r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4a5e9bc8b7891ac5f4552c29bcbaedb0
39735081eeb64eae477c61c1147daeb68fb37b22
c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9462
Expires: Fri, 16 Dec 2022 06:05:52 GMT
Date: Fri, 16 Dec 2022 03:28:10 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 96367f956a4177aec7e7e80221539d58
8dcad10fde96c139d1ef212388cb6755fe3fe077
f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5981
Expires: Fri, 16 Dec 2022 05:07:51 GMT
Date: Fri, 16 Dec 2022 03:28:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 16 Dec 2022 02:45:08 GMT
content-type: application/json
age: 2582
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5b38399fcc8246505e5e6b0f62803a5a
bb374f8d97b2bd798873d74c6bbab20ad6843e96
406ab3af8adf2b151c052a06c0379fd8d83d3362e90c17ac2e5481b6b9a7441f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "406AB3AF8ADF2B151C052A06C0379FD8D83D3362E90C17AC2E5481B6B9A7441F"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16815
Expires: Fri, 16 Dec 2022 08:08:25 GMT
Date: Fri, 16 Dec 2022 03:28:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sawjSmTAU2cB5BqJxtbhfPbN18Jf8H2NL8ZNN2C5n1NKH11AtHRDSrvAHsyUhJNVQM8afFf6f3o=
x-amz-request-id: 4QN7HZ2ENWHDGBFG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 16 Dec 2022 02:51:10 GMT
age: 2220
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 03:28:10 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 16 Dec 2022 03:08:00 GMT
age: 1211
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
pak-janggut.blogspot.com/search/label/Saiful%20Apek
200 OK 13 kB URL HTTP/1.1 pak-janggut.blogspot.com/search/label/Saiful%20Apek
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4529)
Hash d38242502b65405d1766a86dbd6804f1
6f39d8b39d300be97e21f62b585a88e65bb9c355
a805cc542cd093d3166445ee0cda9bd3c514201598cc80fa1570a05470ab16a2
Analyzer Verdict Alert fortinet Phishing
GET /search/label/Saiful%20Apek HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 16 Dec 2022 03:28:11 GMT
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 10 Dec 2022 14:53:52 GMT
ETag: W/"31ca276a91db0f797e92e975b9ca1bcbe641ad242c16fba93fa754407f6bad0d"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 13276
Server: GSE
ocsp.digicert.com/
200 OK 471 B IP
Hash b9f0adeb27a19629aeff6f34de67f3ad
3876d1b871d7da6d18de23c2edb301eb30728066
c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6328
Cache-Control: max-age=113057
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Etag: "639ae3b4-1d7"
Expires: Sat, 17 Dec 2022 10:52:28 GMT
Last-Modified: Thu, 15 Dec 2022 09:07:00 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
200 OK 27 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.4.4/jquery.min.js
IP
File type ASCII text, with very long lines (820)
Hash 88ed7d5a26ffff39cbae41fa7b2c615d
5ea49f5aeeb49e8abd640da2f6d657fb57cc5acc
52943bd40a595c39f84e23ddd74755daa4d013b55c709de9b312661e59103ab3
GET /ajax/libs/jquery/1.4.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 27266
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Dec 2022 07:59:07 GMT
Expires: Thu, 14 Dec 2023 07:59:07 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 156544
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
pak-janggut.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL HTTP/1.1 pak-janggut.blogspot.com/js/cookienotice.js
IP
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/search/label/Saiful%20Apek
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 13 Dec 2022 03:58:44 GMT
Expires: Tue, 20 Dec 2022 03:58:44 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 13 Dec 2022 01:53:33 GMT
Content-Type: text/javascript
Age: 257367
connect.facebook.net/en_US/all.js
301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 16 Dec 2022 03:28:11 GMT
Connection: keep-alive
Content-Length: 0
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
301 Moved Permanently 249 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d4e4d4a48ee18114b8518db65a17e250
865aa0d38ee7d823fb08c0320c59fa19d5f9e073
ca13416e5755f3340257b632260ab72602d6c8e660c4a07d93df424cdfafe8b1
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:10 GMT
Content-Length: 249
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
301 Moved Permanently 212 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6dba0e0c6a1afb54d86bdd57c5d2943a
55a5a3d1bbcba2eda169245becb427b831299f6f
331bdbf606b5a7b744f95bbc31c6d5ecc4aa4e75ce50e308d4b6164217107957
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:10 GMT
Content-Length: 212
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
301 Moved Permanently 249 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 12d9b2565cb5463a2454530f27a01c8e
f5826ca68e482a740cc0dfe6d541b5e552ddae26
db32e6ede2240f88efd408a33cf7befa41c3d12a21a5c8af362e5f0d03875d42
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:10 GMT
Content-Length: 249
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
301 Moved Permanently 211 B URL HTTP/1.1 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d8e41aba175e30cec76c81840b918f0a
6dfb307f00233621fce9ab173f49cd06e2d87937
2385d24a0dd2d25233391aa35b037a002cd1c30b160c06a832047f8e6dd2c18a
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:10 GMT
Content-Length: 211
ocsp.digicert.com/
200 OK 471 B IP
Hash 265916d2a0593eb24feac5fbc15140ed
ab86ab5c1da114c82fabd9752f98fbf65502648d
40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Last-Modified: Fri, 16 Dec 2022 01:39:44 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3c76548b39e0166cbb47c6cb5c094f41
5edbfbfc0548e4690fa555a915f1fa4ae5510f81
0e77afa4732ee0a65e0b3b5ca3953ce7bb329502e9068cbb9697f22f1222ed96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3c76548b39e0166cbb47c6cb5c094f41
5edbfbfc0548e4690fa555a915f1fa4ae5510f81
0e77afa4732ee0a65e0b3b5ca3953ce7bb329502e9068cbb9697f22f1222ed96
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 285ddb2f01b3dcee1a178fdee3fce882
4926c2b0fca9b1dc362009aef449b2bebe49f7ac
f4b0bdd686d6ee8e3a3c3db9c126b16327d225be359b44435c170c216288b6a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/all.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP
File type ASCII text, with very long lines (1957)
Hash e4e7bc0b875651060001ea76724baba8
440bc645771bddc324fd26ee425fd2a9b8bffb3b
50cf65c33459cea6018ac19b9114b7ae70c447b7b19d44e725b46216f4e032e4
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ed28563801770a3e8a566e34792cfcf8
etag: "2a96c96d142511ceee710e93740cd7b9"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 16 Dec 2022 03:34:55 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 5Oe8C4dWUQYAAep2ckurqA==
x-fb-debug: EFeqexfevl4Hv96x0JPJSUP4h0s6YatmOMK3ZjO5zezeTXVfdkffxJVl2iLlhypMESUaeyw/Ngx04QcMzCqqHQ==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Fri, 16 Dec 2022 03:28:11 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/1197256859-widgets.js
200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1197256859-widgets.js
IP
File type ASCII text, with very long lines (2221)
Hash 15d181d1185f956f34ef9d8cff4af838
41a3dfc3567601d72332b73abadda6031cdf593b
2c8823905cd520208804414a54a064a4f98e315a8b97cca381cfae0fe630b7e1
GET /static/v1/widgets/1197256859-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 01:59:45 GMT
expires: Sat, 16 Dec 2023 01:59:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 23:52:57 GMT
content-type: text/javascript
age: 5306
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 14:01:44 GMT
expires: Wed, 13 Dec 2023 14:01:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Dec 2022 06:58:47 GMT
content-type: text/css
age: 221187
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news
200 OK 2.0 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news
IP
File type ASCII text, with very long lines (2149)
Hash 4b0c1a0d1aa4234cf191557e6bb22f21
4bbce4d28e0427fd5208694531db1b6687e0baf7
f8de6883280e63d4cd9b96b7e5e1cf657a2517f9ee1ac3bfb13eb52b62880cff
GET /geocompteur/geocity.php?c=geocity_rose&id=2052431&adult=0&cat=news HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: application/javascript
Content-Length: 2034
Connection: keep-alive
set-cookie: w_js_ads_code=ok; expires=Thu, 22-Dec-2022 03:28:10 GMT; Max-Age=518400; path=/; domain=widgeo.net
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 03:28:10 GMT
content-encoding: gzip
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xS2ylW2LeY67Txabn8SboVyeciQvhV3vEtuTUQ227VuZ9JdZUmxFWLKWCi7gom2lvdirv3yLDec7%2BttH6ErzlIO2X4r8xjSBXcOBpN8JjcAB4%2BR7NwCJuS1vM0HjH1vL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a453d7eef61c0e-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
200 OK 471 B IP
Hash 265916d2a0593eb24feac5fbc15140ed
ab86ab5c1da114c82fabd9752f98fbf65502648d
40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6507
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Last-Modified: Fri, 16 Dec 2022 01:39:44 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dc83a74840bd6372bb34a4c520823ae7
8629740f3f6b404f966b28e2ebfd97fdb680d8ba
33b2ce9d6b2cfd7ab2a399abcb38fcdf1138891ca374d5353bc98cbf4d464221
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qimuHonhO0a4R2S7XQNKkQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 8AKNsWPCIgSWp1fRYJ2nSTI8eA4=
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
200 OK 1.3 kB URL HTTP/2 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250
IP
File type ASCII text, with very long lines (705), with CRLF line terminators
Hash adfd8af029773a14a599e4f1e0dfdcdb
423df289f331de553ecd55137608b01083292ec5
8789bac84fca2d914978fd37d5e16d390305eacfcaf7ffe527dd18255c2f9a98
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=300x250 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 1337
X-Firefox-Spdy: h2
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
200 OK 1.3 kB URL HTTP/2 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right
IP
File type ASCII text, with very long lines (715), with CRLF line terminators
Hash d9492c86f50776d99fb5f87c897ef9bf
0251f6229dc4a3a5e4107e53fa3b605dc7ca5837
efec80690685737cb090cc20c82a4e5bf64a5ca33a6de6eccd87685ba618a96e
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=160x600&name=From+Right HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 1346
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 371baf8f9095ee3dd632a9ca15da8c7c
6300df62d8650fb94442fdbaa9b12acd4abcddfd
961dba83ddd0cf1c1c7028687f4b5ffb98dc8609045a8f73ea59e49ebfbe5a1d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
200 OK 1.3 kB URL HTTP/2 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom
IP
File type ASCII text, with very long lines (716), with CRLF line terminators
Hash 827c141790f7849e9867f2860fa0b292
72732598323b41317af2a371f53e16aab77a94fa
8e6319519e2a5a9ea185c720f7fc0da24e82a51842bd019871873c0c984cfff0
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=sliding&size=728x90&name=From+Bottom HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 1346
X-Firefox-Spdy: h2
tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
200 OK 1.3 kB URL HTTP/2 tags.h12-media.com/tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90
IP
File type ASCII text, with very long lines (704), with CRLF line terminators
Hash 9e2dcc9e5c7e07a21acc62d9887ca4d3
bd3a14abb1cab3850e02b635c420ecc7c8e4ff90
65e989d6c00e712c368bb428eafc6536ca7afcd645f85a92110bee63f3287eee
GET /tags.js?site=4b434a53d7981a49e81903f9d05b6efe&type=728x90 HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 1336
X-Firefox-Spdy: h2
www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741
200 OK 7.4 kB URL HTTP/1.1 www.samsengfb.com/samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741
IP
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (17327)
Hash 0453d557a1b4278463fd1cff278dc64c
101701e86187e52b96b3cec7c5f68629612cbd07
5da21212483c2603b161bc7285a44c134b9f43478b28e09040a7d8e78b188d4d
Analyzer Verdict Alert fortinet Malware
GET /samsengfb.js.php?token=8bce1b2342553c8507f0f7f5de798bc3.5912.6741 HTTP/1.1
Host: www.samsengfb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.20.2
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
X-Powered-By: PHP/7.2.34
Content-Encoding: gzip
i66.photobucket.com/albums/h260/toonybug/templatestag.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/templatestag.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/templatestag.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/templatestag.png
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: m3UnujTmsSmogd_v0mN5HzAQMTKxHsL7R9HyfhLeJPbAeaZtDUl4Fg==
Vary: Origin
www.widgeo.net/img/logopm.png
200 OK 714 B URL HTTP/1.1 www.widgeo.net/img/logopm.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3832d6b8d8c47a5cefe6561297b514f6
f7ebe08ccccde9ab79407b9348ffa8fa6c048d8d
c5fda4bddbc21f1d990ef4b42a6350e739a1870c73c6ab240aa921651bfe5a08
GET /img/logopm.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: image/webp
Content-Length: 714
Connection: keep-alive
Cf-Bgj: imgq:100,h2pri
Cf-Polished: origFmt=png, origSize=847
Content-Disposition: inline; filename="logopm.webp"
Vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 06 Jan 2023 21:00:16 GMT
last-modified: Thu, 20 Jun 2019 15:14:49 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 714475
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=igK3UVOBBMdwgDQ5rSVt3mtzdenHskKn1t1UekZ4jAo1xyjXJZOnMzZoJnQ2ho2UrwVv5mdzrfjqJrckiS6VQuKioVli%2BAdfvfM1fV7WraWtCAJbmXd2CRaGesu759t0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a453d94f541c0e-OSL
alt-svc: h2=":443"; ma=60
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169954
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169954
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169954 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 15 Dec 2022 10:55:29 GMT
Expires: Thu, 29 Dec 2022 10:55:29 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 59562
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1167641
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1167641
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1167641 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169949
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169949
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169949 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
www.linkwithin.com/widget.js
404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
301 Moved Permanently 676 B URL HTTP/1.1 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (633)
Hash 6b562381692acafc8efc05204f7e311c
2dc0374fce2c4fdce278593c2bc7cda9a86e28b2
6342cbbb5a5e8710fa19ea7d5244b7a548468e9b8b595a65ca3c397b34f1f5d3
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Length: 676
i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/s282/theviejo/recurso_9_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JwrmKWoj3Gpg-V2-vFcS0SJygBYmq_5gn3jWGwCb0mJrzD736hLztA==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/background2-20.jpg HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Yo2y1GfIGvySlWTTmulhlaSsQllShskiM4LWYVKzMPnpfl83im7wNA==
Vary: Origin
i66.photobucket.com/albums/h260/toonybug/header2-12.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/header2-12.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/header2-12.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/header2-12.png
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DAGop-Mvk_TZ6g_RR9AKa6qTOFOjtmaFwJH4ubnbTlek26sGD0QWdw==
Vary: Origin
www.rahsiakuihraya.com/images/ban3.gif
200 OK 2.6 kB URL HTTP/1.1 www.rahsiakuihraya.com/images/ban3.gif
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 6e0e72649d50296f15557e931c1e05e9
a86f0f6aa222653013fe3c36d434f67057c85e64
895c0f60e59fdd84e53ab7ddb8866c8f49e45386632dca017efedd48313c9e0c
GET /images/ban3.gif HTTP/1.1
Host: www.rahsiakuihraya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Sat, 10 Dec 2022 14:15:29 GMT
ETag: "63949481-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_KtgrS35it06UYLDHWX2lqjXc6cYq/W2GL8Ir/NcJhmYxNo3vs/U052xfSkl3wbZgp1eOKi6QVqfWzvZapoVRww
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: system=PW;Path=/;Max-Age=86400;
caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
traffic_target=reseller;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
200 OK 0 B URL HTTP/2 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=728x90&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek&href=undefined&rnd=0.13257393964184305&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 75ba92dc6a1bc0d2cfbc8d2f1cb5a8df
91279192c8b1130a522e75d713501fa487020d63
669536ed7aa816d03e3ff897600dcb3a355d9e7a4bd030853912f108f1925ffc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1511
Cache-Control: max-age=108593
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:11 GMT
Etag: "639ae515-116"
Expires: Sat, 17 Dec 2022 09:38:04 GMT
Last-Modified: Thu, 15 Dec 2022 09:12:53 GMT
Server: ECS (amb/6B9B)
X-Cache: HIT
Content-Length: 278
apis.google.com/js/platform.js
200 OK 14 kB URL HTTP/2 apis.google.com/js/platform.js
IP
Hash eca165efaa8a5c693fcf7b3a26cef43b
b5b486f83648089b2653aacdcab3d4516a6aee98
31addde7fb28b34660534c075be0623c663561d371279da1ab9689761db6c7da
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Fri, 16 Dec 2022 03:28:11 GMT
expires: Fri, 16 Dec 2022 03:28:11 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2
200 OK 30 kB URL HTTP/1.1 fonts.gstatic.com/s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 29868, version 1.0\012- data
Hash 8b26cc331e323dda95ea6d0dcf4d7542
1f6b0e5440044f6aa75b1f73d2f9c63a2f75bba9
2d5059c07b957f989ee2ed276e1f6d20428f4d3ed2523e7c305bd3e3ebc092ec
GET /s/calligraffitti/v19/46k2lbT3XjDVqJw3DCmCFjE0vkFeOZc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 29868
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 13:35:23 GMT
Expires: Sat, 09 Dec 2023 13:35:23 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:09:14 GMT
Content-Type: font/woff2
Age: 568368
www.linkwithin.com/pixel.png
200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
i66.photobucket.com/albums/h260/toonybug/templatestag.png
200 OK 6.1 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/templatestag.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 034aa733dacc7922e2d827d110a6277b
2bc7f2d7a43f541078f389e430a513d42451165b
aa1194a4bde2d3989823fb461bff38780122f52b25260bd8bbf4ae269627dd46
GET /albums/h260/toonybug/templatestag.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 6098
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="templatestag.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-05d555371571125256d75201
x-request-id: -eYy9l7oQBCRZJVANvqgB
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rc9SFp4Xw7Xg2y5RvvYIEUuMl2EB2WBqjBrFoNHUTH0h3mxceupygA==
age: 257366
vary: Accept, Origin
X-Firefox-Spdy: h2
3.bp.blogspot.com/-yaqi6YRB1Ag/T-klzqz1BoI/AAAAAAAAD7M/VFRMS1ml1R4/s200/ne_04.1.jpg
200 OK 16 kB URL HTTP/1.1 3.bp.blogspot.com/-yaqi6YRB1Ag/T-klzqz1BoI/AAAAAAAAD7M/VFRMS1ml1R4/s200/ne_04.1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=KUALA LUMPUR, 25 Jun -- SYUKUR... Pelakon komedi, Mohd Saifulazam Mohamed Yusoff atau lebih dikenali sebagai Saiful Apek (kiri), software=Google], baseline, precision 8, 200x142, components 3\012- data
Hash 886e92c736bb3c0f1039b2f2fa46b023
d28232555b9519bc43523f720a9b02df7e3544b6
2ac5d6e878f721083108f9c3b64f2468c470e226e1fca342d4e60504da28345a
GET /-yaqi6YRB1Ag/T-klzqz1BoI/AAAAAAAAD7M/VFRMS1ml1R4/s200/ne_04.1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vfb3"
Expires: Sat, 17 Dec 2022 03:28:11 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="ne_04.1.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:11 GMT
Server: fife
Content-Length: 15659
X-XSS-Protection: 0
www.buatcoklat.com/images/banner03.gif
302 Found 0 B URL HTTP/1.1 www.buatcoklat.com/images/banner03.gif
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /images/banner03.gif HTTP/1.1
Host: www.buatcoklat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Fri, 16 Dec 2022 03:28:11 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
vary: Accept-Language
content-language: en
connection: close
i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
200 OK 227 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/background2-20.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Size 227 kB (226614 bytes)
Hash ef7477fb8ee9a569a09ee99354e024bc
1a7406d2f52fe0a9ead58edd224c0994a9c82fe5
6c1d19b7a44d5762cb0d83a48844d4d109b1a64f31278a9673e6a69fce21fa44
GET /albums/h260/toonybug/background2-20.jpg HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 226614
date: Tue, 13 Dec 2022 03:58:46 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="background2-20.webp"
expires: Wed, 13 Dec 2023 03:58:46 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-526817742495148f08dabb49
x-request-id: ECCw4M3hPcCenjhNvOld5
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WLb_dbEZxLSr9wWLW9WhM-ZgBtFUS4KzQhaWzk3urOqAt40I-vlLRQ==
age: 257365
vary: Accept, Origin
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2
200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17988, version 1.0\012- data
Hash bf6a5846cb67a28b10fc51624b7c2021
aecc7ba490ee2def0bec0ad3bd79ba0caa0a4347
cb9dc64865a8ff81a07712442c9647fe79d1b371cdcbad6047d46bc7ee8254da
GET /s/bentham/v18/VdGeAZQPEpYfmHglGWsxCQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17988
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 15 Dec 2022 08:28:54 GMT
Expires: Fri, 15 Dec 2023 08:28:54 GMT
Cache-Control: public, max-age=31536000
Age: 68357
Last-Modified: Tue, 19 Apr 2022 19:21:54 GMT
Content-Type: font/woff2
i66.photobucket.com/albums/h260/toonybug/header2-12.png
200 OK 88 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/header2-12.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash e77dc4b55a98f0276e869e8233aad288
f77186296a3c1a292896bb5f14300fc3cc73e517
1ab90235b5b9dd020b47882fad9b575eb25f3af7bd95362ad95c9089ab53b146
GET /albums/h260/toonybug/header2-12.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 88336
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="header2-12.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-490009613584ff663f1b6500
x-request-id: W6dnNcDx9Uw6P2wu7wib_
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1Yi-Nk4sFckaRqdwL3LWRaHQfZ7l5wtGPJ7cNXElu-qmKZo5y7BP8w==
age: 257366
vary: Accept, Origin
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash 75ba92dc6a1bc0d2cfbc8d2f1cb5a8df
91279192c8b1130a522e75d713501fa487020d63
669536ed7aa816d03e3ff897600dcb3a355d9e7a4bd030853912f108f1925ffc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1512
Cache-Control: max-age=108593
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Etag: "639ae515-116"
Expires: Sat, 17 Dec 2022 09:38:05 GMT
Last-Modified: Thu, 15 Dec 2022 09:12:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6f7c501a7d70f664e1c2fdec33ceb06c
37de1bb0c9687f1742aa78761e93314f8de01a4b
b6c6424c950558a3c396bae27356317c0e2df2a74da55c76280d3474093e811e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6C6424C950558A3C396BAE27356317C0E2DF2A74DA55C76280D3474093E811E"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11729
Expires: Fri, 16 Dec 2022 06:43:41 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
www.widgeo.net/tcm_t_u.js
200 OK 0 B URL HTTP/2 www.widgeo.net/tcm_t_u.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tcm_t_u.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: application/javascript
content-length: 0
cf-bgj: minify
cf-polished: origSize=4360
cache-control: public, max-age=604800
expires: Fri, 16 Dec 2022 04:31:38 GMT
last-modified: Sat, 01 Oct 2022 00:32:25 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 600992
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3jQd%2FTAu3BHTf4EatdrR7QbD6KeBkghvpOE5tIpRYRiRsyCvB9xJyc%2Ftf5nYS8HYHILqehfjB0HrDGVINSDLz7ReANW4kjdgRS8WRD7%2FIueI9k9n%2BCk2I5smqbUwFVG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453db28210b55-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a1871c4755adc9a0f8892d7ac6c2e5d0
695eb3e599fccb70156f2dfed9c23884af1ee697
dbc1e5ee783904ed9e17e0f90282a8c176a7558a0d4bbb8c7efbf784c20f3b4a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBC1E5EE783904ED9E17E0F90282A8C176A7558A0D4BBB8C7EFBF784C20F3B4A"
Last-Modified: Thu, 15 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2826
Expires: Fri, 16 Dec 2022 04:15:18 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
3.bp.blogspot.com/-l_fIufuGsx4/UVAOE8gdBTI/AAAAAAABe9c/HyQrv2Kpi2g/w72-h72-p-k-no-nu/Portal_Kami_pix.jpg
200 OK 2.4 kB URL HTTP/1.1 3.bp.blogspot.com/-l_fIufuGsx4/UVAOE8gdBTI/AAAAAAABe9c/HyQrv2Kpi2g/w72-h72-p-k-no-nu/Portal_Kami_pix.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 623f25f79e7c0ffaa166394facecfb58
c65ad403431510bf2c6e572e2a783059d00fd206
53421c14eccee8d5b7c8fc9bd5f7a7acf474682a0a69c2531b7a342c89404d2a
GET /-l_fIufuGsx4/UVAOE8gdBTI/AAAAAAABe9c/HyQrv2Kpi2g/w72-h72-p-k-no-nu/Portal_Kami_pix.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v17bd8"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Portal_Kami_pix.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 2405
X-XSS-Protection: 0
cleverjump.org/counter.js
200 OK 5.6 kB URL HTTP/1.1 cleverjump.org/counter.js
IP
ASN #49981 WorldStream B.V.
File type ASCII text, with CRLF line terminators
Hash 83126dc4af783a2179ab362a5bbec530
b1fe91477d92ab09066f28ddda5b31a4bf0f1689
cb1ef4607e93916a5dd30beae4617069924cb5f10edb65d8f93468c3fbdc1dc4
GET /counter.js HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: application/javascript
Content-Length: 5571
Last-Modified: Wed, 20 Jan 2021 12:50:32 GMT
Connection: keep-alive
ETag: "60082718-15c3"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: max-age=86400
Accept-Ranges: bytes
s10.histats.com/js15.js
200 OK 4.4 kB IP
File type HTML document, ASCII text, with very long lines (11088), with no line terminators
Hash 688a4c6f6b98b3bfb618172e90695341
432a0d43c31e466673d13308db9e1ba5e519619c
becf42e9318b096cf691c11947c601c75b0b5ba2a6421fd2e676f62c646c17c5
GET /js15.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
date: Fri, 16 Dec 2022 03:24:01 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 467698303
etag: W/"980881274"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4405
x-iplb-request-id: 5B5A2A9A:316C_2E69C9F0:0050_639BE5CC_AEA6:2F5D
x-iplb-instance: 40746
lh4.ggpht.com/-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800
200 OK 10 kB URL HTTP/1.1 lh4.ggpht.com/-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800
IP
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash dd502572853db49ef8a798cfb13b6d8d
3494238ed0b579d79f4668c4eec5e0f13772b5c8
a3fbca281f00823eb27c96b9bec08202a005143a6d98bbc2ee46ffd3c84a9f6f
GET /-LDYiqa-UlPw/UxWY8zATmOI/AAAAAAAB1Ps/3iPmjzxEq88/w72-h72-p-k-no-nu/Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d4fc"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Screen-Shot-2014-01-27-at-5.45.52-PM-1_thumb.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 10538
X-XSS-Protection: 0
lh4.ggpht.com/-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800
200 OK 3.7 kB URL HTTP/1.1 lh4.ggpht.com/-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash cd4d4e7e31d96aeee8c5d2645204feb1
2c5ad6e598a082bbf8fbfae666232b651ccb4356
32f36c233bbe9822faa2809e8958dfdcc4b66bf55f4d9b1c6a05903347bbd4ee
GET /-d45s0Gw6WqM/Uz_2dnWiiJI/AAAAAAAB1VM/aoI1ivDShyo/w72-h72-p-k-no-nu/fizz_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="fizz_thumb.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3671
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 03:28:12 GMT
Expires: Thu, 15 Dec 2022 02:42:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d554"
Content-Type: image/jpeg
Age: 0
lh4.ggpht.com/-EPl26KWIh3Q/Uz7LLYkoMnI/AAAAAAAB1TQ/C7GqD4i_7mQ/w72-h72-p-k-no-nu/gambar%252520bapa%252520cekik%252520dan%252520pijak%252520bayi%252520sendiri_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 4.4 kB URL HTTP/1.1 lh4.ggpht.com/-EPl26KWIh3Q/Uz7LLYkoMnI/AAAAAAAB1TQ/C7GqD4i_7mQ/w72-h72-p-k-no-nu/gambar%252520bapa%252520cekik%252520dan%252520pijak%252520bayi%252520sendiri_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a4d7876b6f4cdedb165d4c217e187006
a391ff9ef9268ba275721d3c92cc194fb35cc562
be057ad14b8b3584be35ec03eddaa1bf09c54cdd0c3f9403fbdd739ec904034d
GET /-EPl26KWIh3Q/Uz7LLYkoMnI/AAAAAAAB1TQ/C7GqD4i_7mQ/w72-h72-p-k-no-nu/gambar%252520bapa%252520cekik%252520dan%252520pijak%252520bayi%252520sendiri_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="gambar bapa cekik dan pijak bayi sendiri_thumb[1].jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4377
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 03:28:12 GMT
Expires: Thu, 15 Dec 2022 02:42:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d535"
Content-Type: image/jpeg
Age: 0
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
301 Moved Permanently 679 B URL HTTP/1.1 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (636)
Hash c2155be7c5dbab8ffae7eca356a5d5d1
a727bae775f722d4070c6b2386be90663e720e23
c4f458f2c263fd9f9c7109af56959fb1f775df798141597b2e5a9935a28bded6
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:11 GMT
Content-Length: 679
i66.photobucket.com/albums/h260/toonybug/postimage.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/postimage.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/postimage.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/postimage.png
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Iu_PlzOzRrXGyYXThD_UB2Lik19WNGxmrqUJrM6T62fjOFvYTa5udQ==
Vary: Origin
lh4.ggpht.com/-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 3.8 kB URL HTTP/1.1 lh4.ggpht.com/-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6d44f9ff4dafb7f7036b7e167fe48ef6
068bcbf6060a0dcdcbf090bedc35eca7c010b918
d9b6a03bfe14f0b19950f9dfa65124dcfedef7911bbc6f2d617e6168fc7707d7
GET /-oH0luZ7UVnI/U0KDVsm3R8I/AAAAAAAB1YE/u6xBjijM2yE/w72-h72-p-k-no-nu/che-ta-565x412_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d582"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="che-ta-565x412_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 3798
X-XSS-Protection: 0
i66.photobucket.com/albums/h260/toonybug/divider-9.png
301 Moved Permanently 167 B URL HTTP/1.1 i66.photobucket.com/albums/h260/toonybug/divider-9.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/h260/toonybug/divider-9.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i66.photobucket.com/albums/h260/toonybug/divider-9.png
X-Cache: Redirect from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 81z37m-5PZqKOk7dz-gyAlun8MUTi4ExLpI0-Wa5Txuaya5Umj6-wQ==
Vary: Origin
lh4.ggpht.com/-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800
200 OK 2.9 kB URL HTTP/1.1 lh4.ggpht.com/-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 8a50e82a9915eff28da70a19a17d0028
73eb91985dfc5fd3d47f758377583806c19e0cb7
78dde5e67f2750f95cbfe0c2cb7713648833c57ccf2c382b9daab6e27a4944e5
GET /-Oc5mQKZnxJU/Ur9yRAH40QI/AAAAAAAB01I/Yn8IgZN90wk/w72-h72-p-k-no-nu/Fullscreen-capture-12272013-13356-PM_thumb%25255B1%25255D.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d353"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Fullscreen-capture-12272013-13356-PM_thumb[1].jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 2853
X-XSS-Protection: 0
cleverjump.org/hit?z0;s1280*1024*24;fBYQOYbeIjBJoruXOQEwMxgpuHaQKAC;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23;hPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek;0.48917443802668237
200 OK 0 B URL HTTP/1.1 cleverjump.org/hit?z0;s1280*1024*24;fBYQOYbeIjBJoruXOQEwMxgpuHaQKAC;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23;hPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek;0.48917443802668237
IP
ASN #49981 WorldStream B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hit?z0;s1280*1024*24;fBYQOYbeIjBJoruXOQEwMxgpuHaQKAC;cshb2;r;uhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23;hPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek;0.48917443802668237 HTTP/1.1
Host: cleverjump.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
P3P: CP=CleverJump
Set-Cookie: _cjuh=ls4qRJPC4w3QdVeIYIpU1S8gr6geK6; expires=Sat, 16-Dec-2023 03:28:12 GMT; Max-Age=31536000; path=/hit; httponly; SameSite=None; Secure
lh3.ggpht.com/-maE3MAxWf6Q/Ut8taVJ62vI/AAAAAAAB02k/gaEhrfXxaxc/w72-h72-p-k-no-nu/Marinatasha%2525206_thumb.jpg?imgmax=800
200 OK 2.7 kB URL HTTP/1.1 lh3.ggpht.com/-maE3MAxWf6Q/Ut8taVJ62vI/AAAAAAAB02k/gaEhrfXxaxc/w72-h72-p-k-no-nu/Marinatasha%2525206_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9e11aae594e144a4f33aa36218e2b963
318c6f4877995b8d70581d4f4c6d2df458b2cf4c
ea9b3e1fbcf3991d856c1a0cfcdc53c45ca58bf23af491fb455871eb01672778
GET /-maE3MAxWf6Q/Ut8taVJ62vI/AAAAAAAB02k/gaEhrfXxaxc/w72-h72-p-k-no-nu/Marinatasha%2525206_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d36a"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Marinatasha 6_thumb.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 2717
X-XSS-Protection: 0
lh4.ggpht.com/-1efLx3EjrI0/UnWRLtx8zfI/AAAAAAAB0pk/0qlPGFgVxKA/w72-h72-p-k-no-nu/Gambar%252520isteri%252520dan%252520anak%252520pembunuh%252520pegawai%252520AmBank%2525204_thumb.jpg?imgmax=800
200 OK 3.1 kB URL HTTP/1.1 lh4.ggpht.com/-1efLx3EjrI0/UnWRLtx8zfI/AAAAAAAB0pk/0qlPGFgVxKA/w72-h72-p-k-no-nu/Gambar%252520isteri%252520dan%252520anak%252520pembunuh%252520pegawai%252520AmBank%2525204_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 6ae6c01398fc911f5fa37994018c6697
6e5bd85d433fd54db8216b9b9057a5e0e3746935
2b801e2b45a30fa424a623025936a5175a6e67f599a732378477e2b2509bb50a
GET /-1efLx3EjrI0/UnWRLtx8zfI/AAAAAAAB0pk/0qlPGFgVxKA/w72-h72-p-k-no-nu/Gambar%252520isteri%252520dan%252520anak%252520pembunuh%252520pegawai%252520AmBank%2525204_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh4.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d29a"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Gambar isteri dan anak pembunuh pegawai AmBank 4_thumb.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 3052
X-XSS-Protection: 0
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
200 OK 0 B URL HTTP/2 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=300x250&erdal=mercan&size=&appearance=&pname=&debug=&name=&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.9463229436715404&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:11 GMT
content-length: 0
X-Firefox-Spdy: h2
i66.photobucket.com/albums/h260/toonybug/divider-9.png
200 OK 24 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/divider-9.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1e9929d28305d0d1ee747a5cc2720950
7e30aa627a668c6fb4255263eea518d48a39f847
3ec6ad44f4ed89b90afc1db1d8f36e87558691e4741d00ddd804dbb22e7bf145
GET /albums/h260/toonybug/divider-9.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 23600
date: Tue, 13 Dec 2022 03:58:45 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="divider-9.webp"
expires: Wed, 13 Dec 2023 03:58:45 GMT
server: photobucket
x-amzn-trace-id: Root=1-6397f875-68bf5a777ffbd95a69fce0ba
x-request-id: cyQhhshMwtTES6GiO9gwf
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G9Xag9pWzHF0yMXId1I32lZqGiD0XBgifoYYfBIXTnt1T82Yfh1n2Q==
age: 257367
vary: Accept, Origin
X-Firefox-Spdy: h2
lh5.ggpht.com/-3NLOMFjeVIY/UjvVBPJlX3I/AAAAAAAB0OA/P-xRlWKH36A/w72-h72-p-k-no-nu/Deejay%252520radio%252520FM%252520parah%252520ditikam%252520penyamun%252520%2525281%252529_thumb.jpg?imgmax=800
200 OK 3.3 kB URL HTTP/1.1 lh5.ggpht.com/-3NLOMFjeVIY/UjvVBPJlX3I/AAAAAAAB0OA/P-xRlWKH36A/w72-h72-p-k-no-nu/Deejay%252520radio%252520FM%252520parah%252520ditikam%252520penyamun%252520%2525281%252529_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash de20f313af7891fe3c8d5f11c58f4f3e
967c37cc2613cbdc69aed6bda2268f2cf475a458
edc582a7ecce809a9adb85c188729db277acbe5c67e56b3a751b54ced9d4705b
GET /-3NLOMFjeVIY/UjvVBPJlX3I/AAAAAAAB0OA/P-xRlWKH36A/w72-h72-p-k-no-nu/Deejay%252520radio%252520FM%252520parah%252520ditikam%252520penyamun%252520%2525281%252529_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh5.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="Deejay radio FM parah ditikam penyamun (1)_thumb.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 3293
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 03:28:12 GMT
Expires: Thu, 15 Dec 2022 02:42:52 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1d0e1"
Content-Type: image/jpeg
Age: 0
d2b9l3u54v5v39.cloudfront.net/css/default.css
200 OK 1.5 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/default.css
IP
File type ASCII text, with CRLF line terminators
Hash 8ea20baef891abad5a169261301f1b0d
b983c5b36da773d38fc2d9d56fb1e462080ac0f8
27306e4a14ab04d39e59d9d73d6fac0fca90bbab3da5d9358c0000b9119c90af
GET /css/default.css HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 1489
Connection: keep-alive
Last-Modified: Mon, 21 Sep 2015 08:25:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 15 Dec 2022 06:38:19 GMT
ETag: "70d0ec1947f4d01:0"
X-Cache: Hit from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cIBuF8pPJ8dIp0VCU7OS6xsv4qFiEQjG9j9FzvNdTTnM575PGlv_0Q==
Age: 75440
d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
200 OK 1.2 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/activejs/bdv_fsthd.js
IP
File type ASCII text, with CRLF line terminators
Hash 263303c015aaddbd3c417327b3b50823
c5c4f7ec9f5c1a2cfafad6b5810ed0da2080d3cb
871bcbf1631eba9d4218fddb8dd96a075fdf33725e1ff991b345808c15c66617
GET /activejs/bdv_fsthd.js HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1199
Connection: keep-alive
Last-Modified: Thu, 14 Jan 2021 11:27:17 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 00:22:14 GMT
ETag: "977ef3668ead61:0"
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nSFjeYwskHs3A8V5l5QPB0M4kLwofQ_I6stXYa2AJYHMILdohkndEw==
Age: 11461
d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
200 OK 2.9 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/88x726.css?cbst=2
IP
File type ASCII text, with CRLF line terminators
Hash 4168b5a2517e8d07be159017f22759e7
ade414bcff8b8babb58bf6369fdbc7b8e2cf67b6
816427321da11d1632fac7711648e373bcbc01cf8b7b372d7b9178827906430a
GET /css/88x726.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2866
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:19:40 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 00:23:54 GMT
ETag: "8ae83247890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kz9tyf2K31CAVWvmqJAsDiMR19qmCTZOyORdjJFu8Ao-5hRho0JP7A==
Age: 11277
www.linkwithin.com/widget.js
404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
lh3.ggpht.com/-FM5UpkdUG_4/UuXNC6vqfuI/AAAAAAAB048/RfapES0wwp8/w72-h72-p-k-no-nu/Gambar%252520seksi%252520Rozita%252520Che%252520Wan%252520pakai%252520skirt%252520pendek%2525201_thumb.jpg?imgmax=800
200 OK 3.5 kB URL HTTP/1.1 lh3.ggpht.com/-FM5UpkdUG_4/UuXNC6vqfuI/AAAAAAAB048/RfapES0wwp8/w72-h72-p-k-no-nu/Gambar%252520seksi%252520Rozita%252520Che%252520Wan%252520pakai%252520skirt%252520pendek%2525201_thumb.jpg?imgmax=800
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash b87181c649b9ea2eb1dd8a5eeae7bdfb
5ffa3d325358d85cc6189e2e7b9c2580a9c4571f
22897f82ef7c4ec4322237d5b592b97fda9e8fd0fbfb78fa786b202639e454bc
GET /-FM5UpkdUG_4/UuXNC6vqfuI/AAAAAAAB048/RfapES0wwp8/w72-h72-p-k-no-nu/Gambar%252520seksi%252520Rozita%252520Che%252520Wan%252520pakai%252520skirt%252520pendek%2525201_thumb.jpg?imgmax=800 HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1d390"
Expires: Sat, 17 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Gambar seksi Rozita Che Wan pakai skirt pendek 1_thumb.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: fife
Content-Length: 3502
X-XSS-Protection: 0
www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek
200 OK 2.1 kB URL HTTP/1.1 www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (322)
Hash 5f90e79297e96f7758d10e0f0eeae204
a8c0c4080b7d67a63188cc59bc53f0498daa2c4e
9c03dff409f50e5d1032337768b28f6068f0bfc7fb64b6a54ea45ea29aea7e74
GET /geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
p3p: CP="NOI ADM DEV COM NAV OUR STP"
set-cookie: monpays=NO; expires=Thu, 16-Mar-2023 03:28:10 GMT; Max-Age=7776000; path=/
pays=Norway; expires=Thu, 16-Mar-2023 03:28:10 GMT; Max-Age=7776000; path=/
ville=Oslo; expires=Thu, 16-Mar-2023 03:28:10 GMT; Max-Age=7776000; path=/
idcompteurcc_2052431=done; expires=Sat, 17-Dec-2022 03:28:10 GMT; Max-Age=86400; path=/
online_idcompteurcc_2052431=done; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
originecc_2052431=United%2BStates%2523United%2BStates%2BCity%252314359%257CCanada%2523Canada%2BCity%25234766%257CCanada%2523Burnaby%25232312%257CUnited%2BStates%2523Boardman%25232067%257CUnited%2BStates%2523Chicago%2523844%257CUnited%2BStates%2523Fort%2BLauderdale%2523656%257CRussian%2BFederation%2523Moscow%2523629%257CNew%2BZealand%2523Auckland%2523528%257CGermany%2523Frankfurt%2BAm%2BMain%2523257%257CMalaysia%2523Kuala%2BLumpur%2523252%257CUnited%2BStates%2523Wilmington%2523208%257CUnited%2BStates%2523Seattle%2523188%257CKorea%252C%2BRepublic%2Bof%2523Jungnang%2523183%257CUnited%2BStates%2523Los%2BAngeles%2523181%257CUnited%2BStates%2523San%2BJose%2523170%257CMalaysia%2523Malaysia%2BCity%2523162%257CUnited%2BKingdom%2523United%2BKingdom%2BCity%2523152%257CNetherlands%2523Netherlands%2BCity%2523150%257CCanada%2523Toronto%2523145%257CUnited%2BKingdom%2523London%2523142%257CRussian%2BFederation%2523Kazan%2523128%257CUnited%2BStates%2523Raleigh%2523126%257CUnited%2BStates%2523Lenexa%2523114%257CIreland%2523Dublin%2523106%257CRussian%2BFederation%2523Saint%2BPetersburg%252397%257CUnited%2BKingdom%2523Bath%252396%257CUnited%2BStates%2523Las%2BVegas%252389%257CSingapore%2523Singapore%252382%257CKorea%252C%2BRepublic%2Bof%2523Korea%252C%2BRepublic%2Bof%2BCity%252381%257C; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
online_2052431=3; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
jour_2052431=19; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
total_2052431=33481; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
bonus_2052431=2317; expires=Sat, 17-Dec-2022 03:28:10 GMT; Max-Age=86400; path=/
bonus_j_2052431=55; expires=Fri, 16-Dec-2022 03:31:10 GMT; Max-Age=180; path=/
cache-control: public, max-age=180
expires: Fri, 16 Dec 2022 03:31:10 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fjZp6ZAoXhIsRH47dMiC1YBQlsSCuwS%2FFKvR%2BaCTeP4iI04hh6djL2sRfzizNb0t4Bd059kh%2B5eXi2iUdCrwJzUoy798FdC8TIW%2FWIoGOSriGnUwLsLj%2FwcnBW1uPhlp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77a453d9ff811c0e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d8ee7b5ed9f1ce2717492af01f420e1f
1e1cfe7134e0d88f1398c5e8b54c2632a7d3459b
1b0f0eff510a5eee48139d1f2a02a4f98109541998da638034bc04b05ef72d32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
200 OK 866 B URL HTTP/2 i155.photobucket.com/albums/s282/theviejo/recurso_9_7.jpg
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cc4c3239458044ac24fec670759abe98
1d82930aeb5ee83c27c9cf18e4032c5ccc79fa9e
7e7869c41d518540d17a4197002c2d327bb3b39714f2ae67ede24aeaabc2a6f9
GET /albums/s282/theviejo/recurso_9_7.jpg HTTP/1.1
Host: i155.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 866
date: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="recurso_9_7.webp"
expires: Sat, 16 Dec 2023 03:28:12 GMT
server: photobucket
x-amzn-trace-id: Root=1-639be5cc-4cc04c5d604a964a729d66b8
x-request-id: t6DTm3VOVI2xChO5YwFGU
x-cache: Miss from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T_TATZ3Jf8joAfFQx1KFj_igDjM43JF4zyeSl0kd2EbVhbl5WnrEYg==
vary: Accept, Origin
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_canada.png
200 OK 886 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_canada.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9dfda6415875b226812181f7ea64fcc8
6cdf4ed8b0a4d6a748510ab74d772183a55bdf38
b5e378613935ec7dabd4e11e095b4141b16462909085a185e3a093c8900e6a55
GET /geocompteur/shadow/flag_canada.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 886
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1148
content-disposition: inline; filename="flag_canada.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 11 Jan 2023 21:27:27 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 280844
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uyA1DWLHsQ6PKztJtSCYMhLTKgFFp6I%2FATN%2Fhxgc%2BCQd69ebBCrmYXrMtupnP%2B0xcRY%2BmTrJnxuza7ZgBtnryYIWCsXb9792v7ktv0ZM4yoyh8eG5V45IhR2M%2ByRhH9v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8900b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 3.9 kB URL HTTP/1.1 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.widgeo.net/geocompteur/geocity_html.php?id=2052431&c=geocity_rose&size=&nostats=&title=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&ref=pak-janggut.blogspot.com&fullurl=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 12:21:11 GMT
ETag: W/"6399bfb7-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NYjXIcCtPIOEYpto04R2Ava1A3MlS6iSjklzvzW2zc7uy9ErtHg2hVkFDA0x3b3KWcH6As7w2YOb32uC5PT3htymX4uUGy0fo3%2FKAZAUdNvHduxSlneylpmp%2Fy7yQC8o"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77a453dcc8541c0e-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Sun, 18 Dec 2022 03:28:12 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png
200 OK 680 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_russian%20federation.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 852881aef6d6a8bca3123c3201f64c74
0e5ef2c61383bb79c8a6ea068d9a688631d844fa
41c20a2d0dc8fe26ec1e5c7e71b5d82fc09e7ce0bd30db7abb516474f5c186a1
GET /geocompteur/shadow/flag_russian%20federation.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 680
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=857
content-disposition: inline; filename="flag_russian%20federation.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 28 Dec 2022 03:12:56 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1556115
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2FD%2BKGLL1bWVayN6%2BDGDz9pxSmwHeI%2FbfK3J0toKdZk8JZdM3yaxqfbGqB6k2mz45aFvaKiigp%2FBSNigynC7%2BLq5ZKWSKs3o247VXYXl4f%2B13UF27kZVLRMq9Hs9ia3W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8910b55-OSL
X-Firefox-Spdy: h2
www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=main
200 OK 653 B URL HTTP/1.1 www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=main
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d0d05a23cb23fe35908361694e15b565
d14818ca4dc04d998081b92c3975ff6e9f6dcdea
1fe598dd28104053751c17c7371ef1e42ec25c08b513993cbc93a4f6b4b9c716
GET /box/?boxid=438668&boxtag=56x6cw&sec=main HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Wed, 17 Nov 2004 05:00:00 GMT
Last-Modified: Thu, 16 Dec 2021 03:28:12 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Cache: MISS
Content-Encoding: gzip
www.widgeo.net/geocompteur/shadow/flag_new%20zealand.png
200 OK 940 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_new%20zealand.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8719b63ac81155fd64422298ef8a8b25
c034b5869772ddf1675ebdbeb3c0d3c540738c24
b313f56a36c855a1a34a02b96910ee4307e553a28a6e52bc64e2ab1bc2cfdae5
GET /geocompteur/shadow/flag_new%20zealand.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 940
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1173
content-disposition: inline; filename="flag_new%20zealand.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 07 Jan 2023 05:41:08 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 683224
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xTBj35N89moNwv%2Bz3AdwYK0rd%2FFh1gYWU791FdRkCeyIvOxzN5wbyctkciHsIJrGY30NQzjPU52BEmqECybMXXFiSR%2B%2BmZ1d4hPr9Egu1QqLA%2BS4Jz2%2BnUsXD%2FpuR3rC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8920b55-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f4631a03ebec994a04efdc9abbd6ac70
cdb33e0e8ba44c3e381e69e9e2016fcd888cfa3e
738a1dd790976268299f326f60be978515dc6ef2388dd44c0486eb7e627a8f53
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "738A1DD790976268299F326F60BE978515DC6EF2388DD44C0486EB7E627A8F53"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13106
Expires: Fri, 16 Dec 2022 07:06:38 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
www.widgeo.net/geocompteur/shadow/flag_malaysia.png
200 OK 990 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_malaysia.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash b69697ab6effe9c72ebc0d4768d9f8bc
806c9c63795f99ce88b81475741fe06b1346a94d
1a473a4d01199896dd76d0882be0aa5e3a9ada7201e4d21f61c74ec3ee5463da
GET /geocompteur/shadow/flag_malaysia.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 990
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1216
content-disposition: inline; filename="flag_malaysia.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 22 Dec 2022 22:04:40 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2006611
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FOgkmH8WPJ4nOW5H5EZAK1sj5bpRVxT8drfY16qYv8NbROuzBls%2B074UxRpsD5TvAHm04GGlxLL%2BpEi4tHm58WX%2BdKC1QSsOTMo%2BLkEtAW4745J%2BB%2FFD1Pi0s%2FfFKF3N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8940b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_korea,%20republic%20of.png
200 OK 814 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_korea,%20republic%20of.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash ec4b0c854ec18061c7bafbe9ac9d1c3b
77c850ef6479e29a631dba64d06ccc1eefb1adc6
48f6236fb62cb417c5d00552052f378bfd1a82ca9f21f341c69390fd346fd439
GET /geocompteur/shadow/flag_korea,%20republic%20of.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 814
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1163
content-disposition: inline; filename="flag_korea,%20republic%20of.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 17 Dec 2022 10:21:59 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2480772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DLX2jyvFcGz6nH1azUEPQ9XjSR3jhTWCz7zIXJ7tmfgoWEPO2jqbfpi2fyR7cFTei%2FxlCueSbFu%2BFxwGktDYP4lPEGPH0RELkU55tAflNdsmxpL8d92vvXNpmNV%2Fnvbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8950b55-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-RP7FMTL79Y
IP
File type ASCII text, with very long lines (20080)
Hash 56e6ffaec35c366b4a97186408ddce18
f63b5910eecaf9c786c5e918301fc39b44a643a6
de30265f55696612a7ec4088c2712426270a85e02634abc869448429afe9b072
GET /gtag/js?id=G-RP7FMTL79Y HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Dec 2022 03:28:12 GMT
expires: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=form
204 No Content 0 B URL HTTP/1.1 www7.cbox.ws/box/?boxid=438668&boxtag=56x6cw&sec=form
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /box/?boxid=438668&boxtag=56x6cw&sec=form HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 204 No Content
Server: nginx
Date: Fri, 16 Dec 2022 03:28:12 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
P3P: CP="NOI DSP COR NID CURa OUR NOR"
Expires: Sat, 16 Dec 2023 03:23:23 GMT
Cache-Control: public, max-age=31536000
X-Cache: HIT
www.widgeo.net/geocompteur/shadow/flag_united%20states.png
200 OK 1.0 kB URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_united%20states.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 03d9bb2b449e6e964d86aec6d71b6856
e9b1da7fa7d59eaa78b2e2ad681c1e126fb55aa8
6baa676f5ca2682fd2d7945ca2d3b06759d8a1bdd4974e4c3e00b80643410399
GET /geocompteur/shadow/flag_united%20states.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 1008
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1214
content-disposition: inline; filename="flag_united%20states.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Sat, 14 Jan 2023 19:09:54 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 29896
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rrEPgaAn1LkBS0GiQ1QfRq0poouZ%2FY4VAUDP0OPtRGiytfT9XNI%2BG4sqMzhZmI3hK7pZldrfSvNWPAv1Cs1v2SKmjiQRWhfIl%2BgU9vUYNwTC0Js%2Ffh6lN2LyDwqaaKW1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc88f0b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_singapore.png
200 OK 768 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_singapore.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 931d98f74f8bbb82364a40f7c3c5ea3b
f844a679d51126b38659a25e9c71c748da392714
04f122230781518f0b5807695a1c731e33bea9ba0264d612c799485074204627
GET /geocompteur/shadow/flag_singapore.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 768
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=939
content-disposition: inline; filename="flag_singapore.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Tue, 03 Jan 2023 21:38:37 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 971375
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lgFI7kLDk%2Ba0stJDK22rBR0foIMaY3mHnr1RWMKune2R9QoGk3VZ5DJmNwugU%2FrtP3bWSbuTkMBRbsiJzYAIVrfc%2Bk0nd7sVudbFsRJyYG6cdFrqyXJY56VsaZMfgGmF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc89e0b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_netherlands.png
200 OK 710 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_netherlands.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 4d48534384964664d122ef558ebf1acd
8cbccb6b66f6161c329f9945b58e79e09640cc90
286ee399704cd53efeabbca51dfc8459fb9633265ae4e9e046610f7d61d087bb
GET /geocompteur/shadow/flag_netherlands.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 710
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=892
content-disposition: inline; filename="flag_netherlands.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Wed, 11 Jan 2023 21:22:05 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 281166
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BXwQ5qtpWBMgZJRfT7RVXFhDdXhauy5Mn9AjFdDHesvOIHdBJTmJ%2Byp1Vkh6vspaqdgvcBfglSMeBv7%2BzVnjunJmKakY418rQjEoSBQZejabEswvPGztZyXx0rMJaEMf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8980b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
200 OK 1.2 kB URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_united%20kingdom.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0fca0f8c1f72968c8849d783accae326
6d6f3b4500a3f1fccc3474d59c716b2f60a59ea4
c1319ad29f9822f08a6740f0b89e91127cfb11a449f99528f0a7928156032c9e
GET /geocompteur/shadow/flag_united%20kingdom.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 1220
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=1459
content-disposition: inline; filename="flag_united%20kingdom.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Tue, 27 Dec 2022 07:58:53 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1625358
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ZYslQcseeD5wBd6gmXD1xfDqZxiaFCokIDus%2FDJZEoGr4sHydH%2FJM9Xypx2lNAQcK1QdxsG3X7NthW%2BVM6L1Co2kelHewTGhLkffAczaWDAYpLW7q7sQFBaqFK%2BTWLc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8970b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_germany.png
200 OK 686 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_germany.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1c667705cee250254b246ed54d521b22
ebb8e80e0820a7e73926c5d2ff02c5f74c9925b1
1b4f1b8a79090e222e116c0bb9a7333a8b88f41dd2172122f67e8c0f1a6c2e21
GET /geocompteur/shadow/flag_germany.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 686
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=873
content-disposition: inline; filename="flag_germany.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 13 Jan 2023 23:14:00 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 101651
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xdHvBfou1KsXCoNCZxuDCM1L7w9DodhwG1Gr9ax%2Bc12jiUtaSaCOqIE74rYP4WKMq0Qqv19Ee0d9MMF%2FL5baPiTvfg7Xp6s1oCnZZL%2BppC6%2BsoVNvD2H9KDeyyW7bFEx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc8930b55-OSL
X-Firefox-Spdy: h2
www.widgeo.net/geocompteur/shadow/flag_ireland.png
200 OK 712 B URL HTTP/2 www.widgeo.net/geocompteur/shadow/flag_ireland.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8e55f246106bcd5ae49ef1a026ec80d3
a5afe18fe64456cbb16e31287f4106228267f584
eaf4b1563a65fb7bd06ace795835a00a4f491a48506996bd65c161d35002351e
GET /geocompteur/shadow/flag_ireland.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 712
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=937
content-disposition: inline; filename="flag_ireland.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Fri, 23 Dec 2022 12:40:14 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1954077
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2dq4Z%2FY%2FTfRboMeisqoJ8XrMUeuUapVPSQeE4AIkq4XQf6b3rpQ6TrmxTqPxk2q4dg6uHLdYQAZv3Tkw%2BSUw8fv%2FyH0dwbbVXMhjjVo9FCZ3heQp9Jt5oYFBw5o5pPlY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcc89c0b55-OSL
X-Firefox-Spdy: h2
i66.photobucket.com/albums/h260/toonybug/postimage.png
200 OK 2.0 kB URL HTTP/2 i66.photobucket.com/albums/h260/toonybug/postimage.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7c97b842c78875c6ec36e6f15281a0d7
6c74bf1c6f860006eeaf58b4c5d73aeed3a52ce7
a561536555277e841424fa2139b09af34ad672769e8a51ad8f9e316f519d4dc5
GET /albums/h260/toonybug/postimage.png HTTP/1.1
Host: i66.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 1964
date: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="postimage.webp"
expires: Sat, 16 Dec 2023 03:28:12 GMT
server: photobucket
x-amzn-trace-id: Root=1-639be5cc-26718e5d20735dcd1c5dc63e
x-request-id: foObrRaScfK2n3I6WM6UA
x-cache: Miss from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qz53vlX_i8znSa8M7rMI4r5XT0GYtEQAfvS6nbSnf6furTq7GqjCDg==
vary: Accept, Origin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 4.0 kB URL HTTP/2 www.widgeo.net/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
Hash 14a6398c20db8b1d9674898a73036b69
5af2652152f130616cd27fc0530b66a15ab22dea
792d505069a20cbff3313cfb1ec4270d19319366fee5d0250e435ef9b4334258
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/hitparade.php?pagexiti=geocity_rose
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: application/javascript
last-modified: Wed, 14 Dec 2022 12:21:11 GMT
etag: W/"6399bfb7-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xO2Kexj7xIi3kHW%2BLvSI1n4qHhRQm6O30s7gBeM2WexpIkydZ1UeknFKZIefhy2tzabl1Kc5qoixP8DwWV2DnfiFS63TkjtSNiHzhN8LNjFkY3xighVa%2Bk0H73Xp3eGB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a453dc08590b55-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 18 Dec 2022 03:28:12 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash d8ee7b5ed9f1ce2717492af01f420e1f
1e1cfe7134e0d88f1398c5e8b54c2632a7d3459b
1b0f0eff510a5eee48139d1f2a02a4f98109541998da638034bc04b05ef72d32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/
302 Found 148 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/
IP
File type HTML document, ASCII text
Hash 053a9c836b9d7fa66bf7fc51a4390b83
05a5814e403a44b17ddeb90c152f705d8326a585
92f2a8405d49ef1f896766e43abf18640a6a27c390b3d32c88918f517167de38
GET /hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/ HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 148
date: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: no-store
location: /hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
set-cookie: idrxvr=234E9DD7-273E-4083-A166-47AB200BA25F; Path=/; Domain=xiti.com; Expires=Tue, 16 Jan 2024 03:28:12 GMT; HttpOnly
atidx=234E9DD7-273E-4083-A166-47AB200BA25F; Path=/; Domain=xiti.com; Expires=Tue, 16 Jan 2024 03:28:12 GMT; HttpOnly; Secure
atid=234E9DD7-273E-4083-A166-47AB200BA25F; Path=/; Domain=xiti.com; Expires=Tue, 16 Jan 2024 03:28:12 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LAlCkvmYBW4kOCZZcvrAWuR9mTsd7N423De2ALNpzOqeNWXf-Uatew==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7554f75e4959d216038e95962579e741
10f237248a234544391eb351e97515d385a372b3
cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/geocompteur/img/tmp/earth_red.png
200 OK 2.6 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/earth_red.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 58980cc45f0ee0efffdc30ade3c1e295
ed75a1ea320a5a5993f2d8c27b2873bde09364e7
e994d6dfb98c97b89266605ccb40fade20b65078c94749428fd2d2485725a602
GET /geocompteur/img/tmp/earth_red.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/city_css.php?c=geocity_rose
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/webp
content-length: 2616
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3362
content-disposition: inline; filename="earth_red.webp"
vary: Accept
cache-control: public, max-age=2592000
expires: Thu, 29 Dec 2022 14:43:11 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 1428300
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=svG7iuHFVAfH6T37LotjkeY8UrJDniUQZoxBuWIoz3AkGBcbfKBEh9L2tWFMImbXOuh%2FZkSeCLyd97DLlOMLNLUtocgrGuhNZgbhhcZAC6p7MMpG2R%2F3v2kXKlFEOg9B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453ddc8df0b55-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cf2e02dae7e023b1c5a15fe1326ad86c
e53b2215941aa2a34d5d2cfddcb3dd22648afe9f
59d7cd7c5538b3e2fb77d12a1f0017d222259e598a57c1d3d8552e9a8d8118aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/geocompteur/geowidget_js.js
200 OK 926 B URL HTTP/2 www.widgeo.net/geocompteur/geowidget_js.js
IP
File type ASCII text, with very long lines (866)
Hash de459e2aa9c51196053ab3057e7317c2
600eb6f33b81ece7a2975d41d92320da16c0220c
d32b8146bd4ec464816505ad478f2a57c8da8a951dd3ba62a8177a93a0c4298b
GET /geocompteur/geowidget_js.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2217
cache-control: public, max-age=604800
expires: Tue, 20 Dec 2022 13:13:30 GMT
last-modified: Thu, 13 Feb 2020 12:35:42 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 224081
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReDx6vkL40zJO2KBXaXc37MhpO%2FqJMteR5hAOqJLdaNpSEnVSPQ%2FLbiXIX2Dc0Vr3hJ2UeNu1aoxj3GePunghz35dLYMVOI5pGfl9ySSqMFUX91dr76HythCneIqdEgt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453ddc8e20b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2e709a04ea80113c435ca4f9d37e93e7
053f34d74eded192d698bb20956897ec3e3ad23b
2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7ded1896628f431acd2e4a3d10ea3142
ad603e2b43da4629ede29f9f193ae5df09f3cbb8
dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
302 Found 474 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (504)
Hash b7f7467e554ba0c57b046afab127b81a
645d9f0c42f0c94eaa4759a4bd976a088ad9a3e0
5d16709cf2ebc3cad73e305cba6db18f08bae87a64828084c515a72aebcaff3a
GET /ServiceLogin?passive=true&continue=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&followup=http://draft.blogger.com/followers.g?blogID%3D3330746960625431196%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50%26pageSize%3D21%26origin%3Dhttp://pak-janggut.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.ydLROSGdlBE.O/d%253D1/rs%253DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 16 Dec 2022 03:28:12 GMT
location: http://draft.blogger.com/followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpak-janggut.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-Pp0fPZGc_PNgeXvRUIuwVQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 474
server: GSE
set-cookie: __Host-GAPS=1:vSl7DV5z9NRVERd-99cx0D6bf0ZZvA:4-HamGiXEbhPWV6R;Path=/;Expires=Sun, 15-Dec-2024 03:28:12 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.widgeo.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 18:52:41 GMT
expires: Tue, 12 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 290131
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.462.0
200 OK 22 kB URL HTTP/2 bedrapiona.com/5/3294720/?oo=1&js_build=iclick-v1.462.0
IP
File type JSON data\012- , ASCII text, with very long lines (3352)
Hash dba0cf281cb0c7a0c5c0d1f6669a2ccc
61c007297bf20571fbbcb3ec5fe7df17b0dcef94
0a6534f2acce22c592df79d0a7fe93107a03c148c69a556d868b0d4598c87c1e
GET /5/3294720/?oo=1&js_build=iclick-v1.462.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: application/json
x-trace-id: 5b81b307349c147bdf6989286f6ba674
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: http://pak-janggut.blogspot.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b582bc39d8164e9eab7338dea2d1db70; expires=Sat, 16 Dec 2023 03:28:12 GMT; path=/; secure; SameSite=None
oaidts=1671161292; expires=Sat, 16 Dec 2023 03:28:12 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
200 OK 25 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
IP
File type ASCII text, with very long lines (820)
Hash cc24419c482370498f3c227ac73d666b
37fc103ace873f47102e0ca88eb4735bc6806750
152fa070788f0cf29dc062f03860897c39c7ffa13e6eee2dc3e5dc131ecbc7aa
GET /ajax/libs/jquery/1.4.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Dec 2022 12:33:42 GMT
expires: Sun, 10 Dec 2023 12:33:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 485670
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
200 OK 373 B URL HTTP/2 logv33.xiti.com/hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On
IP
File type GIF image data, version 89a, 39 x 25\012- data
Hash 29cb2a1e585dff1f4282449fdbbab2d7
075d147195f9dba1862a6f3990d219d7c4389225
86fd3be02ab9497ebb14a884fb226386cd0db257b234b005f0000326ae8c9081
GET /hit.xiti?s=281802&p=geocity_rose&hl=3x28x9&r=1280x1024x24x24&ref=http://pak-janggut.blogspot.com/&Rdt=On HTTP/1.1
Host: logv33.xiti.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.widgeo.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 373
date: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: no-store
strict-transport-security: max-age=15768000
x-cache: Miss from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: knKiYElcm7OdSpvh4MAVY1pJtcf95j-1BQQJVjh8PiDwGnN1iFTkEg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 2e709a04ea80113c435ca4f9d37e93e7
053f34d74eded192d698bb20956897ec3e3ad23b
2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 3972e23b068a857e4b879417ecbf1d1a
c5593984f70d07200faa6a1ca10572cb8670665d
db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7ded1896628f431acd2e4a3d10ea3142
ad603e2b43da4629ede29f9f193ae5df09f3cbb8
dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
200 OK 9.0 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547%26bid=1169953
IP
File type ASCII text, with CRLF line terminators
Hash 0d489677aaa27440619b64706f2cafe9
b87bf2207059e1db5a939e804c7e586e7b8ad125
0dab6095a7e07c26dc21102cfb0e3e81eda68ed0681d34b23719bd31bc188539
GET /BidVertiser.dbm?pid=361547%26bid=1169953 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Pragma: no-cache
Cache-Control: no-store
Expires: -1
Connection: close
Content-Length: 9014
draft.blogger.com/followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpak-janggut.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
302 Moved Temporarily 460 B URL HTTP/1.1 draft.blogger.com/followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpak-janggut.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (477)
Hash 38c76365cbf205f971c81b54064ae691
ba7681c71316930f29f8e4af747a28c080453b1b
0a79694a486c261aa9603c17cc0852b6540e06eb888ac1cbbcb95a77e0537441
GET /followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http%3A%2F%2Fpak-janggut.blogspot.com%2F&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.ydLROSGdlBE.O%2Fd%3D1%2Frs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA%2Fm%3D__features__&bpli=1 HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: https://draft.blogger.com/followers.g?blogID=3330746960625431196&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM2YjU4NDgiByM4YWI1YWMqByNmZmQ5NjYyByMzODc2MWQ6ByM2YjU4NDhCByM4YWI1YWNKByM2YjU4NDhSByM4YWI1YWNaC3RyYW5zcGFyZW50&pageSize=21&origin=http://pak-janggut.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.ydLROSGdlBE.O/d%3D1/rs%3DAHpOoo_OUY4V-VcsLuRVnUuYVO758FydkA/m%3D__features__&bpli=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 16 Dec 2022 03:28:12 GMT
Expires: Fri, 16 Dec 2022 03:28:12 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 460
Server: GSE
www.kekcoklat.com/images/banner/banner180.gif
200 OK 58 kB URL HTTP/1.1 www.kekcoklat.com/images/banner/banner180.gif
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type GIF image data, version 89a, 180 x 60\012- data
Hash a741428fab4e3f6215f41f8a41200be3
2f2110a1ea3f1fe6be661d72e61b51c7fdbb2a87
68fc167c81c53c0f80769227b3db5ce7cbddef69e0c00fc3512714edf03faf91
GET /images/banner/banner180.gif HTTP/1.1
Host: www.kekcoklat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:12 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 08 May 2012 04:36:55 GMT
Accept-Ranges: bytes
Content-Length: 57811
Keep-Alive: timeout=5, max=75
Content-Type: image/gif
www.widgeo.net/geocompteur/img/tmp/geocity_rose.png
200 OK 2.3 kB URL HTTP/2 www.widgeo.net/geocompteur/img/tmp/geocity_rose.png
IP
File type PNG image data, 164 x 314, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ac6dc8966afaae6e5f8007ecc34bdce
083f900fd6a25671a4f3f7928e48b6d55d759835
30f902e1a4ac948f1caabe20cf51cd038c61577aa7062f10f32353bca8a39d80
GET /geocompteur/img/tmp/geocity_rose.png HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.widgeo.net/geocompteur/css/city_css.php?c=geocity_rose
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: image/png
content-length: 2256
cache-control: public, max-age=2592000
expires: Sun, 15 Jan 2023 03:28:11 GMT
last-modified: Thu, 20 Jun 2019 15:14:42 GMT
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BdWxewxyYMCpf02fFNFtaV2OoXeHvbxmNw7tkImzEbWQ3XsAJxE9CgZ3RCddxqO9uSD1aFWooN2aXD%2FADN1oZDCX1mJ0%2BW5I3nbRmyANAswCyeX710k6lovfM28SYDX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a453ddc8e00b55-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3211
Expires: Fri, 16 Dec 2022 04:21:43 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3211
Expires: Fri, 16 Dec 2022 04:21:43 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0e5a8cf5962c05bf28a3b45f5c8745e2
9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f
f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3211
Expires: Fri, 16 Dec 2022 04:21:43 GMT
Date: Fri, 16 Dec 2022 03:28:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00f5a5bd-1394-4dc7-9558-bf36502f5a45.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00f5a5bd-1394-4dc7-9558-bf36502f5a45.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91773f7aa7f55783662d3714ec66d03a
217708c5ac8003d7d0f90200744da4ca07a1506c
2ced817da5c13aad9059c98b4ddb29a13ecb2cb4ee118298b1c9b42ed6bca0de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00f5a5bd-1394-4dc7-9558-bf36502f5a45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12942
x-amzn-requestid: c24b370e-1b90-4a84-9cd8-ddf93dbfa165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQ7gEwUoAMF05g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9516-429915140a9ffcc272a2620d;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:43:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qcQnHD0gPUMG62iBjBpPtMxiKsz30o23gV9mwMtA7dObxpXj-W1sMQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:21:43 GMT
etag: "217708c5ac8003d7d0f90200744da4ca07a1506c"
content-type: image/jpeg
age: 18389
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83be48c5771e071d94ac0d912357ac99
97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1
dc7eaffae4521f6bc297ce21c0abe99fe92bf8938266b550f8e38ff9705bdeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ea75fa-e30c-4f7a-b0f6-24942168a508.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11196
x-amzn-requestid: 1bcdd4c6-14db-40bc-90aa-226a0e411a09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQJFFeIAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-65c676d06a24e0252e8828dc;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vUSF9t0-H5wLQ6vjt5IR5xraq0i-m6kTYbiGmUbZTA43i_257ieS_Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:10:30 GMT
etag: "97e31d3e2c268fe9335e1111bd2eb8cc9dd729d1"
content-type: image/jpeg
age: 19062
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 655824c14c7b451288ca64183ed30849
c4e2b016f2b259a492c990378d24b8758331bf1e
7121822ba21bee302c7d449a1a3beec2ec62bd17af342221f4378543c6d31ef1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d8a75a5-042d-41ee-9e3c-3c9119423298.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: 17ffb8aa-4fd2-46f3-80cd-718310fd6528
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQ7fERkIAMF59w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9516-5a3637da4b3232c5214a189c;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:43:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lY3uVYKOTrbR--1vBWqs_on26H61dT72pHRry1XvW1mKdncZd7UxLw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 21:56:47 GMT
etag: "c4e2b016f2b259a492c990378d24b8758331bf1e"
content-type: image/jpeg
age: 19885
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169949&RD=6642355778177&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6642355778177&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
200 OK 11 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169949&RD=6642355778177&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6642355778177&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
IP
Hash 3a8112e20ff442d04b89af76bb4e2aec
77d85e2160aba81001d814c1dd5b8b2949c6a405
31f8f3d45343d6cad3be43df2991573f2b2dc9e0114dbadd8d7725bdc442fa7e
GET /BidVertiser.dbm?pid=361547&bid=1169949&RD=6642355778177&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=6642355778177&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:12 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:12 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1167641&RD=2822660076202&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=2822660076202&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
200 OK 12 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1167641&RD=2822660076202&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=2822660076202&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
IP
Hash 056af8efd5e6b60787053be6e5db21ae
2430f6229c931e0daf1ef1e40ecbb1d6769c2da8
fe1ce8f22ac55bae1e27833ed369e96f33b4a80f8c34245a90b2ab2554cc280e
GET /BidVertiser.dbm?pid=361547&bid=1167641&RD=2822660076202&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=2822660076202&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:12 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:12 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 5305
CONNECTION: Close
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15ed7eaf6a31427864e97802a56a4833
ebcc35a17e229b4cdc3507dc9bfd5e76f176f353
3c73b5a7f669d501456b9979e45661e8c468d93767560a20c6769e26f78567e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce463890-21e1-4f66-9e83-55a0b1f4cdb4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6667
x-amzn-requestid: 319440af-a363-41c4-a839-9473a0342698
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNQQKFJzoAMFaIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9400-60b281d84363326d472a663c;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2EQbb7AVIS9HAEgZBhARFGEAqs9MALYHAkfsyxrCb2Gd1QF8Op_EpA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 21:56:47 GMT
age: 19885
etag: "ebcc35a17e229b4cdc3507dc9bfd5e76f176f353"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.shamsuriyadi.com/ccimages/banner180.gif
200 OK 65 kB URL HTTP/1.1 www.shamsuriyadi.com/ccimages/banner180.gif
IP
ASN #38182 Extreme Broadband - Total Broadband Experience
File type GIF image data, version 89a, 180 x 60\012- data
Hash e1c391f5ab9c77da204bd9f541a68295
542f2c2871453154990ab8fab80862d2d9fac376
f73d96f6cfea71b678c762ccba4f9d5ec7acdd8cd55fce78434f7368a853a6ac
GET /ccimages/banner180.gif HTTP/1.1
Host: www.shamsuriyadi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=31536000
expires: Sat, 16 Dec 2023 03:28:10 GMT
content-type: image/gif
last-modified: Mon, 05 Mar 2012 05:04:54 GMT
etag: "fee3-4f544976-0;;;"
accept-ranges: bytes
content-length: 65251
date: Fri, 16 Dec 2022 03:28:10 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
d2b9l3u54v5v39.cloudfront.net/css/58x466.css?cbst=2
200 OK 2.8 kB URL HTTP/1.1 d2b9l3u54v5v39.cloudfront.net/css/58x466.css?cbst=2
IP
File type ASCII text, with CRLF line terminators
Hash d58909e3606e94cade8eca195ab40f2e
e6363f5074ba81376c31b4cd770f0b0344621e24
68cec5539b0b468c927628d857780b25c5be36223db516828dce541b1c167c00
GET /css/58x466.css?cbst=2 HTTP/1.1
Host: d2b9l3u54v5v39.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bdv.bidvertiser.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2831
Connection: keep-alive
Last-Modified: Thu, 18 Jan 2018 16:19:13 GMT
Accept-Ranges: bytes
Server: Microsoft-IIS/10.0
Date: Thu, 15 Dec 2022 06:07:46 GMT
ETag: "ec706f147890d31:0"
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: U_HKQgsQjS-ZbMj91Qq1iMyIhthrsW3HDsGUyR8vXm98iKi6CapMZA==
Age: 76826
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=3672423715922&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3672423715922&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
200 OK 10 kB URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=3672423715922&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3672423715922&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (405), with CRLF, LF line terminators
Hash 425b5711c55ea2a0b9292124f1047ec5
c09441d08eb16e6402b857cb142cdfda0c72e3f5
38635923eba74abd2be570ed784dd6c1ef7cf1b718ee5db15b6401d61a053905
GET /BidVertiser.dbm?pid=361547&bid=1169953&RD=3672423715922&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3672423715922&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:13 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:13 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:13 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:13 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 7615
CONNECTION: Close
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg
200 OK 1.5 kB URL HTTP/2 1.bp.blogspot.com/-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 2c53c52d7f8e27257535cfddaf818761
2b0aaeae7b0e715d7c6194e514591fd0c2a350b4
8d10c19235052321c5bf4aa25f86083366ca7c2c25e4ed71991d1902148bbd52
GET /-HjKHUtLKg90/WF04GLHhgdI/AAAAAAAAVF0/_AJxJm6ixcQS2kRLe85rf5BtrQNw2l2IgCK4B/s45-c/boa.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="boa.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1508
x-xss-protection: 0
date: Fri, 16 Dec 2022 01:30:43 GMT
expires: Sun, 11 Dec 2022 18:34:13 GMT
cache-control: public, max-age=86400, no-transform
age: 7050
etag: "v545e"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png
200 OK 3.0 kB URL HTTP/2 2.bp.blogspot.com/-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png
IP
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 420b8479d6a82697e5a84e7d4fcbcfda
1087ab065b87e34f659de2e18d07d2f59b74a2bd
062a3b33b7eecc1336b7f7b7b9129201091e945104a8d0017a4261753c2fbd13
GET /-FyYmc13_oNk/YtWsTpzMOtI/AAAAAAAAax4/b1WkV59-xokJGVLGV14OAlAKc8zgv5pMwCK4BGAYYCw/s45-c/1657207902075.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6b21"
expires: Sat, 17 Dec 2022 03:28:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1657207902075.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 3027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
2.bp.blogspot.com/-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/*
200 OK 1.8 kB URL HTTP/2 2.bp.blogspot.com/-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 99fab51d6ad334c42a05f0db6cc8532f
b5619d3d6a023d183e3524204ce1181536583572
2c634c594cdc4cc67f259a1af221cc120b66c2326bc7ca6afec0cda9daadb901
GET /-a2a8F1cZ1pA/UtDEQAf7UKI/AAAAAAAABSs/Pw78LKftJSM/s45-c/* HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v52c"
expires: Sat, 17 Dec 2022 03:28:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="*.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 1810
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif
200 OK 3.4 kB URL HTTP/2 4.bp.blogspot.com/_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 6e7b6548fbba2f4c7ebf3063af3db330
75d615a98bb4cc181351d6d3592fe7a64abe7e0c
ed91f355e8a19ac0f139736c37970c621dfd8c671b789ca03ecd83d9e9202f68
GET /_efYYsFWNGPw/S6GCbKmYGCI/AAAAAAAABXI/kakzSVFIr8o/S45-s45-c/dn100x50.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="dn100x50.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 3429
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Thu, 15 Dec 2022 02:42:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v572"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG
200 OK 2.0 kB URL HTTP/2 3.bp.blogspot.com/-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4baee26cd326fe1bac951002f135cb97
fb115c64a6e8c90954147e1685e7bf84b099c56e
caac06f13c005445b14fd2479ddda47be11487bd12e0db5d395a9f3a9e0e763b
GET /-SNHNQmxoVNs/TvVAp5vIAhI/AAAAAAAABWw/asRFhUakkO8/s45-c/DSC05641.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="DSC05641.JPG"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1953
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Sun, 27 Nov 2022 08:29:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v56c"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg
200 OK 2.2 kB URL HTTP/2 3.bp.blogspot.com/-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 0516e8aaee06ea09a4b340e0b82181b3
6ed562b861805c6e191128a9869ad2e384c33c49
331cea53b7ce5d6095a1cb7f180c96e7d9acc69065c6559635722ae1afcc3463
GET /-V-f0RwnYuMo/Vxrz2L3m2cI/AAAAAAAAMnY/CDfnQjbjj4MOMpirTn4ezzNvZFaO230ZQCK4B/s45-c/irfan3.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="irfan3.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2179
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Thu, 15 Dec 2022 02:42:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3278"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
3.bp.blogspot.com/-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/*
200 OK 1.9 kB URL HTTP/2 3.bp.blogspot.com/-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash b70a390b0b8c4f4bee8829cc1a59d1dd
46917da08d914b4cc594a1332b163c98004ab337
60b54b8ea208150f2cbbced26a89bd408ebfd9366b6186dc9e7b445ef25624ab
GET /-TlgYh-wBM3M/U99iwdQgGPI/AAAAAAAACrc/UWt6D9231rU/s45-c/* HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vab8"
expires: Sat, 17 Dec 2022 03:28:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="*.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 1941
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cc81357b14dfc6b779e785f31925d71a
55220b65be824683e0ea0752a7be4d3fae48e079
28f0faae48d5a1faf656fb91aa337fb53836b150cae57fd5f9fd44467e6bf27c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cc81357b14dfc6b779e785f31925d71a
55220b65be824683e0ea0752a7be4d3fae48e079
28f0faae48d5a1faf656fb91aa337fb53836b150cae57fd5f9fd44467e6bf27c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c
200 OK 2.3 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 58bc498fa916d7a72d1ea6e06d248f64
b3852656d68829ae2d8428db8ae4717b0c4b0399
be198d54609961e3b6073376518d11c221b70256977810598d49fa6129c0bc78
GET /a-/AD5-WCkuTNnmDY1b6LQEfyj36hSpbOdHCZ4CBs4TI96v6I0=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2315
x-xss-protection: 0
date: Fri, 16 Dec 2022 00:26:45 GMT
expires: Wed, 07 Dec 2022 00:19:59 GMT
cache-control: public, max-age=86400, no-transform
age: 10888
etag: "v8298"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg
200 OK 2.4 kB URL HTTP/2 4.bp.blogspot.com/-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash afad5c0f078b437134f587059f3dbf9c
f82a657abf5ad086ea0294bec117a5b676409727
71e5321d2134f07f83b4369c454d6549f533f9d67e4a742d0b3c07aacb7a93bc
GET /-l_MtnsNlBZI/XHvfOsHoUdI/AAAAAAAAPDg/ffItTCsQJ78ztuaKYyC7mW6zFw_j0TtpgCK4BGAYYCw/s45-c/IMG_20190222_212513-01.jpeg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="IMG_20190222_212513-01.jpeg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2386
x-xss-protection: 0
date: Fri, 16 Dec 2022 00:26:45 GMT
expires: Thu, 17 Nov 2022 16:46:03 GMT
cache-control: public, max-age=86400, no-transform
age: 10888
etag: "v3c3b"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.widgeo.net/geocompteur/css/city_css.php?c=geocity_rose
200 OK 2.2 kB URL HTTP/2 www.widgeo.net/geocompteur/css/city_css.php?c=geocity_rose
IP
Hash ab9c8a830c75832c593407fc7b429028
b0ac1b359b60c068a5d3e35193336278f7e49990
03e32444dfea543ce6ba6966412ca618377665b02e1eac4dede8926d97e683ed
GET /geocompteur/css/city_css.php?c=geocity_rose HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: text/css;charset=UTF-8
cache-control: public, max-age=604800
expires: Fri, 23 Dec 2022 03:28:10 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kZmoLoBfi%2B24N2PD2LU%2Ft%2BoEZG2tn0fIAR1Af8WRwYtx9OafuOVp3HlUNwgVyXrZ5MTaV0bG2HfNt34xqx6FvC1egVFIgBYSj6jswde6WoNKA1NhusrydP8Aj%2BwCcFus"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453dcb88e0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c
200 OK 2.0 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 987e36f034d079170ec0f71f30d7153e
1437ae261b298e1a4aa2f66f6b41b32dd93fc94b
099658a1b178270d676d5598760ada77dac5e399e5c73e537bfb47ba3d6622b5
GET /a-/AD5-WCmmsgskJGXwuizAtDaLsDuwjlychGf717-xFHczIg=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2039
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Wed, 14 Dec 2022 03:58:47 GMT
cache-control: public, max-age=86400, no-transform
etag: "v24a2"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg
200 OK 1.7 kB URL HTTP/2 2.bp.blogspot.com/-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 3ca675e0655fedbc0a2188cbb234afa8
2c8e15607147f1191fdc2c1e36a88ab4831a78c3
60b1608bc686e7d47d25ce10e7f37950a5dd115c56f42545299bcda6ca84fb5a
GET /-6CJapH-LO2U/T3BQXyK0SpI/AAAAAAAAAA0/-ip6dt991jE/s45-c/3.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="3.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1707
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Wed, 14 Dec 2022 22:11:12 GMT
cache-control: public, max-age=86400, no-transform
etag: "vd"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eb84e6a011a9528eb9a80989e38b9273
0dfd05338986086205c7c7cc834710ecd977c595
7ef7ceaad733fe6d750d693f372ad861326524ee9c8c332b02728d85ae98e5e6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/*
200 OK 1.2 kB URL HTTP/2 3.bp.blogspot.com/-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/*
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 423e44e1f3bc9ca1a9e53e6d39169a6f
148addc1613b225d191d2c8d46985c70d81ae7e8
2daf6ebc1e8581e6dcb816e7f4ef64c3c9f8f42773440f3e5d4c260825dc6432
GET /-6GdEdpO3Gdg/WDIAt5uPizI/AAAAAAAAC48/-Hv8HOF8eF0PnEk8Uyv_XnAWaIF4nKY4gCK4B/s45-c/* HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="*.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1151
x-xss-protection: 0
date: Fri, 16 Dec 2022 03:28:13 GMT
expires: Thu, 15 Dec 2022 02:42:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "vba1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0d73d5422599531ed89c2eb046ae6d8d
aac2f93511367405370fb6d69ec0a404c5903718
7ccd935f876d67f1da32b45f81ec4e81a76d7db490b9407490f6de24d14bed18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c
200 OK 1.9 kB URL HTTP/2 lh3.googleusercontent.com/a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Hash 4a6ddb0ab06a55a944665233057e143a
f0f3d7c859f5206d783e82b0ff0f48fb5e3441f7
2d5aae9caa5fe36a4ea0510adb4d36de1d7e83ceb3c07543882376eca63a3e2d
GET /a-/AD5-WClDhTRx08AJgJF8i9egMnJZ-KPqvFgEoTSBV1FXlQ=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v11f"
expires: Sat, 17 Dec 2022 03:28:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 1893
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash cc81357b14dfc6b779e785f31925d71a
55220b65be824683e0ea0752a7be4d3fae48e079
28f0faae48d5a1faf656fb91aa337fb53836b150cae57fd5f9fd44467e6bf27c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE
200 OK 4.2 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash dffcc95ac2f05220da08a60accb12d7d
1d14320be034c6f7bad646e4e7a446d1ccbca0aa
520d2a43c8eeb16590a2a8b538f34ce166bcb3b23e3d565100ed5872d6987abe
GET /p/AF1QipNWwZDeonv-h87yzNRTUYGU4T8PuLIsEqr_yaJQ=s45-c?key=CJeUyZWt8_K-lgE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2b9b"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 4197
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE
200 OK 5.5 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 214954def0d349df98a04a6d3a8638ac
3770b41d6ba7d798c4b7d3a629230e0231e3acff
3964579f74a9550bbd726706541193eeaceb5db31ca1cf234f29942d1893e3b9
GET /p/AF1QipNCI3gfVvw3moJryrsqQyNwZ4zv6KV1WzCC6oD7=s45-c?key=CI39gaO4suKFyAE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v131c"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 5543
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw
200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 672c6a659f5b4e0fccde03020e6e91c2
bd61f22277929a2132c6cc7e081d87ab5e2a9496
ebac13e4b0796f7e385d84ee6daf306265af10c8b67354790b78d7b2af946dda
GET /p/AF1QipOc5oVmpkwLSuI_Ba2qZh8_sYEUWY0Gt1bpuP7Y=s45-c?key=COKk8_uMmY3xIw HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v271e"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 3391
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE
200 OK 3.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 2aef9032987f0b48a3d42bf9ae5811a3
db4c78d61bc66b106e6163f2ecc4605bf408331c
b5c66faa840338ac9d19262cb06fbc15bfe4f965bbf71b956f6f25b18965b09e
GET /p/AF1QipNB_mfBlRYQachQtwH2U-p7lIXgtlMqL0oVZ4ZZ=s45-c?key=CJfIve-s1IyvsgE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v4"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 3809
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE
200 OK 3.3 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 1377170ceb9a6f6b23761f26fa15ae67
46838ef55fa2bfb9b79b410f0ae68286c08db0e3
6dfc06e20d620704d268bdcd08e805918b19228b081a25542de1454101452ca2
GET /p/AF1QipOEn9dswkY4CumDXosvqWFeexkMpQcqHsM3IIrg=s45-c?key=CMK-n9G43sO93AE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vbe2d"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 3339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE
200 OK 4.4 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 846538a41e9d5e1dcec315a103d57e2b
237d7df220da8aa15cd2c8644bf05d03beed5bb0
4403b2a019bbe8f90dd58478a4b32281ae0024ef9f4bbf6b16b27540fc60cae1
GET /p/AF1QipOjeQnPAhFtBXHRFzTuHvGRFuuRRLaVIQiHqQRK=s45-c?key=CNzb563G_YfV6gE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v6101"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 4423
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE
200 OK 5.2 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash cdaf673bfe7dbc5e729bcfa73bf9ef22
36d5da096e666cb65c0e50f91812441c297ca197
c5d90b055ad482aeae4510e7b7a51d8e003388c94a0e524b41da32002b7bde8b
GET /p/AF1QipMRn3ssADqmxxQw8WyTpbO7ez7yNAtSyzxsLuh_=s45-c?key=CNa_2q_bj_zg8gE HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v323d"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 5177
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh3.googleusercontent.com/p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA
200 OK 4.8 kB URL HTTP/2 lh3.googleusercontent.com/p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA
IP
File type PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Hash 9019a1e07522f0e04d33c5e7dd75f59e
1e23f221a4200e67ce4ac9fe81cd15593ad5a259
6f259a700e64b7ebdbcdc159c28b3f97c8de16827b02c131aac85b25da7561c7
GET /p/AF1QipOEBc78rwMCaw4pbkmN31x4HvwSDk6wgwJ2FH9_=s45-c?key=CJCt4JiI4NP6KA HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v290f"
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: private, max-age=86400, no-transform
content-disposition: inline;filename="Profile picture.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Fri, 16 Dec 2022 03:28:13 GMT
server: fife
content-length: 4825
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.feedburner.com/fb/images/pub/i_heart_fb.gif
200 OK 1.7 kB URL HTTP/1.1 www.feedburner.com/fb/images/pub/i_heart_fb.gif
IP
File type GIF image data, version 89a, 89 x 32\012- data
Hash 9d1a9e12e20db57876534f01de99d1ca
c2ba81d7d1f5189970efabab533b8c3d5ee1990e
bf428aaa348d904fc5a772bd2bc2e1404d6b8e305c1924c8391e397ada7beafd
GET /fb/images/pub/i_heart_fb.gif HTTP/1.1
Host: www.feedburner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/pichu-static
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="pichu-static"
Report-To: {"group":"pichu-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/pichu-static"}]}
Content-Length: 1743
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 16 Dec 2022 03:28:14 GMT
Expires: Fri, 16 Dec 2022 03:28:14 GMT
Cache-Control: public, max-age=0
Last-Modified: Thu, 03 Oct 2019 10:15:00 GMT
Content-Type: image/gif
Age: 0
d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
200 OK 4.4 kB URL HTTP/2 d39f23jfph0ylk.cloudfront.net/buatcoklat.com.gif
IP
File type GIF image data, version 87a, 253 x 43\012- data
Hash 40da375b710fa50b7ac80e6fa6631301
1fb8573a11db47e18dcb9d63b59703698a515d38
4d87f9330df397e20ff54a229705d34c3db2e1cc25c247046aa033b42b2e6482
GET /buatcoklat.com.gif HTTP/1.1
Host: d39f23jfph0ylk.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 4361
last-modified: Sat, 02 Jul 2022 06:39:13 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Dec 2022 03:28:14 GMT
etag: "40da375b710fa50b7ac80e6fa6631301"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vH3Ys-11EjkC22abJTwHHLhMKtAUOCnkauceiGBv4bCND7hHijaPjw==
age: 4165
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=64a9b4b31987ce71c59210d049ae8017
200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=64a9b4b31987ce71c59210d049ae8017
IP
File type ASCII text, with very long lines (18734)
Hash 5d9ef6c207408d4974bfb35aa92cbc14
147cee90708a8c5bfadd53ea27e076994cebb34b
d941978bd425a14bd34f47ccdc0dfc0ec4b20278c94a4f334e32698d3521dcf3
GET /en_US/all.js?hash=64a9b4b31987ce71c59210d049ae8017 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pak-janggut.blogspot.com
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 3616c16740fe9b01d9ba014cfda41982
etag: "6207c047321210465bc13e38f4b44bea"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 16 Dec 2023 00:56:22 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: XZ72wgdAjUl0v7NaqSy8FA==
x-fb-debug: pOk9MpbMgoWURXNi60SZdtniXsd7Ez8EIMJGikcSPOZODNmRbrTzXYO0dBTriy2rnWf1eu2Sfmm76LYro+cJ6Q==
priority: u=3,i
content-length: 86845
x-fb-trip-id: 1904183273
date: Fri, 16 Dec 2022 03:28:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
widgets.amung.us/colored.js
200 OK 3.2 kB URL HTTP/1.1 widgets.amung.us/colored.js
IP
File type ASCII text, with very long lines (8596), with no line terminators
Hash fb2d2d6ae1380dd532a4f653267faf5e
5f1c850f1872fc8b43ec5bb2ebc29a76c77292b9
df88edf6843167ac3284b229fca9e2ef641db2c5b7abce9f638d7fc5d260713f
GET /colored.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:14 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 15 Dec 2022 21:42:12 GMT
etag: W/"639b94b4-2194"
expires: Sat, 17 Dec 2022 02:29:18 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 3536
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77a453ec0b83be51-CPH
pak-janggut.blogspot.com/favicon.ico
200 OK 412 B URL HTTP/1.1 pak-janggut.blogspot.com/favicon.ico
IP
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: pak-janggut.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/search/label/Saiful%20Apek
Cookie: ck_TCM_pop=1; HstCfa1960718=1671161289210; HstCla1960718=1671161289210; HstCmu1960718=1671161289210; HstPn1960718=1; HstPt1960718=1; HstCnv1960718=1; HstCns1960718=1; cj_uid=ls4qRJPC4w3QdVeIYIpU1S8gr6geK6
HTTP/1.1 200 OK
Content-Type: image/x-icon
Expires: Fri, 16 Dec 2022 03:28:14 GMT
Date: Fri, 16 Dec 2022 03:28:14 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 10 Dec 2022 14:53:52 GMT
ETag: W/"31ca276a91db0f797e92e975b9ca1bcbe641ad242c16fba93fa754407f6bad0d"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab50ca87adae787e552d20798f7ae70
517e87351e638266712b284be6627cf147fd578e
1d0520087fefef4170e99bdb8f6bbfc790a6c64b6c318242b222f0564c779fb4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D0520087FEFEF4170E99BDB8F6BBFC790A6C64B6C318242B222F0564C779FB4"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19597
Expires: Fri, 16 Dec 2022 08:54:51 GMT
Date: Fri, 16 Dec 2022 03:28:14 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP
Hash 9cc2a8796f509bd72f28e82ffdb13b5c
dfb31a381aa7f64abfa521e60462f967f69582b2
e678c5d5359e0ea7a958ffa48253990e746d00f364db505791697639425b4e6c
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Dec 2022 03:28:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s4.histats.com/stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1671161289210&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:103523473&@b3:1671161289&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%20Apek%23&@w
200 OK 103 B URL HTTP/1.1 s4.histats.com/stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1671161289210&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:103523473&@b3:1671161289&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%20Apek%23&@w
IP
File type ASCII text, with no line terminators
Hash 52c409da4b52fbf7618a084702caf7d8
a9598b6bb3e52a81fb58cc7e9c93259330190328
785ca56bf949cf747f85cb7c5b894ff2048d46203f8a37a09dcac61f4f98fad3
GET /stats/1960718.php?1960718&@f16&@g1&@h1&@i1&@j1671161289210&@k0&@l1&@mPak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&@n0&@o1000&@q0&@r0&@s4005&@ten-US&@u1280&@b1:103523473&@b3:1671161289&@b4:js15.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%20Apek%23&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:15 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 103
Connection: close
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
301 Moved Permanently 690 B URL HTTP/1.1 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (647)
Hash 8616f8aa72c596e38ade15bf44e92a89
5060a7825f7c9b15338cc922d9b7754157bf4008
51438a532644b1adb87fe85eded95ee47f28a07b2f5357aaa9c8b4e7168f8227
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
Location: https://tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
Server: Microsoft-IIS/10.0
Date: Fri, 16 Dec 2022 03:28:16 GMT
Content-Length: 690
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169949&RD=3483701909457&DIF=2
200 OK 691 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169949&RD=3483701909457&DIF=2
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (648)
Hash 6c20623c914c6f177e9d6ff651c069b2
3b3cb78bbfdb38bc7dac8cc7125705dc73d999f0
98b2d5f6f9de31404539f1ae1425d4a3e257f5612ba2be142ebf4f5942fc7532
GET /bidvertiser.dbm?pid=361547&bid=1169949&RD=3483701909457&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:14 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:14 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
200 OK 0 B URL HTTP/2 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Bottom&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.95044780192201&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:16 GMT
content-length: 0
X-Firefox-Spdy: h2
tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Right&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.5270451477171398&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
200 OK 0 B URL HTTP/2 tags.h12-media.com/v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Right&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.5270451477171398&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/tags.js?placement=4b434a53d7981a49e81903f9d05b6efe&type=sliding&erdal=mercan&size=&appearance=&pname=&debug=&name=From%20Right&code=&freq=&pb=&bref=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&href=undefined&rnd=0.5270451477171398&allowbackup=undefined&sability=undefined&cvfsy=undefined&mmtitw=undefined&bpos=undefined&bposscr=undefined&cdim=undefined&ddim=undefined&clngs=undefined&mdi=undefined&mhi=undefined HTTP/1.1
Host: tags.h12-media.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pak-janggut.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300,private
content-type: application/x-javascript
server: Microsoft-IIS/10.0
x-powered-by: ARR/3.0
date: Fri, 16 Dec 2022 03:28:16 GMT
content-length: 0
X-Firefox-Spdy: h2
s10.histats.com/counters/cc_4005.js
200 OK 10 kB URL HTTP/2 s10.histats.com/counters/cc_4005.js
IP
File type HTML document, ASCII text, with very long lines (21567), with no line terminators
Hash 096cf348f0068d652c2128f18cc46da4
b90081b21984348905e9593393b2110e9dbc4c9f
a876e91a38cad8b3ef87b7c76ca065b4c230fdaec10fd73892ce153e8b36d6ab
GET /counters/cc_4005.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:06:37 GMT
etag: "186401612"
last-modified: Thu, 16 Apr 2020 10:45:32 GMT
x-request-id: 1026788756
content-type: text/javascript
content-encoding: br
x-grace: full
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 10284
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&y=&a=0&d=6.75&v=27&r=3432
200 OK 50 B URL HTTP/1.1 whos.amung.us/pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&y=&a=0&d=6.75&v=27&r=3432
IP
File type ASCII text, with no line terminators
Hash 54958235c8a507239fd2328e147818bd
e8f3ebbbfcf721f8ade1aa7b59dae259e97aec13
cc2f5ea131df145f4ba9cdaf6606138a047fa7a8c89322c21ff5708bceb2f987
GET /pingjs/?k=uweqylw0i29o&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&c=u&x=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&y=&a=0&d=6.75&v=27&r=3432 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:17 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77a453fc2c3ab4f4-OSL
widgets.amung.us/colwid/?c=ff77e82d00ca
200 OK 4.0 kB URL HTTP/1.1 widgets.amung.us/colwid/?c=ff77e82d00ca
IP
File type PNG image data, 116 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 54c64aa8587c69df6f10b0763891b0b4
74f60d1fa9eb41d431dd3fe36d91e0c274ab7608
79d32b58eba104fc11044721004222599f3c6a2769f33ad0b7522f4536c5592c
GET /colwid/?c=ff77e82d00ca HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:18 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
content-disposition: filename=wau-widget.png
expires: Sat, 17 Dec 2022 03:28:18 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
CF-Cache-Status: MISS
Last-Modified: Fri, 16 Dec 2022 03:28:18 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77a453ff981dbe51-CPH
ocsp.sectigo.com/
200 OK 471 B IP
Hash 4beafb95d0a662fa7eb81909b51358ff
c4d7240463ae3f6f8b96286fb35174c34aee6964
e39ff4ed5f0ac4c67cf6618e63360e532fe16a1b27e6d17831ef32ef9658a735
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Dec 2022 03:28:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 14 Dec 2022 23:33:40 GMT
Expires: Wed, 21 Dec 2022 23:33:39 GMT
Etag: "c4d7240463ae3f6f8b96286fb35174c34aee6964"
Cache-Control: max-age=503720,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77a4540109361c06-OSL
cdn.tynt.com/tc.js
200 OK 6.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (647)
Hash 1c19de1014ecbb64bf79594584b7e243
e2ab949e99c448f107245a0a39c10e0b30130e9f
5c80cda6336fe83e049aea16c899b4983fa70744beccddd14d75ee0c178c5c77
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:18 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:21 GMT
vary: Accept-Encoding
etag: W/"62d96951-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 43278
expires: Mon, 19 Dec 2022 03:28:18 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 77a454024f0cb50c-OSL
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek&cu=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 03:28:18 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita&t=Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful%20Apek HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 03:28:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!uweqylw0i29o&dn=TC&cc=1&r=
200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!uweqylw0i29o&dn=TC&cc=1&r=
IP
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!uweqylw0i29o&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sat, 17 Dec 2022 03:28:19 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Fri, 16 Dec 2022 03:28:18 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 03:28:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0&ct=Pak%20Janggut%20Tukang%20Cerita HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 03:28:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0
204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!uweqylw0i29o&lm=0&ts=1671161295441&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 16 Dec 2022 03:28:19 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15091f4c-2105-4edd-b96f-b5940e3ba64a.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15091f4c-2105-4edd-b96f-b5940e3ba64a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6687764dac3b78ac0875863d82d1c43
cf0b4f1a944611c48d6880fad9e6e8f59f4ede85
891d55811df9c641d6661226a40eaed5ca69478d13037c6d36d4b05e66cbd09a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15091f4c-2105-4edd-b96f-b5940e3ba64a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7626
x-amzn-requestid: c645ee0a-505b-4d4c-92d9-97e6478a6f6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dNRNQHhsoAMFR1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639b9587-6d1dbf0f75a3eb86447ea1ed;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 21:45:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nAAGytoUBz85kCx2laWIg2Uph14YBoBrQsXCsF9giKy0LaxEbuUy8Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 22:15:46 GMT
age: 18753
etag: "cf0b4f1a944611c48d6880fad9e6e8f59f4ede85"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169954&RD=9750618337753&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=9750618337753&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169954&RD=9750618337753&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=9750618337753&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
IP
GET /BidVertiser.dbm?pid=361547&bid=1169954&RD=9750618337753&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=9750618337753&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:12 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:12 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:12 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 4161
CONNECTION: Close
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1167641&RD=0549834659799&DIF=2
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1167641&RD=0549834659799&DIF=2
IP
GET /bidvertiser.dbm?pid=361547&bid=1167641&RD=0549834659799&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:14 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:14 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
t.dtscout.com/i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&j=
200 OK 0 B URL HTTP/2 t.dtscout.com/i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&j=
IP
GET /i/?l=http%3A%2F%2Fpak-janggut.blogspot.com%2Fsearch%2Flabel%2FSaiful%2520Apek%23&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:15 GMT
content-type: application/javascript
x-s: mtl3
set-cookie: m=1; Domain=dtscout.com; Expires=Fri, 16-Dec-2022 04:51:35 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Fri, 16-Dec-2022 07:28:15 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1671161295; Domain=dtscout.com; Expires=Sun, 26-Mar-2023 03:28:15 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.584
expires: Fri, 16 Dec 2022 03:28:14 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cf7O6HK5v1HbFJ8v%2B%2BhoYQX3Iu3wqV0TzkxH6%2BrcSI2D%2B1reAbULpELg0EgzbWOmn3k%2BCIegFZOwc6vxlMXTT9CXLl13inIpCmRm0Yz2%2FZGDMVhbiRF16DT5%2BxbXRSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453ee09ea23d1-LHR
content-encoding: br
X-Firefox-Spdy: h2
inklinkor.com/tag.min.js
200 OK 0 B IP
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:11 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: f266d34758db8667050f94b0f76441ac
cache-control: max-age=86400
last-modified: Thu, 15 Dec 2022 12:49:14 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 17 Dec 2022 01:54:31 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 5620
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t2Vx4C4iEKS0oKB%2B4zMFl56QaeMxVS0kTjenfMjQ6CmDAyXz3l55svCoehtrKUVRzcQ8z8ADdUQEYOsbBsJo2XuqnY0AZ%2Fr5phz4%2FTe6UdGlRx6xKNjU4YERYBWhCmbm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77a453da4d611c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.widgeo.net/hitparade.php?pagexiti=geocity_rose
200 OK 0 B URL HTTP/2 www.widgeo.net/hitparade.php?pagexiti=geocity_rose
IP
GET /hitparade.php?pagexiti=geocity_rose HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:12 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=180
expires: Fri, 16 Dec 2022 03:31:10 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xWvr266DOIxGx1%2Fc%2Fcnqm4WIob1zVJkM5uwNEVFmRCzAjYD%2BowdLwrDIuMP3%2FAA3jcwgMvthdcgvIOn%2B0X8d1V7tVp%2BclOl130%2BVa7gRwKwlko%2B99A%2F5nWUxC2vNKdfQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453da7fee0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.widgeo.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Dec 2022 03:28:12 GMT
date: Fri, 16 Dec 2022 03:28:12 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169954&RD=7883592798428&DIF=2
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169954&RD=7883592798428&DIF=2
IP
GET /bidvertiser.dbm?pid=361547&bid=1169954&RD=7883592798428&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:14 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:14 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
www.widgeo.net/tcm.js
200 OK 0 B IP
GET /tcm.js HTTP/1.1
Host: www.widgeo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Dec 2022 03:28:11 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3693
cache-control: public, max-age=604800
expires: Sat, 17 Dec 2022 08:08:57 GMT
last-modified: Wed, 12 Oct 2022 00:08:47 GMT
vary: Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 501553
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AwZHCg%2FNHCo1egj9iyNz4Iev4eGc80uqvzYMCxKUu6rTY4hS7TFDTwuPBzEXrdnTt1jxzSqMok0Z5Yy5gALR9G%2BNlUdKf45OfYVO2jQUirnjYBP9ytUfscM6WHhND1Xi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77a453da7fed0b55-OSL
content-encoding: br
X-Firefox-Spdy: h2
bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=3065138677925&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3065138677925&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/BidVertiser.dbm?pid=361547&bid=1169953&RD=3065138677925&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3065138677925&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful
IP
GET /BidVertiser.dbm?pid=361547&bid=1169953&RD=3065138677925&DIF=1&bd_ref_v=pak-janggut.blogspot.com&tref=1&win_name=null&docref=&jsrand=3065138677925&js1loc=-&loctitle=%20Pak%20Janggut%20Tukang%20Cerita%3A%20Saiful HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:13 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:13 GMT
Set-Cookie: bdv_c12p=244; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:13 GMT
bdv_c12p=1_1_1; domain=.bidvertiser.com; path=/; expires=Sat, 17-Dec-2022 03:28:13 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/html; charset=utf-8
Content-Len: 7615
CONNECTION: Close
bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169953&RD=0982768899262&DIF=2
200 OK 0 B URL HTTP/1.1 bdv.bidvertiser.com/bidvertiser.dbm?pid=361547&bid=1169953&RD=0982768899262&DIF=2
IP
GET /bidvertiser.dbm?pid=361547&bid=1169953&RD=0982768899262&DIF=2 HTTP/1.1
Host: bdv.bidvertiser.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pak-janggut.blogspot.com/
HTTP/1.1 200 OK
Date: Friday, 16-Dec-2022 03:28:14 GMT
Cache-Control: no-store
Last-Modified: Thursday, 16-Dec-2021 03:28:14 GMT
P3P: policyref="http://www.bidvertiser.com/bdv/bidvertiser/p3p.xml", CP="NOI DEV PSA PSD IVA OTP OUR OTR IND OTC"
Content-Type: text/javascript; charset=utf-8
Content-Len: 0
CONNECTION: Close
172.217.21.161
188.114.99.224
139.45.197.234
141.101.120.11
46.105.201.240
190.2.139.23
31.13.72.12
113.23.169.115
149.56.240.132
23.36.77.32