r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3435
Expires: Fri, 09 Dec 2022 09:43:04 GMT
Date: Fri, 09 Dec 2022 08:45:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5269
Expires: Fri, 09 Dec 2022 10:13:38 GMT
Date: Fri, 09 Dec 2022 08:45:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 08:08:18 GMT
content-type: application/json
age: 2251
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6816
Expires: Fri, 09 Dec 2022 10:39:25 GMT
Date: Fri, 09 Dec 2022 08:45:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WpfTqj3XrCWQaDdMZqnTnehisLBLCJzfFwQua5zbJL5kYd8YnQ6Alolo7lBDypbaF08Ad3S9YLM=
x-amz-request-id: M4R7351GJHBYMEVF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 07:50:10 GMT
age: 3339
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
jekethek.blogspot.com/
172.217.21.161200 OK 19 kB IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (526)
Hash a9cc708ceec772dd69c5e4089fdeb737
f48bb8ff932707fbfcef8043dcd2c44fdecd550e
1b2625cffce5aed945a4c60ce230e3efef703899c45972c2cc0e94282d48cda0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 09 Dec 2022 08:45:49 GMT
Date: Fri, 09 Dec 2022 08:45:49 GMT
Cache-Control: private, max-age=0
Last-Modified: Mon, 21 Nov 2022 23:40:28 GMT
ETag: W/"a94b649541e292ee249142291fa43a534293ea98e5ee1c8cfbd852fea58a5be6"
X-Robots-Tag: all,noodp
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 19196
Server: GSE
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 08:45:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.2.6/jquery.min.js
142.250.74.10200 OK 17 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.2.6/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (12391)
Hash c0d85c55ec7da5fcf143d3a56fbdd997
f4f6a44d9a8f4821f134248003e89c954ba12a51
2c324c16e367e7855e20a6d048a5ed561acfafc44daa42fcfbd2b6928d6f5cce
GET /ajax/libs/jquery/1.2.6/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 16841
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Dec 2022 14:43:36 GMT
Expires: Wed, 06 Dec 2023 14:43:36 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 237733
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
apis.google.com/js/plusone.js
142.250.74.78200 OK 21 kB URL HTTP/1.1 apis.google.com/js/plusone.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Access-Control-Allow-Origin: *
Content-Security-Policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="gapi-team"
Report-To: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
Timing-Allow-Origin: *
Content-Length: 20984
Date: Fri, 09 Dec 2022 08:45:49 GMT
Expires: Fri, 09 Dec 2022 08:45:49 GMT
Cache-Control: private, max-age=1800, stale-while-revalidate=1800
ETag: "34fae0e5dab49917"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
jekethek.blogspot.com/js/cookienotice.js
172.217.21.161200 OK 2.0 kB URL HTTP/1.1 jekethek.blogspot.com/js/cookienotice.js
IP 172.217.21.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Fri, 09 Dec 2022 08:45:49 GMT
Expires: Fri, 16 Dec 2022 08:45:49 GMT
Cache-Control: public, max-age=604800
Last-Modified: Thu, 08 Dec 2022 21:55:30 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
datacoding.googlecode.com/files/like.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/1.1 datacoding.googlecode.com/files/like.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 45b5ab265151fe9bf031198b4e767969
c41420b91c0c5d98aca11546bd5abfa6bef7f160
4a3c856776df42d638f85e28811ccec394706f7d17fb8ca66afa5c8bc4a857b8
GET /files/like.js HTTP/1.1
Host: datacoding.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1574
Date: Fri, 09 Dec 2022 08:45:49 GMT
tcr.tynt.com/javascripts/Tracer.js?user=bndEq8rAKr377VadbiUzgI
172.64.151.83200 OK 16 kB URL HTTP/1.1 tcr.tynt.com/javascripts/Tracer.js?user=bndEq8rAKr377VadbiUzgI
IP 172.64.151.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1213)
Hash a384492ef8f3bb035fc8ecba870e86d3
a6da9b212e2d640261cc1c1a5c98096aef5d8778
9232a4a99aa4630732414441f411afe936b0e95047f3d018e46c40f211fc1ede
GET /javascripts/Tracer.js?user=bndEq8rAKr377VadbiUzgI HTTP/1.1
Host: tcr.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:49 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-b4ff"
content-encoding: gzip
CF-Cache-Status: HIT
Age: 196728
Expires: Mon, 12 Dec 2022 08:45:49 GMT
Cache-Control: public, max-age=259200
Server: cloudflare
CF-RAY: 776c77834a480b06-OSL
datacoding.googlecode.com/files/jquery.cycle.min.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/1.1 datacoding.googlecode.com/files/jquery.cycle.min.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 8abc1b30927c23ec3cce459cda7daaaa
e95be4b4801766a6239e4a01f3f742710523d3b3
48b406fbe9327960ad68b10ecb2a0cdf9d597c76b036bc9b1ee87d42f4da2f18
GET /files/jquery.cycle.min.js HTTP/1.1
Host: datacoding.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1586
Date: Fri, 09 Dec 2022 08:45:49 GMT
www.blogger.com/static/v1/widgets/720808247-widgets.js
216.58.207.233200 OK 30 kB URL HTTP/1.1 www.blogger.com/static/v1/widgets/720808247-widgets.js
IP 216.58.207.233:0
File type HTML document, ASCII text, with very long lines (2164)
Hash e2ddb8634d7875599dfdb12857263acd
f40d1c4616910325afbfb1463511f9af1f078398
9c213a2e63a1d4f31fbf17227f549642f7086db3c78e4159743a6b4317f2d87b
GET /static/v1/widgets/720808247-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 29857
Date: Fri, 09 Dec 2022 08:45:49 GMT
Expires: Sat, 09 Dec 2023 08:45:49 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Sat, 30 Jun 2012 04:06:11 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 441b529e2ca0056bb63de39cc6799309
a04959efdd659a6f23c253a2fe72fca75831da45
b8f306586f1ad4c1ce7fb8486ae25638e5ec06304af8bdf6f0022af290246b02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a7a8eecec19b58f9286e9ce32471f3ba
f9e32a22a8ac6b1e5b29b91444183990b6e4c83e
69b0a2bff905b13caa305b1fcbb2db96a7f3bc60ccb4fba45b169e9ee86da4c6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 441b529e2ca0056bb63de39cc6799309
a04959efdd659a6f23c253a2fe72fca75831da45
b8f306586f1ad4c1ce7fb8486ae25638e5ec06304af8bdf6f0022af290246b02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 14:01:43 GMT
expires: Wed, 06 Dec 2023 14:01:43 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 19:52:21 GMT
content-type: text/css
age: 240247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.78200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 09 Dec 2022 08:45:50 GMT
expires: Fri, 09 Dec 2022 08:45:50 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/2092647672-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2092647672-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 689971018982703ab88ce528368b9190
be9697d57e5c19d36c52aacd8b04a6a159a2f3bd
cf8b513cfd596cffc3a7e456eccc198b8e409f5aaf624d5dbeecdd748dce0cef
GET /static/v1/widgets/2092647672-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56341
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 02:10:45 GMT
expires: Fri, 08 Dec 2023 02:10:45 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 00:55:10 GMT
content-type: text/javascript
age: 110105
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfish-mikeportal.googlecode.com/files/lightbox.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/lightbox.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 9c70803214d55d91fad2bb8c17769205
a00f00fe4bd18a0b83774775f233f94d4957cdd3
8878af7939d3a1a83c91667976c7c2b5296402305ef002adbc0f1bdfd8ee2d8c
GET /files/lightbox.js HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1578
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fl1ckrr.googlecode.com/files/jflickrfeed.min.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 fl1ckrr.googlecode.com/files/jflickrfeed.min.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash d7e2a63ebc83696efe1366bd1ce397eb
9954b7b76e88732823c5efcb955748ec052a01ed
3feb28da89548cd446d3a6def6b3d03132eb41876cc3eab6f9213282a17677b1
GET /files/jflickrfeed.min.js HTTP/1.1
Host: fl1ckrr.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1585
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfish-mikeportal.googlecode.com/files/lightbox.css
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/lightbox.css
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash e30be74cd76277da7b74a1b0079ebea4
44f2438d67588fb670f20f810944aa4532611991
b9fd1987bf8c796dc43f5134f245022d405c4703e837f48fa6fac91b13422a4f
GET /files/lightbox.css HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1579
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfish-mikeportal.googlecode.com/files/jcarouse.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/jcarouse.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 2065f1201ef1a2194cc7e43f6bb99c61
4f1b02d5af203e2c456b5fdf47838f36e131574b
d5e6c57c7738e63ee5adc5143c57adb2a2abe4e7898daaf4bcaf8f8fcb5e0609
GET /files/jcarouse.js HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1578
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/ga.js
142.250.74.110200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Fri, 09 Dec 2022 07:06:05 GMT
Expires: Fri, 09 Dec 2022 09:06:05 GMT
Cache-Control: public, max-age=7200
Age: 5985
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
superfish-mikeportal.googlecode.com/files/superfish.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/superfish.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash f4fffc3a24c46bf1b0ab555bd27c0d35
4f3921252ef2a32cca0efc8b2ee3aeeccb965f32
9dceeb4adaad24a6c0b6bc73ac2163737ddbd2403ee506fc1c3868152971e92f
GET /files/superfish.js HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1579
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfish-mikeportal.googlecode.com/files/innerfade.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/innerfade.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 988ddbd2f5a919d54e4a60629ce76549
22f7ad043243869b3ff8b9134b52a162b41855d2
c78c37317cee92d4ef6c7f5c64ce75dcb06217bd9ca412eb37bf06d1e50c2cd7
GET /files/innerfade.js HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1579
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i49.tinypic.com/2uu1e.png
143.204.55.72301 Moved Permanently 0 B URL HTTP/1.1 i49.tinypic.com/2uu1e.png
IP 143.204.55.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2uu1e.png HTTP/1.1
Host: i49.tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 301 Moved Permanently
Content-Length: 0
Connection: keep-alive
Date: Fri, 09 Dec 2022 01:50:02 GMT
Location: http://tinypic.com/images/goodbye.jpg
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wnROPZ7p0mc4F3900qNCD16TqreoioSVMjc3D8LziE---A9hyXcjkA==
Age: 24949
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 441b529e2ca0056bb63de39cc6799309
a04959efdd659a6f23c253a2fe72fca75831da45
b8f306586f1ad4c1ce7fb8486ae25638e5ec06304af8bdf6f0022af290246b02
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 51 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:0
File type ASCII text, with very long lines (580)
Hash a5aeb8dce52dc81116cc434ff43d3f63
c74721ddc9b87ba5a9deb2a361f44c9293f928b7
333fbf33d55990f58551357644398b7b571c25cd56bc25ad3ea7270571f96118
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 04 Dec 2022 23:57:19 GMT
expires: Mon, 04 Dec 2023 23:57:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 377311
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
superfish-mikeportal.googlecode.com/files/innerfade.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/2 superfish-mikeportal.googlecode.com/files/innerfade.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 988ddbd2f5a919d54e4a60629ce76549
22f7ad043243869b3ff8b9134b52a162b41855d2
c78c37317cee92d4ef6c7f5c64ce75dcb06217bd9ca412eb37bf06d1e50c2cd7
GET /files/innerfade.js HTTP/1.1
Host: superfish-mikeportal.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1579
date: Fri, 09 Dec 2022 08:45:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a2162ab9f41163395672618bfa6adde4
7516b498535a4e9fabba00bfc2c98f8c48dca9ec
c09038276c4a782ac190154fdb5a49a7044a8815fecb6a283779d881b3a52090
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
scr.kliksaya.com/js-ad.php?zid=58078
192.155.108.149200 OK 496 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=58078
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (496), with no line terminators
Hash 5a91762222ef217f1acb6d819783e7c6
5199c64c3b95ea2b0e410f1cc451c18708e581be
1367b32a659337f5fb3fb3b86e676bd45e2d4c72a08d4d93f35ac73184d09cb2
GET /js-ad.php?zid=58078 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 496
content-type: text/html; charset=utf-8
date: Fri, 09 Dec 2022 08:45:49 GMT
server: nginx
set-cookie: sid=e1f2c700-779d-11ed-bebd-7bb9f98aa6d9; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
scr.kliksaya.com/js-ad.php?zid=58069
192.155.108.149200 OK 496 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=58069
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (496), with no line terminators
Hash 8cf86ce3215c2a1b5e313b1eef15da72
0e8a3e549457cbf4f8f76575bf0c0bdb33b5b74b
81cef890576c2d22c2933ada953addcea74ea6f66669ddeae1090ee56e55cbd5
GET /js-ad.php?zid=58069 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 496
content-type: text/html; charset=utf-8
date: Fri, 09 Dec 2022 08:45:49 GMT
server: nginx
set-cookie: sid=e1f2c70a-779d-11ed-bf2a-7bb9ccd52d52; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
scr.kliksaya.com/js-ad.php?zid=25704
192.155.108.149200 OK 496 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=25704
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (496), with no line terminators
Hash 1a13a0ac4fbd0e1b473441094597c148
e473c69c064c1f450aedb905b6a5d3526d921ca1
9dce2572f7f9bd83038596f945fb87ab36fe4e21ca9b20ec885d616d35afb5bc
GET /js-ad.php?zid=25704 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 496
content-type: text/html; charset=utf-8
date: Fri, 09 Dec 2022 08:45:49 GMT
server: nginx
set-cookie: sid=e1f2c5ca-779d-11ed-a2d6-7bb9c556e8c0; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=904224618&utmhn=jekethek.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&utmhid=564068298&utmr=-&utmp=%2F&utmht=1670575549373&utmac=UA-12472254-1&utmcc=__utma%3D172797240.1454059284.1670575549.1670575549.1670575549.1%3B%2B__utmz%3D172797240.1670575549.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2028417054&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
142.250.74.110200 OK 35 B URL HTTP/1.1 www.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=904224618&utmhn=jekethek.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&utmhid=564068298&utmr=-&utmp=%2F&utmht=1670575549373&utmac=UA-12472254-1&utmcc=__utma%3D172797240.1454059284.1670575549.1670575549.1670575549.1%3B%2B__utmz%3D172797240.1670575549.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2028417054&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~
IP 142.250.74.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=904224618&utmhn=jekethek.blogspot.com&utmcs=UTF-8&utmsr=1280x1024&utmvp=1280x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&utmhid=564068298&utmr=-&utmp=%2F&utmht=1670575549373&utmac=UA-12472254-1&utmcc=__utma%3D172797240.1454059284.1670575549.1670575549.1670575549.1%3B%2B__utmz%3D172797240.1670575549.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=2028417054&utmredir=1&utmu=qAAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Date: Fri, 09 Dec 2022 08:45:50 GMT
Pragma: no-cache
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Cache-Control: no-cache, no-store, must-revalidate
Last-Modified: Sun, 17 May 1998 03:00:00 GMT
X-Content-Type-Options: nosniff
Content-Type: image/gif
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 35
tinypic.com/images/goodbye.jpg
143.204.55.64200 OK 16 kB URL HTTP/1.1 tinypic.com/images/goodbye.jpg
IP 143.204.55.64:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x300, components 3\012- data
Hash 32af06ac4b80d728f7e4c8780eb6b6d7
dd3198f4361e94f2c3606474e04a629e42402d02
f610dc2752e938d77dab1c4e9fb1f0f7f53b25e527d130ce4e034b7de09da053
GET /images/goodbye.jpg HTTP/1.1
Host: tinypic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 15616
Connection: keep-alive
Last-Modified: Wed, 18 Sep 2019 21:23:53 GMT
Server: AmazonS3
Date: Fri, 09 Dec 2022 05:44:26 GMT
ETag: "32af06ac4b80d728f7e4c8780eb6b6d7"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s6bMAxx4dmeFmgfnX5Ao3kQXf0bi6CfeodP96sjUNuUK3HvroFBzoQ==
Age: 10885
scr.kliksaya.com/js-ad.php?zid=26122
192.155.108.149200 OK 496 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=26122
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (496), with no line terminators
Hash db2cb43779689509e724c01a2ea2d437
9a6578f1e50813ea30c08d27278dcb0d4b862018
2beb4d00a1e41ee79151887790d6a80e17fd1c9e1ef8766c0bc9f78bd2bc3753
GET /js-ad.php?zid=26122 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 496
content-type: text/html; charset=utf-8
date: Fri, 09 Dec 2022 08:45:50 GMT
server: nginx
set-cookie: sid=e1f661c6-779d-11ed-9946-7bb96d7a0db9; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 08:07:55 GMT
age: 2275
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
datacoding.googlecode.com/files/jquery.cycle.min.js
173.194.222.82404 Not Found 1.6 kB URL HTTP/1.1 datacoding.googlecode.com/files/jquery.cycle.min.js
IP 173.194.222.82:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 8abc1b30927c23ec3cce459cda7daaaa
e95be4b4801766a6239e4a01f3f742710523d3b3
48b406fbe9327960ad68b10ecb2a0cdf9d597c76b036bc9b1ee87d42f4da2f18
GET /files/jquery.cycle.min.js HTTP/1.1
Host: datacoding.googlecode.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=UTF-8
Referrer-Policy: no-referrer
Content-Length: 1586
Date: Fri, 09 Dec 2022 08:45:50 GMT
www.blogger.com/dyn-css/authorization.css?targetBlogID=1465942711226211282&zx=71282a54-bdcc-4a08-8543-a8174c092e8f
216.58.207.233200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=1465942711226211282&zx=71282a54-bdcc-4a08-8543-a8174c092e8f
IP 216.58.207.233:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=1465942711226211282&zx=71282a54-bdcc-4a08-8543-a8174c092e8f HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 09 Dec 2022 08:45:50 GMT
last-modified: Fri, 09 Dec 2022 08:45:50 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogtopsites.com/v_55270.gif
54.205.85.227200 OK 193 B URL HTTP/1.1 www.blogtopsites.com/v_55270.gif
IP 54.205.85.227:0
File type GIF image data, version 89a, 80 x 15\012- data
Hash 6ceab8a017ee8ce738c6425190ac5b28
6301da98e7cc5a939700d45921bc1c14178cf08b
202337154ebcf752690483bad1000a2ed930ea44700ba971d5aa0c96a05ac7a2
GET /v_55270.gif HTTP/1.1
Host: www.blogtopsites.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:50 GMT
Content-Type: image/gif
Content-Length: 193
Connection: keep-alive
Server: Apache
pr.prchecker.info/getpr.php?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2
67.227.215.171301 Moved Permanently 306 B URL HTTP/1.1 pr.prchecker.info/getpr.php?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2
IP 67.227.215.171:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 38d3e306e5a4fb41e768c7b8353c52b7
6c5a487cad21ef4e4d47476d05649d246e3328ba
c240f6c188a3c8c29d0fc0c01a42284766152c4e48f6ec0cde73a7d8b2c33759
GET /getpr.php?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2 HTTP/1.1
Host: pr.prchecker.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 08:45:49 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 306
Connection: keep-alive
Location: https://pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2
Expires: Tue, 07 Feb 2023 08:45:49 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
scr.kliksaya.com/js-ad.php?zid=158131
192.155.108.149302 Found 11 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=158131
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /js-ad.php?zid=158131 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 09 Dec 2022 08:45:50 GMT
location: https://mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSgSoAJzWRthkip73jcdiP7A6oHN8oMzrQeE8yZx9vcHmuyV0SLQdhK9xWLdeHwhSIMAjJsXXh5nVIgX6ADzMYd4XKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGlc-L6dHYU5vE_aXZddds57rij_eNYVig1P1UzkytgFvsM8Ck_4t1lPGgdnIC8XBGu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
server: nginx
set-cookie: sid=e1f2ae1e-779d-11ed-9515-7bb9daa56e1c; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
scr.kliksaya.com/js-ad.php?zid=105455
192.155.108.149302 Found 11 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=105455
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /js-ad.php?zid=105455 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Fri, 09 Dec 2022 08:45:50 GMT
location: https://mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSsnaqEEbefvZiwKACw4rj9RET6x8AhsqRSHDOuSifAn4CTx-oEOAmSRGd-Yz52OBEIJmZ6WIobY6FX4rpQq6gJkXKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGTVYZ2GTbPHVvZFZCzmi5C65sm0wCmu9oYSLa5_NoymmvAFH4UbhEts-31L3rWDAAu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
server: nginx
set-cookie: sid=e1f2adba-779d-11ed-a268-7bb9c063bb01; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Fri, 09 Dec 2022 07:51:52 GMT
Expires: Fri, 23 Dec 2022 07:51:52 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 3238
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1406
Cache-Control: max-age=89068
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:50 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:30:18 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
scr.kliksaya.com/js-ad.php?zid=105453
192.155.108.149200 OK 497 B URL HTTP/1.1 scr.kliksaya.com/js-ad.php?zid=105453
IP 192.155.108.149:0
ASN #29066 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (497), with no line terminators
Hash 02140278b3e56a862479fccc66c10ac2
34553ab78a5c7a6c8f4dae23849b7678da60fa95
292ff7bc3273786b9305a59300d528a583e89aee70403eae96444f5dda6c1717
GET /js-ad.php?zid=105453 HTTP/1.1
Host: scr.kliksaya.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 497
content-type: text/html; charset=utf-8
date: Fri, 09 Dec 2022 08:45:50 GMT
server: nginx
set-cookie: sid=e21ca3cc-779d-11ed-af72-7bb9b6e5298a; path=/; domain=.kliksaya.com; expires=Wed, 27 Dec 2090 11:59:57 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e272f3c248d98cc9fd3fd9b67fc4c49c
2ce3bd2fdb34a4f97e29b71dbbdea1a3011c67da
c18684d439b4712f478b6ba015f97d7134452e82351d2cacaaf3f79a9c0308e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C18684D439B4712F478B6BA015F97D7134452E82351D2CACAAF3F79A9C0308E2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17142
Expires: Fri, 09 Dec 2022 13:31:32 GMT
Date: Fri, 09 Dec 2022 08:45:50 GMT
Connection: keep-alive
adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961
103.30.145.12301 Moved Permanently 169 B URL HTTP/1.1 adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961
IP 103.30.145.12:0
ASN #46050 PT JC Indonesia
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751
GET /show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961 HTTP/1.1
Host: adsensecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Fri, 09 Dec 2022 08:45:50 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961
push.services.mozilla.com/
34.218.164.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.164.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sXYD2DjzzqXEsiwA9qKCfw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7YI5VEkZWOCgNv18nzRoEAlJzPE=
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 05ca7bb5c72d0b027add77c4f39e6850
23b8627fc0768e1da94afedee9fc610c8150770c
cf3081d784cad56d974346030ea63930834f773b8c82c3181b00f68f0e71056d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:50 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 07:25:44 GMT
Expires: Thu, 15 Dec 2022 07:25:43 GMT
Etag: "23b8627fc0768e1da94afedee9fc610c8150770c"
Cache-Control: max-age=512992,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776c7788df86b506-OSL
jekethek.blogspot.com/feeds/comments/default?alt=json-in-script&callback=showrecentcomments
172.217.21.161200 OK 6.5 kB URL HTTP/1.1 jekethek.blogspot.com/feeds/comments/default?alt=json-in-script&callback=showrecentcomments
IP 172.217.21.161:0
File type ASCII text, with very long lines (44703)
Hash e1b4fd9f79921df6a2717bead55124f6
bcf6a38825f68ae3c9a9ad4da06dd9e431dfa05a
d7ca27106d26fb1f0bf1f39963a1370b23353809ec17bb8e7360df7afd95a17d
GET /feeds/comments/default?alt=json-in-script&callback=showrecentcomments HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"7a66827c1f6f1438e1888755e6a26acc385296dd7b6226d67797cd5c116c8e04"
Date: Fri, 09 Dec 2022 08:45:50 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Fri, 09 Dec 2022 08:45:51 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Sun, 20 Nov 2022 15:28:44 GMT
Content-Encoding: gzip
Content-Length: 6522
X-Frame-Options: SAMEORIGIN
pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2
67.227.215.171200 OK 540 B URL HTTP/2 pr.prchecker.info/buts/image2.gif?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2
IP 67.227.215.171:0
File type GIF image data, version 89a, 88 x 31\012- data
Hash afd64d43a8c06c152fe67941177db715
f06d4df5495c6af63cbf20831f05e5c8a0694556
6f5bbc9fc3d49ff3d9d1bf094bb57b2c9cc51ddcd6c67d28d7b914669f715032
GET /buts/image2.gif?codex=aHR0cDovL2pla2V0aGVrLmJsb2dzcG90LmNvbQ==&tag=2 HTTP/1.1
Host: pr.prchecker.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 08:45:50 GMT
content-type: image/gif
content-length: 540
last-modified: Mon, 21 Jun 2021 15:56:55 GMT
expires: Tue, 07 Feb 2023 08:45:50 GMT
cache-control: max-age=5184000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: STALE
x-server-powered-by: Engintron
accept-ranges: bytes
X-Firefox-Spdy: h2
adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F
103.30.145.12301 Moved Permanently 169 B URL HTTP/1.1 adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F
IP 103.30.145.12:0
ASN #46050 PT JC Indonesia
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 0f952b73d3f5586637ea9a5a789d48f4
b29aff4ffa1d4decd77db5160f920e1c6417e5e9
69d11528ee32902d0c47ed215877f0610399536f755db03ed02a77ecedd74751
GET /show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F HTTP/1.1
Host: adsensecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.20.1
Date: Fri, 09 Dec 2022 08:45:50 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: https://adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 05ca7bb5c72d0b027add77c4f39e6850
23b8627fc0768e1da94afedee9fc610c8150770c
cf3081d784cad56d974346030ea63930834f773b8c82c3181b00f68f0e71056d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 07:25:44 GMT
Expires: Thu, 15 Dec 2022 07:25:43 GMT
Etag: "23b8627fc0768e1da94afedee9fc610c8150770c"
Cache-Control: max-age=512991,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776c7788df4d0b06-OSL
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSgSoAJzWRthkip73jcdiP7A6oHN8oMzrQeE8yZx9vcHmuyV0SLQdhK9xWLdeHwhSIMAjJsXXh5nVIgX6ADzMYd4XKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGlc-L6dHYU5vE_aXZddds57rij_eNYVig1P1UzkytgFvsM8Ck_4t1lPGgdnIC8XBGu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSgSoAJzWRthkip73jcdiP7A6oHN8oMzrQeE8yZx9vcHmuyV0SLQdhK9xWLdeHwhSIMAjJsXXh5nVIgX6ADzMYd4XKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGlc-L6dHYU5vE_aXZddds57rij_eNYVig1P1UzkytgFvsM8Ck_4t1lPGgdnIC8XBGu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSgSoAJzWRthkip73jcdiP7A6oHN8oMzrQeE8yZx9vcHmuyV0SLQdhK9xWLdeHwhSIMAjJsXXh5nVIgX6ADzMYd4XKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGlc-L6dHYU5vE_aXZddds57rij_eNYVig1P1UzkytgFvsM8Ck_4t1lPGgdnIC8XBGu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 09 Dec 2022 08:45:51 GMT
content-length: 0
set-cookie: rhid=82515697147; Max-Age=15552000; Expires=Wed, 07-Jun-2023 08:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfXuYhr2StkPsm4I2ubK1W8njXBiV0nt-0ybWtXNdV5ft0ME_OwOme7Og&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
X-Firefox-Spdy: h2
mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSsnaqEEbefvZiwKACw4rj9RET6x8AhsqRSHDOuSifAn4CTx-oEOAmSRGd-Yz52OBEIJmZ6WIobY6FX4rpQq6gJkXKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGTVYZ2GTbPHVvZFZCzmi5C65sm0wCmu9oYSLa5_NoymmvAFH4UbhEts-31L3rWDAAu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
108.168.193.189302 Found 0 B URL HTTP/2 mybettermb.com/aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSsnaqEEbefvZiwKACw4rj9RET6x8AhsqRSHDOuSifAn4CTx-oEOAmSRGd-Yz52OBEIJmZ6WIobY6FX4rpQq6gJkXKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGTVYZ2GTbPHVvZFZCzmi5C65sm0wCmu9oYSLa5_NoymmvAFH4UbhEts-31L3rWDAAu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs96fzq49jFkHXa3dDnCBF-q5XEuPzWq_Ou9UWXoti0TOP_-5cgJn_QpsVVH-ImtJpPaG_Nh80WMmwqfTqqBykvhwGVatJqgR1xMoDKoyvP4nOUq_FGGVOyllxlOmzgR5fh3nQoQZVtH1UcHY6z5T2K7NFT_4ZRcycYiCMsr_ulNOYaCn805125FSZYRDbahPCgt6xMweQPe7RZORWTM9PNYIHAgSOaIlL2FbPQm9updSqrRet_i-QysuCuC7Ai3vVz-utPwUQLmck-mOVqqPo8313Gt8Za9yVtUvkA9QjrVIJ4PMjbG_xrO_OECgwsDFXOROYHTTuoT3isQ-YlreW2CQNeHbvGrF9q-Z5VKlx-z0QpcFoxRNCl6CTNpuoCwlSGGcf0bhH61xZ94rN6UFfnY2jYMB49itlXPe2RBTq8sCdk5eLPcnbcS9ijjSYBMdpCETWnZXPrR37tL2ZaD71U_ZzuC2-3TlK-7-GhmoL-fUk-SYV1Qbqjetls_HxzCmehbs4uOTzzleXNmWXsaD02FQizA9sUQkHL4lOtS1Tw--xxcR-VLxRCgkeUy3rx5RMAfgQ7uj6UnBsleQ31WVEj4xDIIvMSsDK2pgcb6J1m-Pz06VLN4U6PEbJ1PALLUd_tdPPVCMY1N0jalvIQQnKavl1NSN-SfByYhqFusT-IiMq8EGD5vKPzkaqmwJAszADO_i_NJRAy3PM3DRH1FvR3N66b0Y2uYSo2FPmdMT9GnOIUBnLwYrUOheDrgtjNKz4z6bGYyS522O1oFifPDzHNxSKyyxSF2K-A2sY0WZJnt_1a9zt_qR5aBi63JmEwd8N0jOppOP3SO9RJapjDFybn-H2-fN1SGTOfY0H9nUjmczxJuvsPOFs-HrGM6vbEMjnHvzyl9URgnRlvg5ZKUVAejphu-hqdm-8VaxjOZPxQx-SYfalSQaibODnj8e-Cc2IjiCjRjhYmWDrqOdw2knT34lgFunUYYAdGqV-G2erxItMd30bG0qja_Q6qeV-0Lw-3tAB9nhXL4xRU-6g4V7qdRDVqvrBrp2CVibIGA4UxNpakfrATCeK7gz9Ivr1rKGS8w_zX1SnydbuNSIOF75IipjXd3-l2sWw2Qc_u_OVv-XdR8zckXACGeJtScmtpzvi55Aek8ZELW3gWtnI0VLoAshK_5PBVx0qoAH-DYDFvyJbuUus9MFLA-nPDJP5ahAb2SbH_bM4RK64wCDr1-3u0pkVy2SPnaC8B5YJwREdV81GH5Ftc5FKLl7L7CCKX_VgeaJOYTSNaX7SCYkQl8Mh6uNyQbwzYlmEyH33rjqdZ0jA625zF4b_mHgQfSdSEMrHkCF9D18dxxgg4rX30M_z0wzPew_WXGy8qQACw8m2_yetodsjqwCYyJOc6Z3mdMU-EgQQvHws6wUcLST2CQP9qRbGt7D2zR4WCsW6m0JxJttsEyDQIZN5p5WFds9BTtmLfvlh8MX8ujas3obo73xBRjs3BGvkYZwnBpoj9OYCx5kOkK8VU6zI43PLq4SqKI8sn0OAcnNSZwYSsnaqEEbefvZiwKACw4rj9RET6x8AhsqRSHDOuSifAn4CTx-oEOAmSRGd-Yz52OBEIJmZ6WIobY6FX4rpQq6gJkXKZLbNLOQfuHxHeN3pBA4FZRXc_6obQAxHp2DWtr9ZefgMhodgNxnnyVfPiZDt45K1KTetGKkTiHqzSk-KRg7qb2PPeTclojXmPyZ7KLga-yzkt54L1JiI8z1hX-jh2tlQEZUze64St6-gKIW275ciWmyic5LKRhjjq-D96pKbzXVyF1S08xmL9JvVDV9nj28eyFZqBb8sfqXeOtS6rR5RZ3XcGcO7jtpb_vUK1ucLR0SLD3s36qGTVYZ2GTbPHVvZFZCzmi5C65sm0wCmu9oYSLa5_NoymmvAFH4UbhEts-31L3rWDAAu2EVJExlw6XDOzCw8jm_zfzIQuVABN-sxGAiRAaEsDLxaYvPCg_6ufxfw-xcLoheDEReIRf_1Fmol4htfLVJRJevH-9Dup1eKscr2wtf-xpPp8ZQ705PnRv2R3khMsaDFOUD5e5FLaFbzMHeQ2j6wlcLmr06ZeDjT6fGUO9OT51Hz0Bp88emttONyCIAd5se-Enx24tEQ5BWW6tLoqm1V8lNkLpIq9Fy5s66ZOZll-DVsew0BMiueGPS6QzEn_EYhMAp0UP6TiUs9Cn0l2TcNoaFIazE2Q3GnsCKfGyeJoijXs6r8LZhinSG_GsPHf0wsPAe_j0zYMx3r94mOd6HGrVbtM_geRck9xkXAG2Q1A3L2wolnNLYd1XLp4xaz4bbPQ_tyL-egqd2SCEbk-HlDJDIlASYdwhqom3L1k1jRiqNmfwBIZLLmJi-eU4AWN_fATTUVJdyoJkzoh-DM86UabOfmUZ2ZvRZkqi1M5tm7WMs_u39r8sUAQRt0moGqzieLtEh3R_3xJmt7mm3lHZK1XGc9uuOt2Y-RLo49Ft7kVI8oUU91bK23XHgqKei9m3y2l9pz0AS-iNHhS_fhvu8rU0paHs_pUITanUw8UQc6Nv2MF3pMg3GAWNx4RU7kv1Wno3gah83g7SvP4S6465I4pagL4oAK9Tiz2nfMYtBdPrYgG7afTXkyA HTTP/1.1
Host: mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 09 Dec 2022 08:45:51 GMT
content-length: 0
set-cookie: rhid=82515722284; Max-Age=15552000; Expires=Wed, 07-Jun-2023 08:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfX8vwq22go5zLdN86KOWLUsgAzL0SwuO1BPGxWi-Id7o_kgqSymnBW-A&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
X-Firefox-Spdy: h2
img29.imageshack.us/img29/7350/iconsearchr.gif
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img29.imageshack.us/img29/7350/iconsearchr.gif
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img29/7350/iconsearchr.gif HTTP/1.1
Host: img29.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 09 Dec 2022 08:45:51 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfX8vwq22go5zLdN86KOWLUsgAzL0SwuO1BPGxWi-Id7o_kgqSymnBW-A&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
108.168.193.189302 Found 0 B URL HTTP/2 p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfX8vwq22go5zLdN86KOWLUsgAzL0SwuO1BPGxWi-Id7o_kgqSymnBW-A&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
IP 108.168.193.189:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfX8vwq22go5zLdN86KOWLUsgAzL0SwuO1BPGxWi-Id7o_kgqSymnBW-A&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0 HTTP/1.1
Host: p185689.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Cookie: rhid=82515722284
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 09 Dec 2022 08:45:51 GMT
content-length: 0
set-cookie: rhid=82515722284; Max-Age=15552000; Expires=Wed, 07-Jun-2023 08:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_490233_off_142374_aff_3322_cid_185689-KLIKSAYA.COM_ts_1670575551; Max-Age=3600; Expires=Fri, 09-Dec-2022 09:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
location: https://myfood.ltd/?v=20171031&s1=0
X-Firefox-Spdy: h2
jekethek.blogspot.com/feeds/posts/default/-/Headline?max-results=5&orderby=published&alt=json-in-script&callback=showrecentposts5
172.217.21.161200 OK 8.8 kB URL HTTP/1.1 jekethek.blogspot.com/feeds/posts/default/-/Headline?max-results=5&orderby=published&alt=json-in-script&callback=showrecentposts5
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (32011)
Hash c691797f978b9c3034844941541f4b59
1134a917daa09338eef3149b10852e76c98906dd
e926f4401634754d2b0bc46b27383dd1d7e3b9192fae0128a286805e211f498e
GET /feeds/posts/default/-/Headline?max-results=5&orderby=published&alt=json-in-script&callback=showrecentposts5 HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Cookie: __utma=172797240.1454059284.1670575549.1670575549.1670575549.1; __utmb=172797240.1.10.1670575549; __utmc=172797240; __utmz=172797240.1670575549.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"b8195fc067ba77a92de345b4fb5bfd489ad47c39ff1cfea436e33e05fa21a0c4"
Date: Fri, 09 Dec 2022 08:45:51 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Fri, 09 Dec 2022 08:45:52 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 21 Nov 2022 23:40:28 GMT
Content-Encoding: gzip
Content-Length: 8809
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-s8bcm_7U7xU/U8RJ5ZjCH1I/AAAAAAAAH-0/gYYDWyImTEw/s1600/situasi-gaza-palestina.jpg
142.250.74.161200 OK 13 kB URL HTTP/1.1 3.bp.blogspot.com/-s8bcm_7U7xU/U8RJ5ZjCH1I/AAAAAAAAH-0/gYYDWyImTEw/s1600/situasi-gaza-palestina.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 465x276, components 3\012- data
Hash 0232e296d6d68923fcabdb500db41428
06048c491ebc8d3dc51fc66e4a44e0b0dbe57529
db82ab27d910710773ee545247c8013ae37f75ea70fbda1154448d884677b778
GET /-s8bcm_7U7xU/U8RJ5ZjCH1I/AAAAAAAAH-0/gYYDWyImTEw/s1600/situasi-gaza-palestina.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1fee"
Expires: Sat, 10 Dec 2022 08:45:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="situasi-gaza-palestina.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 08:45:51 GMT
Server: fife
Content-Length: 12775
X-XSS-Protection: 0
3.bp.blogspot.com/-KOpTFzC4_gw/VG2jxozOjhI/AAAAAAAAIBM/3bphhuw5vNs/s1600/kankerservikx.jpg
142.250.74.161200 OK 16 kB URL HTTP/1.1 3.bp.blogspot.com/-KOpTFzC4_gw/VG2jxozOjhI/AAAAAAAAIBM/3bphhuw5vNs/s1600/kankerservikx.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 350x226, components 3\012- data
Hash b96b6b28b4776869fff0969a979f144b
7987d8a743fede731634d0eac8d67674eb944242
56da239a9351fc7602fcef9140cb775b166bdb552462585cf555bd3de0f50609
GET /-KOpTFzC4_gw/VG2jxozOjhI/AAAAAAAAIBM/3bphhuw5vNs/s1600/kankerservikx.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v2014"
Expires: Sat, 10 Dec 2022 08:45:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="kankerservikx.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 08:45:51 GMT
Server: fife
Content-Length: 15825
X-XSS-Protection: 0
myfood.ltd/?v=20171031&s1=0
151.139.128.10200 OK 2.9 kB URL HTTP/2 myfood.ltd/?v=20171031&s1=0
IP 151.139.128.10:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6859), with no line terminators
Hash 029ccb01ef612a9e6748494c60d24b69
d385f7671725be11701998c27571e94b1950f991
7ac429dc45b509b1bed9bdcdc5610868d510d979ce3cc06d48870511bf0425f5
GET /?v=20171031&s1=0 HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 08:45:51 GMT
cache-control: max-age=30
content-encoding: gzip
content-length: 2896
content-type: text/html
last-modified: Mon, 01 Mar 2021 09:43:13 GMT
accept-ranges: bytes
server: nginx
etag: W/"603cb731-1ad4"
x-hw: 1670575551.cds202.sk1.hn,1670575551.cds236.sk1.c
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c900d618e14d61606760e68135262703
71e7c527f113ea836cfd96bcf9322a0ff18955be
afca44f16eb5770d8aed979d2fef72224f9582b74e1b75f984a8a3361a82c433
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFCA44F16EB5770D8AED979D2FEF72224F9582B74E1B75F984A8A3361A82C433"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 09 Dec 2022 14:45:51 GMT
Date: Fri, 09 Dec 2022 08:45:51 GMT
Connection: keep-alive
1.bp.blogspot.com/-ESBy9AMK0xQ/UycJ-af5xuI/AAAAAAAAH-A/-XGwN2nlkWw/s1600/mega-prabowo.jpg
142.250.74.161200 OK 52 kB URL HTTP/1.1 1.bp.blogspot.com/-ESBy9AMK0xQ/UycJ-af5xuI/AAAAAAAAH-A/-XGwN2nlkWw/s1600/mega-prabowo.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 673x373, components 3\012- data
Hash 3995cf8f0fca0acc5a295712de3d912b
c303124293dd67dc93bc7ce3a12ad7c72da9d3a6
74ee058ae7226787a4a296c2606983c2d910759c2c23005a0070d41a4cc0797e
GET /-ESBy9AMK0xQ/UycJ-af5xuI/AAAAAAAAH-A/-XGwN2nlkWw/s1600/mega-prabowo.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1fe1"
Expires: Sat, 10 Dec 2022 08:45:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="mega-prabowo.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 08:45:51 GMT
Server: fife
Content-Length: 52314
X-XSS-Protection: 0
4.bp.blogspot.com/-LnCFPRUvbUg/UxQUqpu7utI/AAAAAAAAH9s/CFSwhxrWWxM/s1600/snakecrocoabcnetaudlm.jpg
142.250.74.161200 OK 79 kB URL HTTP/1.1 4.bp.blogspot.com/-LnCFPRUvbUg/UxQUqpu7utI/AAAAAAAAH9s/CFSwhxrWWxM/s1600/snakecrocoabcnetaudlm.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 460x345, components 3\012- data
Hash a04081168295bd09a541d3233ebdebfb
9d0a05c594aea1a553d12bd9765168da59c2e6e1
0e1e29f510aefed3dbad002ce375d5a3bf6cd09c1d6ff4671c7038399082074b
GET /-LnCFPRUvbUg/UxQUqpu7utI/AAAAAAAAH9s/CFSwhxrWWxM/s1600/snakecrocoabcnetaudlm.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1fdc"
Expires: Sat, 10 Dec 2022 08:45:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="snakecrocoabcnetaudlm.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 08:45:51 GMT
Server: fife
Content-Length: 78871
X-XSS-Protection: 0
jekethek.blogspot.com/feeds/posts/default/-/Terbaru%20Terkini?max-results=8&orderby=published&alt=json-in-script&callback=showrecentposts6
172.217.21.161200 OK 11 kB URL HTTP/1.1 jekethek.blogspot.com/feeds/posts/default/-/Terbaru%20Terkini?max-results=8&orderby=published&alt=json-in-script&callback=showrecentposts6
IP 172.217.21.161:0
File type Unicode text, UTF-8 text, with very long lines (43720)
Hash a71529f084875fcc46130b1c02f7894b
fd78213a4f30e579a2c56727f472535f88f683c5
e4498d54bf91be5e76587742afaf9960a0b8f0bac03ffa1820dce04e6e490db7
GET /feeds/posts/default/-/Terbaru%20Terkini?max-results=8&orderby=published&alt=json-in-script&callback=showrecentposts6 HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Cookie: __utma=172797240.1454059284.1670575549.1670575549.1670575549.1; __utmb=172797240.1.10.1670575549; __utmc=172797240; __utmz=172797240.1670575549.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"ad1a0f9fcb735349e51fbe692a7d4ca8bc89ff9790dce333470647d59e2235ad"
Date: Fri, 09 Dec 2022 08:45:51 GMT
Content-Type: text/javascript; charset=UTF-8
Server: blogger-renderd
Expires: Fri, 09 Dec 2022 08:45:52 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Mon, 21 Nov 2022 23:40:28 GMT
Content-Encoding: gzip
Content-Length: 11328
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-dvDRZF6ptZI/Uv8-uMYO1WI/AAAAAAAAH8o/kSyi6ojV-s0/s1600/gunung+sibayak.jpg
142.250.74.161200 OK 45 kB URL HTTP/1.1 3.bp.blogspot.com/-dvDRZF6ptZI/Uv8-uMYO1WI/AAAAAAAAH8o/kSyi6ojV-s0/s1600/gunung+sibayak.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 400x266, components 3\012- data
Hash 61c0b6fc368893ca3076490d32a87a9b
a6fe6747cb0a1084b6a8a7be6889697df4a97283
bdef1fea19223d9fa2babaddc9186a658d0f49f855ea94a1601cb0c3d03f41c2
GET /-dvDRZF6ptZI/Uv8-uMYO1WI/AAAAAAAAH8o/kSyi6ojV-s0/s1600/gunung+sibayak.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v1fcb"
Expires: Sat, 10 Dec 2022 08:45:51 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="gunung sibayak.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 09 Dec 2022 08:45:51 GMT
Server: fife
Content-Length: 45084
X-XSS-Protection: 0
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5310
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 08:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5310
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 08:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5310
Expires: Fri, 09 Dec 2022 10:14:21 GMT
Date: Fri, 09 Dec 2022 08:45:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7Dp35PIr_WYUI1bBa21AvmCMEPi0d3jnhuS8eEk3Q3CXRcGWAnkD8g==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 17:01:04 GMT
age: 56687
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47563cf2-d887-4c1d-a3b9-0b5151226171.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47563cf2-d887-4c1d-a3b9-0b5151226171.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0321199622f614202a646f925521ace7
cac4e03ae9857def8b094e005647c3e49c34d686
042494598add540a49650d5556d33bf53f647d77e64fbf13f3d881ebf251a525
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47563cf2-d887-4c1d-a3b9-0b5151226171.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8709
x-amzn-requestid: 8c5094d3-3286-44db-bd3f-9369cd8220eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c2LYGGm6oAMFn1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63925900-2ea563bc1b5aa87a0ebd6251;Sampled=0
x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oHNHICPfq1U2qYhNmrtf5_56-jtn-zOMPGvBdhXICE493RfJ1cFCvA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:59:55 GMT
age: 38756
etag: "cac4e03ae9857def8b094e005647c3e49c34d686"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 18245
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a22fc7807fb3337f0af5e546c7ad366a
0d5969394b370a5c77c53ed58f55e5f8a45da3ab
98b4f4fd27dc036697fb0328083bce6e691b7493428f3a54991087d9d1165d97
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49a0678c-8bda-434a-a337-63696994d79c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5530
x-amzn-requestid: adecbb8c-cec3-46a0-b32c-0026b8421fe5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4d8Fg6IAMF61g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903abf-4bcb385f27cb438c36a2cd5e;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDD0v-1I1sFVMsJl64nQDe_hHExMrSLXPrbou_J79YEQf3YwS2oklA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 06:50:54 GMT
age: 6897
etag: "0d5969394b370a5c77c53ed58f55e5f8a45da3ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:34:27 GMT
age: 18684
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 730ba1a8edb79ba6f83b46d1ba5aed7b
55a236fedf6f5f7ca2bb88ae13e20846a50fd36d
f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 13:49:59 GMT
age: 68152
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F
103.30.145.12200 OK 1.5 kB URL HTTP/1.1 adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F
IP 103.30.145.12:0
ASN #46050 PT JC Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash aaea43762d2b06b6546a6b1010d4ab62
8808d75c6e439ea568e1a919ef16bc2e3973873b
9a7ed4434621368471122883df6d3706a409689656a783aee5e96d6620f01faa
GET /show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=F2984C&text=B47B10&background=6F3C1B&border=6F3C1B&url=2BA94F HTTP/1.1
Host: adsensecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 09 Dec 2022 08:45:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Set-Cookie: PHPSESSID=prp8av0e2dbao3621b1953jl30; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961
103.30.145.12200 OK 1.5 kB URL HTTP/1.1 adsensecamp.com/show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961
IP 103.30.145.12:0
ASN #46050 PT JC Indonesia
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash aaea43762d2b06b6546a6b1010d4ab62
8808d75c6e439ea568e1a919ef16bc2e3973873b
9a7ed4434621368471122883df6d3706a409689656a783aee5e96d6620f01faa
GET /show/?id=ZI2QCSjP1SI%3D&cid=1mKE6FR8OXo%3D&chan=EQ7Ujc4wek0%3D&type=6&title=0000FF&text=6F3C1B&background=FFFFFF&border=FFFFFF&url=9D1961 HTTP/1.1
Host: adsensecamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Fri, 09 Dec 2022 08:45:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/5.6.40
Set-Cookie: PHPSESSID=tm0enpnfq21kt5259unqlsqpl0; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
img291.imageshack.us/img291/2926/hatch.gif
38.99.77.16404 Not Found 168 B URL HTTP/1.1 img291.imageshack.us/img291/2926/hatch.gif
IP 38.99.77.16:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 341d15013ba4391483b2d5e34cbc5c5c
986399b390a9aaa9a33e459099aaf9f1dbc227ab
376f5045e4dd8bf68ac9e374518a01c18b2fdf76344f2cc08cac143acc4f3cb8
GET /img291/2926/hatch.gif HTTP/1.1
Host: img291.imageshack.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.2.8
Date: Fri, 09 Dec 2022 08:45:52 GMT
Content-Type: text/html
Content-Length: 168
Connection: keep-alive
connect.facebook.net/en_US/all.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 09 Dec 2022 08:45:55 GMT
Connection: keep-alive
Content-Length: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5796
Cache-Control: max-age=119746
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:55 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 18:01:41 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 041ee7bbd80e836023d3c1109d2979de
0bbaad731238f365695a432792b4c6b6199a830c
fcc16dfe49146995d9828166eb169a90664dedee131e3f01c2576a8160ea908d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 07 Dec 2022 23:33:45 GMT
Expires: Wed, 14 Dec 2022 23:33:44 GMT
Etag: "0bbaad731238f365695a432792b4c6b6199a830c"
Cache-Control: max-age=484668,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776c77a4892bb506-OSL
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash cfa75bb92e21d129799b366906dc324d
e131a6c2a7a05446d4b3cb02b8ff0c5f6b23e9c4
47658844ebf7a09de2036f6ff0bdb92dc109cda3a0bec58b57830be6160a85c5
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0f0838fca16ea5f3e03f32ae5c6b245f
etag: "c77ab4a41060b10aa43258d403dc180d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 09 Dec 2022 08:46:43 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: z6dbuS4h0Sl5mzZpBtwyTQ==
x-fb-debug: rv3/TZwFZnEOYqSAmik78bpfYDncfStfn68G74uOZpfzWNZCkgiTlSNc2XapUMBGhtqSOsvTfvjiOcIzvX/Xlw==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 08:45:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5796
Cache-Control: max-age=119746
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 08:45:55 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 18:01:41 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.mypagerank.net/services/seomonitor/seomonitor.php?aut=55831
172.67.193.187200 OK 145 B URL HTTP/1.1 www.mypagerank.net/services/seomonitor/seomonitor.php?aut=55831
IP 172.67.193.187:0
File type GIF image data, version 87a, 76 x 13\012- data
Hash 9fd5af09c0efba4e4a73ba5d4c4dc3f8
3eaf8fa98453365c02097079f18df015c903f880
c5166cb52210e1d5379fcf64a8d3f638f162038a39926dec063fc3e6c3b126f3
GET /services/seomonitor/seomonitor.php?aut=55831 HTTP/1.1
Host: www.mypagerank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 08:45:55 GMT
Content-Type: image/png
Content-Length: 145
Connection: keep-alive
Pragma: public
Expires: Mon, 26 Jul 2013 05:00:00 GMT
Cache-Control: max-age=604800
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yjn8wyufK7l60VDkDAobKlSQdfL05hDao10sHMbo5mBeteuvKBzbb4BL9W0S652yErMrsVddPMvuHbvqtQWorWo0y%2F%2Fq5N%2FNnsE9ZaMrm%2FPw2zylysdiSFco3DsMTAkYXjfA0Iw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 776c77a46d130b45-OSL
alt-svc: h2=":443"; ma=60
jekethek.blogspot.com/favicon.ico
172.217.21.161200 OK 412 B URL HTTP/1.1 jekethek.blogspot.com/favicon.ico
IP 172.217.21.161:0
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e
GET /favicon.ico HTTP/1.1
Host: jekethek.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Cookie: __utma=172797240.1454059284.1670575549.1670575549.1670575549.1; __utmb=172797240.1.10.1670575549; __utmc=172797240; __utmz=172797240.1670575549.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Fri, 09 Dec 2022 08:45:55 GMT
Date: Fri, 09 Dec 2022 08:45:55 GMT
Cache-Control: private, max-age=86400
Last-Modified: Mon, 21 Nov 2022 23:40:28 GMT
ETag: W/"a94b649541e292ee249142291fa43a534293ea98e5ee1c8cfbd852fea58a5be6"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE
de.tynt.com/deb/v2?id=bndEq8rAKr377VadbiUzgI&dn=TI&cc=1&r=
67.202.105.31200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=bndEq8rAKr377VadbiUzgI&dn=TI&cc=1&r=
IP 67.202.105.31:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=bndEq8rAKr377VadbiUzgI&dn=TI&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sat, 10 Dec 2022 08:45:55 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Fri, 09 Dec 2022 08:45:54 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=bndEq8rAKr377VadbiUzgI&lm=0&ts=1670575549804&dn=TI&iso=0&t=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&cu=http%3A%2F%2Fjekethek.blogspot.com%2F
67.202.105.34204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=bndEq8rAKr377VadbiUzgI&lm=0&ts=1670575549804&dn=TI&iso=0&t=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&cu=http%3A%2F%2Fjekethek.blogspot.com%2F
IP 67.202.105.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=bndEq8rAKr377VadbiUzgI&lm=0&ts=1670575549804&dn=TI&iso=0&t=Berita%20Hari%20Ini%20Terbaru%20Is%20Blog%20Berita%20Indonesia&cu=http%3A%2F%2Fjekethek.blogspot.com%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Fri, 09 Dec 2022 08:45:55 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/all.js?hash=61f32479dde70c5b5ae56e5834141668
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=61f32479dde70c5b5ae56e5834141668
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash 169bcba9a6b7272c025e4607be64d694
ca8f1991c15ef5d265fd0c3ff9ab0a312b412535
13efc504590b0824666078b703f3f21e974d8cb78842121ee8fae2ba2202937c
GET /en_US/all.js?hash=61f32479dde70c5b5ae56e5834141668 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://jekethek.blogspot.com
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8955d4472cb5d6ae69c9f67e4f05cfba
etag: "d343e93f3de6381e79f4f803d124e0b8"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 09 Dec 2023 07:55:12 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: FpvLqaa3JywCXkYHvmTWlA==
x-fb-debug: xoVYEch1jHlo+OjdGuJGncvkJBLiA7n42uV8W9+CbSmDVYEbWo1KPVyYTzBCZY58cuRcj+czW6x2S6lJ0QDJfg==
priority: u=3,i
content-length: 88304
x-fb-trip-id: 1904183273
date: Fri, 09 Dec 2022 08:45:58 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfXuYhr2StkPsm4I2ubK1W8njXBiV0nt-0ybWtXNdV5ft0ME_OwOme7Og&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
108.168.193.189200 OK 0 B URL HTTP/2 p185689.mybettermb.com/adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfXuYhr2StkPsm4I2ubK1W8njXBiV0nt-0ybWtXNdV5ft0ME_OwOme7Og&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0
IP 108.168.193.189:0
GET /adServe/domainClick?ai=eHdHhnjefhzGDsa2d8YjgWmQiT-1fLZROuTZFBjirzTybCxZe0Igm2y1CzvnPMmWEV0VpJMZWeky-0abnAxmU4Xi9ydSyjfMw96ss0F1rXyz7LFRtDCzoPkjQsIxQLx4ehq9_TnVDg7d2dtLpsxnej86kHf_XOzc4gzAyVQJAonaHMa6T6JXZVVlypJAQOEB1fpwhlRk8r1PSUgoZRIDW7f-smo9vT2hpgbTH0-B3xa1FH8BMppt5mSYOQEdHvqd504wHbEjADtukn-p3SwYTtBeZ3S0WZgBYvhL0s_6fcCW3E4v6rd9oiT9J34A6qDrFZwobw64lGvA7i2YC5AAX2ry45yJhMAtkJdfRLzNmeHc6AzY3U8-3HX2VRITifiaenWItYlt6tpVpciFFJQeenS_bNxPDHCsi9ujYcb7W4qWm47xmj5LZ0-nxlDvTk-dX36l8zzCIDmtmCaUXMnywOjk7b-dfaEe8Y9CAkQlislmPxkWRCR7f2pxQOhL-xvWHBvIjlsBiABmPxkWRCR7fyFF2BECF7hLmERB8F-MixY5fmo3ywQY79383RgyfMRwRoFz3tbaHFScNOsqdDPf3B2GPgvKKtCp8R3-Lf5i2NypfGdSqTDcr7Z5MAaYNWvz5DGbd_IM9PQCozyvMhv4-HwykIyS6-_9w9kSC6-HMtee2-kMvWtZh0Wd13BnDu47S_sQnzFC-Jp7Jl4Hi3-y6jbZeKmnzd5LDcWyqPzyF1j0QXCBs73sXqwWcH55acyZGeGhSsbl8GEwWyeK-2rLp2aHrLgPbxFN1QlvVKC08ytv0-cfxRgHaSCijZY_SNQadM5ECUeELJfkQmjZE96sjp8DPbGbSNtJN0JJKTQdChujiGYQ-VGfM1BKQ8__OyXIgafZ9sDvHt0Fy9LbfW_6duFoOnPfBtp4nikxEDznWgUW0YeVoTdAMXo_8JgIlG3qZZJCxAdeOqU&ui=HFz5zNIIs96fzq49jFkHXcQzYObQGwwU7xf6tdOZukNWiVxJf3CzXMfXmDjn1xfXuYhr2StkPsm4I2ubK1W8njXBiV0nt-0ybWtXNdV5ft0ME_OwOme7Og&si=1&oref=320d8a9e16d091be3daf87219fe5dd96&optunit=RZ3XcGcO7jutK6Mz5FaVqw&rb=6HrvxnDas3s&rr=4&abtg=0 HTTP/1.1
Host: p185689.mybettermb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://jekethek.blogspot.com/
Connection: keep-alive
Cookie: rhid=82515697147
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 08:45:51 GMT
content-type: text/html;charset=ISO-8859-1
vary: Accept-Encoding
set-cookie: rhid=82515697147; Max-Age=15552000; Expires=Wed, 07-Jun-2023 08:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
loi=ad_1079064_off_527380_aff_11454_cid_185689-KLIKSAYA.COM_ts_1670575551; Max-Age=3600; Expires=Fri, 09-Dec-2022 09:45:51 GMT; Domain=mybettermb.com; Path=/; SameSite=None; secure;
content-encoding: gzip
X-Firefox-Spdy: h2
sc.tynt.com/script/sc/bndEq8rAKr377VadbiUzgI.js
104.18.36.173200 OK 0 B URL HTTP/2 sc.tynt.com/script/sc/bndEq8rAKr377VadbiUzgI.js
IP 104.18.36.173:0
GET /script/sc/bndEq8rAKr377VadbiUzgI.js HTTP/1.1
Host: sc.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://jekethek.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 08:45:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
status: 200 OK
x-rack-cache: fresh
cache-control: max-age=86400, public, s-maxage=172800
last-modified: Thu, 08 Dec 2022 15:11:22 GMT
x-xss-protection: 1; mode=block
x-request-id: 13e89e88-ac0c-4e16-8c4f-d9f2e6cfbae0
x-content-digest: 75c4db0fc480514614ee15515f4a298da7a400a0
x-runtime: 0.002979
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
expires: Sat, 10 Dec 2022 08:32:31 GMT
content-encoding: gzip
cf-cache-status: MISS
server: cloudflare
cf-ray: 776c77a4ca3f0b59-OSL
X-Firefox-Spdy: h2