Report - pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html

Report Overview

Submitted URL
pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-11-22 01:40:28
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
pouchnote.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	20 kB	142.250.74.161
m.addthis.com	1448	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	815 B	360 B	23.38.200.123
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	18 kB	142.250.74.174
www.linkwithin.com	115766	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	598 B	6.4 kB	34.98.99.30
blogmalaysia.com	336932	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	720 B	6.5 kB	172.67.133.163
bdv.bidvertiser.com	289264	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	18 kB	54.241.51.109
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	912 B	81 kB	142.250.74.174
s4.histats.com	12782	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	694 B	179 B	192.99.0.58
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
s7.addthis.com	1504	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	144 kB	23.38.200.123
i155.photobucket.com	492446	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	760 B	2.0 kB	143.204.55.79
z.moatads.com	374	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	1.4 kB	23.38.201.146
v1.addthisedge.com	1721	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	426 B	338 B	23.38.200.123
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	317 B	656 B	142.250.74.130
banners.needearn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	646 B	656 B	94.229.72.121
www.advertlets.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	604 B	748 B	103.224.182.246
www.needearn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	354 B	492 B	94.229.72.121
dipaka-ead.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	428 B	1.8 kB	3.212.50.125
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	58 kB	34.120.237.76
s10.histats.com	15211	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	11 kB	46.105.201.240
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.41.253.170
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.35
resources.blogblog.com	13274	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	425 B	937 B	142.250.74.105
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	66 kB	142.250.74.105
synad2.nuffnang.com.my	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	287 B	853 B	18.138.110.223
d2b9l3u54v5v39.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	625 B	3.6 kB	54.230.245.108
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-22	medium	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	Phishing
2022-11-22	medium	pouchnote.blogspot.com/js/cookienotice.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (43)

	URL	Size	First Seen	Last Seen
	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	275 B	2023-03-07	2024-05-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-07 07:50:16 Times Seen58600 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.blogger.com/navbar.g?targetBlogID=1435446059861683708&blogName=POUCH+NOTE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://pouchnote.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=pouchnote.blogspot.com/&targetPostID=5892930481102134408&blogPostOrPageUrl=pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html&vt=-4276862757181615107&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fpouchnote.blogspot.com&pfname=&rpctoken=13741672	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=1435446059861683708&blogName=POUCH+NOTE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://pouchnote.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=pouchnote.blogspot.com/&targetPostID=5892930481102134408&blogPostOrPageUrl=pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html&vt=-4276862757181615107&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fpouchnote.blogspot.com&pfname=&rpctoken=13741672 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	122 B	2023-03-07	2024-05-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:16 Last Seen2024-05-07 05:58:18 Times Seen1283 Hash c223bd9538ff1ccb1ce685e37a6bcc23 24f363d1fcf7c39aace733c8d8b9dd5bd07a782b 39e4857113f0cbf16f6a5b3e717fac0bc245f23a4110f0aac521b4e78890fb35 Loading...

	s10.histats.com/js15.js	11 kB	2023-03-07	2023-05-05
Pretty URL s10.histats.com/js15.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:16 Last Seen2023-05-05 01:26:37 Times Seen825 Hash 4beb0b1c8bbca69316e6eadcd83b1bf0 602491c5f60960bf4ba7c3d2e600681a06ffcaa1 429e7004f3f8fbe42cacb984c36a9cda33efdacc100a276b12e82c6ab78bf7ec Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	789 B	2023-03-07	2024-02-13
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html#rand=0.9993672946662596&iit=1669081217140&tmr=load%3D1669081216524%26core%3D1669081216546%26main%3D1669081217137%26ifr%3D1669081217143&cb=0&cdn=0&md=0&kw=Keywords%20of%20the%20post&ab=-&dh=pouchnote.blogspot.com&dr=&du=http%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&href=http%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&dt=Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&dbg=0&cap=tc%3D0%26ab%3D0&inst=1&jsl=32&prod=undefined&lng=en&ogt=image%2Cdescription%2Ctitle%2Curl&pc=men&pub=budakkampungonline&ssl=0&sid=637c28809d663a57&srf=0.01&ver=300&xck=0&xtr=0&og=url%3Dhttp%253A%252F%252Fpouchnote.blogspot.com%252F2012%252F01%252Fgambar-ceramah-anwar-di-stadium-mini.html%26title%3DGambar%2520Ceramah%2520Anwar%2520Di%2520Stadium%2520Mini%2520Sabak%2520Bernam%26description%3DSetelah%2520berlakunya%2520peristiwa%2520merusuh%2520dan%2520mengganas%2520di%2520Jalan%2520Kebun%2520jam%2520%2520%2520lebih%2520kurang%25209.30%2520malam%252021hb%2520Januari%25202012%2520yang%2520lalu%2520oleh%2520sekumpul...%26image%3Dhttps%253A%252F%252Flh3.googleusercontent.com%252Fblogger_img_proxy%252FANbyha0DekAcPDB3kiprCtADVcSduLbAC5v9TgD411IBWZCqY-1RV2quiWiQkPjdgWwXTyePpO2Fdw8n6AVzCBe9ZeH885QzA1rMOi25JZV9_AA_PtpJUesn_VySViPOGRr3BegPclATOVbEYUp5fhlGTnqTJytTZiysZxndGFx7M09GfbAyJcI1cXtJBVNgXg0YcA%253Dw1200-h630-p-k-no-nu&csi=undefined&rev=v8.28.8-wp&ct=1&xld=1&xd=1	72 kB	2023-03-07	2023-05-06
Pretty URL s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html#rand=0.9993672946662596&iit=1669081217140&tmr=load%3D1669081216524%26core%3D1669081216546%26main%3D1669081217137%26ifr%3D1669081217143&cb=0&cdn=0&md=0&kw=Keywords%20of%20the%20post&ab=-&dh=pouchnote.blogspot.com&dr=&du=http%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&href=http%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&dt=Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&dbg=0&cap=tc%3D0%26ab%3D0&inst=1&jsl=32&prod=undefined&lng=en&ogt=image%2Cdescription%2Ctitle%2Curl&pc=men&pub=budakkampungonline&ssl=0&sid=637c28809d663a57&srf=0.01&ver=300&xck=0&xtr=0&og=url%3Dhttp%253A%252F%252Fpouchnote.blogspot.com%252F2012%252F01%252Fgambar-ceramah-anwar-di-stadium-mini.html%26title%3DGambar%2520Ceramah%2520Anwar%2520Di%2520Stadium%2520Mini%2520Sabak%2520Bernam%26description%3DSetelah%2520berlakunya%2520peristiwa%2520merusuh%2520dan%2520mengganas%2520di%2520Jalan%2520Kebun%2520jam%2520%2520%2520lebih%2520kurang%25209.30%2520malam%252021hb%2520Januari%25202012%2520yang%2520lalu%2520oleh%2520sekumpul...%26image%3Dhttps%253A%252F%252Flh3.googleusercontent.com%252Fblogger_img_proxy%252FANbyha0DekAcPDB3kiprCtADVcSduLbAC5v9TgD411IBWZCqY-1RV2quiWiQkPjdgWwXTyePpO2Fdw8n6AVzCBe9ZeH885QzA1rMOi25JZV9_AA_PtpJUesn_VySViPOGRr3BegPclATOVbEYUp5fhlGTnqTJytTZiysZxndGFx7M09GfbAyJcI1cXtJBVNgXg0YcA%253Dw1200-h630-p-k-no-nu&csi=undefined&rev=v8.28.8-wp&ct=1&xld=1&xd=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-06 01:05:13 Times Seen3063 Hash 7d5b5e32745c7b2e10b41554f0dc4142 2fe0a408b06fb8a44f7c1b54ad4f1b70204584ab 7eae26867a4cf6c29d2fbc4cbf3a222058ba71a9ceb7ff0d6d96c3cfb462cc81 Loading...

	m.addthis.com/live/red_lojson/300lo.json?si=637c28809d663a57&bkl=0&bl=1&pdt=608&sid=637c28809d663a57&pub=budakkampungonline&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=pouchnote.blogspot.com&fp=2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Keywords%20of%20the%20post&colc=1669081217146&jsl=32&uvs=637c2880c20e5356000&skipb=1&callback=addthis.cbs.jsonp__91199245021618470	89 B	2023-03-11	2023-03-11
Pretty URL m.addthis.com/live/red_lojson/300lo.json?si=637c28809d663a57&bkl=0&bl=1&pdt=608&sid=637c28809d663a57&pub=budakkampungonline&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=pouchnote.blogspot.com&fp=2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Keywords%20of%20the%20post&colc=1669081217146&jsl=32&uvs=637c2880c20e5356000&skipb=1&callback=addthis.cbs.jsonp__91199245021618470 IP 23.38.200.123 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:25:09 Last Seen2023-03-11 15:25:09 Times Seen1 Hash feb8a2590bc9211ba14791ed6fa6dbce 658b179d16c67b1b1210b93f541c8c784b7d0db7 01a7782595dba678c9c041743426a15ca9238eec6bb76b8a91079022e1f41817 Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-05-07
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.130 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-07 07:50:17 Times Seen48778 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	pouchnote.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-05-07
Pretty URL pouchnote.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-07 07:50:17 Times Seen116371 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	unknown	0 B	2023-03-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-07 08:03:27 Times Seen37397284 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.blogger.com/static/v1/widgets/2342155703-widgets.js	157 kB	2023-03-08	2023-03-17
Pretty URL www.blogger.com/static/v1/widgets/2342155703-widgets.js IP 142.250.74.105 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:40 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 64d62574443f9d2148012af05abf60ac 16fc9b9b71eb94dbfdc15da12e9b3f21dfe1636e c752966435826f865df5163012e3066bd9f0339b1959098323533be261741246 Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	52 B	2023-03-07	2023-07-13
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-07-13 07:50:11 Times Seen9 Hash 1ea49eef06550e033ba0f3f772768c83 a2b39dd3b3c2b30801d498eeddc4014bcdb484c7 fa7009b0f41aa6cab683e1f54dc4464c5e18488957664c8958b8ee72b11b41d3 Loading...

	bdv.bidvertiser.com/BidVertiser.dbm?pid=134131&bid=694631&RD=6383830921791&DIF=1&bd_ref_v=pouchnote.blogspot.com&tref=1&win_name=null&docref=&jsrand=6383830921791&js1loc=-&loctitle=Keywords%20of%20the%20post	417 B	2023-03-10	2023-03-11
Pretty URL bdv.bidvertiser.com/BidVertiser.dbm?pid=134131&bid=694631&RD=6383830921791&DIF=1&bd_ref_v=pouchnote.blogspot.com&tref=1&win_name=null&docref=&jsrand=6383830921791&js1loc=-&loctitle=Keywords%20of%20the%20post IP 54.241.51.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 19:48:14 Last Seen2023-03-11 22:47:51 Times Seen1 Hash d390a86e5170097018fa65829deea03a 76fe857fd52a8ebee42ddd790622e86603cf34aa ed3884b799ba55b26bd6bff31e597cedfb7fece29c668c81846db7a8bda96914 Loading...

	v1.addthisedge.com/live/boost/budakkampungonline/_ate.track.config_resp	27 B	2023-03-07	2023-05-06
Pretty URL v1.addthisedge.com/live/boost/budakkampungonline/_ate.track.config_resp IP 23.38.200.123 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-05-06 01:05:13 Times Seen1949 Hash 25c6ca1b23f9c75b6a6d7c188220303b 864b4988c73f20bb45cf1127598cc6992e32ae07 19a26d6046c4fcfe9e3efbc1fb7532f424c6b0b7590b9e193788e30bce8b9836 Loading...

	apis.google.com/js/platform.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:23 Last Seen2023-03-17 23:35:13 Times Seen1 Hash 82b37d5e95d1e985a554cf000e9bb15c 8973b2e12ea8de1b8a14c8b7ea3be6c1c25eae07 4c6520efed0ab3222ea84da3fb4d6cdc929353fdfa0ac12422253be3ffcf525a Loading...

	bdv.bidvertiser.com/BidVertiser.dbm?pid=134131%26bid=694631	9.0 kB	2023-03-08	2023-04-05
Pretty URL bdv.bidvertiser.com/BidVertiser.dbm?pid=134131%26bid=694631 IP 54.241.51.109 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:33 Last Seen2023-04-05 02:07:26 Times Seen129 Hash 0d489677aaa27440619b64706f2cafe9 b87bf2207059e1db5a939e804c7e586e7b8ad125 0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539 Loading...

	www.blogger.com/navbar.g?targetBlogID=1435446059861683708&blogName=POUCH+NOTE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://pouchnote.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=pouchnote.blogspot.com/&targetPostID=5892930481102134408&blogPostOrPageUrl=pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html&vt=-4276862757181615107&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fpouchnote.blogspot.com&pfname=&rpctoken=13741672	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=1435446059861683708&blogName=POUCH+NOTE&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://pouchnote.blogspot.com/search&blogLocale=ms&v=2&homepageUrl=pouchnote.blogspot.com/&targetPostID=5892930481102134408&blogPostOrPageUrl=pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html&vt=-4276862757181615107&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fpouchnote.blogspot.com&pfname=&rpctoken=13741672 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	55 kB	2023-03-08	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-03-17 23:14:57 Times Seen1 Hash 0f33e12fa3290716d243f3162bb63cb0 32f9b00bfd7449ebd5382871d1c083db9c1b2b95 82c53629d9ff53cc334633ac037d1dc1f843008d6e1347ce784b9f255bacb42f Loading...

	s10.histats.com/counters/cc_511.js	15 kB	2023-03-07	2023-05-04
Pretty URL s10.histats.com/counters/cc_511.js IP 46.105.201.240 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:00 Last Seen2023-05-04 23:44:42 Times Seen208 Hash 1be5d18c059cccf323e27d6ac0db0332 0b4dfe78876822b6cd36fc8f0df165276a5595de 056c49d5e33c04e80cc64e849f28b2d64398c56a86650788fe73207fa4c6823c Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	269 B	2023-03-07	2024-05-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-07 07:50:16 Times Seen28420 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js	1.2 kB	2023-03-08	2023-04-05
Pretty URL d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js IP 54.230.245.108 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:54:21 Last Seen2023-04-05 02:07:26 Times Seen82 Hash 263303c015aaddbd3c417327b3b50823 c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb 871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617 Loading...

	z.moatads.com/addthismoatframe568911941483/moatframe.js	1.7 kB	2023-03-07	2023-11-01
Pretty URL z.moatads.com/addthismoatframe568911941483/moatframe.js IP 23.38.201.146 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2023-11-01 14:42:28 Times Seen4278 Hash dd1a19cb8d13e4571d2b293c0a0d2ccf 18070dd5c894930a8aef7117bf8d49bd4922a723 05090f9390f5bc0cd23fe5f432037cc92d7cbce1ced9bfe8faf3d1c9abae85cd Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	434 B	2023-03-07	2023-07-13
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-07-13 07:50:11 Times Seen9 Hash dde174a430aaee591da2a0df3d52ed9a d3f9381d7e9aa2fc0191207af8fef6eafb4a9f74 b4f9628c9aab93deee594e71280a97d28c1cbdf55be9a354b2fc4d3056fcce94 Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	302 B	2023-03-07	2024-05-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-07 07:50:16 Times Seen29127 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	www.linkwithin.com/widget.js	2.6 kB	2023-03-08	2023-03-11
Pretty URL www.linkwithin.com/widget.js IP 34.98.99.30 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 02:52:38 Last Seen2023-03-11 22:24:31 Times Seen1 Hash 6e0e72649d50296f15557e931c1e05e9 a86f0f6aa222653013fe3c36d434f67057c85e64 895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	98 B	2023-03-07	2023-04-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-04-07 13:03:24 Times Seen8 Hash 9307e812a7ea3a6ccc279f6db6874323 80cc7e975d9ab980c8acfeb22c8b0cf223c76a02 308cf0c6334fa74339ce666ef1f79e0fd79681b807071591984d905bfc1d0d9b Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	173 B	2023-03-07	2023-04-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-04-07 13:03:24 Times Seen8 Hash 65a0b9c37fc817a0f41e054a8265e27c a4f9aa5b355eae8c36fd389fcaaa32d5dbf2f4fd b06f6a873dfb7b852aa9df372f698a9b364d32f1d379a191d4a1b911664eaf81 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs	129 kB	2023-03-08	2023-11-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:34 Last Seen2023-11-05 00:33:19 Times Seen5 Hash ebaa2506c5b4b13ecfc737a1e3b7eb3d e75a7603d9e5016c0c774ab99d5c0b9b756e1a03 9e6d60f06b6332ed1831d9d501e602656f3c884480c6d7034542866281ea3086 Loading...

	s4.histats.com/stats/0.php?758660&@f16&@g1&@h1&@i1&@j1669081217114&@k0&@l1&@mPOUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&@n0&@o1000&@q0&@r0&@s511&@ten-US&@u1280&@b1:-178583965&@b3:1669081217&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&@w	47 B	2023-03-07	2023-05-04
Pretty URL s4.histats.com/stats/0.php?758660&@f16&@g1&@h1&@i1&@j1669081217114&@k0&@l1&@mPOUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&@n0&@o1000&@q0&@r0&@s511&@ten-US&@u1280&@b1:-178583965&@b3:1669081217&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&@w IP 192.99.0.58 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:00 Last Seen2023-05-04 23:44:42 Times Seen187 Hash 06b05ae9614bafae9b0b09cfbeed559e 9b087683529b7b89a117b2d5cbb35a93e7dcbaca a60692031ce09be66be89784e8b0214c0f8b6f52cd8fd6a36129a635ffe41ad2 Loading...

	www.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL www.google-analytics.com/ga.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	831 B	2023-03-11	2023-03-11
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:25:09 Last Seen2023-03-11 15:25:09 Times Seen1 Hash 5216988ef707773cb76e0327e15b5ceb dd990e5fa579413d0034c1aa874f49670052642c 495c2a98a273fc77f2d8bbb4e0b696c03826a18e72468419bc91465ab536bd0c Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	34 B	2023-03-07	2023-07-13
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-07-13 07:50:11 Times Seen9 Hash af8a4f728b2c4d20944da38ba335210a 05a598eb0d03b1083640891a423e7956acacaa11 01580cf5d774b5e66240ce0e85868c486dede6083b4d2f8d04e9e528cb827a8b Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	91 B	2023-03-07	2023-04-07
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:21 Last Seen2023-04-07 13:03:24 Times Seen8 Hash 09d396f59d3aa82cc5fa66cae7511725 e93e038ccbc7fb080bf1f9bb01466768c38cb1b6 2d1b038e681c7612e31cd6d7f1df47f3bfa9e15d9374fc38e655a7ccfdd7412c Loading...

	pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html	9.6 kB	2023-03-11	2023-03-11
Pretty URL pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:25:09 Last Seen2023-03-11 15:25:09 Times Seen1 Hash f3e7a8fb14478059e5490ddff8827ee5 2185fc1b4a168513945d25b76c7ca8a59c42109e e2ec960812101202119759432075e2c0608672e95e4d07bb92b8cddbc357193c Loading...

		Size	First Seen	Last Seen
	#1 Eval - 062687690045026856f53e20000732e7	8 B	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:02:58 Last Seen2024-05-05 19:01:48 Times Seen3366 Hash 062687690045026856f53e20000732e7 907a784295139ac62a25fed0fe9636c8a3a5b3af 3c4b9b06fe520e9d07b2150eebd412a59c91d789706d99a2b2dc9bf217604d1f Loading...

	#2 Eval - e575dd47301f59e73258e0ac0af05cb7	1.5 kB	2023-03-07	2023-04-07
Pretty Observations First Seen2023-03-07 12:40:21 Last Seen2023-04-07 13:03:24 Times Seen11 Hash e575dd47301f59e73258e0ac0af05cb7 4905c4b610deab7eb002b916a1f3ddc268a9ca55 1eec06af360734e2c99d5a0f1f1d0b7c69b5fd3cb3cdea77473ce5b0c9511681 Loading...

	#3 Eval - 449bf5704205ea90d9021bf85b4300cd	11 B	2023-03-07	2024-05-05
Pretty Observations First Seen2023-03-07 01:02:58 Last Seen2024-05-05 19:01:48 Times Seen3354 Hash 449bf5704205ea90d9021bf85b4300cd a8401782462f9e0afe2435dea38cb79ac66d83af 8ee784d797ce97ed9716bb42682346deb0c7ae8ff75d7ad8ae60508907054c16 Loading...

	#4 Eval - 5dc9bb97032dc4745accdeb4cc0cf407	30 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 14:57:34 Last Seen2023-03-29 22:21:37 Times Seen5 Hash 5dc9bb97032dc4745accdeb4cc0cf407 73716135e9fd18517a634de4e70180c244c8f199 2bf581e0f24fd6d27d5bc7039311fbac8fe3df6c707e5da8d32e6ced09e58791 Loading...

	#5 Eval - f4c2174237d55fca513080e70f4072be	32 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 14:57:34 Last Seen2023-03-29 22:21:37 Times Seen5 Hash f4c2174237d55fca513080e70f4072be f3c9b85fec074646e187ca844f4b24b845202368 6630725c345d535af50e446bebae2d3ed4721170d28cb12eb26bbbe4a750b6a8 Loading...

	#6 Eval - 84e448ccf36ec2db1ac793adffecb852	20 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 14:57:34 Last Seen2023-03-29 22:21:37 Times Seen5 Hash 84e448ccf36ec2db1ac793adffecb852 30cdfb984afd25b2bfbd5969adb3eaf455df5f16 245bcfda89523a88c8ab38625f0eba966abd40cfa5655d7b03f9a2d4de00afaf Loading...

	#7 Eval - e171a36c9c955b47f5c81c71df53a44d	30 B	2023-03-08	2023-03-29
Pretty Observations First Seen2023-03-08 14:57:34 Last Seen2023-03-29 22:21:37 Times Seen5 Hash e171a36c9c955b47f5c81c71df53a44d e91d6e60dc5677ccc69576f2008d07596cdd078b 825b7361defe5202e0b0f3ce2702a13a866f6af960ffca689086304b58b85e3e Loading...

		Size	First Seen	Last Seen
	#1 Write - ab27cb408bb51c47b8e625f03db610a7	77 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 01:07:16 Last Seen2024-05-07 05:58:18 Times Seen1409 Hash ab27cb408bb51c47b8e625f03db610a7 3979411bfd2a5ba32a11b5300c9bcc782a4b7947 aa5040129e29d9fd5521128308150fb0db3e301800f50798324c13f9fc4d3b73 Loading...

	#2 Write - e1de89e492200e3fef7865991c435cd4	60 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 15:25:09 Last Seen2023-03-11 16:10:31 Times Seen1 Hash e1de89e492200e3fef7865991c435cd4 c80bbc855baf7395ff6d9fc445aece0053a1d2ec 0d64ee39b3652b5208e34698901fdd130355eb1301b1da456fb9c34f02bdb065 Loading...

HTTP Transactions (67)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15195
Expires: Tue, 22 Nov 2022 05:53:30 GMT
Date: Tue, 22 Nov 2022 01:40:15 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5452
Cache-Control: max-age=123714
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:15 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 12:02:09 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 01:09:17 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1858
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11168
Expires: Tue, 22 Nov 2022 04:46:23 GMT
Date: Tue, 22 Nov 2022 01:40:15 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PKydDH25K27vkWdWc3qQ3LtSBLQgfBeOGSxguAqHlYfr/6FNvXHAvnqrpORIqeLwfHEZ9dWAeGA=
x-amz-request-id: JF35HVD6R474RA4V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 01:39:22 GMT
age: 53
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html

142.250.74.161

200 OK

15 kB

URL HTTP/1.1
pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1079)
Size
15 kB (15191 bytes)
Hash
85825bdff849d4b7499e8a46e7d58aff
b1b398ec87b9626329c141190017483792bf6604
ce92d675cd764e2c0ad0d303f8a5c015cf1673bfda7c20cdacac32599c6e3fca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2012/01/gambar-ceramah-anwar-di-stadium-mini.html HTTP/1.1
Host: pouchnote.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 22 Nov 2022 01:40:15 GMT
Date: Tue, 22 Nov 2022 01:40:15 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 18 Aug 2022 16:36:42 GMT
ETag: W/"2613cb1e809f1ebe2221db8e8dbb05f4fddac44b672b6eb9bdd0bd1199a0ae15"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 15191
Server: GSE

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 01:40:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

pouchnote.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
pouchnote.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: pouchnote.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 01:51:24 GMT
Expires: Mon, 28 Nov 2022 01:51:24 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 20 Nov 2022 20:49:23 GMT
Content-Type: text/javascript
Age: 85731

s7.addthis.com/js/250/addthis_widget.js

23.38.200.123

308 Permanent Redirect

171 B

URL HTTP/1.1
s7.addthis.com/js/250/addthis_widget.js
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
171 B (171 bytes)
Hash
3c417e9efbcaeb3bf7e7df75cf3b22fd
00465aec6b8ec302eae8abb99678fc5c09c3f343
21bd143d38dbbae427615a7266a86a18dc95c417f3e510632d7a9180d98d3571

HTTP Headers

GET /js/250/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 308 Permanent Redirect
Server: nginx/1.15.8
Content-Type: text/html
Content-Length: 171
Location: https://s7.addthis.com/js/250/addthis_widget.js
Date: Tue, 22 Nov 2022 01:40:15 GMT
Connection: keep-alive
X-Distribution: 99
X-Host: s7.addthis.com

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9ed7f7f05858b8a267956d4c2e47023b
d36561200e30a487e8f60fd4dfe8dcce316de15a
d31838c9d39ec1218c5c414166275bc89c52aadb7ace74b0c3376eebdb5ef711

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/ga.js

142.250.74.174

200 OK

17 kB

URL HTTP/1.1
www.google-analytics.com/ga.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 22 Nov 2022 01:05:55 GMT
Expires: Tue, 22 Nov 2022 03:05:55 GMT
Cache-Control: public, max-age=7200
Age: 2060
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14656002960cb971c16a4fba9b254e44
afcb20905652ae987ec7a9654c7fa7f7c87fa38a
e9dc06096cf56007f620a5592b057e8aff49e741bc32e70b72e14c2864303331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14656002960cb971c16a4fba9b254e44
afcb20905652ae987ec7a9654c7fa7f7c87fa38a
e9dc06096cf56007f620a5592b057e8aff49e741bc32e70b72e14c2864303331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14656002960cb971c16a4fba9b254e44
afcb20905652ae987ec7a9654c7fa7f7c87fa38a
e9dc06096cf56007f620a5592b057e8aff49e741bc32e70b72e14c2864303331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

142.250.74.174

200 OK

21 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1279)
Size
21 kB (20984 bytes)
Hash
7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 22 Nov 2022 01:40:15 GMT
expires: Tue, 22 Nov 2022 01:40:15 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon18_edit_allbkg.gif

142.250.74.105

200 OK

162 B

URL HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:43:55 GMT
expires: Tue, 22 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Tue, 15 Nov 2022 07:51:19 GMT
content-type: image/gif
age: 557780
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s7.addthis.com/js/250/addthis_widget.js

23.38.200.123

200 OK

117 kB

URL HTTP/2
s7.addthis.com/js/250/addthis_widget.js
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (54602)
Size
117 kB (116593 bytes)
Hash
c8fa3cf4c913211ceccc6c1d06cbc708
e5e54c4564942ab57cadea4c049b6fb2df39458f
f236c230df0e30337581dfe237c3aea10424814f6cc7c2d79aab6681eaf985d3

HTTP Headers

GET /js/250/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pouchnote.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116593
date: Tue, 22 Nov 2022 01:40:15 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2342155703-widgets.js

142.250.74.105

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56726 bytes)
Hash
1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b

HTTP Headers

GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 34692
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

142.250.74.105

200 OK

6.6 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 20:36:32 GMT
expires: Sun, 19 Nov 2023 20:36:32 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 19 Nov 2022 18:50:07 GMT
content-type: text/css
age: 191023
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.linkwithin.com/widget.js

34.98.99.30

200 OK

2.6 kB

URL HTTP/1.1
www.linkwithin.com/widget.js
IP
34.98.99.30:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c

HTTP Headers

GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 22 Nov 2022 01:40:15 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 22 Oct 2022 15:35:03 GMT
ETag: "63540da7-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_jKRQ4QvC39dk/tqtmTWZrB46LsjSWzaD4tRbfU8xOl22CL7ehKtBItczkfwqqXitexqUap9FD3Q69WYqGA+Gtw
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google

i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg

143.204.55.79

301 Moved Permanently

167 B

URL HTTP/1.1
i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
IP
143.204.55.79:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

HTTP Headers

GET /albums/s282/theviejo/recurso_10_1.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 22 Nov 2022 01:40:16 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UDnzFqcg-dJr3x-9DbbpU_6Lpf-vMHX_XliQGwq0IRZxM_3ChQFPmA==
Vary: Origin

blogmalaysia.com/images/reciprocal.gif

172.67.133.163

301 Moved Permanently

0 B

URL HTTP/1.1
blogmalaysia.com/images/reciprocal.gif
IP
172.67.133.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/reciprocal.gif HTTP/1.1
Host: blogmalaysia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 01:40:16 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 22 Nov 2022 02:40:16 GMT
Location: https://blogmalaysia.com/images/reciprocal.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wvx4%2BFfUHksPh2SKEVpbA6x%2FP0WkLuloETjlTq%2FrS%2F7t1Gj%2FaRpYswfKkJG%2BlMTIAo9trGffWDpuWz%2BInQYGvIBLtk%2BAe7s4ele4Pz7%2FF8X7vWZG7UuEgPq40ZL1gUTF2%2BPw"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ddf4c078100b69-OSL
alt-svc: h2=":443"; ma=60

www.linkwithin.com/pixel.png

34.98.99.30

200 OK

2.6 kB

URL HTTP/1.1
www.linkwithin.com/pixel.png
IP
34.98.99.30:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Size
2.6 kB (2551 bytes)
Hash
6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c

HTTP Headers

GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Server: openresty
Date: Tue, 22 Nov 2022 01:40:16 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 22 Oct 2022 15:35:03 GMT
ETag: "63540da7-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_FeCqmKNEz63Rmir6Fay/kIPv768Vk7DCMCOKSDRwYQapkzGRJr/UYggLjqK19ehBUHjY/K49L1KutijIzZjvWg
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs

142.250.74.174

200 OK

58 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
58 kB (57794 bytes)
Hash
813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 23:40:09 GMT
expires: Thu, 16 Nov 2023 23:40:09 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 439207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

banners.needearn.com/banner_1_120x240.jpg

94.229.72.121

404 Not Found

9 B

URL HTTP/1.1
banners.needearn.com/banner_1_120x240.jpg
IP
94.229.72.121:0
ASN
#42831 UK Dedicated Servers Limited

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

HTTP Headers

GET /banner_1_120x240.jpg HTTP/1.1
Host: banners.needearn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 22 Nov 2022 01:40:15 GMT
server: nginx
set-cookie: sid=9d6028ac-6a06-11ed-b6f5-78f9a759ba56; path=/; domain=.needearn.com; expires=Sun, 10 Dec 2090 04:54:23 GMT; max-age=2147483647; HttpOnly

www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1881064520&utmhn=pouchnote.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1152x816&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=POUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&utmhid=570150770&utmr=-&utmp=%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&utmht=1669081215910&utmac=UA-22451205-2&utmcc=__utma%3D207088402.771741411.1669081216.1669081216.1669081216.1%3B%2B__utmz%3D207088402.1669081216.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1804746953&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~

142.250.74.174

200 OK

35 B

URL HTTP/1.1
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1881064520&utmhn=pouchnote.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1152x816&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=POUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&utmhid=570150770&utmr=-&utmp=%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&utmht=1669081215910&utmac=UA-22451205-2&utmcc=__utma%3D207088402.771741411.1669081216.1669081216.1669081216.1%3B%2B__utmz%3D207088402.1669081216.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1804746953&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1881064520&utmhn=pouchnote.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1152x816&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=POUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&utmhid=570150770&utmr=-&utmp=%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&utmht=1669081215910&utmac=UA-22451205-2&utmcc=__utma%3D207088402.771741411.1669081216.1669081216.1669081216.1%3B%2B__utmz%3D207088402.1669081216.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=1804746953&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Tue, 22 Nov 2022 01:40:16 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9b7c3c9a9c0cbb0f24701fe95043bdd0
c34fce37d1b74b0617cfb48fb645a747e25fa1bb
72417299ab85ea1a54216a62b31b69ff8bcc61719c081489dddbf5d79cd0fb64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
14656002960cb971c16a4fba9b254e44
afcb20905652ae987ec7a9654c7fa7f7c87fa38a
e9dc06096cf56007f620a5592b057e8aff49e741bc32e70b72e14c2864303331

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

blogmalaysia.com/images/reciprocal.gif

172.67.133.163

200 OK

5.1 kB

URL HTTP/2
blogmalaysia.com/images/reciprocal.gif
IP
172.67.133.163:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 124 x 124\012- data
Size
5.1 kB (5071 bytes)
Hash
c80da3eb9dd6cb1bff777d860d292f56
281a018c878f33592855ba1714727396522f8d6d
c23beff8a8c3eba49b22c379c109bee42671cb3715abe0d4f4b7c13388554aa0

HTTP Headers

GET /images/reciprocal.gif HTTP/1.1
Host: blogmalaysia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pouchnote.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 22 Nov 2022 01:40:16 GMT
content-type: image/gif
content-length: 5071
cache-control: public, max-age=31536000
expires: Wed, 23 Nov 2022 20:13:06 GMT
etag: "13cf-63325255-813ff;;;"
last-modified: Tue, 27 Sep 2022 01:31:01 GMT
cf-cache-status: HIT
age: 451630
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fa9kiV1ZCbllGOh4yvHV%2F58YkPbxHHE4xbUveeWw07HBsgDeefb4bp%2F0qCOVhqhhtKESpnM2dOLpgZY2E4oNtGZ6Ow20paM6mQFGoY391x11C4HzJ%2Ffkg5v3vHD3xmUpDf7U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76ddf4c15f881c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg

143.204.55.79

200 OK

780 B

URL HTTP/2
i155.photobucket.com/albums/s282/theviejo/recurso_10_1.jpg
IP
143.204.55.79:0
ASN
#16509 AMAZON-02

File type
RIFF (little-endian) data, Web/P image\012- data
Size
780 B (780 bytes)
Hash
de3922a1249527b63680271bc5eb4206
9dac02b1348c1036350bba6d27a2f86df6c8333d
67a90de4e2bbb88665c4c09e2766782576042c3e18143600eaa6ac2e141fcffd

HTTP Headers

GET /albums/s282/theviejo/recurso_10_1.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pouchnote.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/webp
content-length: 780
date: Mon, 21 Nov 2022 01:51:25 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_10_1.webp"
expires: Tue, 21 Nov 2023 01:51:25 GMT
server: photobucket
x-amzn-trace-id: Root=1-637ad99d-360ad9112a659999476ab92b
x-request-id: ENUXE7bkMZ5Jx56A3g2Dh
x-cache: Hit from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YMsbz9tOPEaDXhfCtu1gDOaDv98dYYOf1epz_Q-eQKZDKul8OnRM9g==
age: 85731
vary: Accept, Origin
X-Firefox-Spdy: h2

bdv.bidvertiser.com/BidVertiser.dbm?pid=134131%26bid=694631

54.241.51.109

200 OK

9.0 kB

URL HTTP/1.1
bdv.bidvertiser.com/BidVertiser.dbm?pid=134131%26bid=694631
IP
54.241.51.109:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
9.0 kB (9014 bytes)
Hash
0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539

HTTP Headers

GET /BidVertiser.dbm?pid=134131%26bid=694631 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014

www.advertlets.com/_/js/advertlets_lite.js

103.224.182.246

404 Not Found

196 B

URL HTTP/1.1
www.advertlets.com/_/js/advertlets_lite.js
IP
103.224.182.246:0
ASN
#133618 Trellian Pty. Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /_/js/advertlets_lite.js HTTP/1.1
Host: www.advertlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 01:40:16 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

synad2.nuffnang.com.my/k.js

18.138.110.223

302 Found

314 B

URL HTTP/1.1
synad2.nuffnang.com.my/k.js
IP
18.138.110.223:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
314 B (314 bytes)
Hash
2dc70b6c45bf3273ce02cc411906180e
3e706e22af3600df7ca611184af391f70755d256
32a8cb54b2eda028acc7b6cc832de6dcc6f82b4ec288620ec870def3f74b1b6c

HTTP Headers

GET /k.js HTTP/1.1
Host: synad2.nuffnang.com.my
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 302 Found
Date: Tue, 22 Nov 2022 01:40:16 GMT
Server: Apache/2.2.34 (Amazon)
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
Location: https://eccdn1.synad3.nuffnang.com.my/k.js
Cache-Control: max-age=86400
Expires: Wed, 23 Nov 2022 01:40:16 GMT
Content-Length: 314
Connection: close
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 01:08:53 GMT
cache-control: public,max-age=3600
age: 1883
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

www.needearn.com/affiliate/scripts/imp.php?a_aid=2f461da3&a_bid=be47f2de

94.229.72.121

302 Found

11 B

URL HTTP/1.1
www.needearn.com/affiliate/scripts/imp.php?a_aid=2f461da3&a_bid=be47f2de
IP
94.229.72.121:0
ASN
#42831 UK Dedicated Servers Limited

File type
ASCII text, with no line terminators
Size
11 B (11 bytes)
Hash
32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47

HTTP Headers

GET /affiliate/scripts/imp.php?a_aid=2f461da3&a_bid=be47f2de HTTP/1.1
Host: www.needearn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 22 Nov 2022 01:40:16 GMT
location: http://dipaka-ead.com/zcvisitor/9d6a2287-6a06-11ed-904e-12d4c0c3cb85/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=d14b8690-51bd-11ed-8dac-0a918cbcbb97
server: nginx
set-cookie: sid=9d601a10-6a06-11ed-b72d-78f9111b878e; path=/; domain=.needearn.com; expires=Sun, 10 Dec 2090 04:54:23 GMT; max-age=2147483647; HttpOnly

banners.needearn.com/banner_1_120x240.jpg

94.229.72.121

404 Not Found

9 B

URL HTTP/1.1
banners.needearn.com/banner_1_120x240.jpg
IP
94.229.72.121:0
ASN
#42831 UK Dedicated Servers Limited

File type
ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9

HTTP Headers

GET /banner_1_120x240.jpg HTTP/1.1
Host: banners.needearn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 22 Nov 2022 01:40:16 GMT
server: nginx
set-cookie: sid=9dae32ae-6a06-11ed-b20e-78f98facbfe4; path=/; domain=.needearn.com; expires=Sun, 10 Dec 2090 04:54:23 GMT; max-age=2147483647; HttpOnly

www.blogger.com/dyn-css/authorization.css?targetBlogID=1435446059861683708&zx=2247df43-2d85-4880-9945-bf1f6f2ada96

142.250.74.105

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1435446059861683708&zx=2247df43-2d85-4880-9945-bf1f6f2ada96
IP
142.250.74.105:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=1435446059861683708&zx=2247df43-2d85-4880-9945-bf1f6f2ada96 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 22 Nov 2022 01:40:16 GMT
last-modified: Tue, 22 Nov 2022 01:40:16 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

d2b9l3u54v5v39.cloudfront.net/css/default.css

54.230.245.108

200 OK

1.5 kB

URL HTTP/1.1
d2b9l3u54v5v39.cloudfront.net/css/default.css
IP
54.230.245.108:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1489 bytes)
Hash
8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af

HTTP Headers

GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Mon, 21 Nov 2022 07:35:21 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q0mOMA-JDqlr_Tg3IsGoxMtqDcyCZTBCbGKFkpggJjwLTybZcDyQwA==
Age: 65095

d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js

54.230.245.108

200 OK

1.2 kB

URL HTTP/1.1
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP
54.230.245.108:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
1.2 kB (1199 bytes)
Hash
263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617

HTTP Headers

GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Mon, 21 Nov 2022 06:12:44 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cp-wCJba0GjrKO2MPDs8-lQxySD5xdXpaSEs7mVLKT4cNTYzBcoDHg==
Age: 70052

dipaka-ead.com/zcvisitor/9d6a2287-6a06-11ed-904e-12d4c0c3cb85/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=d14b8690-51bd-11ed-8dac-0a918cbcbb97

3.212.50.125

200

1.1 kB

URL HTTP/1.1
dipaka-ead.com/zcvisitor/9d6a2287-6a06-11ed-904e-12d4c0c3cb85/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=d14b8690-51bd-11ed-8dac-0a918cbcbb97
IP
3.212.50.125:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.1 kB (1110 bytes)
Hash
a00dca1f25ab761bcb49079472b0a0f1
fd3549c783e33381642f7da8703b4c3f477ba2b0
c2378b52b032b68f1675f8c23b40bccf023c815c227ea48ba212a0296531dedf

HTTP Headers

GET /zcvisitor/9d6a2287-6a06-11ed-904e-12d4c0c3cb85/72092e88-2c53-401c-b988-51ef43ce1034?campaignid=d14b8690-51bd-11ed-8dac-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pouchnote.blogspot.com/
Connection: keep-alive

HTTP/1.1 200 
Date: Tue, 22 Nov 2022 01:40:16 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: PnlbHfgB

bdv.bidvertiser.com/BidVertiser.dbm?pid=134131&bid=694631&RD=6383830921791&DIF=1&bd_ref_v=pouchnote.blogspot.com&tref=1&win_name=null&docref=&jsrand=6383830921791&js1loc=-&loctitle=Keywords%20of%20the%20post

54.241.51.109

200 OK

8.2 kB

URL HTTP/1.1
bdv.bidvertiser.com/BidVertiser.dbm?pid=134131&bid=694631&RD=6383830921791&DIF=1&bd_ref_v=pouchnote.blogspot.com&tref=1&win_name=null&docref=&jsrand=6383830921791&js1loc=-&loctitle=Keywords%20of%20the%20post
IP
54.241.51.109:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (405), with CRLF, LF line terminators
Size
8.2 kB (8171 bytes)
Hash
174578c9b35fef5b848feb0f8612f0c1
d14146cb03f3caa4aba8dbfa5750addba9b2e98c
2bb1f4322fafd7072b756f915626d5fe030796d2a61bcda8101cb2c2af2c2150

HTTP Headers

GET /BidVertiser.dbm?pid=134131&bid=694631&RD=6383830921791&DIF=1&bd_ref_v=pouchnote.blogspot.com&tref=1&win_name=null&docref=&jsrand=6383830921791&js1loc=-&loctitle=Keywords%20of%20the%20post HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Tuesday, 22-Nov-2022 01:40:16 GMT
Cache-Control: no-store
Last-Modified: Monday, 22-Nov-2021 01:40:16 GMT
Set-Cookie: bdv_c11p=244; domain=.bidvertiser.com; path=/; expires=Wed, 23-Nov-2022 01:40:16 GMT
bdv_c11p=1_1_1; domain=.bidvertiser.com; path=/; expires=Wed, 23-Nov-2022 01:40:16 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close

www.advertlets.com/_/js/advertlets_lite.js

103.224.182.246

404 Not Found

196 B

URL HTTP/1.1
www.advertlets.com/_/js/advertlets_lite.js
IP
103.224.182.246:0
ASN
#133618 Trellian Pty. Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
196 B (196 bytes)
Hash
62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880

HTTP Headers

GET /_/js/advertlets_lite.js HTTP/1.1
Host: www.advertlets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 404 Not Found
Date: Tue, 22 Nov 2022 01:40:16 GMT
Server: Apache/2.4.38 (Debian)
Content-Length: 196
Connection: close
Content-Type: text/html; charset=iso-8859-1

s10.histats.com/js15.js

46.105.201.240

200 OK

4.4 kB

URL HTTP/1.1
s10.histats.com/js15.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (11088), with no line terminators
Size
4.4 kB (4405 bytes)
Hash
688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5

HTTP Headers

GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
date: Tue, 22 Nov 2022 01:32:56 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 839190191
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:0BA0_2E69C9F0:0050_637C2881_34745:FD11
x-iplb-instance: 42474

s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html

23.38.200.123

200 OK

26 kB

URL HTTP/2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Size
26 kB (26421 bytes)
Hash
707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051

HTTP Headers

GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 22 Nov 2022 01:40:17 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2

pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5ghOPBAez31Lq7heg90xw4Kz21dw%3A1669081215476

142.250.74.161

200 OK

609 B

URL HTTP/1.1
pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5ghOPBAez31Lq7heg90xw4Kz21dw%3A1669081215476
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1436)
Size
609 B (609 bytes)
Hash
ac7a05549c2308ad774f2ccc2f425864
79bbe1f49adbc6cfd830a421cd17047137b5ddb9
0e21cd8e179f9de4b5da55f18dc6c964f5cff5c54460367ca1c907a910c08d4c

HTTP Headers

GET /2012/01/gambar-ceramah-anwar-di-stadium-mini.html?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5ghOPBAez31Lq7heg90xw4Kz21dw%3A1669081215476 HTTP/1.1
Host: pouchnote.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html
Cookie: __utma=207088402.771741411.1669081216.1669081216.1669081216.1; __utmb=207088402.1.10.1669081216; __utmc=207088402; __utmz=207088402.1669081216.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; HstCfa758660=1669081217114; HstCla758660=1669081217114; HstCmu758660=1669081217114; HstPn758660=1; HstPt758660=1; HstCnv758660=1; HstCns758660=1

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Expires: Tue, 22 Nov 2022 01:40:17 GMT
Date: Tue, 22 Nov 2022 01:40:17 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 18 Aug 2022 16:36:42 GMT
ETag: "2247df43-2d85-4880-9945-bf1f6f2ada96"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 609
Server: GSE

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 01:40:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 01:40:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 01:40:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 01:40:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12141
Expires: Tue, 22 Nov 2022 05:02:39 GMT
Date: Tue, 22 Nov 2022 01:40:18 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f7c6319-e9a0-4736-90e8-07c1f2948417.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f7c6319-e9a0-4736-90e8-07c1f2948417.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11657 bytes)
Hash
5bea2f745ca4672047f47dcc4c805c37
0dbf1014e9fed8175c4aa8ca17a52ae96a9b342f
46bbf30736f0b5df73bd8b4ecd668b4a9ddb978715e84351f7584eb3ea335dee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f7c6319-e9a0-4736-90e8-07c1f2948417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11657
x-amzn-requestid: 381b1e9e-6857-4614-a66a-d746cd713edd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oG1xIAMFf5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-2b5204975c9ea4c60f81ee05;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OFgZvlUDgzmqKEzLX5rnlp4YZmI7Dq44PM1kLIAbpFEhmlQIpnmMdw==
via: 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:35 GMT
etag: "0dbf1014e9fed8175c4aa8ca17a52ae96a9b342f"
content-type: image/jpeg
age: 13243
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6574 bytes)
Hash
9966de3441666a87569e1035e7849a5d
537e1122532b97637319252662d25be5edcd8009
032f9fd899993bde783fee0123a1568e65fb6dd3810666813fc878263d5b6387

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1372997b-0a59-409c-abfc-e43335bb3c99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6574
x-amzn-requestid: fd74522d-9523-48da-a94a-72ff65e6a15b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I61E_pIAMFnfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6f916e413d39bea94b0e137f;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VuPgTium3lWMOuUdkZ50LFGHdpuAaiHusb2fkYQNw4FgB_MkNVO0Zw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:17 GMT
age: 12901
etag: "537e1122532b97637319252662d25be5edcd8009"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4269 bytes)
Hash
b52c578c918c74f35f3c0a3f0c5dd2be
39d9b60a2b11b95c0ae37f35deb9a594d8e61d08
48a67feefffe59d04660c0e7de58234f184bded9cbb121da8157387ebd24f8f5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: 9e70b9ad-7fb2-4f2d-bc87-d703abeb4888
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I62ERzIAMFcvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6de953ea2d2aee071fea324b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KSAEAQLao_Wbr7-82c36qtuN-bHp_dE4tItvqg_WZS-1TNGYla1o9w==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 13309
etag: "39d9b60a2b11b95c0ae37f35deb9a594d8e61d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8089 bytes)
Hash
c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:35:40 GMT
age: 14678
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11343 bytes)
Hash
296559cb68d1f42b8b9e5d5e5a8167bc
a4b04d0296539fa5063b1f464d2c461be37491a5
eeab74cba5a5a12453a831f9d7e002999c6752576f8a2f31a7040158a7f57bee

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11343
x-amzn-requestid: 5af18795-3668-4174-a2cf-47a020d665f2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6pEjEIAMF3pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-26f7d1cd340cb8ab3ab6c81b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H6tjj0BtgHgcETfLkgynpkUp4BHwPlJq91XFrzdImb-nOJx1hGPQOA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:34:53 GMT
age: 11125
etag: "a4b04d0296539fa5063b1f464d2c461be37491a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05ba1792-f86a-406e-8e1c-f133f0fb8d73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9598 bytes)
Hash
253593d1b3f90aa54d0748688fbb09ac
470c54ca28e1e5c56828c8c7f9849374061f501e
d8d331519f526b1117e4f67b0fb5fb46f400a63d1cb5757a3f22201ea70301ce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F05ba1792-f86a-406e-8e1c-f133f0fb8d73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9598
x-amzn-requestid: a713ce94-2441-4288-b6d8-cd6b638274b9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IqVGgJoAMFz5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee41-5ed8e45c664203e137f8c92b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nFfq7s1220lni0ZvVlfHyEHo9IzXlySilW-uCgLVC1nnjo4jOaHDPw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:34:52 GMT
age: 11126
etag: "470c54ca28e1e5c56828c8c7f9849374061f501e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

z.moatads.com/addthismoatframe568911941483/moatframe.js

23.38.201.146

200 OK

948 B

URL HTTP/2
z.moatads.com/addthismoatframe568911941483/moatframe.js
IP
23.38.201.146:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (523)
Size
948 B (948 bytes)
Hash
f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac

HTTP Headers

GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=40156
date: Tue, 22 Nov 2022 01:40:19 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1a4066125f5a3736590e0368be10b81b
c69ed251555f18cc7a12e19a105589631452e2bf
3d34d749784cb3160181ded32069cffb0d897b55ec8bf7e7da35b729437078a8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3D34D749784CB3160181DED32069CFFB0D897B55EC8BF7E7DA35B729437078A8"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5914
Expires: Tue, 22 Nov 2022 03:18:53 GMT
Date: Tue, 22 Nov 2022 01:40:19 GMT
Connection: keep-alive

s10.histats.com/counters/cc_511.js

46.105.201.240

200 OK

6.0 kB

URL HTTP/2
s10.histats.com/counters/cc_511.js
IP
46.105.201.240:0
ASN
#16276 OVH SAS

File type
HTML document, ASCII text, with very long lines (14926), with no line terminators
Size
6.0 kB (5984 bytes)
Hash
e0963faf9f8d4dd4683c649033bfe3e6
8b8365dac8c2d50836e19456f025370ee782598f
80ac8877a54d16e397e9518ce7221d0abad87a39ffd0221a99227540eeb8b2a8

HTTP Headers

GET /counters/cc_511.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 22 Nov 2022 01:31:57 GMT
etag: "1364484781"
last-modified: Thu, 16 Apr 2020 10:45:32 GMT
x-request-id: 182255743
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 5984
X-Firefox-Spdy: h2

pouchnote.blogspot.com/favicon.ico

142.250.74.161

200 OK

412 B

URL HTTP/1.1
pouchnote.blogspot.com/favicon.ico
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: pouchnote.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/2012/01/gambar-ceramah-anwar-di-stadium-mini.html
Cookie: __utma=207088402.771741411.1669081216.1669081216.1669081216.1; __utmb=207088402.1.10.1669081216; __utmc=207088402; __utmz=207088402.1669081216.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1; HstCfa758660=1669081217114; HstCla758660=1669081217114; HstCmu758660=1669081217114; HstPn758660=1; HstPt758660=1; HstCnv758660=1; HstCns758660=1; __atuvc=1%7C47; __atuvs=637c2880c20e5356000

HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Tue, 22 Nov 2022 01:40:19 GMT
Date: Tue, 22 Nov 2022 01:40:19 GMT
Cache-Control: private, max-age=86400
Last-Modified: Thu, 18 Aug 2022 16:36:42 GMT
ETag: W/"2613cb1e809f1ebe2221db8e8dbb05f4fddac44b672b6eb9bdd0bd1199a0ae15"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE

m.addthis.com/live/red_lojson/300lo.json?si=637c28809d663a57&bkl=0&bl=1&pdt=608&sid=637c28809d663a57&pub=budakkampungonline&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=pouchnote.blogspot.com&fp=2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Keywords%20of%20the%20post&colc=1669081217146&jsl=32&uvs=637c2880c20e5356000&skipb=1&callback=addthis.cbs.jsonp__91199245021618470

23.38.200.123

200 OK

89 B

URL HTTP/2
m.addthis.com/live/red_lojson/300lo.json?si=637c28809d663a57&bkl=0&bl=1&pdt=608&sid=637c28809d663a57&pub=budakkampungonline&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=pouchnote.blogspot.com&fp=2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Keywords%20of%20the%20post&colc=1669081217146&jsl=32&uvs=637c2880c20e5356000&skipb=1&callback=addthis.cbs.jsonp__91199245021618470
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with no line terminators
Size
89 B (89 bytes)
Hash
feb8a2590bc9211ba14791ed6fa6dbce
658b179d16c67b1b1210b93f541c8c784b7d0db7
01a7782595dba678c9c041743426a15ca9238eec6bb76b8a91079022e1f41817

HTTP Headers

GET /live/red_lojson/300lo.json?si=637c28809d663a57&bkl=0&bl=1&pdt=608&sid=637c28809d663a57&pub=budakkampungonline&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=pouchnote.blogspot.com&fp=2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Keywords%20of%20the%20post&colc=1669081217146&jsl=32&uvs=637c2880c20e5356000&skipb=1&callback=addthis.cbs.jsonp__91199245021618470 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 22 Nov 2022 01:40:19 GMT
X-Firefox-Spdy: h2

v1.addthisedge.com/live/boost/budakkampungonline/_ate.track.config_resp

23.38.200.123

200 OK

47 B

URL HTTP/2
v1.addthisedge.com/live/boost/budakkampungonline/_ate.track.config_resp
IP
23.38.200.123:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with no line terminators
Size
47 B (47 bytes)
Hash
24c668b115f75423506f2ea21d1b49c2
14f956ddb2d9e8b072cd5f605c3f39526490b391
b542daef470a9730029174f975ce3ce236b3e58bf9183b11956acce994b13a16

HTTP Headers

GET /live/boost/budakkampungonline/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 47
cache-control: public, max-age=55, s-maxage=86400
date: Tue, 22 Nov 2022 01:40:19 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

s4.histats.com/stats/0.php?758660&@f16&@g1&@h1&@i1&@j1669081217114&@k0&@l1&@mPOUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&@n0&@o1000&@q0&@r0&@s511&@ten-US&@u1280&@b1:-178583965&@b3:1669081217&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&@w

192.99.0.58

200 OK

47 B

URL HTTP/1.1
s4.histats.com/stats/0.php?758660&@f16&@g1&@h1&@i1&@j1669081217114&@k0&@l1&@mPOUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&@n0&@o1000&@q0&@r0&@s511&@ten-US&@u1280&@b1:-178583965&@b3:1669081217&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&@w
IP
192.99.0.58:0
ASN
#16276 OVH SAS

File type
ASCII text, with no line terminators
Size
47 B (47 bytes)
Hash
06b05ae9614bafae9b0b09cfbeed559e
9b087683529b7b89a117b2d5cbb35a93e7dcbaca
a60692031ce09be66be89784e8b0214c0f8b6f52cd8fd6a36129a635ffe41ad2

HTTP Headers

GET /stats/0.php?758660&@f16&@g1&@h1&@i1&@j1669081217114&@k0&@l1&@mPOUCH%20NOTE%3A%20Gambar%20Ceramah%20Anwar%20Di%20Stadium%20Mini%20Sabak%20Bernam&@n0&@o1000&@q0&@r0&@s511&@ten-US&@u1280&@b1:-178583965&@b3:1669081217&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpouchnote.blogspot.com%2F2012%2F01%2Fgambar-ceramah-anwar-di-stadium-mini.html&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 01:40:19 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 47
Connection: close

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.130

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 21 Nov 2022 09:05:39 GMT
Expires: Mon, 05 Dec 2022 09:05:39 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 59682

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1554
Cache-Control: max-age=114747
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:40:21 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 09:32:48 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.41.253.170

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.41.253.170:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: K1sVjQtv78AO3WccwHGh1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: amz31BTiovV76utjfwgxVuGXTLg=

bdv.bidvertiser.com/bidvertiser.dbm?pid=134131&bid=694631&RD=82817122513154&DIF=2

54.241.51.109

200 OK

0 B

URL HTTP/1.1
bdv.bidvertiser.com/bidvertiser.dbm?pid=134131&bid=694631&RD=82817122513154&DIF=2
IP
54.241.51.109:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bidvertiser.dbm?pid=134131&bid=694631&RD=82817122513154&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pouchnote.blogspot.com/

HTTP/1.1 200 OK
Date: Tuesday, 22-Nov-2022 01:40:19 GMT
Cache-Control: no-store
Last-Modified: Monday, 22-Nov-2021 01:40:19 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (43)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations