r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14221
Expires: Fri, 02 Dec 2022 08:29:30 GMT
Date: Fri, 02 Dec 2022 04:32:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11961
Expires: Fri, 02 Dec 2022 07:51:50 GMT
Date: Fri, 02 Dec 2022 04:32:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1864
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:29 GMT
Last-Modified: Fri, 02 Dec 2022 04:01:25 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 9SMqK6DB4xTkq4UEa2FdhPhHmUKGTbHIho58DhKgnOn0eQLg93EBoKG3KJomUieMl5yccedbgkA=
x-amz-request-id: BASM3M0K21NCVT7Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 03:45:57 GMT
age: 2792
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 04:18:11 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 858
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 04:32:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
akuanaktaruna.blogspot.com/
172.217.21.161301 Moved Permanently 181 B URL HTTP/1.1 akuanaktaruna.blogspot.com/
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash efe3d3eace2622f8e6d6cc2d84bf7685
668b3700192d17ff338c691b97e887241ebf5dde
07b7b853aaa45c71747e877934b4376a67fc2b127930ae36bbf25603224022d4
GET / HTTP/1.1
Host: akuanaktaruna.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://akuanaktaruna.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 02 Dec 2022 04:32:30 GMT
Expires: Fri, 02 Dec 2022 04:32:30 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 181
Server: GSE
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 04:11:15 GMT
cache-control: public,max-age=3600
age: 1275
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1825
Cache-Control: max-age=104684
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:30 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:37:14 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Bn/S0GazSW/6Dd/h0ze/Yg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +t1V0x7axFEEoz45KHoaXrgAHMk=
akuanaktaruna.blogspot.com/
172.217.21.161301 Moved Permanently 177 B URL HTTP/2 akuanaktaruna.blogspot.com/
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash fe60519234ac04714a459ddab6640f62
8ba7345c1f11c3dbd8e66bd81c3088fa945f52c0
4ad867bf2741d63085aa0c467d4ab0f1bbe95037f3f0f3e6a5455bb4598f19f2
GET / HTTP/1.1
Host: akuanaktaruna.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.fauzirachman.xyz/
content-encoding: gzip
date: Fri, 02 Dec 2022 04:32:31 GMT
expires: Fri, 02 Dec 2022 04:32:31 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 177
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9bd806cca07dea834ae8e19fe9681b03
2177d482712d52a37e8c40a647b18ca18cceb3e1
bc838e9f2fb696c917c7132e05d99914472c6b06336202b072902ade707a6ffd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/7UAxJJbOf34
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/7UAxJJbOf34
IP 142.250.74.131:0
Hash c9bc97840b7005811d6838cbceb9c858
c6f6f8c11067774f0095364d9b3b9a7493ac23a9
8a41158fe03319b5dccf6bad33b7f35abddc54c008ee046590ea6469a6bd455d
POST /s/gts1d4/7UAxJJbOf34 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:31 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8838
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:32:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8838
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:32:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8838
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:32:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8838
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:32:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8838
Expires: Fri, 02 Dec 2022 06:59:49 GMT
Date: Fri, 02 Dec 2022 04:32:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 24155
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:20:09 GMT
age: 76342
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65bcc96d51cd1a45dd61a4dddef0b529
5ebd592fe35d0479855700baf8525a621d2eec2e
11bfdb9b2f9730e35596e636b0f75e819a70edef0488e671ac82d1bf53e56868
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F474ccac4-fb8f-4a01-8195-4840a857fbe7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8159
x-amzn-requestid: ed2fb67a-2113-4240-978e-e7c978a3ca3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgVH1KIAMFjOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-0c4966b87f844ec3624e9dae;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ilP6IS-DUqN7rKZB9m8EX900E5Edscm8DkK0SMKPkJqvyCJ7M1kZoA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:58 GMT
age: 25053
etag: "5ebd592fe35d0479855700baf8525a621d2eec2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02EF3QEVKmEB2ikbGk9gzQq7_VMi00ufHUNRFTL8MpwJKaXQwdT8HA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:42:27 GMT
age: 3004
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e65083422468e512aa73eb68f20b2ec
73884daab5e71e4917637b3679c0bb5a1f0447de
f0d97bb9e3f01bbdbe91ba1f9b6ea0f649c66192383c51fe5c7ca9ac2a38ebdb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe82fdd03-be1f-4def-adb8-61eefd79def6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9719
x-amzn-requestid: c4ba3502-e191-40fa-8ae0-71dc6f733db4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPjhHE8woAMFyKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382e606-70ab0e5523c91e5420efec78;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:22:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oBn917CDV6DjSs9TAL2iBU0Rn8_f8ny1rAVXrbI9KML2P7pxusbdjA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 03:43:52 GMT
age: 2919
etag: "73884daab5e71e4917637b3679c0bb5a1f0447de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 24140
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fauzirachman.xyz/
142.250.74.147200 OK 59 kB IP 142.250.74.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (58206)
Hash a5b8d1318c224b4d2189ce95ae898220
e0247f5850093df7eccdbad6749c066fb3d25ddb
7ca83789010178f7c1bea084f7e52872e34e4410c35055a25673121d210672e0
GET / HTTP/1.1
Host: www.fauzirachman.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 02 Dec 2022 04:32:32 GMT
date: Fri, 02 Dec 2022 04:32:32 GMT
cache-control: private, max-age=0
last-modified: Thu, 01 Dec 2022 15:29:10 GMT
etag: W/"12ce73fa5537ba27f1121455a60b55513f186f70fd596e54b92b80d9531e7a80"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 58717
server: GSE
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1812
Cache-Control: max-age=97149
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 07:31:41 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
www.fauzirachman.xyz/js/cookienotice.js
142.250.74.147200 OK 2.0 kB URL HTTP/2 www.fauzirachman.xyz/js/cookienotice.js
IP 142.250.74.147:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.fauzirachman.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 02 Dec 2022 04:32:32 GMT
expires: Fri, 09 Dec 2022 04:32:32 GMT
cache-control: public, max-age=604800
last-modified: Thu, 01 Dec 2022 17:52:02 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 24450ed842495fb2f4ba69e1fac2d4d2
c7e7c8aa0308094c71d663a21bd9e689aeccc952
0dddf87df6f1821f08503310345aa465e0b63a4f130073e734e27e04780c4baa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2f1d1e0007d1ba038ac919cc334dca7d
4f3c8cf53099b4a2844ce33d927d2f637d568ff0
d34a6d2d4672091f991673b5cf5e89dd224ff90ff20360db8493241ad1e31fde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1812
Cache-Control: max-age=97149
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Etag: "63885149-117"
Expires: Sat, 03 Dec 2022 07:31:41 GMT
Last-Modified: Thu, 01 Dec 2022 07:01:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ab66815736b3f17344f988cafe5c17e6
648f92ae0805f05f819c6d4df596ae69f6b4d2d5
acb18f4c864114e7b86945b5953015e9710d1a878dba4d912b9edb7885ff5775
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 02 Dec 2022 04:32:32 GMT
expires: Fri, 02 Dec 2022 04:32:32 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
media.go2speed.org/brand/files/niagahosterid/1/mailhosting728x90.png
143.204.55.70200 OK 55 kB URL HTTP/2 media.go2speed.org/brand/files/niagahosterid/1/mailhosting728x90.png
IP 143.204.55.70:0
File type PNG image data, 780 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 430f050be632ff6315168056290403df
e3a9019c820f6d7746861f7693c4bcf08bad860a
9c5f80a786a0cf8d8c7bd2f7776aca71fbd4258b0bb2e43ee42074b877dff612
GET /brand/files/niagahosterid/1/mailhosting728x90.png HTTP/1.1
Host: media.go2speed.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 55269
last-modified: Thu, 18 Aug 2022 04:08:38 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Dec 2022 03:45:23 GMT
cache-control: max-age=3600
etag: "430f050be632ff6315168056290403df"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VypiYQu1EUA-cOwTgcDfeLkf5A91xusK1WbPXQV5qqF1LGrVVXKAhw==
age: 2830
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 254943
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
188.114.98.234200 OK 7.4 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (30837)
Hash a3de0f91b8774267594a28b3cf745c76
c4664fd0e6531ae5d138c4a4c34be3150b56730a
f085f510df257bad1f83da2f7bdb502b08242b7b02b26c143d754c8e1156507f
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:32 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 15402306
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 773156d9fc44b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/muli/v22/7Aulp_0qiz-aVz7u3PJLcUMYOFnOkEk30eg.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/muli/v22/7Aulp_0qiz-aVz7u3PJLcUMYOFnOkEk30eg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16828, version 1.0\012- data
Hash 705bcc4dd1c37efca70d440041d944e8
46d82205643433da37893569b54b8dfd8f5096d4
997b911237bf1ba3ae866d21754fd8e3873582aece25276fbb6b4877a61e1a80
GET /s/muli/v22/7Aulp_0qiz-aVz7u3PJLcUMYOFnOkEk30eg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 13:17:31 GMT
expires: Sat, 25 Nov 2023 13:17:31 GMT
cache-control: public, max-age=31536000
age: 573301
last-modified: Wed, 15 Jul 2020 20:50:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15816, version 1.0\012- data
Hash 2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae
GET /s/roboto/v20/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 07:04:26 GMT
expires: Sat, 25 Nov 2023 07:04:26 GMT
cache-control: public, max-age=31536000
age: 595686
last-modified: Wed, 24 Jul 2019 01:19:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 267cc9d2fc0834e7dcc67cfd154a203e
c0730812ceab79d0708b847d7a62a7aba6d5e81d
1cdf3b1ad9cc8e3409a19df88fbc91053cf0823ca482f4e48edc074e13ff9435
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/ArvOnm61xP0
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ArvOnm61xP0
IP 142.250.74.131:0
Hash c29a401c4b26f4a7fba8afc485b543c8
6578fc859638986b64afb614780342551cd8f5f0
19a42a25e3084bc740df818e256ba2e31b1de9a5c92c3f0d017528ceefc3644d
POST /s/gts1p5/ArvOnm61xP0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 93a74e33a19e4e00d81c27f6b85a2c8a
100427255f827b6e8616d0a8cad212b0665c34b9
53a093d0de9b7ff11db4deff8eab3d4c7fbfb530117156ae769bd1e15eada523
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53A093D0DE9B7FF11DB4DEFF8EAB3D4C7FBFB530117156AE769BD1E15EADA523"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12915
Expires: Fri, 02 Dec 2022 08:07:47 GMT
Date: Fri, 02 Dec 2022 04:32:32 GMT
Connection: keep-alive
www.highperformancedisplayformat.com/355a6709c7f92e2b6e28dfb0e1a5313f/invoke.js
173.233.137.60200 OK 9.8 kB URL HTTP/1.1 www.highperformancedisplayformat.com/355a6709c7f92e2b6e28dfb0e1a5313f/invoke.js
IP 173.233.137.60:0
File type exported SGML document, ASCII text, with very long lines (26959), with no line terminators
Hash e109677f24dd894b0cc78c8c5a34d0e5
44b354d4e619e407bf4ef6927482f7cdb482f149
b158e0a4a4c56465c214d0376b06ad3d66f179ecb7a57aaacb1b853bccbd2e90
Analyzer Verdict Alert quad9 Sinkholed
GET /355a6709c7f92e2b6e28dfb0e1a5313f/invoke.js HTTP/1.1
Host: www.highperformancedisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0b0c64e0db1e0aab2570546fbb4b645e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/s/gts1p5/ArvOnm61xP0
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ArvOnm61xP0
IP 142.250.74.131:0
Hash c29a401c4b26f4a7fba8afc485b543c8
6578fc859638986b64afb614780342551cd8f5f0
19a42a25e3084bc740df818e256ba2e31b1de9a5c92c3f0d017528ceefc3644d
POST /s/gts1p5/ArvOnm61xP0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c22378ca01fffc12414fba63f4da0578
52a273758ba711ade35c63c1ba327de6071acf95
5d14421d11531386a1637eae7a17d411f038de640ed57e901257c21a5a7eea99
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D14421D11531386A1637EAE7A17D411F038DE640ED57E901257C21A5A7EEA99"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14414
Expires: Fri, 02 Dec 2022 08:32:46 GMT
Date: Fri, 02 Dec 2022 04:32:32 GMT
Connection: keep-alive
www.fauzirachman.xyz/responsive/sprite_v1_6.css.svg
142.250.74.147200 OK 2.2 kB URL HTTP/2 www.fauzirachman.xyz/responsive/sprite_v1_6.css.svg
IP 142.250.74.147:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7657)
Hash 95c6fb790198cc0364925ea12e2bce11
371752558ef1ccaa9885db20be2d882dd1c15dab
a4f0e38c228313a0eb22ea4faeca14467732a9992e2b514a9a16b2717ab5d8b5
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: www.fauzirachman.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
date: Fri, 02 Dec 2022 04:32:32 GMT
expires: Fri, 09 Dec 2022 04:32:32 GMT
cache-control: public, max-age=604800
last-modified: Thu, 01 Dec 2022 20:55:55 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
188.114.98.234200 OK 77 kB URL HTTP/2 stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 188.114.98.234:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:32 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7f53cb90b9766a41f341a5b523e13d08
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 773156ddeb330b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash f60f02a95664f3be8fd0b4e614010c6a
bb83d56ac8ae98bff5e9954dffc7f2035b47f63f
eddc54420a811685bfd0c2c14dd13340c9380b529bf1bb8c0426baa0375a67f2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120116
Date: Fri, 02 Dec 2022 04:32:32 GMT
Etag: "6388ac95-1d7"
Expires: Sat, 03 Dec 2022 13:54:28 GMT
Last-Modified: Thu, 01 Dec 2022 13:31:01 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vyIUBRVhFcUwiGGvGfMmvQieleMW4c-54hCvwK1ewH26V1xeKvYZRw==
Age: 1407
pl17743832.profitablegatetocontent.com/b74698fcee5404e22d685174bc315ab2/invoke.js
173.233.137.52200 OK 9.3 kB URL HTTP/1.1 pl17743832.profitablegatetocontent.com/b74698fcee5404e22d685174bc315ab2/invoke.js
IP 173.233.137.52:0
File type Unicode text, UTF-8 text, with very long lines (25062), with no line terminators
Hash 54f9a60b2a33182a0fe799fdea5739c3
270e401cbe3d8da4e4ed330aaf693bb09130f33a
a8cbe88963e7304cc197da3bb14f8345ec8d9a57827619ac2016b06cea948179
Analyzer Verdict Alert quad9 Sinkholed
GET /b74698fcee5404e22d685174bc315ab2/invoke.js HTTP/1.1
Host: pl17743832.profitablegatetocontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3c4ff6b7f998a9c206add61d56fd26c0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash cb7db0b0a55bd347acb836bca861df67
e02a07491a1ac4921e36fd96786082f482c5057b
cd37b7f6c69c73228d85d8960130e4ea9d418554dc00e7611695425ced5cb0fe
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.fauzirachman.xyz
access-control-allow-credentials: true
set-cookie: uid_id2=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5:3:1; expires=Mon, 29 Nov 2032 04:32:33 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash cb7db0b0a55bd347acb836bca861df67
e02a07491a1ac4921e36fd96786082f482c5057b
cd37b7f6c69c73228d85d8960130e4ea9d418554dc00e7611695425ced5cb0fe
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: uid_id2=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:33 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.fauzirachman.xyz
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.fauzirachman.xyz/feeds/posts/summary?max-results=1&alt=json-in-script&callback=dataFeed
142.250.74.147200 OK 1.6 kB URL HTTP/2 www.fauzirachman.xyz/feeds/posts/summary?max-results=1&alt=json-in-script&callback=dataFeed
IP 142.250.74.147:0
File type ASCII text, with very long lines (4215)
Hash 02d50e87617de56ac7e8fa2037d8352a
2be8a9a07d405b20fbde6334b06875a6548ef4b5
9024c74c989e32e7a3a46b5b7a7f88bc63ddae48611c6b7f336f866dc823f09d
GET /feeds/posts/summary?max-results=1&alt=json-in-script&callback=dataFeed HTTP/1.1
Host: www.fauzirachman.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"a21754752fea7230a3d73dd782041ab041901535aa7469388d55b0e3a7aea75b"
date: Fri, 02 Dec 2022 04:32:33 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 02 Dec 2022 04:32:34 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 01 Dec 2022 15:29:10 GMT
content-encoding: gzip
content-length: 1557
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 17:03:03 GMT
expires: Thu, 30 Nov 2023 17:03:03 GMT
cache-control: public, max-age=31536000
age: 127770
last-modified: Wed, 24 Jul 2019 01:18:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1c7d618ecce974f73c9254d9c7fecdb
db238571b457e37e0a4e1dc3d4cc965c361bad19
e152522f74ddf35ae04067c339896f8ec106bdeab0a179482cb010ff545ba679
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E152522F74DDF35AE04067C339896F8EC106BDEAB0A179482CB010FF545BA679"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10560
Expires: Fri, 02 Dec 2022 07:28:33 GMT
Date: Fri, 02 Dec 2022 04:32:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
specialistinsensitive.com/watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1
173.233.137.52307 Temporary Redirect 0 B URL HTTP/1.1 specialistinsensitive.com/watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1 HTTP/1.1
Host: specialistinsensitive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:33 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fauzirachman.xyz
Access-Control-Allow-Origin: https://www.fauzirachman.xyz
Access-Control-Allow-Credentials: true
Location: https://specialistinsensitive.com/watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1&shu=467b412abf37e8d4f08ca9cbe0d11d8679e48d1959d866e0517990a53cd3efba1f0b65d80b3fcb69788dd4eb926608fdb59d769d716bdb6a8eb3b1ca51c1339d8f8c6ea0adc14896ebf105c21eec58891670af58772890c7d36947bba4fa7f4998&pst=1669955613&rmtc=t
Set-Cookie: u_pl=17643326; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.dmNvlYvJcgSUZhuQEZMI1khbEheew2al1QPm1-eLXas; expires=Fri, 02 Dec 2022 04:33:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f5bb4292e86f7e48e13594faf0e52395
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6354
Cache-Control: max-age=161795
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:29:08 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ebd276a987cbfec50bf95ce593a6dbc6
0b03e0bb38915c84e23d9369d7f2947d6d73bafb
de4074bc2d166b559380d23f3d9e70e7eda87fd0fef61d5104db6d2ba221f45c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
216.58.207.226200 OK 67 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 216.58.207.226:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 67
x-xss-protection: 0
date: Thu, 01 Dec 2022 20:43:38 GMT
expires: Thu, 15 Dec 2022 20:43:38 GMT
cache-control: public, max-age=1209600
age: 28135
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1957)
Hash 528e24913bfd6a6901f76e2f67249fd0
9e14bff292a8396d0eb087cf4119d06c6eb101e4
66eca44b7f0c427659e85cdd39f915b690a84e100302c4eb32531d67913eabd2
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 695f9b71611f555d9fbbd758919d61a2
etag: "134a7311303f7cde47938efaa943036c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Dec 2022 04:44:05 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Uo4kkTv9amkB924vZySf0A==
x-fb-debug: fhM9QAvdI2bjwcAO9MiPnV1UJqj2bYoDdEZAxb6DqymyH4pcAoZ4B2UnMnbxO0wCUd5ZgVzyiJbLLV3Hkwfc7Q==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 04:32:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8456f6b4e8af5a5e326d6a0f76d6f99e
af9937193925586875963310d5eb8f57b1f9f303
1f73afefe3a93676f41708625fe4d081d830243cf4103ece09e2b467389dd522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F73AFEFE3A93676F41708625FE4D081D830243CF4103ECE09E2B467389DD522"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Fri, 02 Dec 2022 07:22:58 GMT
Date: Fri, 02 Dec 2022 04:32:33 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6354
Cache-Control: max-age=161795
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:33 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:29:08 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.fauzirachman.xyz/favicon.ico
142.250.74.147200 OK 412 B URL HTTP/2 www.fauzirachman.xyz/favicon.ico
IP 142.250.74.147:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: www.fauzirachman.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 02 Dec 2022 04:32:33 GMT
date: Fri, 02 Dec 2022 04:32:33 GMT
cache-control: private, max-age=86400
last-modified: Thu, 01 Dec 2022 15:29:10 GMT
etag: W/"12ce73fa5537ba27f1121455a60b55513f186f70fd596e54b92b80d9531e7a80"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
X-Firefox-Spdy: h2
specialistinsensitive.com/watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1&shu=467b412abf37e8d4f08ca9cbe0d11d8679e48d1959d866e0517990a53cd3efba1f0b65d80b3fcb69788dd4eb926608fdb59d769d716bdb6a8eb3b1ca51c1339d8f8c6ea0adc14896ebf105c21eec58891670af58772890c7d36947bba4fa7f4998&pst=1669955613&rmtc=t
173.233.137.52200 OK 2.1 kB URL HTTP/1.1 specialistinsensitive.com/watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1&shu=467b412abf37e8d4f08ca9cbe0d11d8679e48d1959d866e0517990a53cd3efba1f0b65d80b3fcb69788dd4eb926608fdb59d769d716bdb6a8eb3b1ca51c1339d8f8c6ea0adc14896ebf105c21eec58891670af58772890c7d36947bba4fa7f4998&pst=1669955613&rmtc=t
IP 173.233.137.52:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2665)
Hash 0eb77739b855885fc1bf074c95f17ff2
509287eb887dcf871452d83cc5e2d80875f1d632
67144ca30d4aa798a574687917d690e30687c22f0922a548a88e9fba73fc7c97
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1286318890134.js?key=355a6709c7f92e2b6e28dfb0e1a5313f&kw=%5B%22indonesia%22%2C%22and%22%2C%22islam%22%5D&refer=https%3A%2F%2Fwww.fauzirachman.xyz%2F&tz=0&dev=e&res=12.1055&uuid=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5%3A3%3A1&shu=467b412abf37e8d4f08ca9cbe0d11d8679e48d1959d866e0517990a53cd3efba1f0b65d80b3fcb69788dd4eb926608fdb59d769d716bdb6a8eb3b1ca51c1339d8f8c6ea0adc14896ebf105c21eec58891670af58772890c7d36947bba4fa7f4998&pst=1669955613&rmtc=t HTTP/1.1
Host: specialistinsensitive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Referer: https://www.fauzirachman.xyz/
Connection: keep-alive
Cookie: u_pl=17643326; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzY0MzMyNiwiayI6IjM1NWE2NzA5YzdmOTJlMmI2ZTI4ZGZiMGUxYTUzMTNmIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTY4NzgxLCJwaWQiOjUyOTQyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjozLCJhaWQiOjIzLCJwdCI6NCwicGsiOiJwMzBld2tqMiIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy5mYXV6aXJhY2htYW4ueHl6LyJ9fQ.dmNvlYvJcgSUZhuQEZMI1khbEheew2al1QPm1-eLXas
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:33 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fauzirachman.xyz
Access-Control-Allow-Origin: https://www.fauzirachman.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=707606d1-d099-4dfd-86e5-4c0fbbe7dcd5:3:1; expires=Fri, 09 Dec 2022 04:32:33 GMT; secure; SameSite=None
iprcfb2fd3d97b6b2ea38748b2c038e8072e=3569808; expires=Fri, 02 Dec 2022 08:32:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
uncs=1; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
pdhtkv23=true; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
uncs23=1; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2110f1f4c61df8990b70d9d2493647f8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3c0282fb1989711e4a48dce935bf7813
30bed8a42fc820e4feb64bd22ddfefe120889014
81e304f070d6b7aa4dc67c727523578cd18a665a5cfe674a3b1391f3f39fc11a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "81E304F070D6B7AA4DC67C727523578CD18A665A5CFE674A3B1391F3F39FC11A"
Last-Modified: Thu, 01 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16412
Expires: Fri, 02 Dec 2022 09:06:05 GMT
Date: Fri, 02 Dec 2022 04:32:33 GMT
Connection: keep-alive
firearmtire.com/ntv.json?key=b74698fcee5404e22d685174bc315ab2&vstc=4
173.233.139.164200 OK 17 kB URL HTTP/1.1 firearmtire.com/ntv.json?key=b74698fcee5404e22d685174bc315ab2&vstc=4
IP 173.233.139.164:0
File type JSON data\012- , ASCII text, with very long lines (17173), with no line terminators
Hash 44cb5436103362b5727fa602fcf20451
b5d9635907b80d71ddcd25788d0ab05ee470507e
02ea3c4c92beaa86ec472b6c4c69ca35601c1bcf00b0cfa1b0b57bb646b5843d
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=b74698fcee5404e22d685174bc315ab2&vstc=4 HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:33 GMT
Content-Type: application/json
Content-Length: 17173
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fauzirachman.xyz
Access-Control-Allow-Origin: https://www.fauzirachman.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17643333; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
uncs=1; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
uncs49=1; expires=Sat, 03 Dec 2022 04:32:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7dde226ca7f3fc70dac4ba1d6a2eb48b
Strict-Transport-Security: max-age=0; includeSubdomains
connect.facebook.net/en_US/sdk.js?hash=f03dbf965f148fae4035fa6b3d217ac2
157.240.240.1200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=f03dbf965f148fae4035fa6b3d217ac2
IP 157.240.240.1:0
File type ASCII text, with very long lines (18530)
Hash 1ad1d26bf16f72628440e8aa41f6f805
69f22b92b4254886b7f52e629aafaf1c290f7bb7
ae54bb58cc9cf6fd897e8232b06619156267abb2f26440cd580ec4f79a3144a0
GET /en_US/sdk.js?hash=f03dbf965f148fae4035fa6b3d217ac2 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fauzirachman.xyz
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 1d0d6f5375be168696c479ae7b3cb9f9
etag: "31224ae8f65dfd68cc81b9d5a3e16d56"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 02 Dec 2023 03:39:43 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: GtHSa/FvcmKEQOiqQfb4BQ==
x-fb-debug: wr/YKucq7NTICnmh4bmfGxNqOm9/+MH1nXbuL954mbctQjoNluFm5TxIPa0/gx+ixLZDMh1w4GkvT8vLHy8hsA==
content-length: 88359
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 04:32:33 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
45.133.44.9200 OK 106 kB URL HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:33 GMT
content-type: image/png
content-length: 105910
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Sun, 04 Dec 2022 04:32:33 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/a8/12/68/a81268cb1a9157227fe93ed97039e2a9/1642429142.jpg
45.133.44.9200 OK 18 kB URL HTTP/2 cdn.cloudimagesb.com/bi/a8/12/68/a81268cb1a9157227fe93ed97039e2a9/1642429142.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 8752c15fafb2a68cf91af919fd9cc8fa
d8ef4c2ed4a234379aba2ef1edef821ac864c2a5
9ef6d5a7c4b998ae9e9b82534d5552c9320b43c628b7d2c1de847fa27e980b85
GET /bi/a8/12/68/a81268cb1a9157227fe93ed97039e2a9/1642429142.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:34 GMT
content-type: image/jpeg
content-length: 18532
server: nginx/1.17.6
last-modified: Mon, 17 Jan 2022 14:19:10 GMT
etag: "61e57ade-4864"
expires: Sun, 04 Dec 2022 04:32:34 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/a1/56/53/a156538d637f7d97e52f78dc59339ec0/1657625335.jpg
45.133.44.9200 OK 9.4 kB URL HTTP/2 cdn.cloudimagesb.com/cti/a1/56/53/a156538d637f7d97e52f78dc59339ec0/1657625335.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 5c924cd068250ee0071816fa2faf3c75
98273c5ff72e2e2a8581ad38a8985df03f8ed24f
f908e59d94ceb4af8ca483ebceda89dc17354ead2e83a7928556ee581f4b2759
GET /cti/a1/56/53/a156538d637f7d97e52f78dc59339ec0/1657625335.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:34 GMT
content-type: image/jpeg
content-length: 9370
server: nginx/1.17.6
last-modified: Tue, 12 Jul 2022 11:29:03 GMT
etag: "62cd5aff-249a"
expires: Sun, 04 Dec 2022 04:32:34 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/1e/72/ba/1e72ba15a6e370060fe9f062a48a6a8b/1631987414.jpg
45.133.44.9200 OK 30 kB URL HTTP/2 cdn.cloudimagesb.com/bi/1e/72/ba/1e72ba15a6e370060fe9f062a48a6a8b/1631987414.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, baseline, precision 8, 320x240, components 3\012- data
Hash 93ddd3ae91959ed9e985d572ebefb9b1
0ac6fec9a6ecdfd530d045c0a352bf2b8e7d0bfc
562d5965f1d7ee60ecd9c1ef7cc6f6fd480050ae59304b476b5c95e8e779104b
GET /bi/1e/72/ba/1e72ba15a6e370060fe9f062a48a6a8b/1631987414.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:34 GMT
content-type: image/jpeg
content-length: 29602
server: nginx/1.17.6
last-modified: Sat, 18 Sep 2021 17:50:29 GMT
etag: "614626e5-73a2"
expires: Sun, 04 Dec 2022 04:32:34 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/0b/19/be/0b19be6173f32e7ac49b9f8c21af72ee/1665143625.jpg
45.133.44.9200 OK 20 kB URL HTTP/2 cdn.cloudimagesb.com/bi/0b/19/be/0b19be6173f32e7ac49b9f8c21af72ee/1665143625.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 300x250, components 3\012- data
Hash 98af18ae8fab09814e7df082c27f2265
815fd0757e96d4ef80d93f83b4c7bdc336fa9458
9841456129f6192f48317f9dcb9bf73706a5861454eef55df41493be0f77519c
GET /bi/0b/19/be/0b19be6173f32e7ac49b9f8c21af72ee/1665143625.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:34 GMT
content-type: image/jpeg
content-length: 20297
server: nginx/1.17.6
last-modified: Fri, 07 Oct 2022 11:53:53 GMT
etag: "63401351-4f49"
expires: Sun, 04 Dec 2022 04:32:34 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujhORiAdDBL3IHBV0tntmemfGgOKarKyuu2sSWTxWVVfPVqa6q6nqnp7dSxYDEg%2FCRD3442DvN%2FsDNYi5CoLMegkBYfsS9uCCf4OQs8xkYPRB1Xvf%2B%2Brwfe%2FVp3vZGXGR0dOND%2FSOVIou%2BDW3%2BsqmjAOd2%2Brajarn1tzL1U0ZLzYvVweTy%2FTf8Fy%2F5r5afVfwnl6ou57req5XXZZGhHqwMGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8jFyGD8vzWg%2FuQfIw4%2BuWKsL1UJ69djTJFU23QD44%2BinuxzmNE8zI0DsL4aPYa2paEfH0OOj6aOYDu708cgMmSOI88sPhoJhOsf%2FBEKVMQMVjwLPL%2BGEKNIekYXN%2BGDE4IwAOsrSOODte0yen2E5ZO2JJUHv8DmZek8tclxNHPS0oOqte1ylKpY4tBWEAOxpDdMZLsGOmOA5kfg6efQAZ%2FkoXHq4ij%2FXWrNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAWnVep3QtdthSxsNNpNznmjwbnfXgz8oNFshy4yPpE3RJoMwdUQ3OwiMbvoybsn%2FkWY7HfYrQI2cGDTkjgf7qIfFMgFQW4JckqQS4I8Jcj7xUGgbN0Wh4GyGfNmuT7LjWKk0%2B4ePdBpV8RkLzkjz09G4zzXuoqeOK2yVnOx0w65EH7TbYp6PVhs%2B16ryXjD8ymrw8oC0p6but2RJXn5wudIZEmeufQCGD2GVcfg8inQzAPNR626C7o1arZd7MS%2F0l5GY9pLqcliWmNKd22i0xrXEQJdIEkrSLedPXVGXpouzD38DoI%2FJLMANwUSU%2BCm%2FIOgq%2B6Mrumc7F%2FTuSX315NURnKHTpZ5PaWpePrH98V2rk2wcsUOf3ibT4hJee%2BGsOkqjQMZdy35aUkGgTDL2nBBfluxm4JtZHZrKTNxlqxuvLO8EiVGWCt1PAaVJx9%2FAS5Lcl7cmn7TFx99CWnGMFmBKJsrlXoMnuzCJvOe1QRGzTFLHORZMTJ1Nm8qSaDEHFNWwP4Hs3m9Z%2B%2Bgayqg6W3EUYG%2BKdBXBagawmYXRmliHr714JtJfAumKiOmTGWfKaO%2Bmo62JIvn75bk9ZtvlqT9%2FXuw8rQq%2FNANhVsXLOywsEXdoBM2O4x2PNFiPvWQ2pJ%2FduvvfwEAAP%2F%2FAQAA%2F%2F%2Fkl3%2FfjQQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujhORiAdDBL3IHBV0tntmemfGgOKarKyuu2sSWTxWVVfPVqa6q6nqnp7dSxYDEg%2FCRD3442DvN%2FsDNYi5CoLMegkBYfsS9uCCf4OQs8xkYPRB1Xvf%2B%2Brwfe%2FVp3vZGXGR0dOND%2FSOVIou%2BDW3%2BsqmjAOd2%2Brajarn1tzL1U0ZLzYvVweTy%2FTf8Fy%2F5r5afVfwnl6ou57req5XXZZGhHqwMGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8jFyGD8vzWg%2FuQfIw4%2BuWKsL1UJ69djTJFU23QD44%2BinuxzmNE8zI0DsL4aPYa2paEfH0OOj6aOYDu708cgMmSOI88sPhoJhOsf%2FBEKVMQMVjwLPL%2BGEKNIekYXN%2BGDE4IwAOsrSOODte0yen2E5ZO2JJUHv8DmZek8tclxNHPS0oOqte1ylKpY4tBWEAOxpDdMZLsGOmOA5kfg6efQAZ%2FkoXHq4ij%2FXWrNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAWnVep3QtdthSxsNNpNznmjwbnfXgz8oNFshy4yPpE3RJoMwdUQ3OwiMbvoybsn%2FkWY7HfYrQI2cGDTkjgf7qIfFMgFQW4JckqQS4I8Jcj7xUGgbN0Wh4GyGfNmuT7LjWKk0%2B4ePdBpV8RkLzkjz09G4zzXuoqeOK2yVnOx0w65EH7TbYp6PVhs%2B16ryXjD8ymrw8oC0p6but2RJXn5wudIZEmeufQCGD2GVcfg8inQzAPNR626C7o1arZd7MS%2F0l5GY9pLqcliWmNKd22i0xrXEQJdIEkrSLedPXVGXpouzD38DoI%2FJLMANwUSU%2BCm%2FIOgq%2B6Mrumc7F%2FTuSX315NURnKHTpZ5PaWpePrH98V2rk2wcsUOf3ibT4hJee%2BGsOkqjQMZdy35aUkGgTDL2nBBfluxm4JtZHZrKTNxlqxuvLO8EiVGWCt1PAaVJx9%2FAS5Lcl7cmn7TFx99CWnGMFmBKJsrlXoMnuzCJvOe1QRGzTFLHORZMTJ1Nm8qSaDEHFNWwP4Hs3m9Z%2B%2Bgayqg6W3EUYG%2BKdBXBagawmYXRmliHr714JtJfAumKiOmTGWfKaO%2Bmo62JIvn75bk9ZtvlqT9%2FXuw8rQq%2FNANhVsXLOywsEXdoBM2O4x2PNFiPvWQ2pJ%2FduvvfwEAAP%2F%2FAQAA%2F%2F%2Fkl3%2FfjQQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSujhORiAdDBL3IHBV0tntmemfGgOKarKyuu2sSWTxWVVfPVqa6q6nqnp7dSxYDEg%2FCRD3442DvN%2FsDNYi5CoLMegkBYfsS9uCCf4OQs8xkYPRB1Xvf%2B%2Brwfe%2FVp3vZGXGR0dOND%2FSOVIou%2BDW3%2BsqmjAOd2%2Brajarn1tzL1U0ZLzYvVweTy%2FTf8Fy%2F5r5afVfwnl6ou57req5XXZZGhHqwMGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8jFyGD8vzWg%2FuQfIw4%2BuWKsL1UJ69djTJFU23QD44%2BinuxzmNE8zI0DsL4aPYa2paEfH0OOj6aOYDu708cgMmSOI88sPhoJhOsf%2FBEKVMQMVjwLPL%2BGEKNIekYXN%2BGDE4IwAOsrSOODte0yen2E5ZO2JJUHv8DmZek8tclxNHPS0oOqte1ylKpY4tBWEAOxpDdMZLsGOmOA5kfg6efQAZ%2FkoXHq4ij%2FXWrNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAWnVep3QtdthSxsNNpNznmjwbnfXgz8oNFshy4yPpE3RJoMwdUQ3OwiMbvoybsn%2FkWY7HfYrQI2cGDTkjgf7qIfFMgFQW4JckqQS4I8Jcj7xUGgbN0Wh4GyGfNmuT7LjWKk0%2B4ePdBpV8RkLzkjz09G4zzXuoqeOK2yVnOx0w65EH7TbYp6PVhs%2B16ryXjD8ymrw8oC0p6but2RJXn5wudIZEmeufQCGD2GVcfg8inQzAPNR626C7o1arZd7MS%2F0l5GY9pLqcliWmNKd22i0xrXEQJdIEkrSLedPXVGXpouzD38DoI%2FJLMANwUSU%2BCm%2FIOgq%2B6Mrumc7F%2FTuSX315NURnKHTpZ5PaWpePrH98V2rk2wcsUOf3ibT4hJee%2BGsOkqjQMZdy35aUkGgTDL2nBBfluxm4JtZHZrKTNxlqxuvLO8EiVGWCt1PAaVJx9%2FAS5Lcl7cmn7TFx99CWnGMFmBKJsrlXoMnuzCJvOe1QRGzTFLHORZMTJ1Nm8qSaDEHFNWwP4Hs3m9Z%2B%2Bgayqg6W3EUYG%2BKdBXBagawmYXRmliHr714JtJfAumKiOmTGWfKaO%2Bmo62JIvn75bk9ZtvlqT9%2FXuw8rQq%2FNANhVsXLOywsEXdoBM2O4x2PNFiPvWQ2pJ%2FduvvfwEAAP%2F%2FAQAA%2F%2F%2Fkl3%2FfjQQAAA%3D%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: u_pl=17643333; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6439f5d3d32b7dcbbde923275ad75dea
Strict-Transport-Security: max-age=0; includeSubdomains
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTmZ%2F%2FIh4METEi8xRQWe7Z6Z3ZhJQXJOV1XV3TSKLx6rq6tnKVHc1Vd3Ts3txMSDxIEzEgx8He5%2FZD9Qg5ioIMuslBITti%2BzBBf8GIWeZycDoC1Xv%2B7xPHZ7nfeuT%2FeycuMjo2eZ7elcqRRf9mlt9eUvGgc5tdf121XNr7rXqloyXmteqg8ll%2Blc916%2B5r1TfFrynF%2Buu57qe61VXpBGhHixOWcjkQcerddxas17z%2FCYG5r%2FYZg4sdRD0z8llyKBc2H70EJKPEUc%2FXRe2l%2Brk1RtRpmiqDfrB8QdxL9Z5jGhehsZBGB%2FPXkPbkpAvL0DHxzMH0P2DiQMwWRLnDw8sPp7JBOsfPlXKFEQMFjyDvD%2BGUGNIOgbXdyGDUwLwAOsbiKOjdW1yuvOUpRO2JJUnf0PmJan8eQVx9OOykoPqLa2yVOrYYhAWkIMxZHeMJDtBuutA5ifg6ceQwe9k8cka4uhgwyoNGRRT91KOIcMxlBiCWgfZ5EgHWeggSxxEwVmV%2Bp3QdVshCxuNdpNz3mhw7reXAj9oNNuhi4xP5A2RJkNwNQQ3e0jMHnry%2Fql%2FGSb7FXa7gA0c2LQkzvt76AcFckGQW4KcEuSSIE8J8n5xGChbt8VRoGzGvFmuz3KjGOm0u08PddoVMdlPzslzk9E4z7ZuoCfOqqzVXOq0Qy6E33Sbol4Pltq%2B12oy3vB8yuqwsoC0F6Zud2VJXrr0GRJZkv9feR6MnsCqE3B5ETTzQPNRq%2B6Cbo%2BabRe78c%2B0l9GY9lJqspjWmNJdm%2Bi0xnWEQBdI0grSHWdfnZMXpwt77c7rEPwxmQW4KZCYAnfkbwRddW90U%2Bfk4KbOLXm4kaQykrt0ssxbKU3F%2F75%2FV%2Bzk2gSr1%2B3wuzf5hJiUD24Lm67ROJBx15IflmUQCLOiDRfkl1W7JdhmZreXMxNnydrmWyurUWKEtVLHY1B5%2BuHn4LIkC%2BLq9Ju%2BcIFBmjFMViDK5kqlHoMne7DJvGc1gVFzzJKLyLNiZOps3lSSQIk5pqyA%2FRdm83rf3kPXVEDTu4ijAn1ToK8KUDWEzS6N0sQ8fuPRV5P4GkxVRkyZygFTRn1REvfom5IsLdyfDrkk7W%2FfgZVnVeGHbijcumBhh4Ut6gadsNlhtOOJFvOph9SW%2FNOP%2FvoHAAD%2F%2FwEAAP%2F%2F3Ctri40EAAA%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTmZ%2F%2FIh4METEi8xRQWe7Z6Z3ZhJQXJOV1XV3TSKLx6rq6tnKVHc1Vd3Ts3txMSDxIEzEgx8He5%2FZD9Qg5ioIMuslBITti%2BzBBf8GIWeZycDoC1Xv%2B7xPHZ7nfeuT%2FeycuMjo2eZ7elcqRRf9mlt9eUvGgc5tdf121XNr7rXqloyXmteqg8ll%2Blc916%2B5r1TfFrynF%2Buu57qe61VXpBGhHixOWcjkQcerddxas17z%2FCYG5r%2FYZg4sdRD0z8llyKBc2H70EJKPEUc%2FXRe2l%2Brk1RtRpmiqDfrB8QdxL9Z5jGhehsZBGB%2FPXkPbkpAvL0DHxzMH0P2DiQMwWRLnDw8sPp7JBOsfPlXKFEQMFjyDvD%2BGUGNIOgbXdyGDUwLwAOsbiKOjdW1yuvOUpRO2JJUnf0PmJan8eQVx9OOykoPqLa2yVOrYYhAWkIMxZHeMJDtBuutA5ifg6ceQwe9k8cka4uhgwyoNGRRT91KOIcMxlBiCWgfZ5EgHWeggSxxEwVmV%2Bp3QdVshCxuNdpNz3mhw7reXAj9oNNuhi4xP5A2RJkNwNQQ3e0jMHnry%2Fql%2FGSb7FXa7gA0c2LQkzvt76AcFckGQW4KcEuSSIE8J8n5xGChbt8VRoGzGvFmuz3KjGOm0u08PddoVMdlPzslzk9E4z7ZuoCfOqqzVXOq0Qy6E33Sbol4Pltq%2B12oy3vB8yuqwsoC0F6Zud2VJXrr0GRJZkv9feR6MnsCqE3B5ETTzQPNRq%2B6Cbo%2BabRe78c%2B0l9GY9lJqspjWmNJdm%2Bi0xnWEQBdI0grSHWdfnZMXpwt77c7rEPwxmQW4KZCYAnfkbwRddW90U%2Bfk4KbOLXm4kaQykrt0ssxbKU3F%2F75%2FV%2Bzk2gSr1%2B3wuzf5hJiUD24Lm67ROJBx15IflmUQCLOiDRfkl1W7JdhmZreXMxNnydrmWyurUWKEtVLHY1B5%2BuHn4LIkC%2BLq9Ju%2BcIFBmjFMViDK5kqlHoMne7DJvGc1gVFzzJKLyLNiZOps3lSSQIk5pqyA%2FRdm83rf3kPXVEDTu4ijAn1ToK8KUDWEzS6N0sQ8fuPRV5P4GkxVRkyZygFTRn1REvfom5IsLdyfDrkk7W%2FfgZVnVeGHbijcumBhh4Ut6gadsNlhtOOJFvOph9SW%2FNOP%2FvoHAAD%2F%2FwEAAP%2F%2F3Ctri40EAAA%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTmZ%2F%2FIh4METEi8xRQWe7Z6Z3ZhJQXJOV1XV3TSKLx6rq6tnKVHc1Vd3Ts3txMSDxIEzEgx8He5%2FZD9Qg5ioIMuslBITti%2BzBBf8GIWeZycDoC1Xv%2B7xPHZ7nfeuT%2FeycuMjo2eZ7elcqRRf9mlt9eUvGgc5tdf121XNr7rXqloyXmteqg8ll%2Blc916%2B5r1TfFrynF%2Buu57qe61VXpBGhHixOWcjkQcerddxas17z%2FCYG5r%2FYZg4sdRD0z8llyKBc2H70EJKPEUc%2FXRe2l%2Brk1RtRpmiqDfrB8QdxL9Z5jGhehsZBGB%2FPXkPbkpAvL0DHxzMH0P2DiQMwWRLnDw8sPp7JBOsfPlXKFEQMFjyDvD%2BGUGNIOgbXdyGDUwLwAOsbiKOjdW1yuvOUpRO2JJUnf0PmJan8eQVx9OOykoPqLa2yVOrYYhAWkIMxZHeMJDtBuutA5ifg6ceQwe9k8cka4uhgwyoNGRRT91KOIcMxlBiCWgfZ5EgHWeggSxxEwVmV%2Bp3QdVshCxuNdpNz3mhw7reXAj9oNNuhi4xP5A2RJkNwNQQ3e0jMHnry%2Fql%2FGSb7FXa7gA0c2LQkzvt76AcFckGQW4KcEuSSIE8J8n5xGChbt8VRoGzGvFmuz3KjGOm0u08PddoVMdlPzslzk9E4z7ZuoCfOqqzVXOq0Qy6E33Sbol4Pltq%2B12oy3vB8yuqwsoC0F6Zud2VJXrr0GRJZkv9feR6MnsCqE3B5ETTzQPNRq%2B6Cbo%2BabRe78c%2B0l9GY9lJqspjWmNJdm%2Bi0xnWEQBdI0grSHWdfnZMXpwt77c7rEPwxmQW4KZCYAnfkbwRddW90U%2Bfk4KbOLXm4kaQykrt0ssxbKU3F%2F75%2FV%2Bzk2gSr1%2B3wuzf5hJiUD24Lm67ROJBx15IflmUQCLOiDRfkl1W7JdhmZreXMxNnydrmWyurUWKEtVLHY1B5%2BuHn4LIkC%2BLq9Ju%2BcIFBmjFMViDK5kqlHoMne7DJvGc1gVFzzJKLyLNiZOps3lSSQIk5pqyA%2FRdm83rf3kPXVEDTu4ijAn1ToK8KUDWEzS6N0sQ8fuPRV5P4GkxVRkyZygFTRn1REvfom5IsLdyfDrkk7W%2FfgZVnVeGHbijcumBhh4Ut6gadsNlhtOOJFvOph9SW%2FNOP%2FvoHAAD%2F%2FwEAAP%2F%2F3Ctri40EAAA%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: u_pl=17643333; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9e74de99a1bf3c19189cdade5d5e2526
Strict-Transport-Security: max-age=0; includeSubdomains
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXieLrHhwWQ9eljkq6KR7Zjoz44Ji3I1EYxJ3V4LHqurqSe1UdzVV3dOTXDa4IOtBmBUP%2FjjY%2BSY%2FUBdxr4IgEy%2FLgpAGkRwM%2BDcIe5ZJBkYfVL33va8O3%2FdefbKbnRIXGT1Zf19vS6XovF9zqy9vyDjQua2u3q56bs29Vt2Q8ULzWnUwuUz%2Fdc%2F1a%2B4r1XcE7%2Bn5uuu5rud61SVpRKgH82csZPKw49U6bq1Zr3l%2BEwPzf2wzB5Y6CPqn5DJkUM5tPn4EyceIo5%2BuC9tLdfLqjShTNNUG%2FeDww7gX6zxGNCtD4yCMD6evoW1JyJcXoOPDqQPo%2Ft7EAZgsifOnBxYfTmWC9ffPlTIFEYMFzyHvjyHUGJKOwfU9yOCYADzA6hri6GBVm5xunbN0wpak8vQfyLwklb%2BuII5%2BXFRyUL2lVZZKHVsMwgJyMIbsjpFkR0i3Hcj8CDz9GDL4ncw%2FXUEc7a1ZpSGD4sy9lGPIcAwlhqDWQTY50kEWOsgSB1FwUqV%2BJ3TdVsjCRqPd5Jw3Gpz77YXADxrNdugi4xN5Q6TJEFwNwc0OErODnnxw7F%2BGyX6F3SxgAwc2LYnzwQ76QYFcEOSWIKcEuSTIU4K8X%2BwHytZtcRAomzFvmuvT3ChGOu3u0n2ddkVMdpNT8sJkNM7zrRvoiZMqazUXOu2QC%2BE33aao14OFtu%2B1mow3PJ%2ByOqwsIO2FM7fbsiRXL32GRJbk2SsvgtEjWHUELp8BzTzQfNSqu6Cbo2bbxXb8M%2B1lNKa9lJospjWmdNcmOq1xHSHQBZK0gnTL2VWn5KWzhbW%2FfReCPyHTADcFElPgjvyNoKvuj27qnOzd1Lklj9aSVEZym06WeSulqbj4%2FXtiK9cmWL5uh9%2B9xSfEpHx4W9h0hcaBjLuW%2FLAog0CYJW24IL8s2w3B1jO7uZiZOEtW1t9eWo4SI6yVOh6DyuOPPgeXJZkTd8%2B%2B6dWLf0CaMUxWIMpmSqUegyc7sMmsZzWBUTPMkgryrBiZOps1lSRQYoYpK2D%2Fg9ms3rX30TUV0PQe4qhA3xToqwJUDWGzS6M0MU%2FefPzVJL4GU5URU6ayx5RRX5TEPfimJAtzD0ry2p03zidt5UlV%2BKEbCrcuWNhhYYu6QSdsdhjteKLFfOohtSX%2F9O7f%2FwIAAP%2F%2FAQAA%2F%2F%2F%2FbtJBjQQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXieLrHhwWQ9eljkq6KR7Zjoz44Ji3I1EYxJ3V4LHqurqSe1UdzVV3dOTXDa4IOtBmBUP%2FjjY%2BSY%2FUBdxr4IgEy%2FLgpAGkRwM%2BDcIe5ZJBkYfVL33va8O3%2FdefbKbnRIXGT1Zf19vS6XovF9zqy9vyDjQua2u3q56bs29Vt2Q8ULzWnUwuUz%2Fdc%2F1a%2B4r1XcE7%2Bn5uuu5rud61SVpRKgH82csZPKw49U6bq1Zr3l%2BEwPzf2wzB5Y6CPqn5DJkUM5tPn4EyceIo5%2BuC9tLdfLqjShTNNUG%2FeDww7gX6zxGNCtD4yCMD6evoW1JyJcXoOPDqQPo%2Ft7EAZgsifOnBxYfTmWC9ffPlTIFEYMFzyHvjyHUGJKOwfU9yOCYADzA6hri6GBVm5xunbN0wpak8vQfyLwklb%2BuII5%2BXFRyUL2lVZZKHVsMwgJyMIbsjpFkR0i3Hcj8CDz9GDL4ncw%2FXUEc7a1ZpSGD4sy9lGPIcAwlhqDWQTY50kEWOsgSB1FwUqV%2BJ3TdVsjCRqPd5Jw3Gpz77YXADxrNdugi4xN5Q6TJEFwNwc0OErODnnxw7F%2BGyX6F3SxgAwc2LYnzwQ76QYFcEOSWIKcEuSTIU4K8X%2BwHytZtcRAomzFvmuvT3ChGOu3u0n2ddkVMdpNT8sJkNM7zrRvoiZMqazUXOu2QC%2BE33aao14OFtu%2B1mow3PJ%2ByOqwsIO2FM7fbsiRXL32GRJbk2SsvgtEjWHUELp8BzTzQfNSqu6Cbo2bbxXb8M%2B1lNKa9lJospjWmdNcmOq1xHSHQBZK0gnTL2VWn5KWzhbW%2FfReCPyHTADcFElPgjvyNoKvuj27qnOzd1Lklj9aSVEZym06WeSulqbj4%2FXtiK9cmWL5uh9%2B9xSfEpHx4W9h0hcaBjLuW%2FLAog0CYJW24IL8s2w3B1jO7uZiZOEtW1t9eWo4SI6yVOh6DyuOPPgeXJZkTd8%2B%2B6dWLf0CaMUxWIMpmSqUegyc7sMmsZzWBUTPMkgryrBiZOps1lSRQYoYpK2D%2Fg9ms3rX30TUV0PQe4qhA3xToqwJUDWGzS6M0MU%2FefPzVJL4GU5URU6ayx5RRX5TEPfimJAtzD0ry2p03zidt5UlV%2BKEbCrcuWNhhYYu6QSdsdhjteKLFfOohtSX%2F9O7f%2FwIAAP%2F%2FAQAA%2F%2F%2F%2FbtJBjQQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuXieLrHhwWQ9eljkq6KR7Zjoz44Ji3I1EYxJ3V4LHqurqSe1UdzVV3dOTXDa4IOtBmBUP%2FjjY%2BSY%2FUBdxr4IgEy%2FLgpAGkRwM%2BDcIe5ZJBkYfVL33va8O3%2FdefbKbnRIXGT1Zf19vS6XovF9zqy9vyDjQua2u3q56bs29Vt2Q8ULzWnUwuUz%2Fdc%2F1a%2B4r1XcE7%2Bn5uuu5rud61SVpRKgH82csZPKw49U6bq1Zr3l%2BEwPzf2wzB5Y6CPqn5DJkUM5tPn4EyceIo5%2BuC9tLdfLqjShTNNUG%2FeDww7gX6zxGNCtD4yCMD6evoW1JyJcXoOPDqQPo%2Ft7EAZgsifOnBxYfTmWC9ffPlTIFEYMFzyHvjyHUGJKOwfU9yOCYADzA6hri6GBVm5xunbN0wpak8vQfyLwklb%2BuII5%2BXFRyUL2lVZZKHVsMwgJyMIbsjpFkR0i3Hcj8CDz9GDL4ncw%2FXUEc7a1ZpSGD4sy9lGPIcAwlhqDWQTY50kEWOsgSB1FwUqV%2BJ3TdVsjCRqPd5Jw3Gpz77YXADxrNdugi4xN5Q6TJEFwNwc0OErODnnxw7F%2BGyX6F3SxgAwc2LYnzwQ76QYFcEOSWIKcEuSTIU4K8X%2BwHytZtcRAomzFvmuvT3ChGOu3u0n2ddkVMdpNT8sJkNM7zrRvoiZMqazUXOu2QC%2BE33aao14OFtu%2B1mow3PJ%2ByOqwsIO2FM7fbsiRXL32GRJbk2SsvgtEjWHUELp8BzTzQfNSqu6Cbo2bbxXb8M%2B1lNKa9lJospjWmdNcmOq1xHSHQBZK0gnTL2VWn5KWzhbW%2FfReCPyHTADcFElPgjvyNoKvuj27qnOzd1Lklj9aSVEZym06WeSulqbj4%2FXtiK9cmWL5uh9%2B9xSfEpHx4W9h0hcaBjLuW%2FLAog0CYJW24IL8s2w3B1jO7uZiZOEtW1t9eWo4SI6yVOh6DyuOPPgeXJZkTd8%2B%2B6dWLf0CaMUxWIMpmSqUegyc7sMmsZzWBUTPMkgryrBiZOps1lSRQYoYpK2D%2Fg9ms3rX30TUV0PQe4qhA3xToqwJUDWGzS6M0MU%2FefPzVJL4GU5URU6ayx5RRX5TEPfimJAtzD0ry2p03zidt5UlV%2BKEbCrcuWNhhYYu6QSdsdhjteKLFfOohtSX%2F9O7f%2FwIAAP%2F%2FAQAA%2F%2F%2F%2FbtJBjQQAAA%3D%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: u_pl=17643333; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 778711cbdede768692852225c50f0d99
Strict-Transport-Security: max-age=0; includeSubdomains
firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSujrOiKx5c1oMgMkcFnXTPTGdmXFCMu5FoTOLuSs5V1dWT2qnuaqq6pye5GFyQ9SDMggd%2FDna%2ByQ%2FqIu5VEGTiZVkQ0hfJwYA378LiUWZ2YPRB1Xvf%2B%2Brwfe%2FVJ%2FvZOXGR0bPN9%2FWuVIou%2BjW3%2BvKWjAOd2%2Br6zarn1twr1S0ZLzWvVAeTy%2FRf91y%2F5r5SfUfwnl6su57req5XXZFGhHqwOGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8nlyCD8sL2g%2FuQfIw4%2BvGqsL1UJ69eizJFU23QD44%2FjHuxzmNE8zI0DsL4ePYa2paEfLEAHR%2FPHED3DyYOwGRJnN89sPh4JhOsf%2FhYKVMQMVjwDPL%2BGEKNIekYXN%2BGDE4JwAOsbyCOjta1yenOY5ZO2JJUHv0NmZek8sdlxNEPy0oOqje0ylKpY4tBWEAOxpDdMZLsBOmuA5mfgKcfQwa%2FkcVHa4ijgw2rNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAVnVep3QtdthSxsNNpNznmjwbnfXgr8oNFshy4yPpE3RJoMwdUQ3OwhMXvoybun%2FiWY7BfY7QI2cGDTkjgf7KEfFMgFQW4JckqQS4I8Jcj7xWGgbN0WR4GyGfNmuT7LjWKk0%2B4%2BPdRpV8RkPzknz01G4zzbuoaeOKuyVnOp0w65EH7TbYp6PVhq%2B16ryXjD8ymrw8oC0i5M3e7Kkrx08TMksiRPXX4ejJ7AqhNw%2BQRo5oHmo1bdBd0eNdsuduOfaC%2BjMe2l1GQxrTGluzbRaY3rCIEukKQVpDvOvjonL0wXtnThLgR%2FSGYBbgokpsAt%2BStBV90ZXdc5Obiuc0vubySpjOQunSzzRkpT8eR374mdXJtg9aodfvsWnxCT8t5NYdM1Ggcy7lry%2FbIMAmFWtOGC%2FLxqtwTbzOz2cmbiLFnbfHtlNUqMsFbqeAwqTzf%2BAZcleTr5a%2FpNX9zwIc0YJisQZXOlUo%2FBkz3YZN6zmsCoOWbJAvKsGJk6mzeVJFBijikrYP%2BD2bzet3fQNRXQ9DbiqEDfFOirAlQNYbOLozQxD9988OUkvgJTlRFTpnLAlFGfl8Q9%2Bno635K8duuNkrS%2FeRdWnlWFH7qhcOuChR0WtqgbdMJmh9GOJ1rMpx5SW%2FJPP%2FrzXwAAAP%2F%2FAQAA%2F%2F%2B1eoC6jQQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 firearmtire.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSujrOiKx5c1oMgMkcFnXTPTGdmXFCMu5FoTOLuSs5V1dWT2qnuaqq6pye5GFyQ9SDMggd%2FDna%2ByQ%2FqIu5VEGTiZVkQ0hfJwYA378LiUWZ2YPRB1Xvf%2B%2Brwfe%2FVJ%2FvZOXGR0bPN9%2FWuVIou%2BjW3%2BvKWjAOd2%2Br6zarn1twr1S0ZLzWvVAeTy%2FRf91y%2F5r5SfUfwnl6su57req5XXZFGhHqwOGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8nlyCD8sL2g%2FuQfIw4%2BvGqsL1UJ69eizJFU23QD44%2FjHuxzmNE8zI0DsL4ePYa2paEfLEAHR%2FPHED3DyYOwGRJnN89sPh4JhOsf%2FhYKVMQMVjwDPL%2BGEKNIekYXN%2BGDE4JwAOsbyCOjta1yenOY5ZO2JJUHv0NmZek8sdlxNEPy0oOqje0ylKpY4tBWEAOxpDdMZLsBOmuA5mfgKcfQwa%2FkcVHa4ijgw2rNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAVnVep3QtdthSxsNNpNznmjwbnfXgr8oNFshy4yPpE3RJoMwdUQ3OwhMXvoybun%2FiWY7BfY7QI2cGDTkjgf7KEfFMgFQW4JckqQS4I8Jcj7xWGgbN0WR4GyGfNmuT7LjWKk0%2B4%2BPdRpV8RkPzknz01G4zzbuoaeOKuyVnOp0w65EH7TbYp6PVhq%2B16ryXjD8ymrw8oC0i5M3e7Kkrx08TMksiRPXX4ejJ7AqhNw%2BQRo5oHmo1bdBd0eNdsuduOfaC%2BjMe2l1GQxrTGluzbRaY3rCIEukKQVpDvOvjonL0wXtnThLgR%2FSGYBbgokpsAt%2BStBV90ZXdc5Obiuc0vubySpjOQunSzzRkpT8eR374mdXJtg9aodfvsWnxCT8t5NYdM1Ggcy7lry%2FbIMAmFWtOGC%2FLxqtwTbzOz2cmbiLFnbfHtlNUqMsFbqeAwqTzf%2BAZcleTr5a%2FpNX9zwIc0YJisQZXOlUo%2FBkz3YZN6zmsCoOWbJAvKsGJk6mzeVJFBijikrYP%2BD2bzet3fQNRXQ9DbiqEDfFOirAlQNYbOLozQxD9988OUkvgJTlRFTpnLAlFGfl8Q9%2Bno635K8duuNkrS%2FeRdWnlWFH7qhcOuChR0WtqgbdMJmh9GOJ1rMpx5SW%2FJPP%2FrzXwAAAP%2F%2FAQAA%2F%2F%2B1eoC6jQQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSujrOiKx5c1oMgMkcFnXTPTGdmXFCMu5FoTOLuSs5V1dWT2qnuaqq6pye5GFyQ9SDMggd%2FDna%2ByQ%2FqIu5VEGTiZVkQ0hfJwYA378LiUWZ2YPRB1Xvf%2B%2Brwfe%2FVJ%2FvZOXGR0bPN9%2FWuVIou%2BjW3%2BvKWjAOd2%2Br6zarn1twr1S0ZLzWvVAeTy%2FRf91y%2F5r5SfUfwnl6su57req5XXZFGhHqwOGUhk3sdr9Zxa816zfObGJj%2FY5s5sNRB0D8nlyCD8sL2g%2FuQfIw4%2BvGqsL1UJ69eizJFU23QD44%2FjHuxzmNE8zI0DsL4ePYa2paEfLEAHR%2FPHED3DyYOwGRJnN89sPh4JhOsf%2FhYKVMQMVjwDPL%2BGEKNIekYXN%2BGDE4JwAOsbyCOjta1yenOY5ZO2JJUHv0NmZek8sdlxNEPy0oOqje0ylKpY4tBWEAOxpDdMZLsBOmuA5mfgKcfQwa%2FkcVHa4ijgw2rNGRQTN1LOYYMx1BiCGodZJMjHWShgyxxEAVnVep3QtdthSxsNNpNznmjwbnfXgr8oNFshy4yPpE3RJoMwdUQ3OwhMXvoybun%2FiWY7BfY7QI2cGDTkjgf7KEfFMgFQW4JckqQS4I8Jcj7xWGgbN0WR4GyGfNmuT7LjWKk0%2B4%2BPdRpV8RkPzknz01G4zzbuoaeOKuyVnOp0w65EH7TbYp6PVhq%2B16ryXjD8ymrw8oC0i5M3e7Kkrx08TMksiRPXX4ejJ7AqhNw%2BQRo5oHmo1bdBd0eNdsuduOfaC%2BjMe2l1GQxrTGluzbRaY3rCIEukKQVpDvOvjonL0wXtnThLgR%2FSGYBbgokpsAt%2BStBV90ZXdc5Obiuc0vubySpjOQunSzzRkpT8eR374mdXJtg9aodfvsWnxCT8t5NYdM1Ggcy7lry%2FbIMAmFWtOGC%2FLxqtwTbzOz2cmbiLFnbfHtlNUqMsFbqeAwqTzf%2BAZcleTr5a%2FpNX9zwIc0YJisQZXOlUo%2FBkz3YZN6zmsCoOWbJAvKsGJk6mzeVJFBijikrYP%2BD2bzet3fQNRXQ9DbiqEDfFOirAlQNYbOLozQxD9988OUkvgJTlRFTpnLAlFGfl8Q9%2Bno635K8duuNkrS%2FeRdWnlWFH7qhcOuChR0WtqgbdMJmh9GOJ1rMpx5SW%2FJPP%2FrzXwAAAP%2F%2FAQAA%2F%2F%2B1eoC6jQQAAA%3D%3D HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Cookie: u_pl=17643333; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 02 Dec 2022 04:32:34 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a8de2c1e8e1c56c05b03138abb106f8f
Strict-Transport-Security: max-age=0; includeSubdomains
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_2px0ATNu9sMYCjl6rwQZijLDt405tBxKDnIarl8TqP6zYxFmmF0KZF44ezKs_GHN4mWxYjQmFP1FILhlWlKMIN_T7JyvrurYGBxqzDnqHdgfVtNgs3G1PJZeq3DJL_u7H_LxCx58xsAIPn_7lNeodmwnmDpwQC9xbm89CfSdrFPLkiex3Jemgdyv6g/w72-h72-p-k-no-nu/Arnoud%201.jpg
142.250.74.97200 OK 3.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj_2px0ATNu9sMYCjl6rwQZijLDt405tBxKDnIarl8TqP6zYxFmmF0KZF44ezKs_GHN4mWxYjQmFP1FILhlWlKMIN_T7JyvrurYGBxqzDnqHdgfVtNgs3G1PJZeq3DJL_u7H_LxCx58xsAIPn_7lNeodmwnmDpwQC9xbm89CfSdrFPLkiex3Jemgdyv6g/w72-h72-p-k-no-nu/Arnoud%201.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash aaab6e293b473d32788bfe48f0e5a560
509e8b71b098e72deb0d182d9c1691920205c1ba
938a256196665e63800468db397ea155c7a9489c4a93c4895bca07b8e6a78fc1
GET /img/b/R29vZ2xl/AVvXsEj_2px0ATNu9sMYCjl6rwQZijLDt405tBxKDnIarl8TqP6zYxFmmF0KZF44ezKs_GHN4mWxYjQmFP1FILhlWlKMIN_T7JyvrurYGBxqzDnqHdgfVtNgs3G1PJZeq3DJL_u7H_LxCx58xsAIPn_7lNeodmwnmDpwQC9xbm89CfSdrFPLkiex3Jemgdyv6g/w72-h72-p-k-no-nu/Arnoud%201.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4535"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Arnoud 1.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3696
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w80-h65-p-k-no-nu/Keris.jpg
142.250.74.97200 OK 3.8 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w80-h65-p-k-no-nu/Keris.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash f8dbeb48b50ca6022ac7f8eff76bddb7
4de3bbfe4a4a1add3eb2e839a244c91b3ab8739d
5df5b79f8a563262ec6eefce6b06684b4c6b0e1bd8c6798b5824599a98abac39
GET /img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w80-h65-p-k-no-nu/Keris.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4788"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Keris.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3756
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w72-h72-p-k-no-nu/upacara_ngaben_di_bali.jpg
142.250.74.97200 OK 3.5 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w72-h72-p-k-no-nu/upacara_ngaben_di_bali.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a34b6822902d36657227784755402f31
f7328aa3a659ffe38c2d94c36bb989099cf107b9
cceb77ec9730a3462ebe1a953454ecf011859a5588bbcb7b24cf008bb1a1012c
GET /img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w72-h72-p-k-no-nu/upacara_ngaben_di_bali.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v46f4"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="upacara_ngaben_di_bali.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3528
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7zCDINL5Pn-hhjt1EqivqfE0RBiZmiyheKgIx2QXb-GsV636db1MQHIdtDOBQoQ5Zki4JpEXAKDsCi2WSqnw22FO2n79iynWGXs_xvWouv7nJ0-tCauj3KggbpvF7g7_aUObG9KpWRYbmPJ39TR6igNxdg2VzpJCg1J_mz0NnEGuCUTjd2T3kdgOQww/w72-h72-p-k-no-nu/Nihiwatu.jpg
142.250.74.97200 OK 3.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi7zCDINL5Pn-hhjt1EqivqfE0RBiZmiyheKgIx2QXb-GsV636db1MQHIdtDOBQoQ5Zki4JpEXAKDsCi2WSqnw22FO2n79iynWGXs_xvWouv7nJ0-tCauj3KggbpvF7g7_aUObG9KpWRYbmPJ39TR6igNxdg2VzpJCg1J_mz0NnEGuCUTjd2T3kdgOQww/w72-h72-p-k-no-nu/Nihiwatu.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3c80df7ff1d3d4eb536015beedda608c
ddad39c339a6e22639fa6924201fd67f875d7803
666624f7a8482360919542929b315dbe49941900f8e32b16e5dc7430f757dc87
GET /img/b/R29vZ2xl/AVvXsEi7zCDINL5Pn-hhjt1EqivqfE0RBiZmiyheKgIx2QXb-GsV636db1MQHIdtDOBQoQ5Zki4JpEXAKDsCi2WSqnw22FO2n79iynWGXs_xvWouv7nJ0-tCauj3KggbpvF7g7_aUObG9KpWRYbmPJ39TR6igNxdg2VzpJCg1J_mz0NnEGuCUTjd2T3kdgOQww/w72-h72-p-k-no-nu/Nihiwatu.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v45c7"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Nihiwatu.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3717
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj95L4O948iKbcpzncaqDiTNcvWXdK-BvY-WAoZqtatvrsImUsbVdgaNQi3-cFMxHJXu3xRboK2B0MhIrPwyAokiSmylArKS1OCeuCVHr0uCd2ntrToqcYn1Y-QTjq31iwTM2yN3wpOExqsS5wG8gqKft9oGqFLwylK1ImnsmZbbQ0x7JHsh74_dc7JdQ/w72-h72-p-k-no-nu/Kyai%20Fakhruddin.jpg
142.250.74.97200 OK 3.5 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj95L4O948iKbcpzncaqDiTNcvWXdK-BvY-WAoZqtatvrsImUsbVdgaNQi3-cFMxHJXu3xRboK2B0MhIrPwyAokiSmylArKS1OCeuCVHr0uCd2ntrToqcYn1Y-QTjq31iwTM2yN3wpOExqsS5wG8gqKft9oGqFLwylK1ImnsmZbbQ0x7JHsh74_dc7JdQ/w72-h72-p-k-no-nu/Kyai%20Fakhruddin.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cec113c4a047c2821c23f0fca7a31e31
ff00a43fbb9e21c854729321586534d0d427f598
715cfb926d572bc5fd9ae40cab868613501a9d7dbb87cbcdf93d42ab85f61f9f
GET /img/b/R29vZ2xl/AVvXsEj95L4O948iKbcpzncaqDiTNcvWXdK-BvY-WAoZqtatvrsImUsbVdgaNQi3-cFMxHJXu3xRboK2B0MhIrPwyAokiSmylArKS1OCeuCVHr0uCd2ntrToqcYn1Y-QTjq31iwTM2yN3wpOExqsS5wG8gqKft9oGqFLwylK1ImnsmZbbQ0x7JHsh74_dc7JdQ/w72-h72-p-k-no-nu/Kyai%20Fakhruddin.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v45ed"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Kyai Fakhruddin.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3468
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w265-h195-p-k-no-nu/upacara_ngaben_di_bali.jpg
142.250.74.97200 OK 25 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w265-h195-p-k-no-nu/upacara_ngaben_di_bali.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 265x195, components 3\012- data
Hash c93b6ea1793a39d664952019ac3dfffb
969c03ccd2239f44da270899c9675bed32f4bce3
55d6e9bb44d188ca797fc046c157e7422e6f855682d1cb13b7fdd35f616092ce
GET /img/b/R29vZ2xl/AVvXsEg1naVe6g96KT88K6UIjtdrckYExsIMQUwNfFyIWxQIGBmw6RNvLq-Oc4tALrYgC2uYJOqHgc35gzeVGjjUD7tgLc9jly_pyQsBvLlgn7Dj_n1XxlKxaUC0jRbIA42QGqHXEPuPW_O7UDLEu2WLwhulNz6aD0KyuwnHh_oL5P5KvTA1jmv2P36OcwfuzA/w265-h195-p-k-no-nu/upacara_ngaben_di_bali.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v46f4"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="upacara_ngaben_di_bali.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 24740
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w72-h72-p-k-no-nu/Keris.jpg
142.250.74.97200 OK 3.5 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w72-h72-p-k-no-nu/Keris.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 69f46885a7cf29b449c58d9f421fd26d
6942d393bfb5e02f7901e23f1d79e92d127962ad
e75bcc4db0405344c6c7ecb6b3a82c4ac6b36d6574911316081d89e4dd0f33b6
GET /img/b/R29vZ2xl/AVvXsEhjnHmyOYZ9np45TpPZEyFlgdenotJcH6c4J2Ba5oT0wdz_m_as9YA5SUOqKD6wYd_URplvLq0hdxPHqxEun4vytGu0t_ckho6im1lrZdkIYjecjSYm3knA8FE0FwDYST11FltvC9_X0YHpcgfZB0L1b7Z52LP-3RfHws24OtlUKnbN_D8rMgNjHC1EtQ/w72-h72-p-k-no-nu/Keris.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4788"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Keris.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3540
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w72-h72-p-k-no-nu/Madu.jpg
142.250.74.97200 OK 4.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w72-h72-p-k-no-nu/Madu.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 2e6a46a3f914dca91f3f853a4f34a18e
e0434ec8a59186ae8979e6c4d3e2fb5edda5b0f4
79f2980e99ff49ebd62acefbb8519d7d226cdf5a761aa7bf16afc66af2b8c7c5
GET /img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w72-h72-p-k-no-nu/Madu.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4650"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Madu.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 4135
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w265-h195-p-k-no-nu/Madu.jpg
142.250.74.97200 OK 24 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w265-h195-p-k-no-nu/Madu.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 265x195, components 3\012- data
Hash ee0849f2caea5c90bb0119af02c0eeae
05ba755b3723c43d5bf55c0e02b95018cc641c31
660ad9649054158029495563b615707b9a2b4c61043ed38bdc8658a2f54b69d4
GET /img/b/R29vZ2xl/AVvXsEiufdTZufIIWQ6Yw2EKIxW6cAl5lnOlpITW3oKZAVASeM_S0yZyXVxrumDfZabA1A6--Xef9Iq-9l2rdbgoYLNMiUWiTcjGS5px-PXBmbx1L5y2R3vuCQNXlt9XbpsTPRc4YbxSIkZE7rnMRe_oo3RdFq6LQ1S8d9zuXnzqnimJn5Gj-7CLcaOZz0mTYw/w265-h195-p-k-no-nu/Madu.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4650"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Madu.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 23623
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMkJd4p-LESvqc76qj3FlWdIqH5d4-kxgcAEgpu9BMswa0H9BVhtMrIyll1A5mQVjZ-bpEvDKq6FGBwjlhDUE50v20L0PWg-klrrI9NWCYAPY1J4jWFICDVWSFGcRbKoIho5KRdzGhJYz4CKWd7jQWl8lX19x_KxKs1FFYClwLKnpNuo-0Ry1YElsqKw/w72-h72-p-k-no-nu/Kuda%20Lumping%201.jpg
142.250.74.97200 OK 4.0 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiMkJd4p-LESvqc76qj3FlWdIqH5d4-kxgcAEgpu9BMswa0H9BVhtMrIyll1A5mQVjZ-bpEvDKq6FGBwjlhDUE50v20L0PWg-klrrI9NWCYAPY1J4jWFICDVWSFGcRbKoIho5KRdzGhJYz4CKWd7jQWl8lX19x_KxKs1FFYClwLKnpNuo-0Ry1YElsqKw/w72-h72-p-k-no-nu/Kuda%20Lumping%201.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 3c227afb130a8eb0393c9eb4b8d04e64
f19109986c139a729d609c6ccb78b1d6244614d2
11ee621311d72842cc67956ab9c5b9982e15fc34c1851dab48a49ca579ceefc5
GET /img/b/R29vZ2xl/AVvXsEiMkJd4p-LESvqc76qj3FlWdIqH5d4-kxgcAEgpu9BMswa0H9BVhtMrIyll1A5mQVjZ-bpEvDKq6FGBwjlhDUE50v20L0PWg-klrrI9NWCYAPY1J4jWFICDVWSFGcRbKoIho5KRdzGhJYz4CKWd7jQWl8lX19x_KxKs1FFYClwLKnpNuo-0Ry1YElsqKw/w72-h72-p-k-no-nu/Kuda%20Lumping%201.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v45f6"
expires: Sat, 03 Dec 2022 04:32:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Kuda Lumping 1.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 04:32:34 GMT
server: fife
content-length: 3987
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e7e19607943d3a3770dd76e619af315d
78a4ef394f6fcbaa6b5abaa41f80eb9bce6bf06e
bafb86050e74ea34fc7206ec495f56d82f536245a1f23502eef3f3b7871ffea3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 04:32:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.host-tracking.id/aff_i?offer_id=1&file_id=6&aff_id=1687
188.114.96.1200 OK 25 kB URL HTTP/2 www.host-tracking.id/aff_i?offer_id=1&file_id=6&aff_id=1687
IP 188.114.96.1:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6da0c5cc10c71bbb822a8b8e608200bf
656b653be5ee7db08971f5c8014a3b398a5eeb69
db489d37af173efd98c621ae2aba205d6b6d826fc410288de5b6a4f6fcba5b9f
GET /aff_i?offer_id=1&file_id=6&aff_id=1687 HTTP/1.1
Host: www.host-tracking.id
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fauzirachman.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 04:32:32 GMT
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
pragma: no-cache
tracking_id: 1024e1dfe75c401de338f2b7480f73
access-control-allow-origin: *
x-request-id: 07fbc70ffdaaf29dc6b807a5f94f2458
access-control-allow-headers: Tune-SDK-Version
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mfe%2BjnbsSYfHd5gY3zIzlObctdfFDYmJusEhxzfowicYx02f2YOR%2BOMnKc0VswxC6sZccssi8GPTNvR9RrMViSq5y5aqbjcIb4qR8Stl%2FSTJkiJe89%2FMwaWi3UKKwPCjkwJ2B7eTQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773156db2bf11c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2