r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3897
Expires: Tue, 06 Dec 2022 03:01:46 GMT
Date: Tue, 06 Dec 2022 01:56:49 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1488
Cache-Control: max-age=118758
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:49 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 10:56:07 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 01:18:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2296
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6388
Expires: Tue, 06 Dec 2022 03:43:17 GMT
Date: Tue, 06 Dec 2022 01:56:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: dcby8y/gLtIbkujkypnSsndn80KQGQhtx1SRQJAOGP3g0S07NcuGvDQAs95fk/73rz0tyNNHIug=
x-amz-request-id: 1FVGXTB2TGGK5DA6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 01:46:55 GMT
age: 594
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:56:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html
172.217.21.161200 OK 25 kB URL HTTP/1.1 catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (24589)
Hash 69acf43b5f76d3df81bd1c052448d1a0
6bc51b4bdaeb4d2dda4f648dfffedc91b6c5c97e
baf980f328d5ea9e1f8e8231cb6d49161dfa0e45d1b087113047e051f98ae0de
Analyzer Verdict Alert fortinet Phishing
GET /2011/06/download-mmt-mediafire-68-mb-japan-game.html HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Tue, 06 Dec 2022 01:56:49 GMT
Date: Tue, 06 Dec 2022 01:56:49 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 01 Dec 2022 01:03:31 GMT
ETag: W/"d4f9feea4379439223cb6ddb9faedda027224f7ab295b493264687059a0749e0"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 24732
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 29335a536fd47c44f11a984665f501f6
46dbfa43c5a94c6baec55a9e89cb1cb0cee7eb69
39d8bc234639a4fceeee88f10319692733e37388c06ae5567971f9dbb7c0aab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:01:43 GMT
expires: Wed, 29 Nov 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/css
age: 561307
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:44:05 GMT
expires: Wed, 29 Nov 2023 13:44:05 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 562365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
142.250.74.106200 OK 29 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (889)
Hash f33c44c3656d46d3e787c675dea161fc
1610a78e9c1bed45c4707414a25622b81a1092a7
bcc450ae9e7809cbef2f18cabd0e2120747a9841cb97d35775b17b25e77bd370
GET /ajax/libs/mootools/1.3.1/mootools-yui-compressed.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 28586
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 16:45:04 GMT
expires: Wed, 29 Nov 2023 16:45:04 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 551506
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
catatanmathin.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 catatanmathin.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 13 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 05 Dec 2022 23:52:53 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
1.bp.blogspot.com/-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png
142.250.74.161200 OK 1.6 kB URL HTTP/1.1 1.bp.blogspot.com/-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash d1e3744d8a65d004047b2ed8311b49ae
7b777bda47b84437dea4935fa835c21227f44b18
7bbd453552fbbe6837b0e05af365c5869ae5bf72ba4bbcd306ab2fb6b0563d08
GET /-O0ruwujqdVE/TePQd4k4gBI/AAAAAAAAHTI/C39i08JwXCo/s1600/rss.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d32"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="rss.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 1647
X-XSS-Protection: 0
4.bp.blogspot.com/-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png
142.250.74.161200 OK 1.7 kB URL HTTP/1.1 4.bp.blogspot.com/-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png
IP 142.250.74.161:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e6b5a5d05450681a488d10c5c834d85c
4f1e875d05e396ce4915acf4f3e2d8f6ce1be38a
9b512679727afdce95c5c9457668452138aa2d002ec8571dc7a0147376b34513
GET /-FGBGiZHriPU/TePQvGwiVHI/AAAAAAAAHTw/ismEpNQYcbc/s1600/twitter.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="twitter.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 1715
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 29 Nov 2022 14:20:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d3c"
Content-Type: image/png
Age: 0
www.blogger.com/static/v1/widgets/2342155703-widgets.js
216.58.207.233200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 05:43:29 GMT
expires: Wed, 29 Nov 2023 05:43:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 28 Nov 2022 14:50:39 GMT
content-type: text/javascript
age: 591201
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/blank.gif
216.58.207.233200 OK 43 B URL HTTP/1.1 resources.blogblog.com/img/blank.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 11:18:21 GMT
Expires: Tue, 06 Dec 2022 11:18:21 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 05:51:11 GMT
Content-Type: image/gif
Age: 571109
www.blogger.com/img/icon_delete13.gif
216.58.207.233200 OK 140 B URL HTTP/1.1 www.blogger.com/img/icon_delete13.gif
IP 216.58.207.233:0
File type GIF image data, version 89a, 13 x 13\012- data
Hash e7f55c98f18368f2ba26a008b1d40fc3
bb509d770d2d149060707c2c2c01776e86b858c4
69ff07a31a102649f3e0d08a967c39b134286293b85aac0885b3102a9120f1a6
GET /img/icon_delete13.gif HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 140
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 12:48:41 GMT
Expires: Tue, 06 Dec 2022 12:48:41 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 29 Nov 2022 06:52:50 GMT
Content-Type: image/gif
Age: 565689
1.bp.blogspot.com/_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png
142.250.74.161200 OK 608 B URL HTTP/1.1 1.bp.blogspot.com/_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash aeeb89a0648d7514aaad4875e9664548
59069d509d667c609147c1fdd24817944ad778e3
594e22be98bf18f07504fef7b4c0bb36ee0c801feacbd53e17297bad508932ab
GET /_4HKUHirY_2U/TUlLCdh4WbI/AAAAAAAAMc8/fNWAMMf4lnU/s1600/folder.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="folder.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 608
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Sun, 04 Dec 2022 19:54:20 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v31cf"
Content-Type: image/png
Age: 0
3.bp.blogspot.com/-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png
142.250.74.161200 OK 7.6 kB URL HTTP/1.1 3.bp.blogspot.com/-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png
IP 142.250.74.161:0
File type PNG image data, 142 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e14aa1c43f9bd38ea1d4a3f88468b12
7e346de29d8c7d80a3bf22f47a89f528fe4e9206
284d254ea73d9905e311a5bd97183ef8b45ef77766fdf66acff55617da6556cc
GET /-mjXbxHRAiH4/TeisEVvEBOI/AAAAAAAAAnE/bXPMwiAbw60/s1600/download.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="download.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 7623
X-XSS-Protection: 0
3.bp.blogspot.com/-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png
142.250.74.161200 OK 919 B URL HTTP/1.1 3.bp.blogspot.com/-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f2d4c679a1c9d22d7b94bdd7cbb3555d
67dd08e62830861199cf789f43c6264d2176a743
4285e671aa668c14b3c1e23e0bf95cbdb051feea776af3862c4505ede90184f1
GET /-OLOyknjcuag/TdetB9UqsvI/AAAAAAAAGrs/mz21C7KPlxg/s1600/date.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="date.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 919
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 29 Nov 2022 06:12:21 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1abb"
Content-Type: image/png
Age: 0
4.bp.blogspot.com/-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png
142.250.74.161200 OK 492 B URL HTTP/1.1 4.bp.blogspot.com/-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a648d7aa740e4c6791502493458d8bfd
e8ec628d74fb5731c2712474378695dfbaedf3b6
24588da675dcec2f9a03c1688c3ecbf638c36afd7b308644f44264ccdf3d4a35
GET /-cUoKWX_86Co/TdetCY_dLwI/AAAAAAAAGr8/Bma3hWeQmDs/s1600/comments.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="comments.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 492
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Mon, 28 Nov 2022 21:27:23 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1abf"
Content-Type: image/png
Age: 0
4.bp.blogspot.com/-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png
142.250.74.161200 OK 871 B URL HTTP/1.1 4.bp.blogspot.com/-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png
IP 142.250.74.161:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b56db8b49702539b80881cea2b626cd9
93c297610f65fdc8e62413578b4636bbd8f6a053
6ff1dcf3605772068aae35e25f264a0d19897e19cedc06e3638a417a9cab24e7
GET /-7mTgV8CRH80/TdetCDV2AvI/AAAAAAAAGr0/yzdHMtNbPBU/s1600/user.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="user.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 871
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 06 Dec 2022 11:53:20 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1abd"
Content-Type: image/png
Age: 0
www.getfreebacklinks.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D
104.21.65.154200 OK 190 B URL HTTP/1.1 www.getfreebacklinks.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D
IP 104.21.65.154:0
File type GIF image data, version 87a, 57 x 13\012- data
Hash d29e7a6d10bbb104307b470e78af84fc
329584c8653afb19f76d9aa8b01591328250ec9e
96368a48f2485e3f9eecdf67d98d1e8251aa399bce316d83d64f2c48683320b6
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DA4DB0CB4854A7AD421A02FC8C133214B6D89C171323442713DC9253F2224C73C88A35C48B0A3371BCFC74D HTTP/1.1
Host: www.getfreebacklinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VFm85KxWop4qiKKt8tpYcKmWVeqlyn%2Fw%2BIUxtzzK%2Bg6nqHRcD%2FlJoxpM38Tw8FZtszrzkN59mQ5PC%2FsBNPWsA7zyle94dAAlv5Y2zWDsHyPduhrGZRVODlydU6onTdlfGSUUqBVGmZyUYPI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775168458deab4eb-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1e5e51fbc58282a2410de240a13bac3d
03e7151c23e4ed5efc5a4415fc5dcb01f0d5e019
ad20d69cf3f84ec6bee56a570acbce60d0ade6bdf201397a1de2417fed11b3fd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png
142.250.74.161200 OK 29 kB URL HTTP/1.1 3.bp.blogspot.com/-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png
IP 142.250.74.161:0
File type PNG image data, 400 x 107, 8-bit/color RGBA, non-interlaced\012- data
Hash 093bb52031f634f36f2f40ff7fce6cbf
138a52b41a2d0cdf4ce544ac83a32435b12c28f6
99d0ec300e04188c93e2660874c446d643b45b2bdf481ef518973eeb7f837792
GET /-NUCM1N1iWP4/T2M2PPgtZKI/AAAAAAAAAY4/EhweheWeUWk/s400/logo+(1).png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v18e"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="logo (1).png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 28802
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 67e4709c84acec8eddbeb11d56e7d0fd
32a14eeba023499cda0d49fd785ac7626f4a5582
8953090ad9df36f81c3393cc6c67c87b6ad521b8806c7ea004e0b4354b9e1c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg
142.250.74.161200 OK 3.4 kB URL HTTP/1.1 2.bp.blogspot.com/-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1b1cc2bc8f5f5ec707abfefe17eba8d0
02ab0d3fc7a92e9307ac960506157d933f4cedc5
0a378e81d6627ce6a114417b968a63f5c9e713e4497034442c86fc0825b4a3b8
GET /-DsA63FdqFDw/Tlj5ztmNpzI/AAAAAAAABjg/J2-lNu242-U/w72-h72-p-k-no-nu/GZ2.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v638"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="GZ2.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 3406
X-XSS-Protection: 0
1.bp.blogspot.com/-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 1.bp.blogspot.com/-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6339733a30fe7ca383cce6dbc9c6a345
a553c7827ea2db685a8f9e793cb0e6848a1aa20c
028ddf385ac2e72b5cd30c697d5a18d9a3077c900173ad9416cc89adbcf53ed7
GET /-cs-hj_vTx0E/T_bJOBg5o4I/AAAAAAAADV8/G-2dbkJcNDc/w72-h72-p-k-no-nu/l15v33a60sfM.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="l15v33a60sfM.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4270
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 29 Nov 2022 14:20:57 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "vd5f"
Content-Type: image/jpeg
Age: 0
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Tue, 06 Dec 2022 01:56:50 GMT
expires: Tue, 06 Dec 2022 01:56:50 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png
142.250.74.161200 OK 198 B URL HTTP/1.1 1.bp.blogspot.com/-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png
IP 142.250.74.161:0
File type PNG image data, 1 x 39, 8-bit/color RGB, non-interlaced\012- data
Hash 2de4c2aa8c424bf111d912e872112671
bc417d22a2ad721c0fc0bd75c8ead8f285ed1316
c3c4b37bf63eed14ee3b70c6ac4f8d53fec24001a1efb59741cd28899428dfbd
GET /-pG6-Z3wL1J4/TePQTapulaI/AAAAAAAAHSY/Uf3alzw8qd8/s1600/background.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="background.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 198
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 01:56:50 GMT
Expires: Tue, 29 Nov 2022 14:20:56 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d26"
Content-Type: image/png
Age: 0
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
www.getfreebl.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8
172.67.149.192200 OK 198 B URL HTTP/1.1 www.getfreebl.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8
IP 172.67.149.192:0
File type GIF image data, version 87a, 66 x 13\012- data
Hash 93e044bd37ec47fb3f7d7b1464b887b8
9c02ef252e5daca616e282d9221399b6a565968c
796b371a139266064cb546fa61c52a0891be30866727fa048da835b4082aab61
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0CB4834C7AAB5EA52ACBC233214B6D89C17132344F7139C830162C23D81597BA7B4BBFE8 HTTP/1.1
Host: www.getfreebl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4lcELtwm3Mu5Cp9uUIUXzyupCQ0CXxW8gYEzDu7DjOfsefdu5k%2BLI9wK1BUbhBBoQn7%2F6DdJiOkIf%2FM7SmLq80IWAaoYqBsqr%2F11ofGLusrs3Tvha2LLgOIybXxLQuBgCNKUoA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77516845dd551bfe-OSL
alt-svc: h2=":443"; ma=60
2.bp.blogspot.com/-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png
142.250.74.161200 OK 18 kB URL HTTP/1.1 2.bp.blogspot.com/-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png
IP 142.250.74.161:0
File type PNG image data, 320 x 96, 8-bit/color RGB, non-interlaced\012- data
Hash fcd4a39da940202a0513759b7de4e016
a62692cbcd620aa88390a4a71865d4ea7a62a9f6
be4513677ddcd7c367a014afc356acfeef187becf564c9c3e2b1edf327940f3a
GET /-sO-eE7xnLrw/UEM2Zsl7iXI/AAAAAAAAANY/ySId_hly8UQ/s320/im.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vd6"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="im.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 18462
X-XSS-Protection: 0
2.bp.blogspot.com/-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg
142.250.74.161200 OK 5.7 kB URL HTTP/1.1 2.bp.blogspot.com/-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e226b85479bf5849041a2326b972c276
5eeef32eb4ed0bc4c2305ad1ec78f2121d609bbb
19132f2999312daebd9394b1182375d3ff2c89ba570351e59d352e526fa1077a
GET /-31EPxdSpP98/TfHig83N2eI/AAAAAAAAA4Q/h5KEiMXK6xA/w72-h72-p-k-no-nu/Portable+Grand+Theft+Auto+III+%2528Rip%2529.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Portable Grand Theft Auto III (Rip).jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 5686
X-XSS-Protection: 0
1.bp.blogspot.com/-c1gsmkxt9Xo/Tgrq37ra91I/AAAAAAAABWg/1ElTTa8h_bw/s320/MMT.jpg
142.250.74.161200 OK 46 kB URL HTTP/1.1 1.bp.blogspot.com/-c1gsmkxt9Xo/Tgrq37ra91I/AAAAAAAABWg/1ElTTa8h_bw/s320/MMT.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash ce9bf2ffbbeadcbfd8640d9cee4d259b
31b7930bf515b44f833d5bd918dc4b56ec9ebee3
f793d260f22dc55da1f0f8a089d511d8ac15baf15bd277dfbc42538b7790e879
GET /-c1gsmkxt9Xo/Tgrq37ra91I/AAAAAAAABWg/1ElTTa8h_bw/s320/MMT.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v568"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="MMT.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 45582
X-XSS-Protection: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:47:40 GMT
expires: Wed, 29 Nov 2023 19:47:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 540550
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
myblogtalk.com/bloggertemplates/js/recentposts_thumbnail.js
35.186.238.101200 OK 2.6 kB URL HTTP/1.1 myblogtalk.com/bloggertemplates/js/recentposts_thumbnail.js
IP 35.186.238.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /bloggertemplates/js/recentposts_thumbnail.js HTTP/1.1
Host: myblogtalk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sun, 27 Nov 2022 01:56:48 GMT
ETag: "6382c3e0-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_G98lbBQBHHLYghq0CiGssSu9swzewKKfo8jl+suFInBG4LaWA7Eb6I3nbYukuTAXt0CI6X5j6CC6w1DTC+8EGA
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
2.bp.blogspot.com/-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg
142.250.74.161200 OK 4.3 kB URL HTTP/1.1 2.bp.blogspot.com/-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d7f8f4a2c062fc9a1c4c9df41895d0b9
0bf9d62ecee908e1af77bcd4d49ce2691b8c0ef0
6f8042b0d9b1baff22b2453a5f286e7e846b42c6185c20aa060d47dfb50e6d21
GET /-BYa4qjKAZuY/ThATDvX6zdI/AAAAAAAABYI/BwLagpI6yKc/w72-h72-p-k-no-nu/9318517337.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v582"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="9318517337.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 4255
X-XSS-Protection: 0
2.bp.blogspot.com/-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png
142.250.74.161200 OK 269 B URL HTTP/1.1 2.bp.blogspot.com/-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 351cf19b039906ed0289f7e334c380dd
6f7c59afdf6b1a83d899ef91dbf584f5ea666f54
a1e1ab88d8451a8e574c41abd004ad637890fca960604775d6a1b95bae83f936
GET /-1WIlm1qJj9M/TePQdjLKfqI/AAAAAAAAHS4/_lo02HrYr4U/s1600/nav-background-hover.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d2e"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nav-background-hover.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 269
X-XSS-Protection: 0
3.bp.blogspot.com/-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png
142.250.74.161200 OK 216 B URL HTTP/1.1 3.bp.blogspot.com/-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 3f37e57d243324924f49895bc0ba3cbf
bcba23548fccfbd6faf8993e2a8bc7d76667a7aa
0d8c7b85f61cd88a4ad74c1f888f25b47f53f6580673e886d233337d9ffc6fd1
GET /-d2-HPgUIixU/TePQUBRBLtI/AAAAAAAAHSw/OcT8EEi32Sw/s1600/nav-background.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d2c"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nav-background.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 216
X-XSS-Protection: 0
3.bp.blogspot.com/-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png
142.250.74.161200 OK 205 B URL HTTP/1.1 3.bp.blogspot.com/-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png
IP 142.250.74.161:0
File type PNG image data, 2 x 48, 8-bit/color RGB, non-interlaced\012- data
Hash 1579a27da6d50f52b3c5d75c132c26a0
d77d7e9ed5962a30e553c7393d7e7d049f246ee0
86c0d2ae2ba9ad439047133fa4b5ef09f8e72f2c9796a726e18043d100ff731c
GET /-YJ3TlaE0O1c/TePQdkA3k2I/AAAAAAAAHTA/nDOVe4nuFyI/s1600/nav-separator.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d30"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="nav-separator.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 205
X-XSS-Protection: 0
2.bp.blogspot.com/-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg
142.250.74.161200 OK 109 kB URL HTTP/1.1 2.bp.blogspot.com/-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1354x326, components 3\012- data
Size 109 kB (108866 bytes)
Hash fb6c3db9dc1d7c18fd3e588b02ad88bb
4b84a72431eab85a4e91da2ea57456e30777f22a
aed02f4632cc9e3cf53496a3dfa7ad66e2b06a0a773aeb0376b87ba63df8bfe9
GET /-M826ELvpcaA/TePQvcRPYnI/AAAAAAAAHT4/zREPzxU5qfs/s1600/wrapper-bg.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v3151"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="wrapper-bg.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 108866
X-XSS-Protection: 0
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 01:08:58 GMT
cache-control: public,max-age=3600
age: 2872
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
lh6.ggpht.com/__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg
142.250.74.1200 OK 4.0 kB URL HTTP/1.1 lh6.ggpht.com/__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg
IP 142.250.74.1:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 160x30, components 3\012- data
Hash 6f5473f8ff780dc86fdbc6e894d6c232
97e50914e062065584e844f2f4d08c7698a8ee0c
cbcc46fba44756bd74a2f9207a115892657ba35f1828af1b3fcbdee5283d0026
GET /__LDKTfLchOU/TRy7tzrO4XI/AAAAAAAAABo/UJDotaCK-Cc/s800/toplinkindo-backlink-gratis.jpg HTTP/1.1
Host: lh6.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="toplinkindo-backlink-gratis.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3984
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 00:09:19 GMT
Expires: Sun, 27 Nov 2022 08:40:29 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6451
ETag: "v1a"
Content-Type: image/jpeg
4.bp.blogspot.com/-N7xDHzztlTo/TgrqyItLfAI/AAAAAAAABWY/uO329SsQxxE/s400/1UMlC.jpg
142.250.74.161200 OK 49 kB URL HTTP/1.1 4.bp.blogspot.com/-N7xDHzztlTo/TgrqyItLfAI/AAAAAAAABWY/uO329SsQxxE/s400/1UMlC.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 6959a59432a7b1483160ec1976d32289
5dc1f5b08740cec25db8c3f33c7052a9d954f849
df04bdd5d5d69c9bf9f95edaf7600941e68ae8ab2758cfc63ed98dec7e4c09c7
GET /-N7xDHzztlTo/TgrqyItLfAI/AAAAAAAABWY/uO329SsQxxE/s400/1UMlC.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v566"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1UMlC.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 48737
X-XSS-Protection: 0
4.bp.blogspot.com/-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg
142.250.74.161200 OK 3.3 kB URL HTTP/1.1 4.bp.blogspot.com/-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d13894eb6bbe94782030fd197c09c2fe
228940f44739dd137373a38b07c3fdf156dc9b29
52b375b6052de8023c4a60b2f534314b9cfcdfeb573ef2fe6afcff2cc11e8fa4
GET /-idEHLiWIsBI/TgAHGeDjxWI/AAAAAAAABHQ/BrSOc107wQs/w72-h72-p-k-no-nu/918782_front.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v6e2"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="918782_front.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 3257
X-XSS-Protection: 0
4.bp.blogspot.com/-cu1ZDALGd4g/Tgrq1ISjzTI/AAAAAAAABWc/OndruTZ_Ehs/s400/A70pM.jpg
142.250.74.161200 OK 62 kB URL HTTP/1.1 4.bp.blogspot.com/-cu1ZDALGd4g/Tgrq1ISjzTI/AAAAAAAABWc/OndruTZ_Ehs/s400/A70pM.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash f3a2176ea90083315aec75512f29cc5b
b6c0cbf13d83dbe264fbce1ce8228ba28982956a
2efa800fb00c20cf72870a7e8a7f3ba2936bc49290eb08706457455091a15a87
GET /-cu1ZDALGd4g/Tgrq1ISjzTI/AAAAAAAABWc/OndruTZ_Ehs/s400/A70pM.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v567"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="A70pM.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 61933
X-XSS-Protection: 0
3.bp.blogspot.com/-Q33Kf8FTcbc/TgrqwDQCeuI/AAAAAAAABWU/_skPtNNvb-M/s400/X72FV.jpg
142.250.74.161200 OK 70 kB URL HTTP/1.1 3.bp.blogspot.com/-Q33Kf8FTcbc/TgrqwDQCeuI/AAAAAAAABWU/_skPtNNvb-M/s400/X72FV.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 4d6dbb353ee5f99498cc3cfcca27446c
0b491d9357c49e8ea59afd8d2dac5f0b05ab58a1
d06db8d79c2696a2361bdf94641c8cfc52014cb9d9208cd020feee7d5ae420b2
GET /-Q33Kf8FTcbc/TgrqwDQCeuI/AAAAAAAABWU/_skPtNNvb-M/s400/X72FV.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v565"
Expires: Wed, 07 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="X72FV.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: fife
Content-Length: 70221
X-XSS-Protection: 0
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/1.1 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.18.0 (Ubuntu)
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.66200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.66:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Mon, 05 Dec 2022 19:51:21 GMT
Expires: Mon, 19 Dec 2022 19:51:21 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 21929
www.21sme.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF
104.21.1.249200 OK 174 B URL HTTP/1.1 www.21sme.com/services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF
IP 104.21.1.249:0
File type GIF image data, version 87a, 51 x 13\012- data
Hash d76bfe9b99f78abd741502e4538077d3
d486a9b973ecd181a5929a258b80eb855f79577f
0c23d0c7a6061e70e67e8188b6ca5983740bdf5196b9ff654eeb72c6a1fc30a5
GET /services/backlink/backlink.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD1AE0CB48C437AD421A52ABBB233741F6A82D677383B5F411BE0301D2039CF HTTP/1.1
Host: www.21sme.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2019 05:00:00 GMT
Cache-Control: max-age=904800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CmX6WfgxzRYIvTgH6hUt3MpKy7Nl1NRsPPltBPox6fix3uXQ4ofKUCWbuyabJl%2BaTY3NBz5AsrDIcFR3V7elSIrrNP2kn1%2FGLq7cV3QLJSrNnUUjtEZYbtRQoz9h8HCp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775168476d84b51b-OSL
alt-svc: h2=":443"; ma=60
www.indonesia-blogger.com/img/indonesiablogger.jpg
15.197.142.173404 Not Found 125 B URL HTTP/1.1 www.indonesia-blogger.com/img/indonesiablogger.jpg
IP 15.197.142.173:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 2995357b538ef792ce59b1b7cca539c4
d33d8ce38719b45d0731f075f71593351023318c
aef27e8433e35954afe1798da5bde96145b020160cc2f16b1424425253fb545b
GET /img/indonesiablogger.jpg HTTP/1.1
Host: www.indonesia-blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 404 Not Found
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 125
Connection: keep-alive
Server: ip-100-74-3-60.eu-west-2.compute.internal
X-Request-Id: 180b10e0-ed11-4b4e-884a-7b44b1d8396f
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 875e87f9a3f772c29c1feae0e7d69b58
d05155780e2288a8f369a7fd079a68dc334353e4
7644d5870318983fb11e7c81151ff176b5f03bd7f419c54b48d226a8d067e541
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7644D5870318983FB11E7C81151FF176B5F03BD7F419C54B48D226A8D067E541"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19363
Expires: Tue, 06 Dec 2022 07:19:33 GMT
Date: Tue, 06 Dec 2022 01:56:50 GMT
Connection: keep-alive
www.allseotools.net/ads/s-backlink.png
207.226.173.130301 Moved Permanently 0 B URL HTTP/1.1 www.allseotools.net/ads/s-backlink.png
IP 207.226.173.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/s-backlink.png HTTP/1.1
Host: www.allseotools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.4.3
Location: http://www.valencia-hotels.net/en/allseotools.html
X-Request-Id: 1a4c45927e41249c9caa64a2faec1910
b.babylon.com/RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif
198.143.128.241200 OK 14 kB URL HTTP/1.1 b.babylon.com/RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif
IP 198.143.128.241:0
File type GIF image data, version 89a, 468 x 60\012- data
Hash c44c9574bebeff922bdb72c414d242bb
1be3e31b29c12c8b9e7d60094bc61ba96185f475
70110462297faaafe58b5b78e7e9174251f51f26235fdfefe8afc394e9a6bcee
GET /RESOURCES/Babylon/2011030715281146/tabs9_468x60_en.gif HTTP/1.1
Host: b.babylon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.13.4
Date: Tue, 06 Dec 2022 01:56:50 GMT
Content-Type: image/gif
Content-Length: 13689
Last-Modified: Mon, 07 Mar 2011 13:44:35 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4d74e143-3579"
Expires: Tue, 13 Dec 2022 01:56:50 GMT
Cache-Control: max-age=604800, public
Accept-Ranges: bytes
www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80301 Moved Permanently 178 B URL HTTP/2 www.auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd2695f4b079c71dbddde3436286fb9c
733c05da132193d6cf1d8e242d12e2525c03bab4
2e04a18ff185ba5b16f762a0538339bc4049aceaef9738edd43af77d2ceb788b
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: www.auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Dec 2022 01:56:50 GMT
content-type: text/html
content-length: 178
location: https://auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
X-Firefox-Spdy: h2
blog-indonesia.com/image/6.gif
52.216.213.69403 Forbidden 2.1 kB URL HTTP/1.1 blog-indonesia.com/image/6.gif
IP 52.216.213.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash b43a994b8b85d0e8ae9335d728b7361f
5ed538414f2b55481edd739ba13e510a1948735f
3dee65f0bcaaa8b10673d9c53a5d5f0f34128592f33361c7b79972754b996ead
GET /image/6.gif HTTP/1.1
Host: blog-indonesia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 403 Forbidden
Last-Modified: Tue, 29 Nov 2016 14:33:11 GMT
ETag: "b43a994b8b85d0e8ae9335d728b7361f"
x-amz-error-code: AccessDenied
x-amz-error-message: Access Denied
x-amz-request-id: 5RKT4W47CQDWMTX5
x-amz-id-2: JDP1XbvKA0tlcgHQRpuAz5R0gGzwgw1bVipeEqFLLv1sXQG4EyI7NwD/ankHSk0P5vMe+cwAv4s=
Content-Type: text/html
Date: Tue, 06 Dec 2022 01:56:49 GMT
Server: AmazonS3
Content-Length: 2116
www.overshopping.com/images/backlink.gif
70.32.1.32200 OK 0 B URL HTTP/1.1 www.overshopping.com/images/backlink.gif
IP 70.32.1.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/backlink.gif HTTP/1.1
Host: www.overshopping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:50 GMT
Server: Apache/2.4.38 (Debian)
Set-Cookie: __tad=1670291810.6473645; expires=Fri, 03-Dec-2032 01:56:50 GMT; Max-Age=315360000
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
kewlrank.com/getrank.php?id=1345997975&type=8915
66.115.173.179301 Moved Permanently 0 B URL HTTP/1.1 kewlrank.com/getrank.php?id=1345997975&type=8915
IP 66.115.173.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getrank.php?id=1345997975&type=8915 HTTP/1.1
Host: kewlrank.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: http://www.kewlrank.com/getrank.php?id=1345997975&type=8915
x-litespeed-cache: hit
content-length: 0
date: Tue, 06 Dec 2022 01:56:50 GMT
server: LiteSpeed
www.cpmfun.com/getad.php?34555;62124;160x600
3.140.13.188302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;160x600
IP 3.140.13.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;160x600 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Tue, 06 Dec 2022 01:56:49 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
www.cpmfun.com/getad.php?34555;62124;468x60
3.140.13.188302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;468x60
IP 3.140.13.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;468x60 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Tue, 06 Dec 2022 01:56:49 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
www.cpmfun.com/getad.php?34555;62124;728x90
3.140.13.188302 Found 0 B URL HTTP/1.1 www.cpmfun.com/getad.php?34555;62124;728x90
IP 3.140.13.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getad.php?34555;62124;728x90 HTTP/1.1
Host: www.cpmfun.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
content-length: 0
date: Tue, 06 Dec 2022 01:56:49 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
www.blogger.com/dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=3719337579064215406&zx=e0d5b186-a6d7-4222-a99c-33cfd1c67ca2 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Dec 2022 01:56:50 GMT
last-modified: Tue, 06 Dec 2022 01:56:50 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1477
Cache-Control: max-age=113679
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:50 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:31:29 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.blogger.com/navbar.g?targetBlogID=3719337579064215406&blogName=Mathin+Games&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://catatanmathin.blogspot.com/search&blogLocale=in&v=2&homepageUrl=http://catatanmathin.blogspot.com/&targetPostID=7001403153946456291&blogPostOrPageUrl=http://catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html&vt=-7079394923143078153&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
216.58.207.233200 OK 2.7 kB URL HTTP/2 www.blogger.com/navbar.g?targetBlogID=3719337579064215406&blogName=Mathin+Games&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://catatanmathin.blogspot.com/search&blogLocale=in&v=2&homepageUrl=http://catatanmathin.blogspot.com/&targetPostID=7001403153946456291&blogPostOrPageUrl=http://catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html&vt=-7079394923143078153&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__
IP 216.58.207.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 8fb902b777c73947b43d38a6f3fe62f1
22b5a35d1b8ad290b3400b750df746c1e77a0ba2
7dece4891e90c22725e28b2e3ca82b3a425ca340782bece1afa004e8c0cb244f
GET /navbar.g?targetBlogID=3719337579064215406&blogName=Mathin+Games&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://catatanmathin.blogspot.com/search&blogLocale=in&v=2&homepageUrl=http://catatanmathin.blogspot.com/&targetPostID=7001403153946456291&blogPostOrPageUrl=http://catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html&vt=-7079394923143078153&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.geaHZXF2-fw.O%2Fd%3D1%2Frs%3DAHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 06 Dec 2022 01:56:50 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2651
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ANbyha2s056ovsFx-EuF3JNWyw_FXvFDXGYT6oViCMv5tkJ9CxRXgtAvh-KSdtHi0Sg8U41I-D6Z6TupPkxde25c49F2-Ei1cYZq7jOi3Q7_zgkoWZFpbm-w2nJTnszPXiLNYTU=w72-h72-p-k-no-nu
142.250.74.97404 Not Found 1.7 kB URL HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ANbyha2s056ovsFx-EuF3JNWyw_FXvFDXGYT6oViCMv5tkJ9CxRXgtAvh-KSdtHi0Sg8U41I-D6Z6TupPkxde25c49F2-Ei1cYZq7jOi3Q7_zgkoWZFpbm-w2nJTnszPXiLNYTU=w72-h72-p-k-no-nu
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 9ea397998d14c7e01284e90c8b93dec6
d555e85b8ae16b8496f66ec1c637510ce6517368
ccaf5a32af0887a8bb627e75a655532af417893ad05a0e9447579b4e9666d103
GET /blogger_img_proxy/ANbyha2s056ovsFx-EuF3JNWyw_FXvFDXGYT6oViCMv5tkJ9CxRXgtAvh-KSdtHi0Sg8U41I-D6Z6TupPkxde25c49F2-Ei1cYZq7jOi3Q7_zgkoWZFpbm-w2nJTnszPXiLNYTU=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 01:56:50 GMT
server: fife
content-length: 1732
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 29335a536fd47c44f11a984665f501f6
46dbfa43c5a94c6baec55a9e89cb1cb0cee7eb69
39d8bc234639a4fceeee88f10319692733e37388c06ae5567971f9dbb7c0aab5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 67e4709c84acec8eddbeb11d56e7d0fd
32a14eeba023499cda0d49fd785ac7626f4a5582
8953090ad9df36f81c3393cc6c67c87b6ad521b8806c7ea004e0b4354b9e1c92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 82950f87efac8cae3e42b2027b799f81
4b0506380d56cc8cae843e0ae869db33f0230272
5c5164f232b0770bde7a9c3cc4ba12209b41b27519125c11dca9307141dfbd04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 01:56:51 GMT
Etag: "638db071-117"
Server: ECS (amb/6B71)
Content-Length: 279
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G2r4JlCfuRA1ZLIX/fX1Pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HpK1DhneGtIGDOkhvHqMCtk+7Gw=
scr.kliksaya.com/js-ad.php?zid=108301
134.119.176.30302 Found 11 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=108301
IP 134.119.176.30:0
ASN #29066 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /js-ad.php?zid=108301 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 06 Dec 2022 01:56:50 GMT
location: https://mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbg7xkOQcEv1kp-OHkOOn2r_IW2uriy4eFwCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCv5tuZm5LyddkXEHKEePj1fMZjjBmOVcUnlrJ58VGtCAdBfxVHUY_M1WmX4mzIUTyj7zLDXdUp3wLmjpnQkR8zrmRIdHzAyx5Stua9OqVsLu_05UWmj8MBCxkDEJ5NzKLIk4HmG-d_h1L25YqiRFq3BDAInaCRcudjBX53Tw6KjnOSobZ14FbgeqcfLcWb8Q4BoRXAWannlwTB01E7a6b-KswwkCg6XUpQKKtPLQmww6FXrWDz0pMKU2XrObDFiZlEuN1202C92y8UrAAWCWiKnJ-TRIPoHtwJNXwfsuAdngc638zJNu9471DtEJwVwys2gngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJi2WLjN3f7ZIfc6cJnR9Q5F93s6BTYusjo2plbFL8yYOaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVDgRjzEAsv1ygUE7W9Vaf4s0zBlObfxFIAJqsuI84hKJifiBbs8SoXYKQjExoVbBDvFPMYB0bwTFpIb8Zsh9TXHPJL09PStFWwhYzcek6I_ZJDddyGXqnyWTae78vGFxrDJ7Og3-6Ecm7GPQ_BaV-cVMZZNtct61fOzYh-KDbGsqmWONsKpZq6qsCf_kJsXVOsQz2j6kZAJHejAJNkOvXMQOW0k3VnGFWTMCzoTKrPG3MIi5YFm6FkAQoPyS00FeySJKP2u7tePnfxRAkSIsvt1yl-GC9P8uNlig-49zSru1T7QvlLPfBScPbPCRISxEN0P95JjzpEMJXhLpqFOI9FTqNAB30feMSYQcpu4GgZsI4_SYGlMGC_wwXOchQkBX7ii7mSKo_r5non7FJxz4C17r_1kh6HKZqO01qx6UsYcPqZFwJBzG-Yq5qyn1N02_bqj3hqt97rCZDlK-D-DRo9U41g0WAF9IFpotjuDUriDvCTZQHCM2x8m8dfU_XK_3zb7D9Lk_OfgF8uPAnoZ_v0BtIaaBPojf1D7D9Lk_OfgF_tB-IYOZhRxQcN9AScI28DFhvHGFQtwbuyjXY0fqTXKP7mARv3nsSl_T2--JyCJhPQkYs40C0YuOYwwqJPWDKxpkIk_tXy2UTrk2RQY4q80NrAZ1C8gy674kphWpncFVO5b6Gf-ym5HjvdVKL8c3kX0Gk2GDBUMQxMKyxAGjlv4sqb2NuX1PzlswhogPas2kQ
server: nginx
set-cookie: sid=3fb41a0c-7509-11ed-8e29-c0f7163747b2; path=/; domain=.kliksaya.com; expires=Sun, 24 Dec 2090 05:10:58 GMT; max-age=2147483647; HttpOnly
www.kewlrank.com/getrank.php?id=1345997975&type=8915
66.115.173.179404 Not Found 6.7 kB URL HTTP/1.1 www.kewlrank.com/getrank.php?id=1345997975&type=8915
IP 66.115.173.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7739)
Hash bffaf9dff8c4353feff492112b645bf6
38d110253e5f1bcbb24af64eb8743c92610d6e53
91d5dfb08671720d310607ddc7f3b461f7e44378a85c2bb55b0742c57681c07b
GET /getrank.php?id=1345997975&type=8915 HTTP/1.1
Host: www.kewlrank.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <http://www.kewlrank.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: gzip
vary: Accept-Encoding
content-length: 6688
date: Tue, 06 Dec 2022 01:56:51 GMT
server: LiteSpeed
www.allnewssite.com/images/backlink.gif
198.57.150.161200 OK 720 B URL HTTP/1.1 www.allnewssite.com/images/backlink.gif
IP 198.57.150.161:0
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 80 x 15\012- data
Hash 1b808dee3dc3b51fd622764bb88175d4
50d9a5e3015dba344a56076630ed22369158c456
3c39ebbb1a782a061ddf999d5ead0753eed961bc9708ad0ef0659a23be37d1c1
GET /images/backlink.gif HTTP/1.1
Host: www.allnewssite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 06 Mar 2018 21:48:32 GMT
Accept-Ranges: bytes
Content-Length: 720
Keep-Alive: timeout=5, max=75
Content-Type: image/gif
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 8cff693ee9c762244ede97dd8fcd747a
502f6f4bf0484b95b1a1339077d6fd9df5aced9e
99e344ff76e45b61c748a61cd60c67aff303ffc62e6e5a1e679f59d66c0a15da
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 19:25:46 GMT
Expires: Sun, 11 Dec 2022 19:25:45 GMT
Etag: "502f6f4bf0484b95b1a1339077d6fd9df5aced9e"
Cache-Control: max-age=494333,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7751684e9d09b4ed-OSL
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbg7xkOQcEv1kp-OHkOOn2r_IW2uriy4eFwCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCv5tuZm5LyddkXEHKEePj1fMZjjBmOVcUnlrJ58VGtCAdBfxVHUY_M1WmX4mzIUTyj7zLDXdUp3wLmjpnQkR8zrmRIdHzAyx5Stua9OqVsLu_05UWmj8MBCxkDEJ5NzKLIk4HmG-d_h1L25YqiRFq3BDAInaCRcudjBX53Tw6KjnOSobZ14FbgeqcfLcWb8Q4BoRXAWannlwTB01E7a6b-KswwkCg6XUpQKKtPLQmww6FXrWDz0pMKU2XrObDFiZlEuN1202C92y8UrAAWCWiKnJ-TRIPoHtwJNXwfsuAdngc638zJNu9471DtEJwVwys2gngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJi2WLjN3f7ZIfc6cJnR9Q5F93s6BTYusjo2plbFL8yYOaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVDgRjzEAsv1ygUE7W9Vaf4s0zBlObfxFIAJqsuI84hKJifiBbs8SoXYKQjExoVbBDvFPMYB0bwTFpIb8Zsh9TXHPJL09PStFWwhYzcek6I_ZJDddyGXqnyWTae78vGFxrDJ7Og3-6Ecm7GPQ_BaV-cVMZZNtct61fOzYh-KDbGsqmWONsKpZq6qsCf_kJsXVOsQz2j6kZAJHejAJNkOvXMQOW0k3VnGFWTMCzoTKrPG3MIi5YFm6FkAQoPyS00FeySJKP2u7tePnfxRAkSIsvt1yl-GC9P8uNlig-49zSru1T7QvlLPfBScPbPCRISxEN0P95JjzpEMJXhLpqFOI9FTqNAB30feMSYQcpu4GgZsI4_SYGlMGC_wwXOchQkBX7ii7mSKo_r5non7FJxz4C17r_1kh6HKZqO01qx6UsYcPqZFwJBzG-Yq5qyn1N02_bqj3hqt97rCZDlK-D-DRo9U41g0WAF9IFpotjuDUriDvCTZQHCM2x8m8dfU_XK_3zb7D9Lk_OfgF8uPAnoZ_v0BtIaaBPojf1D7D9Lk_OfgF_tB-IYOZhRxQcN9AScI28DFhvHGFQtwbuyjXY0fqTXKP7mARv3nsSl_T2--JyCJhPQkYs40C0YuOYwwqJPWDKxpkIk_tXy2UTrk2RQY4q80NrAZ1C8gy674kphWpncFVO5b6Gf-ym5HjvdVKL8c3kX0Gk2GDBUMQxMKyxAGjlv4sqb2NuX1PzlswhogPas2kQ
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbg7xkOQcEv1kp-OHkOOn2r_IW2uriy4eFwCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCv5tuZm5LyddkXEHKEePj1fMZjjBmOVcUnlrJ58VGtCAdBfxVHUY_M1WmX4mzIUTyj7zLDXdUp3wLmjpnQkR8zrmRIdHzAyx5Stua9OqVsLu_05UWmj8MBCxkDEJ5NzKLIk4HmG-d_h1L25YqiRFq3BDAInaCRcudjBX53Tw6KjnOSobZ14FbgeqcfLcWb8Q4BoRXAWannlwTB01E7a6b-KswwkCg6XUpQKKtPLQmww6FXrWDz0pMKU2XrObDFiZlEuN1202C92y8UrAAWCWiKnJ-TRIPoHtwJNXwfsuAdngc638zJNu9471DtEJwVwys2gngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJi2WLjN3f7ZIfc6cJnR9Q5F93s6BTYusjo2plbFL8yYOaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVDgRjzEAsv1ygUE7W9Vaf4s0zBlObfxFIAJqsuI84hKJifiBbs8SoXYKQjExoVbBDvFPMYB0bwTFpIb8Zsh9TXHPJL09PStFWwhYzcek6I_ZJDddyGXqnyWTae78vGFxrDJ7Og3-6Ecm7GPQ_BaV-cVMZZNtct61fOzYh-KDbGsqmWONsKpZq6qsCf_kJsXVOsQz2j6kZAJHejAJNkOvXMQOW0k3VnGFWTMCzoTKrPG3MIi5YFm6FkAQoPyS00FeySJKP2u7tePnfxRAkSIsvt1yl-GC9P8uNlig-49zSru1T7QvlLPfBScPbPCRISxEN0P95JjzpEMJXhLpqFOI9FTqNAB30feMSYQcpu4GgZsI4_SYGlMGC_wwXOchQkBX7ii7mSKo_r5non7FJxz4C17r_1kh6HKZqO01qx6UsYcPqZFwJBzG-Yq5qyn1N02_bqj3hqt97rCZDlK-D-DRo9U41g0WAF9IFpotjuDUriDvCTZQHCM2x8m8dfU_XK_3zb7D9Lk_OfgF8uPAnoZ_v0BtIaaBPojf1D7D9Lk_OfgF_tB-IYOZhRxQcN9AScI28DFhvHGFQtwbuyjXY0fqTXKP7mARv3nsSl_T2--JyCJhPQkYs40C0YuOYwwqJPWDKxpkIk_tXy2UTrk2RQY4q80NrAZ1C8gy674kphWpncFVO5b6Gf-ym5HjvdVKL8c3kX0Gk2GDBUMQxMKyxAGjlv4sqb2NuX1PzlswhogPas2kQ
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbg7xkOQcEv1kp-OHkOOn2r_IW2uriy4eFwCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCv5tuZm5LyddkXEHKEePj1fMZjjBmOVcUnlrJ58VGtCAdBfxVHUY_M1WmX4mzIUTyj7zLDXdUp3wLmjpnQkR8zrmRIdHzAyx5Stua9OqVsLu_05UWmj8MBCxkDEJ5NzKLIk4HmG-d_h1L25YqiRFq3BDAInaCRcudjBX53Tw6KjnOSobZ14FbgeqcfLcWb8Q4BoRXAWannlwTB01E7a6b-KswwkCg6XUpQKKtPLQmww6FXrWDz0pMKU2XrObDFiZlEuN1202C92y8UrAAWCWiKnJ-TRIPoHtwJNXwfsuAdngc638zJNu9471DtEJwVwys2gngA9SL4TWj_LFKaQfdCIV7zGDkXThF6fxRzXxISqKCG6-EnCPrjjd-p9flQvgrg5c6TeowFoAUMjicWDiAG80QaSyll-xFFzk6bOVyRFK_lfsL8V505BB9_V1C4UKoJZuZIui9LBJi2WLjN3f7ZIfc6cJnR9Q5F93s6BTYusjo2plbFL8yYOaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVDgRjzEAsv1ygUE7W9Vaf4s0zBlObfxFIAJqsuI84hKJifiBbs8SoXYKQjExoVbBDvFPMYB0bwTFpIb8Zsh9TXHPJL09PStFWwhYzcek6I_ZJDddyGXqnyWTae78vGFxrDJ7Og3-6Ecm7GPQ_BaV-cVMZZNtct61fOzYh-KDbGsqmWONsKpZq6qsCf_kJsXVOsQz2j6kZAJHejAJNkOvXMQOW0k3VnGFWTMCzoTKrPG3MIi5YFm6FkAQoPyS00FeySJKP2u7tePnfxRAkSIsvt1yl-GC9P8uNlig-49zSru1T7QvlLPfBScPbPCRISxEN0P95JjzpEMJXhLpqFOI9FTqNAB30feMSYQcpu4GgZsI4_SYGlMGC_wwXOchQkBX7ii7mSKo_r5non7FJxz4C17r_1kh6HKZqO01qx6UsYcPqZFwJBzG-Yq5qyn1N02_bqj3hqt97rCZDlK-D-DRo9U41g0WAF9IFpotjuDUriDvCTZQHCM2x8m8dfU_XK_3zb7D9Lk_OfgF8uPAnoZ_v0BtIaaBPojf1D7D9Lk_OfgF_tB-IYOZhRxQcN9AScI28DFhvHGFQtwbuyjXY0fqTXKP7mARv3nsSl_T2--JyCJhPQkYs40C0YuOYwwqJPWDKxpkIk_tXy2UTrk2RQY4q80NrAZ1C8gy674kphWpncFVO5b6Gf-ym5HjvdVKL8c3kX0Gk2GDBUMQxMKyxAGjlv4sqb2NuX1PzlswhogPas2kQ HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 06 Dec 2022 01:56:51 GMT
content-length: 0
set-cookie: rhid=82499998435; Max-Age=15552000; Expires=Sun, 04-Jun-2023 01:56:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEUNyPz2nsao0O2OBqpLN6N1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qFgRrt2Me9tiQZ4IbXNbDtDucrQzH7DGDGXuo8NDKsj5lkkLEB146pQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukN_2r8aXk8X8ZwvvZHebLgyaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVCC6YOKQjvU_g&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3787
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:56:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3787
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:56:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3787
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:56:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3787
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:56:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3787
Expires: Tue, 06 Dec 2022 02:59:59 GMT
Date: Tue, 06 Dec 2022 01:56:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKSlCefkyQ7VDufJJOh1D7zhioft93jfOsoXxTD4ncAK5ktxlPvIoA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:52:07 GMT
age: 14685
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RF_AmYN7VQghDpDX6kEyBEBZtvR8dfLpwuqk75bGpn8q2OMc46lVgA==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:31 GMT
age: 14901
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38b97436af942d5eb1111ca7043259a0
0234fe32c84c4711f0619714f3ac6d3db1b717d3
a76a7721355abbaecd5c8cb5218e7e4626dc345eb26e7541c71bf4ceaa7ae5d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d735c66-8946-4145-a67f-e17dd48087bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11175
x-amzn-requestid: 9c93ddca-1247-44af-a364-e617f69ace26
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzYEnEoAMFa2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e2-7d38ea383725901524bc2ca0;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fNsYsKfPUM8QaG7-F1tSBDdsNit1BfYpWddNssXwyFO2HgdA0RpjAQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:21 GMT
age: 14551
etag: "0234fe32c84c4711f0619714f3ac6d3db1b717d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5e953213b7b13b8ee202406147fac52
67a09d8cd23ed444667b225f7fbf4bb17b9f42dd
cf6b2502f0a992148f9401c16a329cae5a6c21fb81f03131f3e69c58bc608110
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42536ef2-6e40-4541-ac60-0ff74058daa7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15732
x-amzn-requestid: 7467ddb0-b9f9-47e9-ac31-c7599fe45698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVIIESBIAMFU6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e689a-79e3f8b66e1cf72f3283ac5b;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3seQ7H4qrlKKpuIWUobiey92ZMkB4jWqd5v6T6379g0V0y6XdVFvWQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:09:28 GMT
age: 13644
etag: "67a09d8cd23ed444667b225f7fbf4bb17b9f42dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9fda84db003d0cfc70d73dcb6a3763dd
5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4
f00aa6b88dd85164d8f6ee685937a3ca8039b98b442a2e6aede1c4c421b4fc4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01b6b798-4c76-47d4-ae22-c8967b0f2c5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8997
x-amzn-requestid: 54d7ed8c-119c-4583-929c-fd053524814c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csT_8F78IAMFY6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66cc-3d9816725e7e0b1b3404bc4a;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:46:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ScASzeq_stezoHeSOmqluKJimg3R6YD6yd6guTD2d5Mjl8F_vQP0rg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:06 GMT
age: 14986
etag: "5c54b4ca3db1c975b3ad7f780f0ebdc867fc2ef4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49c08cd33e41826af9dd4a8a912e0ddf
bde85bd98858e4b13484a9cc3263b4db7fb5d348
43471e7b4da8e4e58b842d05cb073ef150ff119eaa6890c86162f03a140459cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F273773ed-3135-47d7-b4ff-5e390a90fecf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5273
x-amzn-requestid: 5ab71aaf-6757-46dc-86fc-0a866958d22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSz2EqfIAMFqng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e5-15ae9d330e005f547161b4df;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YFtwPRjtJcX51t_xVdpS2-J222bVL8KEildkseLJ_pVbCFkljZ-Q0A==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:47:49 GMT
age: 14943
etag: "bde85bd98858e4b13484a9cc3263b4db7fb5d348"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.mypagerank.net/services/seomonitor/seomonitor.php?aut=84281
172.67.193.187200 OK 145 B URL HTTP/1.1 www.mypagerank.net/services/seomonitor/seomonitor.php?aut=84281
IP 172.67.193.187:0
File type GIF image data, version 87a, 76 x 13\012- data
Hash 9fd5af09c0efba4e4a73ba5d4c4dc3f8
3eaf8fa98453365c02097079f18df015c903f880
c5166cb52210e1d5379fcf64a8d3f638f162038a39926dec063fc3e6c3b126f3
GET /services/seomonitor/seomonitor.php?aut=84281 HTTP/1.1
Host: www.mypagerank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:54 GMT
Content-Type: image/png
Content-Length: 145
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2013 05:00:00 GMT
Cache-Control: max-age=604800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c6cArdvbV9wh%2FM1WKJG1%2Fr1SNr0b5CZYc%2F5Zzgyihw0DCC%2BfL7FiGctDONYohMpBQvp0WoAVmExsAwEStbGcjOJXVMo45nbnOAj8MN0nz4diDqdQ4a03DGhShZNErLRUnDSN2U8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 775168613d61b4ed-OSL
alt-svc: h2=":443"; ma=60
sstatic1.histats.com/0.gif?1994839&101
149.56.240.127200 OK 43 B URL HTTP/1.1 sstatic1.histats.com/0.gif?1994839&101
IP 149.56.240.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /0.gif?1994839&101 HTTP/1.1
Host: sstatic1.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:54 GMT
Content-Type: image/gif
Content-Length: 43
Connection: close
catatanmathin.blogspot.com/2011/06/YOUR-FAVICON-URL
172.217.21.161404 Not Found 23 kB URL HTTP/1.1 catatanmathin.blogspot.com/2011/06/YOUR-FAVICON-URL
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (24589)
Hash df039787eb303666702379db7d98a46f
50934aa698d4efffdba76e0e236237a506e85f13
fc93a8fd58aea9d3b7d2c258254c7ca251090bddcb5f0b79323a46c4a773d050
Analyzer Verdict Alert fortinet Phishing
GET /2011/06/YOUR-FAVICON-URL HTTP/1.1
Host: catatanmathin.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://catatanmathin.blogspot.com/2011/06/download-mmt-mediafire-68-mb-japan-game.html
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Tue, 06 Dec 2022 01:56:54 GMT
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 23218
Server: GSE
www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
172.67.70.191200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
IP 172.67.70.191:0
GET /domain_profile.cfm?d=cpmfun.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:51 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
site_version=HDv3; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=btGOaTQ9LYHFjTiKrdyCBrvtxDApUm5d3QxUp8Ikih47aQm05Rz%2BbhbKSfsiVfY%2BFNOJPUpcXJrXYz93IA3ZWA31jACAIReAZr6LRMmEsGu3RNbr55kL60csTmNIxqQvQrvBCvU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7751684b8e890b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
172.67.70.191200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
IP 172.67.70.191:0
GET /domain_profile.cfm?d=cpmfun.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:51 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
site_version=HDv3; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
captcha-tracker=; expires=Mon, 05-Dec-2022 01:56:51 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VCnaif%2FA22mEM5FwkpGp%2FXn8tjUKqk%2FPYEZBNbp0kWr5%2BFtE2XhacZz%2Fvw4dzxxW%2FI4vDD%2BIW4XppCKaqPJSn6QHsuFq%2BjpVNJP2AEa%2FYC5JfbSWFYP%2FS8S5ztYw2tR%2BcFTT1%2Fw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7751684c7edc0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
172.67.70.191200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=cpmfun.com
IP 172.67.70.191:0
GET /domain_profile.cfm?d=cpmfun.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 01:56:51 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
site_version=HDv3; expires=Fri, 01-Dec-2023 01:56:51 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xr2SvVYUOK33uTk8imx7nK0h4hXjwT%2FniSVGssEpA%2BUeNiPPnCF8l%2F9imL3TxRq%2BfRchbVqVk0LyoiXPlsk9204IUT5Kz%2B9qDWKA1W9zZKrascQ9cQH0RKzEkS41PYuKZvzFhWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7751684c7edf0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEUNyPz2nsao0O2OBqpLN6N1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qFgRrt2Me9tiQZ4IbXNbDtDucrQzH7DGDGXuo8NDKsj5lkkLEB146pQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukN_2r8aXk8X8ZwvvZHebLgyaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVCC6YOKQjvU_g&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
108.168.193.189200 OK 0 B URL HTTP/2 p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEUNyPz2nsao0O2OBqpLN6N1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qFgRrt2Me9tiQZ4IbXNbDtDucrQzH7DGDGXuo8NDKsj5lkkLEB146pQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukN_2r8aXk8X8ZwvvZHebLgyaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVCC6YOKQjvU_g&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
IP 108.168.193.189:0
GET /adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEUNyPz2nsao0O2OBqpLN6N1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qFgRrt2Me9tiQZ4IbXNbDtDucrQzH7DGDGXuo8NDKsj5lkkLEB146pQ&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukN_2r8aXk8X8ZwvvZHebLgyaJBtVkijQrvsX_rK7-ZaUl2RPl2V_N1p3cKrpP_WzVCC6YOKQjvU_g&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0 HTTP/1.1
Host: p185689.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Cookie: rhid=82499998435
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 01:56:52 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82499998435; Max-Age=15552000; Expires=Sun, 04-Jun-2023 01:56:52 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1079064_off_527380_aff_11454_cid_185689-KLIKSAYA.COM_ts_1670291812; Max-Age=3600; Expires=Tue, 06-Dec-2022 02:56:52 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
94.130.218.80404 Not Found 0 B URL HTTP/2 auto-ping.com/iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1
IP 94.130.218.80:0
ASN #24940 Hetzner Online GmbH
GET /iping.php?aut=EF60387089C968920487F89D5739455201155A64B924A54A750E6D8DD2AD0BC1854A7AD421A02FC8C1 HTTP/1.1
Host: auto-ping.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Dec 2022 01:56:50 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
www.valencia-hotels.net/en/allseotools.html
82.223.110.146200 OK 0 B URL HTTP/1.1 www.valencia-hotels.net/en/allseotools.html
IP 82.223.110.146:0
GET /en/allseotools.html HTTP/1.1
Host: www.valencia-hotels.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://catatanmathin.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 01:56:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Rnd: n21yTwg3AbUMawYH
Set-Cookie: lang=1; path=/; domain=.valencia-hotels.net
_mobile=0; path=/; domain=.valencia-hotels.net
btest=298; path=/; domain=.valencia-hotels.net
bteststep=5; path=/; domain=.valencia-hotels.net
btesthotel=298; expires=Thu, 05-Jan-2023 01:56:50 GMT; Max-Age=2591999; path=/; domain=.valencia-hotels.net
_wsl=n21yTwg3AbUMawYH; expires=Sun, 04-Jun-2023 01:56:50 GMT; Max-Age=15551999; path=/; domain=.valencia-hotels.net
currency=22; path=/; domain=.valencia-hotels.net
subacc=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
cutype=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
from=2022-12-06; path=/; domain=.valencia-hotels.net
to=2022-12-07; path=/; domain=.valencia-hotels.net
use_dates=0; path=/; domain=.valencia-hotels.net
adults=2; path=/; domain=.valencia-hotels.net
children=0; path=/; domain=.valencia-hotels.net
rooms_info=%5B%7B%22adults%22%3A2%2C%22children%22%3A%5B%5D%7D%5D; path=/; domain=.valencia-hotels.net
_sort=0; expires=Tue, 06-Dec-2022 00:56:50 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
csort=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
corder=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.valencia-hotels.net
Content-Encoding: gzip
Server: Apache/1.3.37 (CentOS)Communique/4.2.1
X-Powered-By: PHP/7.1.3-3-1+deb.sury.org~trusty+1
X-Request-Id: cb56b8677d6fcea76b5f8df4a9fd2318