hash c878baca4632276a1a22db8b8b47396d
1fb25bd3a92d347a5cd4dfab283a03b090f6913a
6828cf326ae616af2573e6a8a62ca6512714a92b3653edd2ba4589a26666fcf6
GET /feeds/posts/default/-/Khitan?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"f3c1edfbc23875bb589aaac7fe19ebfd98554a4385f68fb37e527b7a6ff6dc0d"
Date: Sat, 28 Jan 2023 12:24:08 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
Content-Encoding: gzip
Content-Length: 59246
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-taTMr5kYllw/V_sSwMVovRI/AAAAAAAAANs/v-qneXeUboEbSdH6Mw4SdWfYm5_dhWneACK4B/s1600/khitan%2Bconvert%2B-bejodesain.blogspot.com-.jpg
142.250.74.161200 OK 287 kB URL HTTP/1.1 2.bp.blogspot.com/-taTMr5kYllw/V_sSwMVovRI/AAAAAAAAANs/v-qneXeUboEbSdH6Mw4SdWfYm5_dhWneACK4B/s1600/khitan%2Bconvert%2B-bejodesain.blogspot.com-.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x758, components 3\012- data
Size 287 kB (287190 bytes)
Hash ade14a690d6a94a3c084f7484664f2d3
c162634e2b603506803cf61589cf1b76bfd1dcb5
825f7d7ff108bf664d15d4de96dcf3fe9d4933487e0150c76e150fca3f637fbd
GET /-taTMr5kYllw/V_sSwMVovRI/AAAAAAAAANs/v-qneXeUboEbSdH6Mw4SdWfYm5_dhWneACK4B/s1600/khitan%2Bconvert%2B-bejodesain.blogspot.com-.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vdc"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="khitan convert -bejodesain.blogspot.com-.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 287190
X-XSS-Protection: 0
4.bp.blogspot.com/-a5M8ZpnwfNs/TeD9WAiU68I/AAAAAAAAAQM/-2dNm5lkAZg/s72-c/First+Birthday.png
142.250.74.161200 OK 5.7 kB URL HTTP/1.1 4.bp.blogspot.com/-a5M8ZpnwfNs/TeD9WAiU68I/AAAAAAAAAQM/-2dNm5lkAZg/s72-c/First+Birthday.png
IP 142.250.74.161:0
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 7729896038f6672780a361db964279a3
f259b9fadf0b84c571a4fd19ca688effc4370eb6
c9933ecb41a9dfe2ffdeb7efdc50ea72cd8daea88960787779e8dd68f84ec169
GET /-a5M8ZpnwfNs/TeD9WAiU68I/AAAAAAAAAQM/-2dNm5lkAZg/s72-c/First+Birthday.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v103"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="First Birthday.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 5686
X-XSS-Protection: 0
lh3.googleusercontent.com/-Jgy1fU14ikQ/TW4GVw7VDHI/AAAAAAAAABI/xDAgiDUMXvw/s72-c/mars1.jpg
142.250.74.97200 OK 2.5 kB URL HTTP/1.1 lh3.googleusercontent.com/-Jgy1fU14ikQ/TW4GVw7VDHI/AAAAAAAAABI/xDAgiDUMXvw/s72-c/mars1.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3570b3bcc7358ca375b9452d312804a7
58987a5577597137a90a2f98a9680ca5f54e8c0d
be03ff8a69c2f4d915311115afebf788b90875765d7408055a9eaf082a6218da
GET /-Jgy1fU14ikQ/TW4GVw7VDHI/AAAAAAAAABI/xDAgiDUMXvw/s72-c/mars1.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v12"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mars1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 2543
X-XSS-Protection: 0
3.bp.blogspot.com/-uRinEVlkcww/Ueftlp5rdtI/AAAAAAAAADU/OYozBlnzOEw/s72-c/Undangan+walimatul+Ursy.jpg
142.250.74.161200 OK 2.4 kB URL HTTP/1.1 3.bp.blogspot.com/-uRinEVlkcww/Ueftlp5rdtI/AAAAAAAAADU/OYozBlnzOEw/s72-c/Undangan+walimatul+Ursy.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 96b1a168956a33c87651fa5f1db01795
819279d830971514ae7fac4d95a475bf3ddac47e
27ebe58a0ec1947cec4792b2c03e821d1da57b67947fcb83e0816ab8bdfb2fac
GET /-uRinEVlkcww/Ueftlp5rdtI/AAAAAAAAADU/OYozBlnzOEw/s72-c/Undangan+walimatul+Ursy.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v122"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Undangan walimatul Ursy.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 2414
X-XSS-Protection: 0
www.arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
104.21.94.37301 Moved Permanently 2.7 kB URL HTTP/2 www.arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
IP 104.21.94.37:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e669b05a6592d271c370f1652ba668c2
b55f746b80dbbf8746ca58d83dec28c462933200
5f80b55b34e0705426bedddf2d434507166fd86b3bdf89c0ac4da76629163a01
GET /wp-content/uploads/2019/01/chuwi-laptop.jpg HTTP/1.1
Host: www.arisurachman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://burcin6ghazi.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 12:24:08 GMT
content-type: text/html; charset=UTF-8
location: https://arisurachman.com/wp-content/uploads/2019/01/chuwi-laptop.jpg
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=beLMd%2B4pSu%2Fg16PXWaa2oHnSSWEScRQmjhTMHSCM7tDEMTCJ01tLeu%2FI%2Fs2AuDczMJEc49CSH6fQ3oduvM9E7RaXSYoTYlIpsiLqkppPcMjc7YcLLcECj0ItS9fZ4j0McSilCoomFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7909b40d4bc6b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
3.bp.blogspot.com/-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s72-c/template-undangan.jpg
142.250.74.161200 OK 2.6 kB URL HTTP/1.1 3.bp.blogspot.com/-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s72-c/template-undangan.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5bc9b8c0abfaad07bc5b83bdde6e28a0
1a8b1485b71feb6c63ab76e16b0ca20e5a2ce84c
43ab16a25c739e66108cf6d4b52d61b3e5e7c5eb613006c26ab0579c089cbe7c
GET /-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s72-c/template-undangan.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve3"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="template-undangan.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 2562
X-XSS-Protection: 0
2.bp.blogspot.com/-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg
142.250.74.161400 Bad Request 1.6 kB URL HTTP/1.1 2.bp.blogspot.com/-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash fbe36eb2eecf1b90451a3a72701e49d2
ae56ea57c52d1153cec33cef91cf935d2d3af14d
e8f2ded5d74c0ee5f427a20b6715e65bc79ed5c4fc67fb00d89005515c8efe63
GET /-9nrh14gMeOM/UzgAl3ZMDtI/AAAAAAAAAtY/daAadbBgcik/s72-w1200-c-h630-p-k-no-nu/Foto-Cherrybelle.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 400 Bad Request
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 1555
X-XSS-Protection: 0
3.bp.blogspot.com/-UR3r9t4mRsE/UElAlVSh_JI/AAAAAAAAAR8/dImSwlkq5XU/s72-c/surat+undangan.bmp
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 3.bp.blogspot.com/-UR3r9t4mRsE/UElAlVSh_JI/AAAAAAAAAR8/dImSwlkq5XU/s72-c/surat+undangan.bmp
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 447beafe2a104a580316ce25dcc9dc7f
68c6549efee3edbd79a74fbf8df9af3763228fba
771b5b1dd74ef4dc2a71cbfdc76f74c2ceafb18187eabaeb04f5f96e7278f4e6
GET /-UR3r9t4mRsE/UElAlVSh_JI/AAAAAAAAAR8/dImSwlkq5XU/s72-c/surat+undangan.bmp HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v11f"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="surat undangan.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 1969
X-XSS-Protection: 0
1.bp.blogspot.com/-MMNyne7w2KU/U-WgnKA12wI/AAAAAAAACw4/GU33KuHK1VI/s1600/khitan+bg3.JPG
142.250.74.161200 OK 76 kB URL HTTP/1.1 1.bp.blogspot.com/-MMNyne7w2KU/U-WgnKA12wI/AAAAAAAACw4/GU33KuHK1VI/s1600/khitan+bg3.JPG
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 609x401, components 3\012- data
Hash d6341b9843d262c582eb9ef81be92fb0
efa97708dae17989cac918f051b20c00cc052ee1
5dee7ded659e53b88e2ecf63b6cea24be6262c146123238b6c12bb45cbe2f8bd
GET /-MMNyne7w2KU/U-WgnKA12wI/AAAAAAAACw4/GU33KuHK1VI/s1600/khitan+bg3.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v37d7"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="khitan bg3.JPG"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 76416
X-XSS-Protection: 0
bukhoryprint.files.wordpress.com/2011/06/sunatan.jpg
192.0.72.30200 OK 965 kB URL HTTP/2 bukhoryprint.files.wordpress.com/2011/06/sunatan.jpg
IP 192.0.72.30:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=3613, bps=0, PhotometricIntepretation=BlackIsZero, orientation=upper-left, width=3088], progressive, precision 8, 3088x3613, components 3\012- data
Size 965 kB (965370 bytes)
Hash a39982cb8ebd51f9ca44d061371a4552
ec0d8e0cf4cc8bb08b53f3f7c32d507444ab47a5
4fc87712ab6e3508453446c6daa7107839640848989ce9c20d203a34bb47a20f
GET /2011/06/sunatan.jpg HTTP/1.1
Host: bukhoryprint.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://burcin6ghazi.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 12:24:08 GMT
content-type: image/jpeg
content-length: 965370
last-modified: Fri, 24 Jun 2011 05:05:26 GMT
expires: Tue, 21 Feb 2023 20:34:28 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://bukhoryprint.wordpress.com
vary: Origin
x-nc: MISS arn 30 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
2.bp.blogspot.com/-8AupDWoyj_M/V-x50LszgPI/AAAAAAAAEZk/CeDpJF2CqFo9_hDlWjHe6_5Yr1Nl1-KugCLcB/s72-c/Contoh%2BDesain%2BBlanko%2BUndangan%2BKhitanan%2Bdan%2BPernikahan%2BERBA%2B88166%2BUnik%2BVersi%2BCorelDRAW%2Bbelajar%2Bcoreldraw%252C%2Bkumpulan%2Btutorial.jpg
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 2.bp.blogspot.com/-8AupDWoyj_M/V-x50LszgPI/AAAAAAAAEZk/CeDpJF2CqFo9_hDlWjHe6_5Yr1Nl1-KugCLcB/s72-c/Contoh%2BDesain%2BBlanko%2BUndangan%2BKhitanan%2Bdan%2BPernikahan%2BERBA%2B88166%2BUnik%2BVersi%2BCorelDRAW%2Bbelajar%2Bcoreldraw%252C%2Bkumpulan%2Btutorial.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 7ecda3b8a42d71032de1fd435b78b500
90c93cef3c681d94d3cbe5f50355c7397aab6e83
f7e607e0b8924a60e7f4b7a79cedda522c542c3e7fbce5fb83f9094c539ea02b
GET /-8AupDWoyj_M/V-x50LszgPI/AAAAAAAAEZk/CeDpJF2CqFo9_hDlWjHe6_5Yr1Nl1-KugCLcB/s72-c/Contoh%2BDesain%2BBlanko%2BUndangan%2BKhitanan%2Bdan%2BPernikahan%2BERBA%2B88166%2BUnik%2BVersi%2BCorelDRAW%2Bbelajar%2Bcoreldraw%252C%2Bkumpulan%2Btutorial.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v119a"
Expires: Sun, 29 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Contoh Desain Blanko Undangan Khitanan dan Pernikahan ERBA 88166 Unik Versi CorelDRAW belajar coreldraw, kumpulan tutorial.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:09 GMT
Server: fife
Content-Length: 4464
X-XSS-Protection: 0
www.arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
104.21.94.37301 Moved Permanently 1.8 kB URL HTTP/2 www.arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
IP 104.21.94.37:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ISO-8859 text, with very long lines (560), with CRLF line terminators
Hash d6660b1d6c0926030ea7ff8372d45813
068d89b07cf9e8fb4753dacd58e43b00c4c7000f
e281f4e1b1a2b3372105afb726946c53e702c905e73eb539b727637c6c1b91a8
GET /wp-content/uploads/2019/01/Screenshot_117.png HTTP/1.1
Host: www.arisurachman.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://burcin6ghazi.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 12:24:08 GMT
content-type: text/html; charset=UTF-8
location: https://arisurachman.com/wp-content/uploads/2019/01/Screenshot_117.png
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yNENkN9nFpN%2Bo4c9q6njQje%2BAG5Hm7MQCgv6NmUKsmvGMV03NvdA%2Fn0WMmjuRUyo78rgVHk0mdm2H%2FO7e%2Bm22rovmD021dXCQfcrQVHXNkXS3%2BEy0FnaTNfjhUb9884nvFwG5a4XAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7909b40d4bcfb503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
2.bp.blogspot.com/-kUXGS8nLgNk/UhVqqR9jxnI/AAAAAAAAAoA/JP5wqIzbazI/s72-c/contoh+undangan+aqiqah.jpg
142.250.74.161200 OK 1.9 kB URL HTTP/1.1 2.bp.blogspot.com/-kUXGS8nLgNk/UhVqqR9jxnI/AAAAAAAAAoA/JP5wqIzbazI/s72-c/contoh+undangan+aqiqah.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash f7e8e635c6dfa333c523d30af9b0c5e9
f0c51c9be8b7dfc2f1a6ea81f15dd8123c9ee9b0
c287d0833272ab0fe90dcf351c7c69b582bfafde3a02692263e1060def02e8b4
GET /-kUXGS8nLgNk/UhVqqR9jxnI/AAAAAAAAAoA/JP5wqIzbazI/s72-c/contoh+undangan+aqiqah.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v281"
Expires: Sun, 29 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="contoh undangan aqiqah.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:09 GMT
Server: fife
Content-Length: 1902
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622311873d3819b9911301b09bc2d43c
9f08d648e40479aa12da033da15b80a15017c739
6138674cec17da8b7bb02bf0686bf3e7aefa2bce6a5f844ebd80e10b665818b8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
216.58.211.4200 OK 668 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 216.58.211.4:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash dc0970ee345b90a14d79327dc20bf48c
ef64af0b9aa38731125da81bbd3aa5247d30da7d
37b0c4b55ed83ab6e05003db8b0c4814ea0f92100727929af3407e535d1c8a10
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 28 Jan 2023 12:24:09 GMT
date: Sat, 28 Jan 2023 12:24:09 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
banquetunarmedgrater.com/advertisers.js
192.243.61.225200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 28 Jan 2023 12:24:09 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 10e7cb9044159d3828fc2f5f50c82d64
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 7.0 kB IP 142.250.74.131:0
Hash 6ab3c9bfa9dd44fe43cdafb6998422a2
46117be810d1b14196eb0e2fc6ed3be667d14f98
b98f6477389a7d023829f5362521ec295b335ddeea9f3b290b0e2ecf08912fa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab04da9bc46246cc0001464e7f6b5e19
01ce4f7004aec7a24d4545a1e742ab6a1e639b48
22e519a39cb2e7e5f6da23d35f4498aa7a2d00e06613fd3bbf8de8a62ed2d354
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.238200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sat, 28 Jan 2023 12:24:09 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+849; expires=Mon, 27-Jan-2025 12:24:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 12:24:09 GMT
cache-control: private
X-Firefox-Spdy: h2
2.bp.blogspot.com/-DFuCFT7Kjuk/TbL-fTMcd0I/AAAAAAAAGec/qb5Nfs3cqg0/s72-c/Template%2BUndangan%2BTasmiyah%2Bdan%2Baqiqah.jpg
142.250.74.161200 OK 4.7 kB URL HTTP/1.1 2.bp.blogspot.com/-DFuCFT7Kjuk/TbL-fTMcd0I/AAAAAAAAGec/qb5Nfs3cqg0/s72-c/Template%2BUndangan%2BTasmiyah%2Bdan%2Baqiqah.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 145b2b1a48f6dfcbda972726ac39d84c
65d58311818838bdb1dd03f675934d1065a6cc2f
355d2aa127fa3da711f5eedc82e9446821b5d66ab135de27c52decee30327f66
GET /-DFuCFT7Kjuk/TbL-fTMcd0I/AAAAAAAAGec/qb5Nfs3cqg0/s72-c/Template%2BUndangan%2BTasmiyah%2Bdan%2Baqiqah.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v19e7"
Expires: Sun, 29 Jan 2023 12:24:09 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Template Undangan Tasmiyah dan aqiqah.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:09 GMT
Server: fife
Content-Length: 4662
X-XSS-Protection: 0
play.google.com/log?format=json&hasfast=true&authuser=0
216.58.207.238200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 216.58.207.238:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2975
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sat, 28 Jan 2023 12:24:09 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+534; expires=Mon, 27-Jan-2025 12:24:09 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sat, 28 Jan 2023 12:24:09 GMT
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmAewphz39ZOIQp51yVpbHKN0ivWDytJpSKd4w-1IaksGgWb4-hOTd5s5Pgs1hWjilNU0Lrr5RFrDo0a-xuDdUfUp7VDeQ
216.58.207.193200 OK 233 B URL HTTP/1.1 burcin6ghazi.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmAewphz39ZOIQp51yVpbHKN0ivWDytJpSKd4w-1IaksGgWb4-hOTd5s5Pgs1hWjilNU0Lrr5RFrDo0a-xuDdUfUp7VDeQ
IP 216.58.207.193:0
File type JSON data\012- , ASCII text, with very long lines (397), with no line terminators
Hash 745ea5a00c5b6e107898b8e2b02c8317
f35725ba04bddee9722d8ac366730a32f6936214
163a414e5eaa92e4e35d321999fb5d9fff9b098914c2b670b28d0a8c0802ebef
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmAewphz39ZOIQp51yVpbHKN0ivWDytJpSKd4w-1IaksGgWb4-hOTd5s5Pgs1hWjilNU0Lrr5RFrDo0a-xuDdUfUp7VDeQ HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a355d626-a59f-4ee2-a83d-6a7b2d465e72%3A2%3A1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sat, 28 Jan 2023 12:24:09 GMT
Expires: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 233
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9198
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 12:24:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9198
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 12:24:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9198
Expires: Sat, 28 Jan 2023 14:57:27 GMT
Date: Sat, 28 Jan 2023 12:24:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 52043
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.5 kB URL HTTP/1.1 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash eb34f61c512a19197043aa91983468a6
007bf5d74944f142685aab958578c6e86f6420e6
b8e2392f1ecb4a54de0d33135916d59327fa34c5527cd27b30a30ce321ddf0e9
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
date: Sat, 28 Jan 2023 12:22:58 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 985989790
content-type: text/javascript
content-length: 4547
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
x-iplb-request-id: 5B5A2A9A:26D3_2E69C9F0:0050_63D513E9_40F5A:18E78
x-iplb-instance: 42474
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ed1a0bd725b2078b4cfe4ed83877901
62493ca03be9870aac2341e033611a6d56bd322a
706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
age: 52052
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 25446
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4afa01d2ffe17f8378e4c0b5afd4608
f5c7e2137efa07a207427a6b6fe1df541f85ea25
84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yEFlWGi3J14JLA0l2h02VlIqV8opHesKP6GOvfoP5Tp0m7dOYDxIGA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:32 GMT
age: 51877
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 50889
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 335cb821617fe98e993190c93c616f86
130b6f6d592f3ab052015656653a1b3ac259599d
ee90912b731ff31e52ccd404bf45ec6b6d3802247a29f9397eed153ab709df96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3237aa3-30cf-4312-861c-8d923987ed4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8569
x-amzn-requestid: 7926b37a-46c2-4e66-b533-672408ff177e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbAv-FgYoAMFwpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d447ff-6d972424308f4b3a70470b78;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:54:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: R7UhPoWWbU3wogLqLlj3-kM8xC8KtvNSq3PLwEQVdX7shTY2OAAIfw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:57:33 GMT
etag: "130b6f6d592f3ab052015656653a1b3ac259599d"
content-type: image/jpeg
age: 51996
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
burcin6ghazi.blogspot.com/favicon.ico
216.58.207.193200 OK 412 B URL HTTP/1.1 burcin6ghazi.blogspot.com/favicon.ico
IP 216.58.207.193:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: burcin6ghazi.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/2019/03/mmt-walimatul-khitan.html
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=a355d626-a59f-4ee2-a83d-6a7b2d465e72%3A2%3A1; ppu_main_8de4527f955fee61d57370b3d481b7b7=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 28 Jan 2023 12:24:09 GMT
Date: Sat, 28 Jan 2023 12:24:09 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sun, 20 Nov 2022 12:06:03 GMT
ETag: W/"af119cb890a7cb000d5b1104ef1b4afa9f9bbe1a7d89c8597a0513f1962e5916"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 92408803e3a56bf9c29d241a60bc07ce
d68b404d7b51432a8fdca70a6ecfcfaea841b1b9
64edeb4de4110c283651d99e6fe1ecc057acb83af12b3788e227111bd14441ac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64EDEB4DE4110C283651D99E6FE1ECC057ACB83AF12B3788E227111BD14441AC"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19951
Expires: Sat, 28 Jan 2023 17:56:40 GMT
Date: Sat, 28 Jan 2023 12:24:09 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 138966
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 157406
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4320217&@f16&@g1&@h1&@i1&@j1674908652271&@k0&@l1&@mMmt%20Walimatul%20Khitan&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-36029984&@b3:1674908652&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fburcin6ghazi.blogspot.com%2F2019%2F03%2Fmmt-walimatul-khitan.html&@w
149.56.240.27200 OK 49 B URL HTTP/1.1 s4.histats.com/stats/0.php?4320217&@f16&@g1&@h1&@i1&@j1674908652271&@k0&@l1&@mMmt%20Walimatul%20Khitan&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-36029984&@b3:1674908652&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fburcin6ghazi.blogspot.com%2F2019%2F03%2Fmmt-walimatul-khitan.html&@w
IP 149.56.240.27:0
File type ASCII text, with no line terminators
Hash 24de2a9470e1eed59c952b87cfd2f572
f5ce3cb8c4e701c98af9af781548d63914084781
16c50eb7aace17cc13e2f5ce276843ed6187a6578b4ebcdc134cab19467c85f0
GET /stats/0.php?4320217&@f16&@g1&@h1&@i1&@j1674908652271&@k0&@l1&@mMmt%20Walimatul%20Khitan&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-36029984&@b3:1674908652&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fburcin6ghazi.blogspot.com%2F2019%2F03%2Fmmt-walimatul-khitan.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 12:24:10 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 49
Connection: close
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 0 B IP 142.250.74.131:0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 12:24:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s1600/template-undangan.jpg
142.250.74.161200 OK 0 B URL HTTP/1.1 3.bp.blogspot.com/-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s1600/template-undangan.jpg
IP 142.250.74.161:0
GET /-KOa4FIQbnzs/Wott_cCnNWI/AAAAAAAAAOI/cyNsRUQ8vdwqVJdk0LXVl50uda_y3I55QCLcBGAs/s1600/template-undangan.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://burcin6ghazi.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "ve3"
Expires: Sun, 29 Jan 2023 12:24:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="template-undangan.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 28 Jan 2023 12:24:08 GMT
Server: fife
Content-Length: 403497
X-XSS-Protection: 0