Report - johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html

Report Overview

Submitted URL
johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-10-06 13:04:31
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
18

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
play.google.com	34	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.8 kB	216.58.207.206
i.pinimg.com	689	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	110 kB	151.101.84.84
s10.histats.com	15211	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	366 B	4.7 kB	46.105.201.240
cdn.sb4you1.com	22321	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	9.5 kB	172.64.201.2
imgv2-1-f.scribdassets.com	42675	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	445 B	74 kB	151.101.86.152
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	180 kB	216.58.207.195
lh3.googleusercontent.com	66	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.5 kB	22 kB	142.250.74.1
i.ytimg.com	109	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	405 B	161 kB	142.250.74.182
s4.histats.com	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	643 B	183 B	158.69.251.190
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	31 kB	23.36.77.32
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	68 kB	216.58.207.201
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	429 B	160 kB	142.250.74.163
significantoperativeclearance.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.9 kB	9.9 kB	192.243.61.225
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	11 kB	104.17.24.14
fasrbanner291.weebly.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	425 B	114 kB	199.34.228.53
encrypted-tbn0.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	457 B	3.3 kB	142.250.74.78
johan-yersbloggould.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	874 B	51 kB	142.250.74.161
cdn.barscreative1.com	25648	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	471 B	386 B	45.133.44.4
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	52.39.126.109
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	831 B	91 kB	31.13.72.12
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	62 kB	34.120.237.76
cdn.cloudimagesb.com	23099	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	16 kB	45.133.44.9
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.9 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
litemarca2223.github.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	11 kB	185.199.111.153
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	35 kB	142.250.74.10
cdn.slidesharecdn.com	50838	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	60 kB	151.101.86.152
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	420 B	1.3 kB	142.250.74.164
i0.wp.com	3021	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	106 kB	192.0.77.2
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.6 kB	14 kB	142.250.74.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	93.184.220.29
image.slidesharecdn.com	28368	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	938 B	27 kB	151.101.86.152

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed
2022-10-06	medium	significantoperativeclearance.com	Sinkholed

Files detected

URL
r3.o.lencr.org/
IP
23.36.77.32
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
19 kB (19275 bytes)
Hash
c9e51ad57041a078b6ed6948fe383ef4
a320ac16a9592d7edeafb6a06f36e73df12bf150
1006bcb8f541d8c2015f67464b6ca7524d01c14ee379c8d89e0c32a06db7ff3b

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

URL
significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=410
IP
192.243.61.225
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, max compression\012- data
Size
660 B (660 bytes)
Hash
5860c780c8e9daa4f852038f02b5bdc2
c75c8b4db36bffe075ce493f06d011f855d5541a
f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (62)

	URL	Size	First Seen	Last Seen
	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	77 B	2023-03-07	2024-04-21
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-21 20:41:59 Times Seen8924 Hash f2ce051b9726657f82dcb6f75cd51ca9 7f3e6dcc1f61f2f8c1953f002cebf38107673535 1f4ddc2aa5caebd1c325b608d3e8daefa8f9c30911349fd06b2bca6d514d57a9 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash c2e45dad0d75ec6f6a0e7841ac9f0334 64a6f40600306a16fda17dcd51f4e9107d148c5a 42c94bb0a8163e7ced76a142c03108ba556011b62966c20ecdce8d98475479dd Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=gjrlf4q20h7p	69 B	2023-03-07	2024-04-24
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=gjrlf4q20h7p IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-24 06:51:00 Times Seen99340 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	170 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:07:02 Times Seen1 Hash b8fdba5cbba4181989d7282d42ef4cc8 1f5e89a2c401807b626529fd8025fb1d0f559021 902125131a33d73886c2cc91485971771e71a8bb159638afa2fa985b187c3c3b Loading...

	www.blogger.com/static/v1/widgets/829820975-widgets.js	158 kB	2023-03-08	2023-05-29
Pretty URL www.blogger.com/static/v1/widgets/829820975-widgets.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:47:32 Last Seen2023-05-29 18:50:49 Times Seen3 Hash 4416f6dbe48f2ced30d398207aa6bf14 fda8efc8da2b808bde4075cd48ef9b549a2f1e37 e94e65cc0ca8c2eba63ae6d128531fc243059b4dc418e7c7ced6d3762f4f0c56 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	789 B	2023-03-07	2024-02-13
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	84 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:02 Times Seen30645 Hash 50371200cd5f1f923ab39ef2ef84f798 5a3bbc0639a7a75c53fc1ce7a8c7a0433f6b3285 6f32e65215e120986a7ab3e61b08961abcf448f7d1986d12f94dbab7ac2ccadc Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	105 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:03 Times Seen30544 Hash b47393a011801ae3c2e20bffd05ff81e 3e12884bf79d0b71a980f852b7577324b505dce4 bd5de7d4323c02ad258b93b291b368aa5a2dfb49f8ff1add3deca73fe6ad76a3 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	100 B	2023-03-07	2024-04-07
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:42 Last Seen2024-04-07 16:59:40 Times Seen290 Hash baaa4d052d21212dc08d8d65fcbc5607 80e177da0b045ede6faa748ba1b460bba17568bf e966545620d20e88b682964e363b278bde6080dfeec9351fdb1f9af427a01435 Loading...

	http:blank	659 B	2023-03-07	2023-03-17
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-03-17 11:27:33 Times Seen1 Hash 1d84922ee477c8ea1a3146578df93b01 b68bbd7030bdd4ecfbe8a9eb0e51198ac536d883 b5a5bd4ee28058b8ab6db91f8bdbc9cafe9cbb3ede54a63110842d15f8c33f03 Loading...

	connect.facebook.net/en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48	308 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48 IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:04:56 Last Seen2023-03-08 07:36:56 Times Seen1 Hash 032e52f2f42bb88efa022a47bbf6c90a 56318b2e2da9e495252429c0582e6b4e2ba52fdf 0fe9406fd09f8ac894e49540e82bc4cdce6ad1f0ebaba9cefce1a7e33ab58a02 Loading...

	s10.histats.com/counters/cc_509.js	13 kB	2023-03-07	2023-03-17
Pretty URL s10.histats.com/counters/cc_509.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-03-17 11:27:33 Times Seen1 Hash 53036f6dae906e0ed9e1b88e0122fd55 e0c39f56c846c7d6fc56f8546fd96349a1b93a17 6dfaf0a481e57e8237d22cc902758601ac75a7470824b3399a6cc708a84e7026 Loading...

	www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu	1.0 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:40:52 Last Seen2023-03-08 12:05:56 Times Seen1 Hash 3d567527a8e7f15a8b6a5c7ac2c78f8b b6e8121355e37fc8656c0abce972973ba291f102 3ed55c9c7a1e62355b1d9dcfb723bd216c2eea26ff783024300d092a16e7364f Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	8.6 kB	2023-03-07	2023-11-22
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2023-11-22 14:56:24 Times Seen3 Hash 2c7b41cff7dc79933103074b79bd1164 424363bfd91f4252b907638da4edc19c8606d6e8 cf29041dc38d750e93cd50e9d72ab640e2f1d4d1e51c93de1a7bc761a482aa65 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,YwHGTd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=bm51tf	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,YwHGTd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=bm51tf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:07:02 Times Seen1 Hash 5a1df47b980269d0bd1b3bb125380df0 880200d5ed4d80b9db0e10a5c6d88caee81f57d6 484dc2ff64c74d4d1816c0b59a4de2fb6f1259c54cdfd5e5d108377493cddcc1 Loading...

	johan-yersbloggould.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-24
Pretty URL johan-yersbloggould.blogspot.com/js/cookienotice.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-24 06:51:04 Times Seen113225 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	s10.histats.com/js15_as.js	11 kB	2023-03-07	2024-03-25
Pretty URL s10.histats.com/js15_as.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-03-25 09:24:29 Times Seen1978 Hash e959fbdd13def4b9a9d0a5fc9a7de4d4 1e39712307e3673b40c0bdb8c7d3e86a3e8b60a0 2defe59e357a7d0683c8283ac42841db404a0884cae2eaecebf4b676e559dede Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=_b,_r,_tp/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=n73qwf,ws9Tlc,e5qFLc,GkRiKb,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,WzT7ae,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,S2r0ad,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,I6YDgd,xQtZb,MdUzUe,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,zbML3c,yDVVkb,zr1jrb,KG2eXe,Uas9Hd,VwDzFe,ZDqTJc,eD1YLc,A7fCU,pjICDe	286 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=_b,_r,_tp/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=n73qwf,ws9Tlc,e5qFLc,GkRiKb,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,WzT7ae,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,S2r0ad,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,I6YDgd,xQtZb,MdUzUe,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,zbML3c,yDVVkb,zr1jrb,KG2eXe,Uas9Hd,VwDzFe,ZDqTJc,eD1YLc,A7fCU,pjICDe IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:06:28 Times Seen1 Hash b955798013f641f27bedee86f2802b85 c3c8c871d07f6e16fec5ea2cb6b98995fa7da496 e88bdc5f82c5069b9ad2f3c451018bfa534b08bd316aaaf9338f6d329dd24537 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	549 B	2023-03-08	2023-03-08
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash ef7f1cc5fbec3b4e3a027f3fe7c3ca45 e18a243443fa6f176bdfae9030f441cf7563fc38 77d462d1c9dd7a9f8909e8bfa3a68470aae3a970a3c2fe0114a8d6bfee7ac5a4 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	12 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:00 Times Seen30573 Hash e5b17204cd55d18a8a2a41824d9fec28 40e8060add70f00c034257f9d49a50dd799ba846 3d0c04a7592aa05499634991244c8d7cce5e5f8b7a414ef8b83d6442b6d52612 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	1.9 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 77d88ef78398037b3df4d2b5c91c796d 1fd1324351a3ecaa044e687a9e4caeed2191be13 3f813de9a89dfb9a2e0ad94ea42a87fd366149be4dbc2549d142652b529fec57 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	339 B	2023-03-07	2024-04-15
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2024-04-15 15:27:24 Times Seen68 Hash ea09b451d33c376e656ee5f6ffc49fdf ca687d890ac32a82e0c97a1ac6b081ba7f146014 21e581d9ec4a1f55f80a54e754d5078168f9d3da284e3317ed69f69b05f4bb25 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	12 kB	2023-03-08	2023-03-08
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 174bb0fa25120910432fd7da39278dfa 06bcbf4386bf0c22e8904b11209b4b1a711ef288 aecaad0236154e819b1d83583adda90a243ef48ecf9202734ff4706ad25ed7af Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	63 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:01 Times Seen30605 Hash 3ca9fc059879b598f3d6d3003cf130b3 d641a68a8bccf23c0fe85576609870d5f36cdd9d 3d2b5964246a6a054c9fb0a3a79e72b47de369280fd18b7e5e0bb42a441bb38b Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js	90 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.5.0/jquery.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:07 Last Seen2024-04-24 05:25:34 Times Seen56385 Hash 12108007906290015100837a6a61e9f4 1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3 c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/am=6gAIBA/d=1/excm=_b,_r,_tp,commentformiframeview/ed=1/dg=0/wt=2/rs=AEy-KP0uMkEsCUFqJ81eh9THgAVp1gv-PQ/m=_b,_tp,_r	180 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/am=6gAIBA/d=1/excm=_b,_r,_tp,commentformiframeview/ed=1/dg=0/wt=2/rs=AEy-KP0uMkEsCUFqJ81eh9THgAVp1gv-PQ/m=_b,_tp,_r IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:07:02 Times Seen1 Hash 86df585befcba936279d80f9be3cf92e 5be432bda893e99df168db231c382a767115b622 8a7cf2161a4133ef86cc69f61995e74038d8e188a8661994460fd80553b06ae0 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	864 B	2023-03-07	2023-11-22
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2023-11-22 14:56:24 Times Seen4689 Hash 7454e38fa6cde44ee932663aecc94c26 0f461cebf19b9bd4c738eff4aac7214c6d1eefc0 ccb6deb78c9a464300938c9cd2581ddb610ad8d4a1756f0d80361c04c014d9da Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	73 B	2023-03-07	2024-04-21
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:42 Last Seen2024-04-21 20:41:59 Times Seen1482 Hash 5657bd7ba587c384380b42959c806934 dc30b7d23650b4c8ecb7acc080696ee96b2e9cbd 4fffd50f56e34b6d9a2a3cca725730a459d02adf86ed9744beeb8469e24ded85 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	672 B	2023-03-08	2023-03-08
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 24dbfb03a90db9433c91d36e174c1de8 573e37a9c863a2c327697ca051ccee84860a41a7 a537e8aed1f1e3ab5e2132b1351d9905d198f1cde40b6c05bd5d0461f15fabca Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	8.6 kB	2023-03-07	2023-11-30
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-11-30 15:42:53 Times Seen22 Hash 8bae7bdcb0640da80c8d978977f7bfba 93430905d8dad760498baf73476ea835b26816ea 3f3dea778a11bb294f2a08e9175568c6dbc5cdfc8aeb9ecfca562f4ad5d1e37d Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	209 kB	2023-03-07	2023-08-09
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-08-09 13:59:16 Times Seen5 Hash 14c5f38039025bab89b038fd50898684 94d3748c1bc305197878e7c6b976b72f5f23bfab cfc5ca280eb8ceec234d8ca4f69c65a4c25c0fb4c78c66a4658892b49da7be6a Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	213 B	2023-03-07	2023-03-17
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2023-03-17 22:17:08 Times Seen1 Hash 2171411877344313342eff3991a746d0 ee8f5e59b2bcbfefef0cc4ead9e9ff1e813ebb10 defff14239922952810c641613286958359cc7362daf4cbe398b6aa0c2b3a7b1 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	130 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:01 Times Seen30585 Hash b90579d967def1905d8e58bde1d6baa6 d90906655ce68eb39abb59c16153675683d53d5c f984f4834618294a8c88f19ce3af90459eb4eef60144b2b9cb6a79d12a4621d5 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	9.3 kB	2023-03-07	2023-03-17
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:41 Last Seen2023-03-17 11:27:33 Times Seen1 Hash 1afd94f7735bc17deabbb8638f2adabe 91fe2b98971ac3a399154530b77a5979805b181c 94924923b5417374ca66454682e3ac77b0014d162f96b8859446e7f6c43a70bd Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=A4UTCb,VXdfxd,YwHGTd,i6Ko2d,pxq3x,fgj8Rb,XvDhNc,fgib1c	74 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,WzT7ae,XVMNvd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=A4UTCb,VXdfxd,YwHGTd,i6Ko2d,pxq3x,fgj8Rb,XvDhNc,fgib1c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:07:02 Times Seen1 Hash 38092986e64b04405286fb84b8a038c2 9f3bea1952e72481da7f87d3c983a21df3ba86b9 3e18eb834ced1130a31c4207c913d4642ce25fdee61a67ade9a36abf76c9422b Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	88 B	2023-03-07	2023-11-08
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-11-08 05:59:58 Times Seen28 Hash e9f47013ed87cb8283bcd2ebb9b4512e 7fbfd64b7edbc0acd1a0364ff63337ac99aecfa4 21959d46e012b95070dd07d32f1dc7bf197a6fe96a797a2d9301e98f3ade63e5 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js	97 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js IP 142.250.74.10 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-24 06:27:53 Times Seen118654 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	321 B	2023-03-07	2024-04-20
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:42 Last Seen2024-04-20 22:48:12 Times Seen617 Hash cd5802de973128ed223bfb1025438156 066879a7071cde2913c4a2f5ced004c4702933a3 52c3a4f78b20c9c842c9378f16f2169cfde5e3f0eb10ad40eb9ac6b0805f3bcc Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=gjrlf4q20h7p	35 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=a9s0j4pCVT6gaTEkLiFbtZPH&size=invisible&cb=gjrlf4q20h7p IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash efbc0d60824045182b0b0e69bd5e60cb 66c212037707b66978d22286ee66d8d8c5a8a164 5576095d80277a594e6a24ef2117ec68839a4a40f62a2d0224c7df816a2323eb Loading...

	www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js	17 kB	2023-03-08	2023-03-26
Pretty URL www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:26:24 Last Seen2023-03-26 03:01:41 Times Seen2 Hash f18def4ccec463cf908f91e7cba7f2c1 02d95f67edd84a44c82255ca7abcdbf7f4d0cee5 12b91cbf31131a10b1fc2aa05047c027caeac0d6e0ca5deadf418fff63d68082 Loading...

	www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,YwHGTd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=Wt6vjf,hhhU8,FCpbqb,WhJNk	6.2 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.cKa7BxmL-3c.es5.O/ck=boq-blogger.BloggerCommentUi.lu42s5-P6Mo.L.F4.O/am=6gAIBA/d=1/exm=A4UTCb,A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,I6YDgd,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,S2r0ad,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,WzT7ae,XVMNvd,XvDhNc,YwHGTd,ZDqTJc,ZfAoz,ZwDk9d,_b,_r,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,fgj8Rb,gZjhIf,gychg,hKSk3e,hc6Ubd,i6Ko2d,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_r,_tp,commentformiframeview/ed=1/wt=2/rs=AEy-KP20TNTQJQ8uPEk0bnRaWSShiEOBtA/ee=cEt90b:ws9Tlc;QGR0gd:Mlhmy;uY49fb:COQbmf;yxTchf:KUM7Z;qddgKe:xQtZb;iFQyKf:vfuNJf;dIoSBb:SpsfSb;EmZ2Bf:zr1jrb;zxnPse:GkRiKb;NSEoX:lazG7b;nAFL3:NTMZac;oGtAuc:sOXFj;eBAeSb:zbML3c;Pjplud:EEDORb;io8t5d:yDVVkb;j7137d:KG2eXe;Oj465e:KG2eXe;ul9GGd:VDovNc;sP4Vbe:VwDzFe;kMFpHd:OTA3Ae;NPKaK:SdcwHb;pXdRYb:MdUzUe;SNUn3:ZwDk9d;LBgRLc:SdcwHb;wR5FRb:O1Gjze/m=Wt6vjf,hhhU8,FCpbqb,WhJNk IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:56:10 Last Seen2023-03-08 08:07:02 Times Seen1 Hash 4fd75dcc39e18537ee0912009975cfd6 4b5b14380264f990284360149d5f086fcc195e1e 4c0c853e70fd69693eb01d12e84ae00cffe19739e5d569e122c915fd8cd421cc Loading...

	www.blogger.com/static/v1/jsbin/3582835653-lbx.js	377 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/static/v1/jsbin/3582835653-lbx.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:47:32 Last Seen2023-03-08 13:18:36 Times Seen1 Hash b69eedbb95a2107e7cd50668221cb132 14d10da4d6ca10244fb9575c59de312abe36cf7a 47ec9fab4919b059f880bf9365fb15c46f46654a8f2b3c685cd7bad71012fb07 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	86 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:01 Times Seen8996 Hash ca62aeda78389ab3211271656e8eab92 1a72a954e7d5d653f4ebce44c81418cc5372facb 32a3478caba9994a9080b708949a982e77ed573b0ec204237ffdcd3dd4f7e927 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	326 B	2023-03-07	2023-08-09
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-08-09 13:59:16 Times Seen4 Hash a6f65b21e9a8f20a292427761a7f6edf fc402ca8175d601cdd815992056d48524fff0596 0644411804e7d8f152ada30ab327bc6358219dc085368cb9d8080282aecfa395 Loading...

	litemarca2223.github.io/iklanmarcasocial/socialmasbro.js	34 kB	2023-03-07	2023-08-09
Pretty URL litemarca2223.github.io/iklanmarcasocial/socialmasbro.js IP 185.199.111.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:04:06 Last Seen2023-08-09 13:59:16 Times Seen7 Hash a1880edd0e4e82abc8b608877d7ee718 caf0a7dc97249db603c7f31d66fba909f8545ae2 f9aa18d611057b70eb9e760eb33841aceec40223c1852f9ac4328a202eeda49f Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	43 B	2023-03-07	2024-04-24
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2024-04-24 06:51:01 Times Seen27242 Hash 5482bd576fe18ff505188b5fd74c4f43 a45df5d0e151738f6042507c1ebe4f47a8953ac1 6d265f94d2ec05109a8ec3d16726b901d9ab981ecc5a04ceb59c830d845e7aa0 Loading...

	connect.facebook.net/en_US/sdk.js#xfbml=1&version=v3.0	3.1 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/en_US/sdk.js#xfbml=1&version=v3.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:37 Times Seen1 Hash 023fbc5be87930c67279469e6b95a464 08d8dbac46314fcc9a95c1e5315287ad2cd78df1 331dacb4551321fdb9fa4bece1f2a1c65e6a8e21a8c6c6a73e24049a7d65e0f8 Loading...

	s4.histats.com/stats/0.php?4635212&@f16&@g1&@h1&@i1&@j1665061463739&@k0&@l1&@mContoh%20Kertas%20Kerja%20Csr&@n0&@o1000&@q0&@r0&@s509&@ten-US&@u1280&@b1:-170020710&@b3:1665061464&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjohan-yersbloggould.blogspot.com%2F2022%2F06%2Fcontoh-kertas-kerja-csr.html&@w	51 B	2023-03-07	2023-03-08
Pretty URL s4.histats.com/stats/0.php?4635212&@f16&@g1&@h1&@i1&@j1665061463739&@k0&@l1&@mContoh%20Kertas%20Kerja%20Csr&@n0&@o1000&@q0&@r0&@s509&@ten-US&@u1280&@b1:-170020710&@b3:1665061464&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjohan-yersbloggould.blogspot.com%2F2022%2F06%2Fcontoh-kertas-kerja-csr.html&@w IP 158.69.251.190 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:17:50 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 1c15b4b171a2cb2a87dd52f25ddbe1ea 5b037bae37a97dd78d4432a14302a85b94ccf9f9 6cae14f89c77ed63e2ab9e9cd92727d290a06e36abba67836874339ec276a014 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	275 B	2023-03-07	2024-04-24
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-24 06:51:01 Times Seen57273 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	107 B	2023-03-07	2024-04-07
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:47 Last Seen2024-04-07 16:59:40 Times Seen98 Hash c60aa01f836297a3407db9f4eea00ebd 55a40510a28a67b7d22e0f5bed630a7e35d4e1c0 3e7e9af5edb3d0beea2e326915a8078625c961b099e4b9b42b772732f97b1c63 Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	1.2 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 3c00f9abeedeaff4748057740767f60b 38264adeaae629cc21aabc9f14365d977c355756 992fb796f4bb6524ef3c928186c2c47a3d7fc53ab769741da9fd117de0f31eee Loading...

	www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768	1.8 kB	2023-03-07	2023-03-17
Pretty URL www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:32 Last Seen2023-03-17 12:44:35 Times Seen1 Hash 8aa2b0ef354bca640d1fb93f59be3b44 7a28e451be0cd4276bf533bbc3ab971c8a1a576e 4de39f424b9224d4302be8c17ddc30745e69dbc224d8d7da9253598fce2d07e2 Loading...

	www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js	399 kB	2023-03-08	2023-03-11
Pretty URL www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:40:09 Last Seen2023-03-11 13:30:42 Times Seen1 Hash f35658481ed15bc5f9e381e5babb040b 6ac7505ec9c522b239aeefed9ff6c1ff4d7c98e5 bec7e5a49219ef10544321dbd44f27849644f20623c16f05baeeeaa73e3b9332 Loading...

	johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html	474 B	2023-03-07	2024-04-15
Pretty URL johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:42 Last Seen2024-04-15 15:27:24 Times Seen334 Hash 80fa980cfe141b1dbc36333cabfa2c7d dc20e5926ade5cd6c130420a839eb827cc7f2ef2 057e2882c1cc483c8ba5311a36edabff34f54d0fcf11a7fd818c1e553103de9a Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2e6914d77abb6e7840a5119421995ee0	16 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 05:58:51 Last Seen2023-03-08 08:07:46 Times Seen1 Hash 2e6914d77abb6e7840a5119421995ee0 6d354a298ac5298d63b472fbeb169c0f19cffc28 785368f80392fac2588fe98c4a61181ce777d15a35bd5572d7740f4124fe8f65 Loading...

	#2 Eval - afdf2d586b77af97a727d7e7f777199e	18 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash afdf2d586b77af97a727d7e7f777199e d0b5063d17cec5d2118945765a470624878aa87c 639ba9628763f582c172239c6fb65c580b5e59a464b902842f6696df8105efc4 Loading...

	#3 Eval - 13123b36af5f12b94632552d5f944523	62 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 05:58:51 Last Seen2023-03-08 08:07:46 Times Seen1 Hash 13123b36af5f12b94632552d5f944523 2f37776f2dd55e31e83211c27f23ff66621508c0 ac0459c568af29bd816e7904e26a2f614a0d16ee451bbad2e29ef2f5a4eb566c Loading...

	#4 Eval - 460a9e4927b65a1ec566ca4d7f03558a	58 kB	2023-03-07	2023-08-09
Pretty Observations First Seen2023-03-07 12:04:06 Last Seen2023-08-09 13:59:16 Times Seen5 Hash 460a9e4927b65a1ec566ca4d7f03558a 08e4801f8d5470dbb2166a81680b5495d8485a7c b34e6d895b1d997fbf8d11156cbe3e4641b3758e1cf9bbf99d6c621e72bb7c55 Loading...

	#5 Eval - 099d1f77d71fa86e9d2cd6653e97512f	22 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 05:58:51 Last Seen2023-03-08 08:07:46 Times Seen1 Hash 099d1f77d71fa86e9d2cd6653e97512f 15e748ee5f5fd811858f2606f327f7f9b9cf136d 46803f53adbea35f28f34cfbbccddebf6ae29454b5d15cde348e4c577386337d Loading...

	#6 Eval - 502a712dec171bd4ce35b4d97958ebd6	19 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 07:19:23 Last Seen2023-03-08 07:19:23 Times Seen1 Hash 502a712dec171bd4ce35b4d97958ebd6 44123c62067dd0bb51d353e50c2f4c0647bed8d8 ae7cf5d69463dcd56de5e1cdc61c661407da768d8a151e0ac5daf482cbcdc5b9 Loading...

	#7 Eval - d875047ff684e05806d9c10b1d1f7f06	51 kB	2023-03-07	2023-08-09
Pretty Observations First Seen2023-03-07 12:04:06 Last Seen2023-08-09 13:59:16 Times Seen5 Hash d875047ff684e05806d9c10b1d1f7f06 60f7855a6536bec904e6f3050e9cdec77b78954f a9f7c9c0c433b9506869e251040d99001730e6709392e44ea0584b6d5daef2cb Loading...

	#8 Eval - 6ea539112fab340050f89a5be90c37a3	22 B	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 05:58:51 Last Seen2023-03-08 08:07:46 Times Seen1 Hash 6ea539112fab340050f89a5be90c37a3 47ddc3e649203f8db623e258c84c08c9bb5e5bc7 973d9bb2938645d67a00f9ca20209eea3bbe8b556d0b25d5caf313f1644ad067 Loading...

HTTP Transactions (112)

URL IP Response Size

johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html

142.250.74.161

301 Moved Permanently

209 B

URL HTTP/1.1
johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
209 B (209 bytes)
Hash
b0d2cd9ada52c0718437a5afa8be2aad
8a528a36c1089f1f267b88c50692ef0d09aecc04
78eb8a81aee6139047a1f043f7713ba4b7a35d6025261140318c1f7ad9d969aa

HTTP Headers

GET /2022/06/contoh-kertas-kerja-csr.html HTTP/1.1
Host: johan-yersbloggould.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Thu, 06 Oct 2022 13:04:20 GMT
Expires: Thu, 06 Oct 2022 13:04:20 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 209
Server: GSE

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12137
Expires: Thu, 06 Oct 2022 16:26:37 GMT
Date: Thu, 06 Oct 2022 13:04:20 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

54.230.111.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9LK8hRpmEn-74ErIvJzJVropG-3HYDJ5vstFRdJgfWBobIV_VuvJAQ==
Age: 76622

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a1073a68ed38c8e3575e889224db944c
ee2a7a3e2da77a8540131f9ffaa0a20d4dd486bd
a9fb1f7ade7c8a79d2ee83e9b7215e66dc89ac733b11079297a8f4b9aceae1f5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A9FB1F7ADE7C8A79D2EE83E9B7215E66DC89AC733B11079297A8F4B9ACEAE1F5"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2196
Expires: Thu, 06 Oct 2022 13:40:56 GMT
Date: Thu, 06 Oct 2022 13:04:20 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PF5QnPNoc/qn1bO4EMQMmiUXehV6Gs6qS/uOq660ieb7IFN4AOn8hhIkgz41xixSJdA3xuvjfJQ=
x-amz-request-id: 1ETZ6B6VY442A9NS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 12:58:45 GMT
age: 335
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
36b1ec1ebfdbe3367fc1fde546d47281
a12333d6fdf5f29a25fcac13b21e4a4f45ca5ba6
c95cde94d5b12b299aecb89ed8b9a8ad30e46e4704a30ab8329742a396e00090

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 13:04:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

54.230.111.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
54.230.111.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 12:29:41 GMT
Expires: Thu, 06 Oct 2022 12:52:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GzYE0kvtmr6jMy6lb6HwP2s7ZU86VbTtJzrhwz5vrf47uSZCURLnzA==
Age: 2079

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
36b1ec1ebfdbe3367fc1fde546d47281
a12333d6fdf5f29a25fcac13b21e4a4f45ca5ba6
c95cde94d5b12b299aecb89ed8b9a8ad30e46e4704a30ab8329742a396e00090

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css

104.17.24.14

200 OK

9.8 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.8.2/css/all.min.css
IP
104.17.24.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (54998)
Size
9.8 kB (9802 bytes)
Hash
2b0f6842c4954ea1ac87e102c86b46d6
b2347b42e69fbf8a8f42f55a41e988f93047db9e
d28ca638cc83a512bd0cea5d91ff833b6109fabebecdef0a58e8226c8f21adbf

HTTP Headers

GET /ajax/libs/font-awesome/5.8.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:21 GMT
content-type: text/css; charset=utf-8
content-length: 9802
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-d78f"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 721575
expires: Tue, 26 Sep 2023 13:04:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2BiLsKhjsfcAu%2Blzsv7Wdjwz0UBlZyxS%2BZDyA%2BTxUsYiSc1nEzhSwTNxUv2Wm%2Bjk7rFI7FYTYwFOkmDHLjqlfRxRHdIyfJlaJs%2BoPctbaT%2FT5Jy9Roj1kpe4PUQJTuBpic5REKSr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 755e9a33bc39b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js

216.58.207.201

200 OK

6.6 kB

URL HTTP/2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1441)
Size
6.6 kB (6573 bytes)
Hash
f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde

HTTP Headers

GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 06:42:19 GMT
expires: Thu, 05 Oct 2023 06:42:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 10:51:30 GMT
content-type: text/javascript
age: 109322
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html

142.250.74.161

200 OK

50 kB

URL HTTP/2
johan-yersbloggould.blogspot.com/2022/06/contoh-kertas-kerja-csr.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (474)
Size
50 kB (50024 bytes)
Hash
df1210e5f3c9acb1398431d69317a35c
53e22129f2a7bf6293f7c2ecc063a70be37442d3
75e0ed376617f2123862481108334793bbef51810204eb742603daa6f99bf5a1

HTTP Headers

GET /2022/06/contoh-kertas-kerja-csr.html HTTP/1.1
Host: johan-yersbloggould.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 06 Oct 2022 13:04:20 GMT
date: Thu, 06 Oct 2022 13:04:20 GMT
cache-control: private, max-age=0
last-modified: Fri, 05 Aug 2022 04:02:10 GMT
etag: W/"6e441469fc123903f54f211bfd7b007c5f5ead2a82134d2be0b02bf46ffa9dc7"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 50024
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

litemarca2223.github.io/iklanmarcasocial/socialmasbro.js

185.199.111.153

200 OK

9.9 kB

URL HTTP/2
litemarca2223.github.io/iklanmarcasocial/socialmasbro.js
IP
185.199.111.153:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (33869)
Size
9.9 kB (9908 bytes)
Hash
3cec519fd24634fd05d878fba41da904
73056b53c8d73d7782bf77f24c8a18ef4fcb5186
d635ac3808134b4a550b8e9d472d23875abaf86d2f1c073dcc9d8b9e01806c72

HTTP Headers

GET /iklanmarcasocial/socialmasbro.js HTTP/1.1
Host: litemarca2223.github.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
last-modified: Tue, 29 Mar 2022 11:18:28 GMT
access-control-allow-origin: *
strict-transport-security: max-age=31556952
etag: W/"6242eb04-844e"
expires: Thu, 06 Oct 2022 12:55:16 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: MISS
x-github-request-id: 0806:D1B4:EB8AD:F0C05:633ECDDC
accept-ranges: bytes
date: Thu, 06 Oct 2022 13:04:21 GMT
via: 1.1 varnish
age: 572
x-served-by: cache-bma1663-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1665061461.307977,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 0b15832725cfdabea1a127dfb9b3b21fd75e549a
content-length: 9908
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8be5570b9a5ca76c580da007a824b029
38840f2ac6476bdd5608121c5653e338c7ad9715
0b94e05080ef85432b1815eb3c6c7594c9613cfde1b51eeabee46d0d9fde64b2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1888
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Last-Modified: Thu, 06 Oct 2022 12:32:53 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/829820975-widgets.js

216.58.207.201

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/829820975-widgets.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56806 bytes)
Hash
b18547f3bc01f36c7dd3a6b6082feeb0
ca60d4a2bcd171bfe918249742cfde4223f0ba00
7666d4f1e68fda03543de42ac22d422822013499d6937cc08ae884bfdef3688b

HTTP Headers

GET /static/v1/widgets/829820975-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56806
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 02:07:50 GMT
expires: Thu, 05 Oct 2023 02:07:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 05 Oct 2022 00:52:39 GMT
content-type: text/javascript
age: 125791
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

image.slidesharecdn.com/paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-2-320.jpg?cb=1429238231

151.101.86.152

200 OK

19 kB

URL HTTP/2
image.slidesharecdn.com/paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-2-320.jpg?cb=1429238231
IP
151.101.86.152:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x415, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
19 kB (18648 bytes)
Hash
d67aa184a47b41780e8850b5ea93f761
121b07ca92a3ff65cf70875258cd908285d21343
c8a471ea7bb5967c1143c25cba9b99dfdc9d9bab2fde0d55eee7a72dbfeed3ee

HTTP Headers

GET /paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-2-320.jpg?cb=1429238231 HTTP/1.1
Host: image.slidesharecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
etag: "GkbVoTwFPu0mHV2N7v5ky7wbwK2clf9ge6+Ez1wY2BQ"
fastly-io-info: ifsz=27116 idim=320x415 ifmt=jpeg ofsz=18648 odim=320x415 ofmt=webp
fastly-stats: io=1
server: AmazonS3
x-amz-id-2: 3Y4lO5+H1q2GaWnaAlBMHmK/KMzhIBS9LvCPy2NT4VsF20Nz0NHAQZpNuKkJpYpoCbQzXIg3Dm8=
x-amz-request-id: 34HDMQGF40MNR213
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 13:04:21 GMT
age: 426412
x-served-by: cache-iad-kiad7000103-IAD, cache-bma1666-BMA
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1665061461.287026,VS0,VE100
vary: Accept
expires: Thu, 13 Oct 2022 13:04:21 GMT
cache-control: max-age=604800
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 18648
X-Firefox-Spdy: h2

cdn.slidesharecdn.com/ss_thumbnails/kertaskerjacadanganbagiprogramkhidmatmasyarakat2-160227135528-thumbnail-4.jpg?cb=1456581357

151.101.86.152

200 OK

59 kB

URL HTTP/2
cdn.slidesharecdn.com/ss_thumbnails/kertaskerjacadanganbagiprogramkhidmatmasyarakat2-160227135528-thumbnail-4.jpg?cb=1456581357
IP
151.101.86.152:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 768x1087, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
59 kB (59068 bytes)
Hash
18b37450f9ec4019098c1a33b9282035
2b40262f82b945a5f0a5e33b0a0ac5f67c43f386
a7ffacc6a0820eb36ad54ca32f7edd69e366efa1976380ea078cf14eb6e94ae0

HTTP Headers

GET /ss_thumbnails/kertaskerjacadanganbagiprogramkhidmatmasyarakat2-160227135528-thumbnail-4.jpg?cb=1456581357 HTTP/1.1
Host: cdn.slidesharecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
etag: "J1fqgkwqZSo7xHiJhKgSIiTP8PUruhzTe+PGrxYCa2s"
fastly-io-info: ifsz=122876 idim=768x1087 ifmt=jpeg ofsz=59068 odim=768x1087 ofmt=webp
fastly-stats: io=1
server: AmazonS3
x-amz-id-2: ZPuXNFW40infqnsAYGWkvlM34eYhpaTI8NLgeYo1iEpaZdz1L5a+mWNpUgIuD69BQetEVrIF+9o=
x-amz-request-id: APP27726F489V1W2
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 13:04:21 GMT
age: 424223
x-served-by: cache-iad-kiad7000057-IAD, cache-bma1663-BMA
x-cache: HIT, MISS
x-cache-hits: 2, 0
x-timer: S1665061461.291591,VS0,VE96
vary: Accept
expires: Thu, 13 Oct 2022 13:04:21 GMT
cache-control: max-age=604800
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 59068
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js

142.250.74.10

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32077)
Size
34 kB (33951 bytes)
Hash
fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec

HTTP Headers

GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 13:29:12 GMT
expires: Thu, 05 Oct 2023 13:29:12 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 84909
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/dyn-css/authorization.css?targetBlogID=5655040523859188418&zx=9eb6fd81-89bd-4c45-aaf9-a14ba3489b8d

216.58.207.201

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=5655040523859188418&zx=9eb6fd81-89bd-4c45-aaf9-a14ba3489b8d
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=5655040523859188418&zx=9eb6fd81-89bd-4c45-aaf9-a14ba3489b8d HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 13:04:21 GMT
last-modified: Thu, 06 Oct 2022 13:04:21 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

imgv2-1-f.scribdassets.com/img/document/373793860/original/56f2c28275/1651911034?v=1

151.101.86.152

200 OK

73 kB

URL HTTP/2
imgv2-1-f.scribdassets.com/img/document/373793860/original/56f2c28275/1651911034?v=1
IP
151.101.86.152:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 768x1024, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
73 kB (73142 bytes)
Hash
314025305cd67607619df4d48b1d3210
da113ad3113fcb2d5646ae670f02c0fe4b557af6
fe1fece3d0b54f3b2e7d490ce9e058e3ebaef3f941414a5355aa0e7a54fc38e9

HTTP Headers

GET /img/document/373793860/original/56f2c28275/1651911034?v=1 HTTP/1.1
Host: imgv2-1-f.scribdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=864000,stale-while-revalidate=86400,stale-if-error=86400
content-type: image/webp
etag: "wBw46G/S56J6DLsX3Gd6d1g9WxDBMAw0DXOsX7E744M"
fastly-io-info: ifsz=152508 idim=768x1024 ifmt=jpeg ofsz=73142 odim=768x1024 ofmt=webp
fastly-stats: io=1
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 13:04:21 GMT
age: 735012
x-served-by: cache-chi-kigq8000139-CHI, cache-bma1639-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1665061461.293454,VS0,VE116
vary: Accept
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 73142
X-Firefox-Spdy: h2

image.slidesharecdn.com/paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-8-320.jpg?cb=1429238231

151.101.86.152

200 OK

6.7 kB

URL HTTP/2
image.slidesharecdn.com/paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-8-320.jpg?cb=1429238231
IP
151.101.86.152:0
ASN
#54113 FASTLY

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 320x415, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.7 kB (6748 bytes)
Hash
cf80f3677e254600ed4b9ec23ecfcafc
acef1dc1bbc455f0d998d1923a3dd62f9ac8137c
b1e75bcba21a6c16136bcd715e5ff736d6163af25445b1c0b587919559ceb9f4

HTTP Headers

GET /paperwork-150417023626-conversion-gate02/85/kertas-kerja-csr-8-320.jpg?cb=1429238231 HTTP/1.1
Host: image.slidesharecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
etag: "+3uAa719PkEWZ5iHn7WpnoG/InIaJIvw+e+7B+r/fco"
fastly-io-info: ifsz=11717 idim=320x415 ifmt=jpeg ofsz=6748 odim=320x415 ofmt=webp
fastly-stats: io=1
server: AmazonS3
x-amz-id-2: +cq9yVOlk/yGQjIHx8UQQA34kraClgBZxtY7+LAihEHZSMOmKuDpr9GBqO9UWpmbZlVgNeXfK7U=
x-amz-request-id: 12NQ0NBMYSAY2776
x-amz-version-id: null
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 06 Oct 2022 13:04:21 GMT
age: 0
x-served-by: cache-iad-kjyo7100128-IAD, cache-bma1666-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1665061461.285036,VS0,VE144
vary: Accept
expires: Thu, 13 Oct 2022 13:04:21 GMT
cache-control: max-age=604800
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6748
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
29305d430d4a98929d99f493c8fa0e09
37e64cc35bce4869f3573c565fdd177dc4e128c0
0557db8eed6f9f794247c44d8b7a8cd99caf6716cc48932ce3b3c1d907493869

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jL.woff2

216.58.207.195

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jL.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21244, version 1.0\012- data
Size
21 kB (21244 bytes)
Hash
78773521b0ffe376bc7edd8ec2a591fb
298df2fcb48b2e9b51e81a6e12d5529835204e29
ca0b35aa0f48d8359e7fce9feec83f90ed60c0b857cdf29784f0803b70de4e55

HTTP Headers

GET /s/firasans/v10/va9E4kDNxMZdWfMOD5Vvl4jL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 16:52:18 GMT
expires: Fri, 29 Sep 2023 16:52:18 GMT
cache-control: public, max-age=31536000
age: 591123
last-modified: Mon, 22 Jul 2019 19:21:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22336, version 1.0\012- data
Size
22 kB (22336 bytes)
Hash
2ecb426f85ffc1c53b677556210e629f
ad9850819763f79ddc8e1edb97609acbb5f1c28d
92bf2667e3434750097f9212feca904c5e7ac36d9155463d25d79f1415018219

HTTP Headers

GET /s/firasans/v10/va9B4kDNxMZdWfMOD5VnLK3eRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 16:11:25 GMT
expires: Sat, 30 Sep 2023 16:11:25 GMT
cache-control: public, max-age=31536000
age: 507176
last-modified: Mon, 22 Jul 2019 19:22:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22184, version 1.0\012- data
Size
22 kB (22184 bytes)
Hash
5a2c789b59571ce97f51f9c75600f49b
4cc6f3da8e778609a8f7105618eb649d27b7fafe
2c78829309a448aea34fab52316dae24c72769ff800289c98760416c8fa77d7c

HTTP Headers

GET /s/firasans/v10/va9B4kDNxMZdWfMOD5VnSKzeRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 13:12:56 GMT
expires: Sat, 30 Sep 2023 13:12:56 GMT
cache-control: public, max-age=31536000
age: 517885
last-modified: Mon, 22 Jul 2019 19:21:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/firasans/v10/va9C4kDNxMZdWfMOD5VvkrjJYTI.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/firasans/v10/va9C4kDNxMZdWfMOD5VvkrjJYTI.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22100, version 1.0\012- data
Size
22 kB (22100 bytes)
Hash
ee9f23730618d80fcb96905621eb5155
34c698826dd9fa28d707092a79fd4265ced51a6e
88f34d90cb970c712d57f802cb4fd4fdcf3ba9a247a359b1c255f2b503b30766

HTTP Headers

GET /s/firasans/v10/va9C4kDNxMZdWfMOD5VvkrjJYTI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 03:06:14 GMT
expires: Sat, 30 Sep 2023 03:06:14 GMT
cache-control: public, max-age=31536000
age: 554287
last-modified: Mon, 22 Jul 2019 19:22:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c98d0ac427e21534cd8b1394533723c8
12106565a3555d039ed34656233457660e97f734
875cc4576df079e72da2d1c55193c1a6238f18e61956f3368692b348cd752f16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "875CC4576DF079E72DA2D1C55193C1A6238F18E61956F3368692B348CD752F16"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9253
Expires: Thu, 06 Oct 2022 15:38:34 GMT
Date: Thu, 06 Oct 2022 13:04:21 GMT
Connection: keep-alive

fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2

216.58.207.195

200 OK

21 kB

URL HTTP/2
fonts.gstatic.com/s/firasans/v10/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 21304, version 1.0\012- data
Size
21 kB (21304 bytes)
Hash
d8bc03a60729f4b05b42e057e21eaed3
51d1a6303f98e2426f5b300105fd9c04784f1395
0803fe007fad869e084745368c965e8d55f9be108559cfd8a3d802cde1fe34c1

HTTP Headers

GET /s/firasans/v10/va9B4kDNxMZdWfMOD5VnZKveRhf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 01:50:03 GMT
expires: Sat, 30 Sep 2023 01:50:03 GMT
cache-control: public, max-age=31536000
age: 558858
last-modified: Mon, 22 Jul 2019 19:21:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c98d0ac427e21534cd8b1394533723c8
12106565a3555d039ed34656233457660e97f734
875cc4576df079e72da2d1c55193c1a6238f18e61956f3368692b348cd752f16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "875CC4576DF079E72DA2D1C55193C1A6238F18E61956F3368692B348CD752F16"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9253
Expires: Thu, 06 Oct 2022 15:38:34 GMT
Date: Thu, 06 Oct 2022 13:04:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43a97452bb4d24d0007e158284445543
03ed19b40095455cfe0c075cb25f75402b6f1187
acb03e10f86e7931c8a3fada3f42519af86aa50965170cc12e4a29330e4ed867

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ACB03E10F86E7931C8A3FADA3F42519AF86AA50965170CC12E4A29330E4ED867"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8157
Expires: Thu, 06 Oct 2022 15:20:18 GMT
Date: Thu, 06 Oct 2022 13:04:21 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2a70c2f5cccc2022d88c00a6e92761cd
d34be14e6b072cb63201cfe63fbbca64c8e5ce0b
9dd328f87b49797e1fd264bfcad50c226a23aef1797c472b43ff58b6edff2f85

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Last-Modified: Thu, 06 Oct 2022 11:28:37 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b0e8a79f3e381ab34a44278947ac7c7e
70d01e6fdc8565c661b6ae8c5a043ddf2da16530
885a8c234fca85e6f6bb3e8fcab6672b9a9742b5d3f74681b17a330fa295d549

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ff5f22aafa6751c60631736c305a4c7c
278b89e5c1a978e070be4b66bb780862894b8504
b501664d7591e6dfe95c8641e0020e04b76f16f5cb80a7fc0ee0b36af60a6382

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

lh3.googleusercontent.com/blogger_img_proxy/ANbyha3QvlTu_pYlRtHtcsJhe83Wr0scG9KmbMjMYvsdg_OdTtAsv85jVPby2Xo43N_myMrGD8Op-KHIVsRt6d-8qSrzc1zGsrHGtSaIQy1Zg7e-MF3W533J2SlFs8gOxlxkSNjrHDyFaRhd4SWMq-MdJFjax7oheSbQDDYlGgog=w72-h72-p-k-no-nu

142.250.74.1

200 OK

1.9 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3QvlTu_pYlRtHtcsJhe83Wr0scG9KmbMjMYvsdg_OdTtAsv85jVPby2Xo43N_myMrGD8Op-KHIVsRt6d-8qSrzc1zGsrHGtSaIQy1Zg7e-MF3W533J2SlFs8gOxlxkSNjrHDyFaRhd4SWMq-MdJFjax7oheSbQDDYlGgog=w72-h72-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size
1.9 kB (1910 bytes)
Hash
17a20cccf74b93f3e1df00b49a7ca793
dc3ed0aa523a4a65fb4085762916e9464d4440d2
62adee0932c11ba1a418a74dbe975cab1d6ebc8c81793113c37618dca4872ec1

HTTP Headers

GET /blogger_img_proxy/ANbyha3QvlTu_pYlRtHtcsJhe83Wr0scG9KmbMjMYvsdg_OdTtAsv85jVPby2Xo43N_myMrGD8Op-KHIVsRt6d-8qSrzc1zGsrHGtSaIQy1Zg7e-MF3W533J2SlFs8gOxlxkSNjrHDyFaRhd4SWMq-MdJFjax7oheSbQDDYlGgog=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:21 GMT
server: fife
content-length: 1910
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

lh3.googleusercontent.com/blogger_img_proxy/ANbyha3ZNSH0Pfej2qjdyDDo9k9xLkPTUM91AcHVQFkmuGJUey1CZsiC7xDU2p7ADabXKFWdMdkiklm15rozINaSfgLZMnyC33aHZZto8KOv1kz4y7gQeslgCHAocI3Y0iAH1z3L1zEQJFFOYIP1-iHlS30=w72-h72-p-k-no-nu

142.250.74.1

200 OK

1.4 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3ZNSH0Pfej2qjdyDDo9k9xLkPTUM91AcHVQFkmuGJUey1CZsiC7xDU2p7ADabXKFWdMdkiklm15rozINaSfgLZMnyC33aHZZto8KOv1kz4y7gQeslgCHAocI3Y0iAH1z3L1zEQJFFOYIP1-iHlS30=w72-h72-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size
1.4 kB (1404 bytes)
Hash
793f07d83bc72b2e468b64037efd1e91
3918e83ce3c41558765a18f8f8cc127280c35ee8
9750aa20c9ad44ec742e196fee185e8b2ce5a4cbb7c8dac2e139b7736fe6b1c4

HTTP Headers

GET /blogger_img_proxy/ANbyha3ZNSH0Pfej2qjdyDDo9k9xLkPTUM91AcHVQFkmuGJUey1CZsiC7xDU2p7ADabXKFWdMdkiklm15rozINaSfgLZMnyC33aHZZto8KOv1kz4y7gQeslgCHAocI3Y0iAH1z3L1zEQJFFOYIP1-iHlS30=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:21 GMT
server: fife
content-length: 1404
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
58ac1b886710ef98c8b70a37dcc2b855
ed76f180385d65285525c3426857e1880e2817c8
7fd9a97b66875a6c87413705781a8800ab15e8faaeb821364914ca2d0dd9c890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.39.126.109

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.126.109:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NZOgO8bNp+fjqzPSupicHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ggLahmWIYbo1AZF6DhOYDMX1Yxc=

142.250.74.1

200 OK

9.6 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3ZNSH0Pfej2qjdyDDo9k9xLkPTUM91AcHVQFkmuGJUey1CZsiC7xDU2p7ADabXKFWdMdkiklm15rozINaSfgLZMnyC33aHZZto8KOv1kz4y7gQeslgCHAocI3Y0iAH1z3L1zEQJFFOYIP1-iHlS30=w308-h187-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 308x187, components 3\012- data
Size
9.6 kB (9584 bytes)
Hash
ee4496f95aa743741c992306688624f2
e93c9a95fe08fd08c7f25db71a3484e779f39741
80ae52b4eb7956af97c8ad3d68935f6c848c3d3f9d370315537f2dfa9169f5af

HTTP Headers

GET /blogger_img_proxy/ANbyha3ZNSH0Pfej2qjdyDDo9k9xLkPTUM91AcHVQFkmuGJUey1CZsiC7xDU2p7ADabXKFWdMdkiklm15rozINaSfgLZMnyC33aHZZto8KOv1kz4y7gQeslgCHAocI3Y0iAH1z3L1zEQJFFOYIP1-iHlS30=w308-h187-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:21 GMT
server: fife
content-length: 9584
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

142.250.74.1

200 OK

1.8 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha3QvlTu_pYlRtHtcsJhe83Wr0scG9KmbMjMYvsdg_OdTtAsv85jVPby2Xo43N_myMrGD8Op-KHIVsRt6d-8qSrzc1zGsrHGtSaIQy1Zg7e-MF3W533J2SlFs8gOxlxkSNjrHDyFaRhd4SWMq-MdJFjax7oheSbQDDYlGgog=w83-h66-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 83x66, components 3\012- data
Size
1.8 kB (1792 bytes)
Hash
39af5a76ce4e7e6f02ef8819d8d3cd26
260ea7201f997c6f87dd0944b26458a8fc145f4b
5bfe82460ebfd62650049cd8d92e2692a9f6be3ade7f33ed439daba04cfaa3e0

HTTP Headers

GET /blogger_img_proxy/ANbyha3QvlTu_pYlRtHtcsJhe83Wr0scG9KmbMjMYvsdg_OdTtAsv85jVPby2Xo43N_myMrGD8Op-KHIVsRt6d-8qSrzc1zGsrHGtSaIQy1Zg7e-MF3W533J2SlFs8gOxlxkSNjrHDyFaRhd4SWMq-MdJFjax7oheSbQDDYlGgog=w83-h66-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:21 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:21 GMT
server: fife
content-length: 1792
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
40a4de06678d96242b71d5318f2fd4ef
546a7d1d92df81916f14155943427b5453ae3924
aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

19 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, max compression\012- data
Size
19 kB (19275 bytes)
Hash
c9e51ad57041a078b6ed6948fe383ef4
a320ac16a9592d7edeafb6a06f36e73df12bf150
1006bcb8f541d8c2015f67464b6ca7524d01c14ee379c8d89e0c32a06db7ff3b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2902799CBC81B6120648D5D6A1BB96F71F072F1A5BBC706DAF921A9D96C0387"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14789
Expires: Thu, 06 Oct 2022 17:10:51 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu

142.250.74.164

200 OK

667 B

URL HTTP/2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1034), with no line terminators
Size
667 B (667 bytes)
Hash
82b8f5bab5ac40a212da17a4b0d35e37
e7e689b272a7857e19c6eee1e8ccdab4e41bbe23
56a0c27e76fceab964c875719ffdff753bcb13e9d48c8692f71605707c843d7d

HTTP Headers

GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Thu, 06 Oct 2022 13:04:22 GMT
date: Thu, 06 Oct 2022 13:04:22 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 667
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

216.58.207.206

200 OK

0 B

URL HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Thu, 06 Oct 2022 13:04:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+727; expires=Sat, 05-Oct-2024 13:04:22 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 06 Oct 2022 13:04:22 GMT
cache-control: private
X-Firefox-Spdy: h2

play.google.com/log?format=json&hasfast=true&authuser=0

216.58.207.206

200 OK

131 B

URL HTTP/2
play.google.com/log?format=json&hasfast=true&authuser=0
IP
216.58.207.206:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd

HTTP Headers

POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 2974
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Thu, 06 Oct 2022 13:04:22 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+748; expires=Sat, 05-Oct-2024 13:04:22 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Thu, 06 Oct 2022 13:04:22 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f9371f81e2eeeead7fe351a49f3b1c40
ae23d6c6c57dd7cf568c3a74594c377b7bb7df43
03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js

142.250.74.163

200 OK

159 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (711)
Size
159 kB (158844 bytes)
Hash
b4ed95d4318e3b78b936c9c0f1ffa96e
b53c9376b1459afb07fb4b5c2e8d8dad776d3a02
3c21880cb7be6bec40f9d40c23ad39c9758999cf950cec07b86c83b21fde175f

HTTP Headers

GET /recaptcha/releases/a9s0j4pCVT6gaTEkLiFbtZPH/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158844
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:02:07 GMT
expires: Thu, 05 Oct 2023 21:02:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 Sep 2022 04:02:34 GMT
content-type: text/javascript
age: 57735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fasrbanner291.weebly.com/uploads/1/2/4/2/124231346/880814706.jpg

199.34.228.53

200 OK

114 kB

URL HTTP/1.1
fasrbanner291.weebly.com/uploads/1/2/4/2/124231346/880814706.jpg
IP
199.34.228.53:0
ASN
#27647 WEEBLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 728x942, components 3\012- data
Size
114 kB (113510 bytes)
Hash
94247ddc83fa477581d72fb02f89a522
3804633985dfcc8aa5ed9e53ee8a7dc1eec4c063
2d3e5f991831a43b489e231e8595690d29f97e7557c54b4b2810ae1fb5419784

HTTP Headers

GET /uploads/1/2/4/2/124231346/880814706.jpg HTTP/1.1
Host: fasrbanner291.weebly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 06 Oct 2022 13:04:21 GMT
Content-Type: image/jpeg
Content-Length: 113510
Connection: keep-alive
Last-Modified: Wed, 30 Oct 2019 18:36:58 GMT
x-rgw-object-type: Normal
ETag: "94247ddc83fa477581d72fb02f89a522"
x-amz-request-id: tx000000000000010c445ae-00633b774d-c696eea-sfo1
X-Storage-Bucket: z2d3e
X-Storage-Object: 2d3e5f991831a43b489e231e8595690d29f97e7557c54b4b2810ae1fb5419784
X-Host: blu86.sf2p.intern.weebly.net
Accept-Ranges: bytes

i.ytimg.com/vi/9IwMR6bQQnE/maxresdefault.jpg

142.250.74.182

200 OK

160 kB

URL HTTP/2
i.ytimg.com/vi/9IwMR6bQQnE/maxresdefault.jpg
IP
142.250.74.182:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size
160 kB (159982 bytes)
Hash
2dac8016af4eb1b1458e329565a1cf0e
6a50b496cece125fdd81841b385f7619f7219241
1add45056cd47e368a46e4eac8173d99f387d9b87e0d8029e2c61337ef951aaf

HTTP Headers

GET /vi/9IwMR6bQQnE/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 159982
date: Thu, 06 Oct 2022 13:04:22 GMT
expires: Thu, 06 Oct 2022 15:04:22 GMT
cache-control: public, max-age=7200
etag: "1625471625"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
130ee302a2d581b152c8beccdc64866e
41fba8278d61fd6638376868fbe50c752f858b44
5345486b353cd67707512700d28f5937d9ad53f23b590e82cb624f1e509c1943

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT

142.250.74.78

200 OK

2.3 kB

URL HTTP/2
encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3\012- data
Size
2.3 kB (2347 bytes)
Hash
9bef96c7479adb40f793c7b0f4f2c33d
aff2b02e9af3e14faa9d22677eda1e2e6bd481cc
fcf9fdd5ab81da78cbca3ca589d8ff4c608a00f3d90665f2dc1aa8b9636998d9

HTTP Headers

GET /images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 2347
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:51:57 GMT
expires: Thu, 05 Oct 2023 19:51:57 GMT
cache-control: public, max-age=31536000
age: 61945
last-modified: Tue, 22 Dec 2015 19:19:47 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i0.wp.com/lh6.googleusercontent.com/proxy/C1a68lTevb4DqF1FDmTIee0SziRTVUB7elO4hUeR3yJg7GnT7eKdtS2rGS0AcryhgQO8Zh9Q9wav3BJ85J23eQXcMTK_intoWJ_SYFKWdeQMZsTyAM7EdELxphXBpIxLnFz6_72YadqYkoSXCFT3LSTVgR88eEidEpHBed5tdqj4NLGT5QMzlG5mdARfyW8hmcxY_tk=w1200-h630-p-k-no-nu?resize=650,400

192.0.77.2

200 OK

38 kB

URL HTTP/2
i0.wp.com/lh6.googleusercontent.com/proxy/C1a68lTevb4DqF1FDmTIee0SziRTVUB7elO4hUeR3yJg7GnT7eKdtS2rGS0AcryhgQO8Zh9Q9wav3BJ85J23eQXcMTK_intoWJ_SYFKWdeQMZsTyAM7EdELxphXBpIxLnFz6_72YadqYkoSXCFT3LSTVgR88eEidEpHBed5tdqj4NLGT5QMzlG5mdARfyW8hmcxY_tk=w1200-h630-p-k-no-nu?resize=650,400
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 650x400, components 3\012- data
Size
38 kB (38165 bytes)
Hash
41374425467e01ccb455517c0238b0a4
2a4c461dca5ff6b645d957fbd06fe9b3bd11bdc6
e00470b60c5b63ffa69856117c3a2081e09cdc287d9d73828a753f8e93423648

HTTP Headers

GET /lh6.googleusercontent.com/proxy/C1a68lTevb4DqF1FDmTIee0SziRTVUB7elO4hUeR3yJg7GnT7eKdtS2rGS0AcryhgQO8Zh9Q9wav3BJ85J23eQXcMTK_intoWJ_SYFKWdeQMZsTyAM7EdELxphXBpIxLnFz6_72YadqYkoSXCFT3LSTVgR88eEidEpHBed5tdqj4NLGT5QMzlG5mdARfyW8hmcxY_tk=w1200-h630-p-k-no-nu?resize=650,400 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 13:04:22 GMT
content-type: image/jpeg
content-length: 38165
last-modified: Thu, 06 Oct 2022 13:04:22 GMT
expires: Sun, 06 Oct 2024 01:04:22 GMT
cache-control: public, max-age=63115200
link: <http://lh6.googleusercontent.com/proxy/C1a68lTevb4DqF1FDmTIee0SziRTVUB7elO4hUeR3yJg7GnT7eKdtS2rGS0AcryhgQO8Zh9Q9wav3BJ85J23eQXcMTK_intoWJ_SYFKWdeQMZsTyAM7EdELxphXBpIxLnFz6_72YadqYkoSXCFT3LSTVgR88eEidEpHBed5tdqj4NLGT5QMzlG5mdARfyW8hmcxY_tk=w1200-h630-p-k-no-nu>; rel="canonical"
x-content-type-options: nosniff
etag: "a6bc62c06400b7d5"
x-bytes-saved: 3992
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:31:58 GMT
expires: Sun, 01 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 433944
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 00:48:31 GMT
expires: Sat, 30 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 562551
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

significantoperativeclearance.com/sbar.json?key=b0a5aa4d907bf630e424aef014557523

192.243.61.225

200 OK

4.1 kB

URL HTTP/1.1
significantoperativeclearance.com/sbar.json?key=b0a5aa4d907bf630e424aef014557523
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (5961), with no line terminators
Size
4.1 kB (4120 bytes)
Hash
1f063df96aade300e5bdf322f9fb1a36
6a68c8dd18e8a2f29442c22979e59846a2610d40
60c509d1d9b7c42f42481ad6149d34fef09b00aaa46c75f73445f706fd723ee5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=b0a5aa4d907bf630e424aef014557523 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:22 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://johan-yersbloggould.blogspot.com
Access-Control-Allow-Origin: https://johan-yersbloggould.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17050302; expires=Fri, 07 Oct 2022 13:04:22 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 07 Oct 2022 13:04:22 GMT; secure; SameSite=None
uncs=1; expires=Fri, 07 Oct 2022 13:04:22 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 07 Oct 2022 13:04:22 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 07 Oct 2022 13:04:22 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3854bb235794218221f1f5a05b8dd69f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

lh3.googleusercontent.com/blogger_img_proxy/ANbyha0uaB09CEHvxyhX0QLbGhfv249LMdbbX_l9lO4I-u2FkH1un_7VCE7Flg7S7mcA1skzIPp-awqufxOFwEHEI4c4ysW3feQ3AKYZMCPWj1cJYbHBq2ppjmZin2UZt2u3iYpO6JQpxYojWG4t0A=w72-h72-p-k-no-nu

142.250.74.1

200 OK

1.6 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0uaB09CEHvxyhX0QLbGhfv249LMdbbX_l9lO4I-u2FkH1un_7VCE7Flg7S7mcA1skzIPp-awqufxOFwEHEI4c4ysW3feQ3AKYZMCPWj1cJYbHBq2ppjmZin2UZt2u3iYpO6JQpxYojWG4t0A=w72-h72-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size
1.6 kB (1568 bytes)
Hash
d8fcee72c953692c28628cf812cab453
8c463c6c3b31668c4716d9a3d4efd02a8f7a4296
117692d5fd82580ff40fdc517b8885b24b6ad17102ab5cd8d6a6e8152e2e68a4

HTTP Headers

GET /blogger_img_proxy/ANbyha0uaB09CEHvxyhX0QLbGhfv249LMdbbX_l9lO4I-u2FkH1un_7VCE7Flg7S7mcA1skzIPp-awqufxOFwEHEI4c4ysW3feQ3AKYZMCPWj1cJYbHBq2ppjmZin2UZt2u3iYpO6JQpxYojWG4t0A=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:22 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:22 GMT
server: fife
content-length: 1568
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d1ffcb7423d134345ce9ebce46ed131
121a5e7162b2e5827fcdab97c9edbf0ef511497a
dbe6039bad763a6ca77df6852a81ce9622727a22a6b001010e885a000181f690

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBE6039BAD763A6CA77DF6852A81CE9622727A22A6B001010E885A000181F690"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18991
Expires: Thu, 06 Oct 2022 18:20:53 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

significantoperativeclearance.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3szh%2B8XTyiIIq8xxFZl098z0ZFwwGGMkGDfrrr8OglR31UxqU93VVnVNT3KKLsgehB0P3jtvkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRDxSfV%2FVewfv8%2BGzbnhAXlh4vvqU2hZR0tt1w61c%2B8Lyr9RWR2GF9OBd8FLSu1vXg5W7QcF%2Bov8GjdTXru57req5XXxKa99RwdkJCpA%2B7XqPrNlp%2Bw2u3MNT%2FvRvrwFAHbHBCnoZgVe2RcwkiKpHE3yxys56p9KXXYytppjQGbO%2FdZD1ReYL4HPa0g16yd6aGMkdL%2B1DJ7tQu1OAfYSgq4vy4jzDZOzOJcLAz9RlK8AQhewr5oASXJQQtEanbEOyIABHDtVUk8b1rSud04wlLJ2xFaqe%2FQ%2BQVqf16CUn89YIUw%2FpNJW0mVGIw7BUQwxKiXyK1B8g2L0DkB4iyTyHYT2T2dAVJvLNqpIJgxbR2IUqIXgnJR6DGgZ0c4cD2HNjUQcyO65HneR2XRdSd60ZRk3V4GDDXo52eRz03mIONJvZGyNIRIjlCpLeQ6i2sixG0%2FQFmrYBhDkxWEeftLQxYgZwT5IYgpwS5IMgzgnxQ7DJpfFPcY9LY0DvL%2FlluFmOV9bfprsr6PCHb6Qm5OOmLU3txH%2Bv8uB66tE1pi3XdTtgLmi5v%2BS3Ke67Xarc7bb8JIwoIc2Fa6qaoyDOfXEQqKlLzfkFID2DkASJxGdQ%2BB5qPO74LujZuzbnYTO5zs8b5x41IgakCaVZDtuFsyxPy7HQ4gf8XeHQ4%2F7i8%2B%2BGVPw4Q6QKpLnBLPCLoyzvjGyonOzdUbsi3q2kmYrFJJ4O7mdGMzzx4k2%2FkSrPlRTO6%2F2o0ISbw4TvcZCs0YSLpG%2FLVgmCM6yWlI06%2BXzbv8%2FC6NWsLVic2Xbn%2B2tJynGpujFBJCSqOzOeIREX%2BT9V0Iy%2Ff%2Bg5Cl9C2QGwPyVlAqBJRugWTnrs3agZanmvC1EFui7H2w%2FNHKSrSGv4Pkh%2FOP%2F7ywZ93fzsFDQsY%2Fq%2BP53jb3EFfPw%2Ba3UYSFxjoAgNZgMoRjJ0ZZ6k%2BnP%2B5OQ2E0hmHUjs7odTyiyftNeK43mk2XRp0216nQ3knbPlzvcBjlPqtwA8C2kRmquiV6r2%2FAQAA%2F%2F8BAAD%2F%2F%2BL2R69gBAAA

192.243.61.225

200 OK

7 B

URL HTTP/1.1
significantoperativeclearance.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3szh%2B8XTyiIIq8xxFZl098z0ZFwwGGMkGDfrrr8OglR31UxqU93VVnVNT3KKLsgehB0P3jtvkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRDxSfV%2FVewfv8%2BGzbnhAXlh4vvqU2hZR0tt1w61c%2B8Lyr9RWR2GF9OBd8FLSu1vXg5W7QcF%2Bov8GjdTXru57req5XXxKa99RwdkJCpA%2B7XqPrNlp%2Bw2u3MNT%2FvRvrwFAHbHBCnoZgVe2RcwkiKpHE3yxys56p9KXXYytppjQGbO%2FdZD1ReYL4HPa0g16yd6aGMkdL%2B1DJ7tQu1OAfYSgq4vy4jzDZOzOJcLAz9RlK8AQhewr5oASXJQQtEanbEOyIABHDtVUk8b1rSud04wlLJ2xFaqe%2FQ%2BQVqf16CUn89YIUw%2FpNJW0mVGIw7BUQwxKiXyK1B8g2L0DkB4iyTyHYT2T2dAVJvLNqpIJgxbR2IUqIXgnJR6DGgZ0c4cD2HNjUQcyO65HneR2XRdSd60ZRk3V4GDDXo52eRz03mIONJvZGyNIRIjlCpLeQ6i2sixG0%2FQFmrYBhDkxWEeftLQxYgZwT5IYgpwS5IMgzgnxQ7DJpfFPcY9LY0DvL%2FlluFmOV9bfprsr6PCHb6Qm5OOmLU3txH%2Bv8uB66tE1pi3XdTtgLmi5v%2BS3Ke67Xarc7bb8JIwoIc2Fa6qaoyDOfXEQqKlLzfkFID2DkASJxGdQ%2BB5qPO74LujZuzbnYTO5zs8b5x41IgakCaVZDtuFsyxPy7HQ4gf8XeHQ4%2F7i8%2B%2BGVPw4Q6QKpLnBLPCLoyzvjGyonOzdUbsi3q2kmYrFJJ4O7mdGMzzx4k2%2FkSrPlRTO6%2F2o0ISbw4TvcZCs0YSLpG%2FLVgmCM6yWlI06%2BXzbv8%2FC6NWsLVic2Xbn%2B2tJynGpujFBJCSqOzOeIREX%2BT9V0Iy%2Ff%2Bg5Cl9C2QGwPyVlAqBJRugWTnrs3agZanmvC1EFui7H2w%2FNHKSrSGv4Pkh%2FOP%2F7ywZ93fzsFDQsY%2Fq%2BP53jb3EFfPw%2Ba3UYSFxjoAgNZgMoRjJ0ZZ6k%2BnP%2B5OQ2E0hmHUjs7odTyiyftNeK43mk2XRp0216nQ3knbPlzvcBjlPqtwA8C2kRmquiV6r2%2FAQAA%2F%2F8BAAD%2F%2F%2BL2R69gBAAA
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3szh%2B8XTyiIIq8xxFZl098z0ZFwwGGMkGDfrrr8OglR31UxqU93VVnVNT3KKLsgehB0P3jtvkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRDxSfV%2FVewfv8%2BGzbnhAXlh4vvqU2hZR0tt1w61c%2B8Lyr9RWR2GF9OBd8FLSu1vXg5W7QcF%2Bov8GjdTXru57req5XXxKa99RwdkJCpA%2B7XqPrNlp%2Bw2u3MNT%2FvRvrwFAHbHBCnoZgVe2RcwkiKpHE3yxys56p9KXXYytppjQGbO%2FdZD1ReYL4HPa0g16yd6aGMkdL%2B1DJ7tQu1OAfYSgq4vy4jzDZOzOJcLAz9RlK8AQhewr5oASXJQQtEanbEOyIABHDtVUk8b1rSud04wlLJ2xFaqe%2FQ%2BQVqf16CUn89YIUw%2FpNJW0mVGIw7BUQwxKiXyK1B8g2L0DkB4iyTyHYT2T2dAVJvLNqpIJgxbR2IUqIXgnJR6DGgZ0c4cD2HNjUQcyO65HneR2XRdSd60ZRk3V4GDDXo52eRz03mIONJvZGyNIRIjlCpLeQ6i2sixG0%2FQFmrYBhDkxWEeftLQxYgZwT5IYgpwS5IMgzgnxQ7DJpfFPcY9LY0DvL%2FlluFmOV9bfprsr6PCHb6Qm5OOmLU3txH%2Bv8uB66tE1pi3XdTtgLmi5v%2BS3Ke67Xarc7bb8JIwoIc2Fa6qaoyDOfXEQqKlLzfkFID2DkASJxGdQ%2BB5qPO74LujZuzbnYTO5zs8b5x41IgakCaVZDtuFsyxPy7HQ4gf8XeHQ4%2F7i8%2B%2BGVPw4Q6QKpLnBLPCLoyzvjGyonOzdUbsi3q2kmYrFJJ4O7mdGMzzx4k2%2FkSrPlRTO6%2F2o0ISbw4TvcZCs0YSLpG%2FLVgmCM6yWlI06%2BXzbv8%2FC6NWsLVic2Xbn%2B2tJynGpujFBJCSqOzOeIREX%2BT9V0Iy%2Ff%2Bg5Cl9C2QGwPyVlAqBJRugWTnrs3agZanmvC1EFui7H2w%2FNHKSrSGv4Pkh%2FOP%2F7ywZ93fzsFDQsY%2Fq%2BP53jb3EFfPw%2Ba3UYSFxjoAgNZgMoRjJ0ZZ6k%2BnP%2B5OQ2E0hmHUjs7odTyiyftNeK43mk2XRp0216nQ3knbPlzvcBjlPqtwA8C2kRmquiV6r2%2FAQAA%2F%2F8BAAD%2F%2F%2BL2R69gBAAA HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:22 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 78d70d1963aec0e0e279cc483cd358be
Strict-Transport-Security: max-age=0; includeSubdomains

142.250.74.1

200 OK

1.7 kB

URL HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha0uaB09CEHvxyhX0QLbGhfv249LMdbbX_l9lO4I-u2FkH1un_7VCE7Flg7S7mcA1skzIPp-awqufxOFwEHEI4c4ysW3feQ3AKYZMCPWj1cJYbHBq2ppjmZin2UZt2u3iYpO6JQpxYojWG4t0A=w83-h66-p-k-no-nu
IP
142.250.74.1:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 83x66, components 3\012- data
Size
1.7 kB (1656 bytes)
Hash
601ef4dd8b5b608a55d6ba7da91b15e6
1549b4ef752486035ab986986d357fb1262ab4c0
f7ebca0df6f030b92e48a8aa13b6a439ddcb3fa744ceb3243260e6e4bee4d92f

HTTP Headers

GET /blogger_img_proxy/ANbyha0uaB09CEHvxyhX0QLbGhfv249LMdbbX_l9lO4I-u2FkH1un_7VCE7Flg7S7mcA1skzIPp-awqufxOFwEHEI4c4ysW3feQ3AKYZMCPWj1cJYbHBq2ppjmZin2UZt2u3iYpO6JQpxYojWG4t0A=w83-h66-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Fri, 07 Oct 2022 13:04:22 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 06 Oct 2022 13:04:22 GMT
server: fife
content-length: 1656
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5938
Expires: Thu, 06 Oct 2022 14:43:20 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5938
Expires: Thu, 06 Oct 2022 14:43:20 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5938
Expires: Thu, 06 Oct 2022 14:43:20 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5938
Expires: Thu, 06 Oct 2022 14:43:20 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9044 bytes)
Hash
70ea26af79226e9ff06d6198e2c019dc
ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57
f9393e7b8cbaedc8e1ef87fd89c617cf102f58813d84d866ff68e3124f94d44c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccecc8c9-b6da-4470-b2be-fa8d46df1cc2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9044
x-amzn-requestid: 127bce04-9f75-4bb1-bbe7-33bf1694d96c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZdZPmHG5oAMFehw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633ba263-3896085b3b73ff5403237206;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 03:02:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: E4yZTPRLFdK717YfwjOIFOJDi0wYpyA736dQELeM5iPLvGDXBosEWg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 05:04:17 GMT
age: 28805
etag: "ae2c476667f63c7f642f0d9f4d0bc0d846b0ef57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e825fc3ba1ec6c169fbc10ffef8dffb0
6bf9cffa8468b37068aebed5a43dbc911086fc84
b0c59e715d8c38c061cfa06ec64c69f442f9417d6bc9c76e393c1fa00b11af86

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B0C59E715D8C38C061CFA06EC64C69F442F9417D6BC9C76E393C1FA00B11AF86"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5938
Expires: Thu, 06 Oct 2022 14:43:20 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10809 bytes)
Hash
a508ac9cd743bec987b2a24454418265
8c7ecefe6908387e2128dc849a6ba857991ba0ab
afb2c2b51f2ce445ada599068901551beee594b15c152ed7551ab7a8835dde6d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F913c841b-40a5-4fa4-bc55-0e9d1369640e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10809
x-amzn-requestid: db4d1d2a-05b8-403e-a7ca-8b8a6a0a4087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQb-HrTIAMFtNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfab2-74f184406a48e42c0ecc4ec9;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: tv80OXQUu13gDuuFESnEnXMuFdNBmGc1y592euL7QnfZW5PwJym9-g==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:53:39 GMT
etag: "8c7ecefe6908387e2128dc849a6ba857991ba0ab"
content-type: image/jpeg
age: 54643
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7270 bytes)
Hash
e238ccaa3b9fa88476a8514855e8232f
447cbf348ef10d0136a1811e843c46937defbba1
43dce3c1eb388dfaddca4176acb6eb32f76fc4c03fca18e7a315c9ddb43d2b02

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd38ec9d6-fb69-4c6e-aae2-136fd254ae50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7270
x-amzn-requestid: e5d0bb7a-b9d5-49b1-b51c-8db019da641f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQOGEQloAMFjgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa5a-519d91fb0b83920960da479d;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:42:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: l1HGT5ycH36vVojsOPFptRSU1YJFvLbBsgiWJqzRlRIGgm2o5vf6jg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:58:56 GMT
etag: "447cbf348ef10d0136a1811e843c46937defbba1"
content-type: image/jpeg
age: 54326
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8360 bytes)
Hash
a7bcc50ecfeeca47de68cb437e966f29
e98c870fd29b56fa4c3847008bedc0f01f222744
47a82bb40ead4346323b68c886cb88528cb2162666e9549b2ab215b86a499985

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5b87135-538c-4c9f-b146-1da5b13ce157.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8360
x-amzn-requestid: c1f21bfa-3ceb-4661-97b8-0d7475f0e911
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZKLlLG0joAMFQqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333f2ed-43993b1377e9fbaf4e9443d2;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 07:08:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: kyp8p-Jm92bA3VDbsKDiD_JnS2eekJFUkMjYXquZ1D15WthqXoSlsA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:57:01 GMT
age: 54441
etag: "e98c870fd29b56fa4c3847008bedc0f01f222744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.3 kB (9338 bytes)
Hash
b5958f828ccc16a41b22d9ae812bccfc
f350f295dd70152712162d4be5b3b5f0d12cde57
230d7d8e570e433d18ec53b6ca114e2a206e8c265c0c66d73388c49db5c91c64

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6646df0-31a7-4c5a-8148-5fe9e20f3baf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9338
x-amzn-requestid: 4ca2eb3c-eba4-43a4-b79a-89546da3d660
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjQBfG7soAMF9cw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633dfa09-1b5bd53052718f620b920a00;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:41:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6pHftE0vUMqrH2NR_7DzrWlnD0yal7BkAfee7UeVG7DKZNEAYRa9HQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d1d67b07408bba8c682597d8303642e2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 22:03:23 GMT
age: 54059
etag: "f350f295dd70152712162d4be5b3b5f0d12cde57"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a2219f6839fc0b7b5574e4528fb2761f
958840e4764b9ef7795d3cd5c648153cdfa8d944
77fea0baf6afe38d942f972f8c53b8b90ab10ae5e4028afbb025312ad13eb558

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "77FEA0BAF6AFE38D942F972F8C53B8B90AB10AE5E4028AFBB025312AD13EB558"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5643
Expires: Thu, 06 Oct 2022 14:38:25 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a2219f6839fc0b7b5574e4528fb2761f
958840e4764b9ef7795d3cd5c648153cdfa8d944
77fea0baf6afe38d942f972f8c53b8b90ab10ae5e4028afbb025312ad13eb558

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "77FEA0BAF6AFE38D942F972F8C53B8B90AB10AE5E4028AFBB025312AD13EB558"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5643
Expires: Thu, 06 Oct 2022 14:38:25 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a2219f6839fc0b7b5574e4528fb2761f
958840e4764b9ef7795d3cd5c648153cdfa8d944
77fea0baf6afe38d942f972f8c53b8b90ab10ae5e4028afbb025312ad13eb558

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "77FEA0BAF6AFE38D942F972F8C53B8B90AB10AE5E4028AFBB025312AD13EB558"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5643
Expires: Thu, 06 Oct 2022 14:38:25 GMT
Date: Thu, 06 Oct 2022 13:04:22 GMT
Connection: keep-alive

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11080 bytes)
Hash
2277f8f2d93b4bc3b05d348343177892
531d9e4ec9078cd2d7376a19fcb287084af36c82
62907648de4a2ed390232a71ab7dce49f1e9c3363cde6a2f30ecae10ab67f93a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fac259b-7a22-4aa2-ba3f-682cb749091c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11080
x-amzn-requestid: 8fa4d19d-87a5-46c5-96c5-4aec793daad9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjO7xE5eoAMFQLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633df84b-5c422c7a168c014f57559037;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 21:34:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: LySueW1si-yWLwecUILV1s57IEV2FdcQ9_pH1Aoe4AYISi7QXXfd3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 34c44cb7892e57a3b6c51812bcf68ee4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 05 Oct 2022 21:39:28 GMT
age: 55494
etag: "531d9e4ec9078cd2d7376a19fcb287084af36c82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=99

192.243.61.225

200 OK

0 B

URL HTTP/1.1
significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=99
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=99 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:22 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
942e73f03b374c0adc3f69e0fa8d99c0
7e356c191072d5a8f4496b387e04ad5486762bba
a5cb8c201c57fd48e813ec365a1ad715380c6a711c19f6588728b87622b2d59f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A5CB8C201C57FD48E813EC365A1AD715380C6A711C19F6588728B87622B2D59F"
Last-Modified: Wed, 05 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13902
Expires: Thu, 06 Oct 2022 16:56:05 GMT
Date: Thu, 06 Oct 2022 13:04:23 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a2219f6839fc0b7b5574e4528fb2761f
958840e4764b9ef7795d3cd5c648153cdfa8d944
77fea0baf6afe38d942f972f8c53b8b90ab10ae5e4028afbb025312ad13eb558

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "77FEA0BAF6AFE38D942F972F8C53B8B90AB10AE5E4028AFBB025312AD13EB558"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5642
Expires: Thu, 06 Oct 2022 14:38:25 GMT
Date: Thu, 06 Oct 2022 13:04:23 GMT
Connection: keep-alive

cdn.cloudimagesb.com/si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg

45.133.44.9

200 OK

15 kB

URL HTTP/2
cdn.cloudimagesb.com/si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
15 kB (15363 bytes)
Hash
31d5ae1d770f3de9f1f0eee47a742413
8035479102b210a23041652b4d9785c5bcedd8ac
1f75948cdbace3e2b27343f401015d13f874bef6c9ee816ddbec9d79d99aa707

HTTP Headers

GET /si/08/b7/01/08b7011771b43daf4a1ec90e6ee68d87/1658144859.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:23 GMT
content-type: image/jpeg
content-length: 15363
server: nginx/1.17.6
last-modified: Mon, 18 Jul 2022 11:47:47 GMT
etag: "62d54863-3c03"
expires: Sat, 08 Oct 2022 13:04:23 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

i0.wp.com/buatduitpercuma.com/wp-content/uploads/2020/05/Copy-of-DUIT-USD-PERCUMA-4.png?fit=560%2C315&ssl=1

192.0.77.2

200 OK

67 kB

URL HTTP/2
i0.wp.com/buatduitpercuma.com/wp-content/uploads/2020/05/Copy-of-DUIT-USD-PERCUMA-4.png?fit=560%2C315&ssl=1
IP
192.0.77.2:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image\012- data
Size
67 kB (66712 bytes)
Hash
36025afd2f4badaf68401941bcecd2ac
bb02da360a53ccc95aa996cd095b68549421cba9
ad0c98c734d0449cbf2a3125c7c84d50aab71ef2b7098173e9b097dfeceba0b6

HTTP Headers

GET /buatduitpercuma.com/wp-content/uploads/2020/05/Copy-of-DUIT-USD-PERCUMA-4.png?fit=560%2C315&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 13:04:23 GMT
content-type: image/webp
content-length: 66712
last-modified: Thu, 06 Oct 2022 13:04:23 GMT
expires: Sun, 06 Oct 2024 01:04:23 GMT
cache-control: public, max-age=63115200
link: <https://buatduitpercuma.com/wp-content/uploads/2020/05/Copy-of-DUIT-USD-PERCUMA-4.png>; rel="canonical"
x-content-type-options: nosniff
etag: "87af1dca8de4a65d"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2

significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fstyle.css&l=6334&fd=352

192.243.61.225

200 OK

0 B

URL HTTP/1.1
significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fstyle.css&l=6334&fd=352
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fstyle.css&l=6334&fd=352 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fanimate.css&l=79245&fd=389

192.243.61.225

200 OK

0 B

URL HTTP/1.1
significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fanimate.css&l=79245&fd=389
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fcss%2Fanimate.css&l=79245&fd=389 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 63015
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 63015
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

significantoperativeclearance.com/pixel/sbs?c=1

192.243.61.225

200 OK

0 B

URL HTTP/1.1
significantoperativeclearance.com/pixel/sbs?c=1
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=410

192.243.61.225

200 OK

660 B

URL HTTP/1.1
significantoperativeclearance.com/pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=410
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, max compression\012- data
Size
660 B (660 bytes)
Hash
5860c780c8e9daa4f852038f02b5bdc2
c75c8b4db36bffe075ce493f06d011f855d5541a
f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.2.6607&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Ffacebook%2Fjs%2Fscript.js&l=444&fd=410 HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:23 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

significantoperativeclearance.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3szh98PTyiIIq8xxFZl0z3dcMBhjJBg3665fB0Hqqye1qelqq7qnJzlFF2QPwo4H751nkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRF4r3qXqeguf9%2BGw7PSE%2BUnq8%2BJbZVFrT2VbNr175IAiuVldUlA6rw277o3bzatUOXp5r1%2FwXqm9Ivm5m637g%2B4EfVJeUlaEZzk5IqPjhXFCb82vNei1oNTG0%2F7271IOjHsTghDwNJcrKI%2B8SFC8Q9b9ZlG49MfFLr%2FdTTRNjMRB770brkcki9M9haD2E0d6ZGsYdLe3DRLtTuzCDf4RMlcT7cR8s2jszCTbYmfpkGjICE08hGxSQuoCiBbi5DSWOCMAFrq0i6t%2B7ZmxGN56wdMKWpHL6O1RWksqvlxD1v17Qali9aXSaKBM5DMMcalhA9QrE6QGSzQtQ2QF48imU%2BInMnq4g6u%2BsOm2gRD6tXakCKiyg5QjUeUgnR3lIQw9p7KEvjqs8CIKOLzj1u3OcN0RHsrbwA9oJAxr47S5SPrE3QhKPwPUI3G4htltYVyPY9Ae4tRxOeHBJSby3tzAQOTJJkDmCjBJkiiBLCLJBviu0q7v8ntAuZcFZrp%2FlRj42SW%2Bb7pqkJyOyHZ%2BQi5O%2BeJUX97Euj6vMpy1Km2LO77Cw3fBls96kMvSDZqvVadUbcCqHchempW6qkjzzyUXEqiSV4BcwegCnD8DVZdD0OdBs3Kn7oGvjZtfHZnRfujUpP65xA2FyxEkFyYa3rU%2FIs9PhtOt%2FQfLD%2BcfF3Q%2Bv%2FHEAbnPENsct9Yigp%2B%2BMb5iM7NwwmSPfrsaJ6qtNOhnczYQmcubBm3IjM1YsL7rR%2FVf5hJjAh%2B9Il6zQSKio58hXC0oIaZeM5ZJ8v%2Bzel%2Bx66tYWUhul8cr115aW%2B7GVzikTFaDqyH0Orkryf2qmG3n51ndQtoBNc%2FTTQ3IWUKYAj7fg4nP3zszA6nMNiz1kaT62dXb%2BqFVJmsP%2FQcvD%2BcdfPvjz7m%2BnoCyHk%2F%2F6eI633R307POgyW1E%2FRwDm2Ogc1A9gktnxklsD%2Bd%2FbkwDTHtjpq23w7TVXzxpr1PH1YYvOkyGssNks9UMJRes1WI%2BDzlriG6XI3Elf6V8728AAAD%2F%2FwEAAP%2F%2FYiKSR2AEAAA%3D

192.243.61.225

200 OK

7 B

URL HTTP/1.1
significantoperativeclearance.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3szh98PTyiIIq8xxFZl0z3dcMBhjJBg3665fB0Hqqye1qelqq7qnJzlFF2QPwo4H751nkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRF4r3qXqeguf9%2BGw7PSE%2BUnq8%2BJbZVFrT2VbNr175IAiuVldUlA6rw277o3bzatUOXp5r1%2FwXqm9Ivm5m637g%2B4EfVJeUlaEZzk5IqPjhXFCb82vNei1oNTG0%2F7271IOjHsTghDwNJcrKI%2B8SFC8Q9b9ZlG49MfFLr%2FdTTRNjMRB770brkcki9M9haD2E0d6ZGsYdLe3DRLtTuzCDf4RMlcT7cR8s2jszCTbYmfpkGjICE08hGxSQuoCiBbi5DSWOCMAFrq0i6t%2B7ZmxGN56wdMKWpHL6O1RWksqvlxD1v17Qali9aXSaKBM5DMMcalhA9QrE6QGSzQtQ2QF48imU%2BInMnq4g6u%2BsOm2gRD6tXakCKiyg5QjUeUgnR3lIQw9p7KEvjqs8CIKOLzj1u3OcN0RHsrbwA9oJAxr47S5SPrE3QhKPwPUI3G4htltYVyPY9Ae4tRxOeHBJSby3tzAQOTJJkDmCjBJkiiBLCLJBviu0q7v8ntAuZcFZrp%2FlRj42SW%2Bb7pqkJyOyHZ%2BQi5O%2BeJUX97Euj6vMpy1Km2LO77Cw3fBls96kMvSDZqvVadUbcCqHchempW6qkjzzyUXEqiSV4BcwegCnD8DVZdD0OdBs3Kn7oGvjZtfHZnRfujUpP65xA2FyxEkFyYa3rU%2FIs9PhtOt%2FQfLD%2BcfF3Q%2Bv%2FHEAbnPENsct9Yigp%2B%2BMb5iM7NwwmSPfrsaJ6qtNOhnczYQmcubBm3IjM1YsL7rR%2FVf5hJjAh%2B9Il6zQSKio58hXC0oIaZeM5ZJ8v%2Bzel%2Bx66tYWUhul8cr115aW%2B7GVzikTFaDqyH0Orkryf2qmG3n51ndQtoBNc%2FTTQ3IWUKYAj7fg4nP3zszA6nMNiz1kaT62dXb%2BqFVJmsP%2FQcvD%2BcdfPvjz7m%2BnoCyHk%2F%2F6eI633R307POgyW1E%2FRwDm2Ogc1A9gktnxklsD%2Bd%2FbkwDTHtjpq23w7TVXzxpr1PH1YYvOkyGssNks9UMJRes1WI%2BDzlriG6XI3Elf6V8728AAAD%2F%2FwEAAP%2F%2FYiKSR2AEAAA%3D
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3szh98PTyiIIq8xxFZl0z3dcMBhjJBg3665fB0Hqqye1qelqq7qnJzlFF2QPwo4H751nkg27LqJHDwbp7OIhIKQFIQfzJ3gRI95kZoPRF4r3qXqeguf9%2BGw7PSE%2BUnq8%2BJbZVFrT2VbNr175IAiuVldUlA6rw277o3bzatUOXp5r1%2FwXqm9Ivm5m637g%2B4EfVJeUlaEZzk5IqPjhXFCb82vNei1oNTG0%2F7271IOjHsTghDwNJcrKI%2B8SFC8Q9b9ZlG49MfFLr%2FdTTRNjMRB770brkcki9M9haD2E0d6ZGsYdLe3DRLtTuzCDf4RMlcT7cR8s2jszCTbYmfpkGjICE08hGxSQuoCiBbi5DSWOCMAFrq0i6t%2B7ZmxGN56wdMKWpHL6O1RWksqvlxD1v17Qali9aXSaKBM5DMMcalhA9QrE6QGSzQtQ2QF48imU%2BInMnq4g6u%2BsOm2gRD6tXakCKiyg5QjUeUgnR3lIQw9p7KEvjqs8CIKOLzj1u3OcN0RHsrbwA9oJAxr47S5SPrE3QhKPwPUI3G4htltYVyPY9Ae4tRxOeHBJSby3tzAQOTJJkDmCjBJkiiBLCLJBviu0q7v8ntAuZcFZrp%2FlRj42SW%2Bb7pqkJyOyHZ%2BQi5O%2BeJUX97Euj6vMpy1Km2LO77Cw3fBls96kMvSDZqvVadUbcCqHchempW6qkjzzyUXEqiSV4BcwegCnD8DVZdD0OdBs3Kn7oGvjZtfHZnRfujUpP65xA2FyxEkFyYa3rU%2FIs9PhtOt%2FQfLD%2BcfF3Q%2Bv%2FHEAbnPENsct9Yigp%2B%2BMb5iM7NwwmSPfrsaJ6qtNOhnczYQmcubBm3IjM1YsL7rR%2FVf5hJjAh%2B9Il6zQSKio58hXC0oIaZeM5ZJ8v%2Bzel%2Bx66tYWUhul8cr115aW%2B7GVzikTFaDqyH0Orkryf2qmG3n51ndQtoBNc%2FTTQ3IWUKYAj7fg4nP3zszA6nMNiz1kaT62dXb%2BqFVJmsP%2FQcvD%2BcdfPvjz7m%2BnoCyHk%2F%2F6eI633R307POgyW1E%2FRwDm2Ogc1A9gktnxklsD%2Bd%2FbkwDTHtjpq23w7TVXzxpr1PH1YYvOkyGssNks9UMJRes1WI%2BDzlriG6XI3Elf6V8728AAAD%2F%2FwEAAP%2F%2FYiKSR2AEAAA%3D HTTP/1.1
Host: significantoperativeclearance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Cookie: u_pl=17050302; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 06 Oct 2022 13:04:23 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8c66a25a5612870021411162bf7c8552
Strict-Transport-Security: max-age=0; includeSubdomains

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
58abf3dc0ca8d44d05c24a7fd01075cd
017c2f7733e73afcb2554881c3241d99550999b7
7a4694d5883981b2069b3b0d857375d2d927cdc7f49cdfcc982e794d1ec2cf91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6240
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:23 GMT
Last-Modified: Thu, 06 Oct 2022 11:20:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js

31.13.72.12

200 OK

1.7 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (1961)
Size
1.7 kB (1687 bytes)
Hash
e84f7f5eff13da2fa994b3e88cf0e80e
ee548b407453162271e946fa11edb5a684682bf8
55d898caf34dcc04eb331a41e8f002202b826f23bfe3941cfd072929bc51dca3

HTTP Headers

GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 023fbc5be87930c67279469e6b95a464
etag: "a7d35e49750b6f7023dcd49945322248"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 06 Oct 2022 13:21:09 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 6E9/Xv8T2i+plLPojPDoDg==
x-fb-debug: jBmyfX+5LcgAS5dRlcpWUOFXxUh1uzZXJTmnqRLYRCTDCi7zN4FaVp2OeTqyHAp3G2fR3GFzuuVpK/7470nNtg==
content-length: 1687
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 13:04:23 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aa57afff10f5f2fae269852c025c82cf
5b4bebae8a171ff3b37d319ee94eaf6e6245efea
f0566da870e39ec64855d7c72c3e12810c46263e1c48c0bb393930c77dbbcc90

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0566DA870E39EC64855D7C72C3E12810C46263E1C48C0BB393930C77DBBCC90"
Last-Modified: Wed, 05 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19253
Expires: Thu, 06 Oct 2022 18:25:16 GMT
Date: Thu, 06 Oct 2022 13:04:23 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
58abf3dc0ca8d44d05c24a7fd01075cd
017c2f7733e73afcb2554881c3241d99550999b7
7a4694d5883981b2069b3b0d857375d2d927cdc7f49cdfcc982e794d1ec2cf91

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6240
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:23 GMT
Last-Modified: Thu, 06 Oct 2022 11:20:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

i.pinimg.com/736x/9e/af/ca/9eafcacf164862fca322472fd1dfcd3e.jpg

151.101.84.84

200 OK

67 kB

URL HTTP/2
i.pinimg.com/736x/9e/af/ca/9eafcacf164862fca322472fd1dfcd3e.jpg
IP
151.101.84.84:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 736x981, components 3\012- data
Size
67 kB (66621 bytes)
Hash
fcf613516e8351201ab4ce05b52fd52d
0d8583e00fd675938fc16a4466bd2a4bdf0d5680
541aa297685f884874f73aeafbba3cd6d240f034df3c527944d2af42b53639e2

HTTP Headers

GET /736x/9e/af/ca/9eafcacf164862fca322472fd1dfcd3e.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
etag: "fcf613516e8351201ab4ce05b52fd52d"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Thu, 06 Oct 2022 13:04:23 GMT
content-length: 66621
X-Firefox-Spdy: h2

s10.histats.com/js15_as.js

46.105.201.240

200 OK

4.4 kB

URL HTTP/2
s10.histats.com/js15_as.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (11440), with no line terminators
Size
4.4 kB (4364 bytes)
Hash
ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1

HTTP Headers

GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 12:59:40 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 312934947
content-type: text/javascript
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d321fe5892985891e9581dc9d26a8cf4
84265af243602998bbe960bfbab5176bf9bfad52
10e2b2e2e0ee5cf220baa058afe5162c91cd7358867a0d14aebdd43f5c0b0128

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1520
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 13:04:23 GMT
Last-Modified: Thu, 06 Oct 2022 12:39:03 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48

31.13.72.12

200 OK

87 kB

URL HTTP/2
connect.facebook.net/en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (13192)
Size
87 kB (86931 bytes)
Hash
7717717c92dad9aeb73186fd5336a676
d5073c2795ebbde85046e74c37fe5a81521c0226
60aff3d44fb187836eaac386bbbfce5a46e59006f1881496d96729642c9a5237

HTTP Headers

GET /en_US/sdk.js?hash=846734189bd70717100d007e8b66cc48 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 032e52f2f42bb88efa022a47bbf6c90a
etag: "b52234f2f13bd580fece461d444fc479"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 06 Oct 2023 07:11:15 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: dxdxfJLa2a63MYb9Uzamdg==
x-fb-debug: +zl+eIJPw4j8C8hKAAYckfCB3xYmo3NHxjKjDFyw3Tfk7Nwkz3RKi8G4I4KIvHePiD0gc+mfkgPc3uRhCBzIRQ==
content-length: 86931
x-fb-trip-id: 1904183273
date: Thu, 06 Oct 2022 13:04:23 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg

172.64.201.2

200 OK

6.2 kB

URL HTTP/2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg
IP
172.64.201.2:0
ASN
#13335 CLOUDFLARENET

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
6.2 kB (6164 bytes)
Hash
4e43a3e6f0c56b33cb29e5195405c846
d728780bc9e5c5ed1b762a4dc498108fd470d660
59656c13af7ed0cc08e789a6b594dbeaf515073e81bb4f3f9c5ca295e1a6ba19

HTTP Headers

GET /sb/ssp/utility/social-media/facebook/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:22 GMT
content-type: image/svg+xml
last-modified: Thu, 11 Feb 2021 15:13:59 GMT
etag: W/"602549b7-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5540409
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=73hGb%2FHp1ZwWfvIHkQsEXnn1Qf81yLKV4ibFleji7BM%2FtcV0JJ6P8ZVAn3hY2g9q3YHK9YHJk%2F5NJt9As%2FVunV1VBKjEf4cJevm1ppRY2RUkH7BmFkfxqhuY8mEsV%2BLL7FM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755e9a3f7f0975b5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

i.pinimg.com/originals/fa/f4/64/faf464010764d8f3653aa880896113f6.jpg

151.101.84.84

200 OK

18 kB

URL HTTP/2
i.pinimg.com/originals/fa/f4/64/faf464010764d8f3653aa880896113f6.jpg
IP
151.101.84.84:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 236x305, components 3\012- data
Size
18 kB (18038 bytes)
Hash
1b2db4fc09c0c06e8d7ea08cf0ec0af8
0c5900c152a9a54366eeae873e232a33f9fd5e52
b5e4ef5d4b6f73532708c12d2057a10566e75780323d366987b23ecd81188ce9

HTTP Headers

GET /originals/fa/f4/64/faf464010764d8f3653aa880896113f6.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
etag: "1b2db4fc09c0c06e8d7ea08cf0ec0af8"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Thu, 06 Oct 2022 13:04:23 GMT
content-length: 18038
X-Firefox-Spdy: h2

i.pinimg.com/564x/25/3b/d3/253bd359b1cc1e0ecf28752424e25dad.jpg

151.101.84.84

200 OK

24 kB

URL HTTP/2
i.pinimg.com/564x/25/3b/d3/253bd359b1cc1e0ecf28752424e25dad.jpg
IP
151.101.84.84:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 339x480, components 3\012- data
Size
24 kB (24131 bytes)
Hash
5e488d945ba23d7429b4dbe017e6e826
09461051e0d84075ed4053fd90202bdf459c9478
696ec7677c70c813bf51d6d8fcdb606e71ea942116d1329c2ef6044bda1c4544

HTTP Headers

GET /564x/25/3b/d3/253bd359b1cc1e0ecf28752424e25dad.jpg HTTP/1.1
Host: i.pinimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
etag: "5e488d945ba23d7429b4dbe017e6e826"
content-type: image/jpeg
cache-control: max-age=31536000, immutable
accept-ranges: bytes
vary: Origin
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
date: Thu, 06 Oct 2022 13:04:23 GMT
content-length: 24131
X-Firefox-Spdy: h2

s4.histats.com/stats/0.php?4635212&@f16&@g1&@h1&@i1&@j1665061463739&@k0&@l1&@mContoh%20Kertas%20Kerja%20Csr&@n0&@o1000&@q0&@r0&@s509&@ten-US&@u1280&@b1:-170020710&@b3:1665061464&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjohan-yersbloggould.blogspot.com%2F2022%2F06%2Fcontoh-kertas-kerja-csr.html&@w

158.69.251.190

200 OK

51 B

URL HTTP/1.1
s4.histats.com/stats/0.php?4635212&@f16&@g1&@h1&@i1&@j1665061463739&@k0&@l1&@mContoh%20Kertas%20Kerja%20Csr&@n0&@o1000&@q0&@r0&@s509&@ten-US&@u1280&@b1:-170020710&@b3:1665061464&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjohan-yersbloggould.blogspot.com%2F2022%2F06%2Fcontoh-kertas-kerja-csr.html&@w
IP
158.69.251.190:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
51 B (51 bytes)
Hash
1c15b4b171a2cb2a87dd52f25ddbe1ea
5b037bae37a97dd78d4432a14302a85b94ccf9f9
6cae14f89c77ed63e2ab9e9cd92727d290a06e36abba67836874339ec276a014

HTTP Headers

GET /stats/0.php?4635212&@f16&@g1&@h1&@i1&@j1665061463739&@k0&@l1&@mContoh%20Kertas%20Kerja%20Csr&@n0&@o1000&@q0&@r0&@s509&@ten-US&@u1280&@b1:-170020710&@b3:1665061464&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fjohan-yersbloggould.blogspot.com%2F2022%2F06%2Fcontoh-kertas-kerja-csr.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 13:04:24 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close

cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js

172.64.201.2

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js
IP
172.64.201.2:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/ssp/utility/social-media/facebook/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:23 GMT
content-type: application/javascript
last-modified: Sat, 20 Feb 2021 08:47:14 GMT
etag: W/"6030cc92-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uUI8TvJRRVV7IpoHylcxZZL4to83ekVhK7BrteGDvRDY285DOOVAnkEc2In7IjyFOjwhPB9dszVfd357Q4GaMLQH9WKsQWYS8G%2FftpGNDA8htpg%2ByeDDj99DtaP60%2BXBtBU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755e9a3f6ee575b5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768

216.58.207.201

200 OK

0 B

URL HTTP/2
www.blogger.com/comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /comment/frame/5655040523859188418?po=2412391232592235394&hl=en&skin=contempo&blogspotRpcToken=7431768 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 06 Oct 2022 13:04:21 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin; report-to="BloggerCommentUi"
report-to: {"group":"BloggerCommentUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/BloggerCommentUi/external"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport, script-src 'nonce-6MRxhnkLtVr_ms0BHNONhw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/BloggerCommentUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=PiWQlIu1Q-0361QnD2ZV2cMOqmBivhLghxH1K6a-wKMyo4GvfkmS49mDx05KuQow9jEtP7yfwmF7kmjr596a50SR_fR8avSITbld_dr9kaK9cWtafeGf8BPrHwTHtpx1AcJKONsjdQiEijtNAQDHKX7ddjfYFA5LyR7Ye1TNXaQ; expires=Fri, 07-Apr-2023 13:04:21 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html

45.133.44.4

200 OK

0 B

URL HTTP/2
cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
IP
45.133.44.4:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:22 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 09:27:09 GMT
etag: W/"602f846d-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 06 Oct 2022 14:04:22 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css

172.64.201.2

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css
IP
172.64.201.2:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/ssp/utility/social-media/facebook/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:23 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 12:19:14 GMT
etag: W/"6128d842-18be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4XE%2BsrXqTiz4cjtgENhKdW39zGQ5r8cYTv0AgZOxwXY4NRdi9DeHIT1Jfk%2Fnu2Mb1vCTULPSHhOt5Lc8U%2FzbEcBddYtKq%2F60GcYri0xG4HHPryVR9XrapGOO2r9tUQshbA0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755e9a3f6eec75b5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css

172.64.201.2

200 OK

0 B

URL HTTP/2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css
IP
172.64.201.2:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/ssp/utility/social-media/facebook/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://johan-yersbloggould.blogspot.com
Connection: keep-alive
Referer: https://johan-yersbloggould.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 06 Oct 2022 13:04:23 GMT
content-type: text/css
last-modified: Sat, 20 Feb 2021 08:44:40 GMT
etag: W/"6030cbf8-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tcat9nfwXjGVkP7gbkXdNKNrdTKwgFvZM0KTCVXD5131%2Buda0A8p0QtcTzCf0XJKj287Clho3VOTsTfiy0igk6cvqSqlsFpevIoBe1rw3Hk3lT2Ilu7Vq%2FaQQZhj3z5d9qo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 755e9a3f6ef275b5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (62)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML