www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
200 OK 40 kB URL User Request GET HTTP/2 www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
IP
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash dcc30db529b6c734bd5d443ed4b330b1
d39670f8e608f8db7b90b335acc6867dc8aa9459
c3cc4d5dcd24a113bec874eab79f13568c3d87d58558200a9308645180bec746
GET /2022/10/punya-mamah-tiri-sangean.html HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 18 Nov 2023 15:46:53 GMT
date: Sat, 18 Nov 2023 15:46:53 GMT
cache-control: private, max-age=0
last-modified: Sat, 18 Nov 2023 08:03:36 GMT
etag: W/"d57d880b84e9ba2a11fd71ac773b3541df8a106c4440630033c72de81a9af800"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 39703
server: GSE
X-Firefox-Spdy: h2
www.beruang.club/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/2 www.beruang.club/js/cookienotice.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sat, 18 Nov 2023 15:46:53 GMT
expires: Sat, 25 Nov 2023 15:46:53 GMT
cache-control: public, max-age=604800
last-modified: Sat, 18 Nov 2023 14:57:31 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (30596)
Hash e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:21:59 GMT
expires: Fri, 15 Nov 2024 23:21:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Nov 2023 13:54:43 GMT
content-type: text/css
vary: Accept-Encoding
age: 145494
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Nov 2023 21:51:04 GMT
expires: Thu, 14 Nov 2024 21:51:04 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 237349
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/500025675-widgets.js
200 OK 59 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/500025675-widgets.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2215)
Hash f6c58bca219161b712cd21eb360a8a50
43de6979be867f383f19dcf8f276d05ea636cae8
243a5726e7e623f0b3f1801b0e850cf64ef5b19b35f0729291356e2fee2f08f3
GET /static/v1/widgets/500025675-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59347
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:21:56 GMT
expires: Fri, 15 Nov 2024 23:21:56 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Nov 2023 21:58:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 145497
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads.js
301 Moved Permanently 178 B URL GET HTTP/1.1 poweredby.jads.co/js/jads.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/jads.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 18 Nov 2023 15:46:53 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: jads2.js
www.googletagmanager.com/gtag/js?id=UA-170186304-2
200 OK 69 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-170186304-2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 8e560fef0f9ffe7c58d671339ce429ec
32968d96673a66615083bd2c5758282e53a125c8
835b20c1c3fd7a84ecb1faeab7214c20680f115a323134f9bfe2063487dc693b
GET /gtag/js?id=UA-170186304-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 15:46:53 GMT
expires: Sat, 18 Nov 2023 15:46:53 GMT
cache-control: private, max-age=900
last-modified: Sat, 18 Nov 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68716
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM
200 OK 90 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3651)
Hash 76b73a92b0b1f588a9d7eaabaadcbb47
c2c86fe4451c017bd5c69a5a8b53a39ae6e97c74
e9d591f06ae33a78c4ccb7de3eb45dbc934aefbe3f8c105b2af44f0801e519c9
GET /gtag/js?id=G-XM2YCT0PTM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 15:46:53 GMT
expires: Sat, 18 Nov 2023 15:46:53 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89630
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jwplayer.com/libraries/Wg1rABIO.js
200 OK 45 kB URL GET HTTP/2 cdn.jwplayer.com/libraries/Wg1rABIO.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerAmazon
Subjectjwplayer.com
Fingerprint1E:36:B3:05:8C:13:3B:38:7D:97:0E:97:1E:60:3F:62:06:F3:A6:33
ValidityFri, 27 Oct 2023 00:00:00 GMT - Sat, 23 Nov 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65143)
Hash 7bab94959711514d4c2a4b84062b9d6c
4ba4d8243d1937f2fb0dbce76aba95b651bde9cd
f4c58b0e27eef576a17eecc6aa2cdf4443eeb81489e25deddcc1759bb36832bf
GET /libraries/Wg1rABIO.js HTTP/1.1
Host: cdn.jwplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 44856
access-control-allow-origin: *
cache-control: max-age=180
content-encoding: gzip
date: Sat, 18 Nov 2023 15:46:53 GMT
server: openresty
x-robots-tag: noindex, indexifembedded
x-cache: Miss from cloudfront
via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vF858xTAM1H9k7PLUIbtAgFs7QX-FSIbRPWvMtAFWrMqDSu_2-h0HA==
X-Firefox-Spdy: h2
www.beruang.club/2022/10/path/to/font-awesome/css/font-awesome.min.css
404 Not Found 27 kB URL GET HTTP/2 www.beruang.club/2022/10/path/to/font-awesome/css/font-awesome.min.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash 7aeb2eca9aca21aea5f67727c39fe586
4a42ebf4e75ca69c1f44594338b861d3b7b223a2
d94cdf0f3eb491b589d854244d3e1ce24b327bc41a0af45d9345ea63d66c97b1
GET /2022/10/path/to/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Nov 2023 15:46:53 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27103
server: GSE
X-Firefox-Spdy: h2
www.beruang.club/feeds/posts/default/-/BLG?alt=json-in-script&callback=relpostimgcuplik&max-results=50
200 OK 29 kB URL GET HTTP/2 www.beruang.club/feeds/posts/default/-/BLG?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type ASCII text, with very long lines (65520)
Hash 8c9e72fd2421660306263e4100cac1c0
f1da8047d5318e2611de2b7cc7a11826bd0c50c3
44b378f065617442a447f63f795efc38eecc28b8b748fc8477e5899ac7dbec7f
GET /feeds/posts/default/-/BLG?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"f1feddb6597d23eab5a2abba48512cdf0b2e369f65451078dec5d03283818186"
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sat, 18 Nov 2023 15:46:54 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 18 Nov 2023 08:03:36 GMT
content-encoding: gzip
content-length: 28883
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
www.beruang.club/2022/10/xxxxx
404 Not Found 27 kB URL GET HTTP/2 www.beruang.club/2022/10/xxxxx
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6817)
Hash 27646f3a67374c6eb327fb458cfa0144
08759ed2098c8085fcce3d3e67e51cd5ea05af55
45a52e73290ee88aa6dd5d96382d3904e442d848b1e075ce23f608cf0a51af53
GET /2022/10/xxxxx HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Nov 2023 15:46:54 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 27094
server: GSE
X-Firefox-Spdy: h2
bit.ly/3j0NY7K
301 Moved Permanently 203 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerDigiCert Inc
Subjectbit.ly
FingerprintA2:9E:97:EA:E4:51:06:C6:7B:BF:11:55:77:67:F5:8F:E5:7A:F7:0A
ValidityFri, 12 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 3f6bd12638ef78a75945548a17fac024
ee44ee493b25140b96ef176e800c5970aba91896
934b05d817b8ace22e4c894e744a4c47785082748f589b99dd4a08354b73b205
GET /3j0NY7K HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: text/html; charset=utf-8
content-length: 203
cache-control: private, max-age=90
content-security-policy: referrer always;
location: https://1.bp.blogspot.com/-fOkWkRoGwMA/YBcJiAH9v2I/AAAAAAAA15A/qcqyjDfdQMsIwUxQrjNgGEoABdQ5cGqVgCNcBGAsYHQ/s0/20.gif
referrer-policy: unsafe-url
set-cookie: _bit=naifKS-fce23dba8a2c699b60-00i; Domain=bit.ly; Expires=Thu, 16 May 2024 15:46:54 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bit.ly/3cevhw2
301 Moved Permanently 207 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerDigiCert Inc
Subjectbit.ly
FingerprintA2:9E:97:EA:E4:51:06:C6:7B:BF:11:55:77:67:F5:8F:E5:7A:F7:0A
ValidityFri, 12 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d5d7885eee16c2df3538aa928f9c7b0c
3f94fa061ea8dfa96bf34815480ff34316ddb610
5e84a4cba32818f5a7173fdbc7042e068109a235abd1cb1fe152e8d3dbb76e65
GET /3cevhw2 HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: text/html; charset=utf-8
content-length: 207
cache-control: private, max-age=90
content-security-policy: referrer always;
location: https://1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
referrer-policy: unsafe-url
set-cookie: _bit=naifKS-a2085f10fc562acae6-00j; Domain=bit.ly; Expires=Thu, 16 May 2024 15:46:54 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.beruang.club/feeds/posts/default/-/Jav%20Sub%20Indo?alt=json-in-script&callback=relpostimgcuplik&max-results=50
200 OK 29 kB URL GET HTTP/2 www.beruang.club/feeds/posts/default/-/Jav%20Sub%20Indo?alt=json-in-script&callback=relpostimgcuplik&max-results=50
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type ASCII text, with very long lines (65520)
Hash 3052072356df9dce781f0070f3605107
184bbd5a4a412ed5224fdc732792740755b4d71f
6c8bfc59684b47d19d0c78a2b649e3b6003e7aba812fdc4fb876532543fc467b
GET /feeds/posts/default/-/Jav%20Sub%20Indo?alt=json-in-script&callback=relpostimgcuplik&max-results=50 HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"a17d4b27a321a421516eac3880bda7c97476d516146b3158c10821e9607e8637"
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Sat, 18 Nov 2023 15:46:55 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sat, 18 Nov 2023 08:03:36 GMT
content-encoding: gzip
content-length: 28900
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
poweredby.jads.co/js/jads2.js
200 OK 1.7 kB URL GET HTTP/1.1 poweredby.jads.co/js/jads2.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (3758), with no line terminators
Hash bc8141c4650030c41f6a98026b12ce80
af5618f7e467a207d4c64627be580283ab5640cd
5ad0b5133e45b32908a388c8c6dcfca2c23d1d9d3e2ed6a839a742bab1ffde51
GET /js/jads2.js HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Nov 2023 15:46:54 GMT
Content-Type: application/x-javascript
Last-Modified: Wed, 20 Sep 2023 21:26:09 GMT
Transfer-Encoding: chunked
Connection: close
ETag: W/"650b6371-eae"
Content-Encoding: gzip
pl20230850.toprevenuegate.com/0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js
200 OK 14 kB URL GET HTTP/1.1 pl20230850.toprevenuegate.com/0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjecttoprevenuegate.com
Fingerprint7D:44:5C:97:A8:B4:D2:87:5C:7C:4E:B7:DA:3A:38:99:85:00:67:40
ValidityFri, 20 Oct 2023 09:02:00 GMT - Thu, 18 Jan 2024 09:01:59 GMT
File type ASCII text, with very long lines (40540), with no line terminators
Hash 02b2fa284e2abe9342e763575a81c695
e5f84c413dd1427d752c610f4d73018d672f2aee
0f9417977a87e3061663d8b7266ec76b6eacc053f991b75e77b87f7a37fa97f5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /0c/ba/6f/0cba6f1e0cf973621a3090eac4e61908.js HTTP/1.1
Host: pl20230850.toprevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:54 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ad23dee129743768f07bbb7431ce6030
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.googletagmanager.com/gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c
200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash 865205d7d3e73d03e408ebd2530f1446
b39c07896f2604f8bc778fee9e02e9c94ef60fa3
1a1c948119e0a0f340cfb963acb06a44db37a68f7407c25efed0a841c6b83fa9
GET /gtag/js?id=G-EQ87SLSFFF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 15:46:54 GMT
expires: Sat, 18 Nov 2023 15:46:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80943
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.fluidplayer.com/v3/current/fluidplayer.min.js
200 OK 143 kB URL GET HTTP/2 cdn.fluidplayer.com/v3/current/fluidplayer.min.js
IP
ASN #60068 Datacamp Limited
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectfluidplayer.com
FingerprintF7:9C:B4:85:DA:61:E8:2F:F4:BD:0B:E8:14:8A:4D:C1:80:00:1F:DD
ValidityThu, 05 Oct 2023 14:55:10 GMT - Wed, 03 Jan 2024 14:55:09 GMT
File type gzip compressed data, from Unix\012- data
Size 143 kB (143097 bytes)
Hash edc5b8d8e39b1050ac08d6ab8fe53334
8c6e4a220d77a5d9f8b7c470431904f879fab690
0a3e40d968379a57cae25bef48544d5190a7c0ada9e4934a387de42a2bc06df7
GET /v3/current/fluidplayer.min.js HTTP/1.1
Host: cdn.fluidplayer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 16 Nov 2023 13:30:47 GMT
etag: W/"65561987-38863"
expires: Sat, 18 Nov 2023 10:16:53 GMT
cache-control: max-age=86400
access-control-allow-origin: *
x-77-nzt: ArlMCRQ3Nzf/Vk0AALlMCgE3Nzf/AAAAAA
x-77-nzt-ray: af5856309ddf7cc96ddc5865cca9fc36
x-accel-expires: @1700389014
x-accel-date: 1700302615
x-77-cache: HIT
x-77-age: 19798
content-encoding: gzip
server: CDN77-Turbo
x-cache-lb: HIT
x-age-lb: 19798
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:47:53 GMT
expires: Fri, 15 Nov 2024 04:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 212341
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:47:53 GMT
expires: Fri, 15 Nov 2024 04:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 212341
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:47:53 GMT
expires: Fri, 15 Nov 2024 04:47:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 212341
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog
302 Found 308 B URL GET HTTP/3 www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (404)
Hash 41a711ea65b5ad840389d2488b0a2608
a95b7cd4588f45ec01280c54181a942ccc20096c
34290b005b36d3a54337246548395d6d7c474c49ed24f5eae74387bddfa7c383
GET /blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 18 Nov 2023 15:46:54 GMT
expires: Sat, 18 Nov 2023 15:46:54 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 308
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
200 OK 67 kB URL GET HTTP/3 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
GET /font-awesome/4.5.0/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: font/woff2
content-length: 66624
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "db812d8a70a4e88e888744c1c9a27e89"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 10/31/2023 18:48:08
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1b7f7d322c2c445bafdb11301ee3872f
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 82815954cc0856cb-OSL
alt-svc: h3=":443"; ma=86400
1.bp.blogspot.com/-fOkWkRoGwMA/YBcJiAH9v2I/AAAAAAAA15A/qcqyjDfdQMsIwUxQrjNgGEoABdQ5cGqVgCNcBGAsYHQ/s0/20.gif
200 OK 32 kB URL GET HTTP/2 1.bp.blogspot.com/-fOkWkRoGwMA/YBcJiAH9v2I/AAAAAAAA15A/qcqyjDfdQMsIwUxQrjNgGEoABdQ5cGqVgCNcBGAsYHQ/s0/20.gif
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type GIF image data, version 89a, 728 x 90\012- data
Hash e15a9ad6be1d3ac875b83dbe7ac305f6
f1b6286c7553ff258b63927a0ef05b708c31caeb
f667adaa66d7cfe6c65a1ae9107e63d35d5bf88ab6bae8ce05584bbb6c81a163
GET /-fOkWkRoGwMA/YBcJiAH9v2I/AAAAAAAA15A/qcqyjDfdQMsIwUxQrjNgGEoABdQ5cGqVgCNcBGAsYHQ/s0/20.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd791"
expires: Sun, 19 Nov 2023 15:46:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="20.gif"
x-content-type-options: nosniff
date: Sat, 18 Nov 2023 15:46:54 GMT
server: fife
content-length: 32115
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:57:08 GMT
expires: Fri, 15 Nov 2024 04:57:08 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
age: 211786
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
200 OK 43 B URL POST HTTP/2 fvcwqkkqmuv.com/solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1990932&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
set-cookie: CHCK=1; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
UID=23111810466e8bc9651c0940a3a284d372f3; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
200 OK 407 kB URL GET HTTP/2 1.bp.blogspot.com/-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT
File type GIF image data, version 89a, 480 x 398\012- data
Size 407 kB (406574 bytes)
Hash 23164e2ebd1c1e5ab4c40067dcce799e
0593278823aa880a8d6a39a3b9a4cf91960de196
03160613d9bedb7deeafa077bfb0d95c1bf53207abc511c8fd967730a03ed010
GET /-aeYDsOBJLdA/YBAmqSeCOwI/AAAAAAAA1Wo/3wi7RPc8qwUfaD1LwU7QIrCjesx4EGJTwCNcBGAsYHQ/s0/PASANG.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd56b"
expires: Sun, 19 Nov 2023 15:46:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PASANG.gif"
x-content-type-options: nosniff
date: Sat, 18 Nov 2023 15:46:54 GMT
server: fife
content-length: 406574
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&go=true
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&go=true
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html%26type%3Dblog%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Ps2ebVFBrXZ_f-F9bmsH885q6DcfTg:ErDpzzUvlGyNY4YS; Expires=Mon, 17-Nov-2025 15:46:55 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Nov 2023 15:46:55 GMT
location: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-uTYSX32XZfMMjyt6-hx0jQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/get/1990932?zoneid=1990932&jp=_cltyh01v3u2tib8z65aazk&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
200 OK 1.8 kB URL GET HTTP/2 fvcwqkkqmuv.com/get/1990932?zoneid=1990932&jp=_cltyh01v3u2tib8z65aazk&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type gzip compressed data, from Unix\012- data
Hash 51319ba458a6eae90d841b6bc5eaf7e1
c1e0738a32027b51f4b994f1e36014aae572ef38
e8f6e7197abfa5c69731bd12eaacfb096185e5625d29896634ac61c3e9615bf9
GET /get/1990932?zoneid=1990932&jp=_cltyh01v3u2tib8z65aazk&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1 HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: CHCK=1; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
UID=2311181046def493dca7c3405bb6e12b41ad; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
landings-cdn.adsterratech.com/referralBanners/gif/160x600_adsterra_reff.gif
200 OK 698 kB URL GET HTTP/1.1 landings-cdn.adsterratech.com/referralBanners/gif/160x600_adsterra_reff.gif
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectlandings-cdn.adsterratech.com
Fingerprint34:E2:60:38:6D:32:91:0B:18:A5:B0:C5:0A:2D:79:09:A4:A3:92:C6
ValidityTue, 31 Oct 2023 06:40:27 GMT - Mon, 29 Jan 2024 06:40:26 GMT
File type GIF image data, version 89a, 160 x 600\012- data
Size 698 kB (697936 bytes)
Hash bda553f9457a554d1d515b5668a6a2ff
9459398d2b490f3434094a026deef18ec2fc827d
fdf4c535a1404142be0c34aa5353c28ddf30a7be86a66d990e49bfd503ac62e2
GET /referralBanners/gif/160x600_adsterra_reff.gif HTTP/1.1
Host: landings-cdn.adsterratech.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:54 GMT
Content-Type: image/gif
Content-Length: 697936
Last-Modified: Wed, 02 Feb 2022 00:50:10 GMT
Connection: keep-alive
ETag: "61f9d542-aa650"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Date
Cache-Control: max-age=315360000, public
Accept-Ranges: bytes
limurol.com/ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E
ValiditySat, 28 Oct 2023 13:52:28 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
UID=23111810467aef40e3d29243628d4903ba2b; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
200 OK 1.3 kB URL GET HTTP/3 www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (946)
Hash 73bd21b8f88020bbc09de1e519382b77
0c855e9e7f1acade1bbf98c58c39de272f816355
880eef75ea2790e355be9bb5ac53dd46cf58fb4469c53e5ac5f08261eddc7c40
GET /video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: private, max-age=25200
pragma: no-cache
expires: Sat, 18 Nov 2023 15:46:55 GMT
date: Sat, 18 Nov 2023 15:46:55 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1254
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
limurol.com/ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
200 OK 7 B URL GET HTTP/2 limurol.com/ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF5:B7:17:E8:F4:87:B4:48:99:C9:D2:6D:DA:4A:E3:52:D3:E9:8C:0E
ValiditySat, 28 Oct 2023 13:52:28 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1990932/?pb=83cafbae33e6fd97bf815e5868c8ae351700329615&psp=TsIcP3LVMyA08pvuwUz5h6Tg__c4ycmHzgI1SfgHBXIbTfhyNIgjbAXdPUuns_q1nZsXKxcT5zvohSMo_PGWL0k67D2i_vIn5uGTWvctRVRCkOFcPYigEO3O_W3yrB1e4DtNwpLydhQSfGQZ-TWY_juiNgITX0OKqwQuGuJUMSsolQrVsIwY_IvsIUDCaRQrFqgpu1nNkXqrIuO-smawSJdV0iXRvLfJVM4EIq4WBOhiidUEEoT6Bxlj5DgysVjN3AJ5Z3v7P74KLQu8jR_flpSIApwQ3qF_buWlI0rrUkW30FcYiaihmkdKWZdjrcUhQw5OOlG8GcH6JvIEztQJrUf3pM13M9JiDcJ4enTyP51FxkexKPGN26y1FJwcGehrgqLUxs4ZmMkchpGjpK0w0i0axqNwbhawM3o_eJpwqdSahTfBDRJ1_OE_CkYiGifx32MMwesJlFBKdoxKRGCx3ZHvybLjdGiaHxdTm4TxUeY4ADpI_NT2X32SOtHHI7V2HGUYl9QwCDDFCY3p6mI9OCQlR6S16uuGx_eiegDvdKD1yKHKPAdN0MFQTNC2JgRs3qdOKvuFtg61GaqO-XpMgRXD1WZBG4BtY4s7spIIii-ex7WgsMGZQYG2I9RgTkVw-acST_6GO6w6q-cwwpBHDuIaf7fsZdfqfXu2qzic4CJomCY5Gv2K1i5fB5J51eFCIfC1Lk3B68Wtujaov9DGOBLDIU99hoH8tVcF1IH8dLdgxHis8WlWFGbJJQXTexefZ5YRt4mVFzXrlTOVvd-8CFCYXI-kFg-3cCeApOxDy8dCRQN-1KEHTl1sKlAslu5-yJFXfi2U6KaQAe1kVmIswRxmN5meDNu98aEzkoEqhI42N2x1WJ4xMMi6v2A6Oys4GtJ79E9f8D0FEsUp4KoHm_7hVPfvlSe_cCEeRhQEITGiUT1205D1k_tFimtipAapNlZU2mBZC70uVrRYnUSsXIjmjwVWBpuUpuJ404orlARYQl7s1NFf&im=1&cb=_cl3vb35915emzt2q1fxlzo&nojs=0&abvar=0&febuild=1.0.178&t=0&wcks=1&wgl=0&cnvs=1&os=0&ss=1&ls=1&bb=0&plu=PDF%20Viewer::Chrome%20PDF%20Viewer::Chromium%20PDF%20Viewer::Microsoft%20Edge%20PDF%20Viewer::WebKit%20built-in%20PDF&lang=en-US&pf=Linux%20x86_64&cd=24&ix=0&x=1280&y=1024&md=0&afid=4615031957168640&eclog=0&sp=1&im=1 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: CHCK=1; UID=23111810467aef40e3d29243628d4903ba2b
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: CHCK=1; Path=/; Expires=Sat, 21 Dec 2024 15:46:55 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/1308184192-video_compiled.js
200 OK 14 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/1308184192-video_compiled.js
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (2185)
Hash 5804580cedca380a411189bd11c86a08
ca213273d9c019cbb573a1e1de1d0f10035057b0
f0616cedea7a4640641ee06d093dacd648133057d7081223e72d2189bdbe3960
GET /static/v1/jsbin/1308184192-video_compiled.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 14272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:24:39 GMT
expires: Fri, 15 Nov 2024 23:24:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Nov 2023 21:58:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 145336
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png
200 OK 220 B URL GET HTTP/2 www.gstatic.com/images/icons/material/system/1x/play_arrow_white_48dp.png
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced\012- data
Hash bbea220e3d4187feca59742dd22e2b27
800f7aea14ae6bb26b4d178af19e2b5fb6700d8a
b0c543456be59cd54e3b13f2fbc2071c25c6f79a6bb45957bbc12e033b55cf06
GET /images/icons/material/system/1x/play_arrow_white_48dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 220
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:49:24 GMT
expires: Fri, 15 Nov 2024 04:49:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
content-type: image/png
vary: Origin
age: 212251
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
p.sslph.com/dcba/
404 Not Found 19 B IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectp.sslph.com
Fingerprint58:3E:3B:5A:63:38:C2:49:A6:57:65:A4:68:13:0D:12:05:D2:24:2E
ValidityThu, 14 Sep 2023 11:07:23 GMT - Wed, 13 Dec 2023 11:07:22 GMT
Hash 595e88012a6521aae3e12cbebe76eb9e
da3968197e7bf67aa45a77515b52ba2710c5fc34
b16e15764b8bc06c5c3f9f19bc8b99fa48e7894aa5a6ccdad65da49bbf564793
GET /dcba/ HTTP/1.1
Host: p.sslph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: text/plain; charset=utf-8
content-length: 19
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.blogger.com/static/v1/v-css/2223071481-static_pages.css
200 OK 1.4 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/2223071481-static_pages.css
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (3841)
Hash abd7446453ccdc733ba0a08169aff6c9
5c6954a63f01d55721edaa6236c5815087635333
bc75b808f349e4fcec454de341b7f80ff44fccd902b0e1109e18d5b3a35b7de3
GET /static/v1/v-css/2223071481-static_pages.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:21:55 GMT
expires: Fri, 15 Nov 2024 23:21:55 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Nov 2023 16:55:53 GMT
content-type: text/css
vary: Accept-Encoding
age: 145500
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js
200 OK 8.1 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (524)
Hash 1c4256076fac77893331db4f22a9a41a
eb8a7de989615278406bee51533b6f4f6a71c841
57f24a99b10ad3f6431e857b33b26015c29c4cccced30375d222a35f0c4f9bb1
GET /static/v1/jsbin/671481879-analytics_autotrack.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 8121
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:22:04 GMT
expires: Fri, 15 Nov 2024 23:22:04 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Nov 2023 16:55:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 145491
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
200 OK 40 kB URL GET HTTP/3 www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32468)
Hash 01b1a45dc2971611aa3150be858ca102
7b2fa66389e1e092ab94c1d8b4132662bdffa5fa
fbb9d28527f29f97cd0d6245cf058801f842ec6de0552aafeacd02f4c23413b7
GET /blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Nov 2023 15:46:55 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 39614
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/css/maia.css
200 OK 12 kB URL GET HTTP/2 www.google.com/css/maia.css
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type Unicode text, UTF-8 text, with very long lines (43499), with no line terminators
Hash 9e914fd11c5238c50eba741a873f0896
950316ffef900ceecca4cf847c9a8c14231271da
8684a32d1a10d050a26fc33192edf427a5f0c6874c590a68d77ae6e0d186bd8a
GET /css/maia.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 12181
date: Sat, 18 Nov 2023 15:46:55 GMT
expires: Sat, 18 Nov 2023 15:46:55 GMT
cache-control: private, max-age=0
last-modified: Mon, 25 May 2020 08:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i9.ytimg.com/vi_blogger/_n9B0mfewts/1.jpg?sqp=CO-446oGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3k3vuksSbnj7fd7hjPbtGsbUuqTjg
200 OK 741 B URL GET HTTP/2 i9.ytimg.com/vi_blogger/_n9B0mfewts/1.jpg?sqp=CO-446oGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3k3vuksSbnj7fd7hjPbtGsbUuqTjg
IP
Requested by https://www.blogger.com/video.g?token=AD6v5dxTtXAfGZ9iRchyeLHO-pySUbw9hagUOhGY02NJEbb08BZ9n7cBYO-qoIx02zmbhGHMvGa4Kic2V_CfD5kBh7vyd-xYccZAbc35jpajlaoNt37yHB2R_50THTG2S6G4v2mc-8Y
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash de8e92fca80755a68e5a3055358d28bc
1106a139d4b7398509cc7ddba4fa16770a5dfa83
b84e559b5529e643273a4ae21e488e666d129b3ee6c7b716a1da5550d5a9c732
GET /vi_blogger/_n9B0mfewts/1.jpg?sqp=CO-446oGGPDEAfqGspsBBgjAAhC0AQ&rs=AMzJL3k3vuksSbnj7fd7hjPbtGsbUuqTjg HTTP/1.1
Host: i9.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 741
date: Sat, 18 Nov 2023 15:46:55 GMT
expires: Sat, 18 Nov 2023 15:46:55 GMT
cache-control: private, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/og/_/ss/k=og.qtm.BDxHnnv_WVU.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtlbPgrveFwlwIfybEbwqBXlbKOyQ
200 OK 669 B URL GET HTTP/3 www.gstatic.com/og/_/ss/k=og.qtm.BDxHnnv_WVU.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtlbPgrveFwlwIfybEbwqBXlbKOyQ
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1722), with no line terminators
Hash 3777ec01def0c49334f9e6071faf5e61
f2b21ca2e2de38a966ffd95fa41309f2d0aa2977
baef7154ddbd4c35e989534bfb275e1bbb3e722dc9c3eafb5be315ee6dddd687
GET /og/_/ss/k=og.qtm.BDxHnnv_WVU.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTtlbPgrveFwlwIfybEbwqBXlbKOyQ HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 669
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:24:29 GMT
expires: Fri, 15 Nov 2024 23:24:29 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 09 Nov 2023 02:34:51 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 145346
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
200 OK 16 kB URL GET HTTP/3 fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 97e2cbc90142c4bc32819f36a2005a8e
ab9d44b9d6d90141bae6f1790c8ee50de4a28ab9
3557d3b882bde69e39fd4143834815c597b6fac5b002261ab84c97c42c3f5997
GET /css?lang=no&family=Product+Sans|Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 15:46:55 GMT
date: Sat, 18 Nov 2023 15:46:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
200 OK 19 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 18656, version 1.0\012- data
Hash 2bf19e2e53e85d0308ac3a906565f915
462500c7fcf76cf3dcee0348aa13297bd532ff58
e88f421b2498fd4ff75eeb6df1d0e8b5e1f038007350ad968d4f258cbe50a02c
GET /s/opensans/v36/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18656
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 05:18:25 GMT
expires: Fri, 15 Nov 2024 05:18:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:30:33 GMT
content-type: font/woff2
age: 210510
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
200 OK 663 B URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1660), with no line terminators
Hash 554640f465eb3ed903b543dae0a1bcac
e0e6e2c8939008217eb76a3b3282ca75f3dc401a
99bf4aa403643a6d41c028e5db29c79c17cbc815b3e10cd5c6b8f90567a03e52
GET /images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 663
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:52:42 GMT
expires: Fri, 15 Nov 2024 04:52:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Dec 2021 12:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 212053
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/img/blogger-logotype-color-black-1x.png
200 OK 1.2 kB URL GET HTTP/3 www.blogger.com/img/blogger-logotype-color-black-1x.png
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type PNG image data, 112 x 27, 8-bit colormap, non-interlaced\012- data
Hash a9d652846aeacdf8da5401f6e4d4a409
6127321cafe0be999bc0c9d952715ede2b9dd83d
cbad27c35fbc84e2da4280476adeb197566db2750b8b4a79eb7e872db8d8acb7
GET /img/blogger-logotype-color-black-1x.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1155
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 04:59:08 GMT
expires: Thu, 23 Nov 2023 04:59:08 GMT
cache-control: public, max-age=604800
last-modified: Wed, 15 Nov 2023 16:55:59 GMT
content-type: image/png
age: 211667
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
mildlunch.com/Ypm.xqvrYs2_tulvcwnxN-DzaAGBVCj_aE2FVGyHP-2JlKjLPMX_BOzPJQmR9-0TPUUVNWn_SYkZ9aUbe-EdleKfWgW_5iKjdklll-XnUomplqZ_VsztVurvS-2xlyBzMAE_5CXDUEXFl-PHRI1JpKp_TMUNROoPa-0R1S6TSUm_xWNXRYGZh-tbTcVdRej_Mgkh1iEjV-mllmNnVoE_ZqqrTsWtp-NvMw1xlyt_RATBVCPDV-EFRG1HdIU_9KPLcMUNJ-qPaQTRdSt_ZU0VUWtXJ-nZJaybacW_Qe9fMgDhZ-ljMkjlUm2_NoTpgqzrN-TtQu3vNwj_YyyzYA2BI-wDYEjFdGi_NI2JEKyLO-TNQO1PYQj_MS0TMUzVk-mXdYnZQa9_McTdcewfM-DhMiyjMkj_QmxnNoCp1-lrMsDtJuk_ZwDxcy4zY-zBQC5DMEW_UGzHNIzJc-2LMM2NEOx_YQ2RYS2TN-GVQW5XMYT_kaxbYcmdN-lfMgihZi6_bk2l5mlna-WpQq9rNsD_cu5vNwDxM-0zMAQB?b=5
200 OK 0 B URL GET HTTP/2 mildlunch.com/Ypm.xqvrYs2_tulvcwnxN-DzaAGBVCj_aE2FVGyHP-2JlKjLPMX_BOzPJQmR9-0TPUUVNWn_SYkZ9aUbe-EdleKfWgW_5iKjdklll-XnUomplqZ_VsztVurvS-2xlyBzMAE_5CXDUEXFl-PHRI1JpKp_TMUNROoPa-0R1S6TSUm_xWNXRYGZh-tbTcVdRej_Mgkh1iEjV-mllmNnVoE_ZqqrTsWtp-NvMw1xlyt_RATBVCPDV-EFRG1HdIU_9KPLcMUNJ-qPaQTRdSt_ZU0VUWtXJ-nZJaybacW_Qe9fMgDhZ-ljMkjlUm2_NoTpgqzrN-TtQu3vNwj_YyyzYA2BI-wDYEjFdGi_NI2JEKyLO-TNQO1PYQj_MS0TMUzVk-mXdYnZQa9_McTdcewfM-DhMiyjMkj_QmxnNoCp1-lrMsDtJuk_ZwDxcy4zY-zBQC5DMEW_UGzHNIzJc-2LMM2NEOx_YQ2RYS2TN-GVQW5XMYT_kaxbYcmdN-lfMgihZi6_bk2l5mlna-WpQq9rNsD_cu5vNwDxM-0zMAQB?b=5
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Ypm.xqvrYs2_tulvcwnxN-DzaAGBVCj_aE2FVGyHP-2JlKjLPMX_BOzPJQmR9-0TPUUVNWn_SYkZ9aUbe-EdleKfWgW_5iKjdklll-XnUomplqZ_VsztVurvS-2xlyBzMAE_5CXDUEXFl-PHRI1JpKp_TMUNROoPa-0R1S6TSUm_xWNXRYGZh-tbTcVdRej_Mgkh1iEjV-mllmNnVoE_ZqqrTsWtp-NvMw1xlyt_RATBVCPDV-EFRG1HdIU_9KPLcMUNJ-qPaQTRdSt_ZU0VUWtXJ-nZJaybacW_Qe9fMgDhZ-ljMkjlUm2_NoTpgqzrN-TtQu3vNwj_YyyzYA2BI-wDYEjFdGi_NI2JEKyLO-TNQO1PYQj_MS0TMUzVk-mXdYnZQa9_McTdcewfM-DhMiyjMkj_QmxnNoCp1-lrMsDtJuk_ZwDxcy4zY-zBQC5DMEW_UGzHNIzJc-2LMM2NEOx_YQ2RYS2TN-GVQW5XMYT_kaxbYcmdN-lfMgihZi6_bk2l5mlna-WpQq9rNsD_cu5vNwDxM-0zMAQB?b=5 HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q
200 OK 59 kB URL GET HTTP/3 www.gstatic.com/og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (1551)
Hash c99cc8ecb1aaba2740f68247a413e6c7
e95159eb07ac58dc6f17e964983c96b8eca66026
793df7d1a8a41eca4a95cb71eb480b9ef3deb72a1e6822f8bbffce863a6f2e14
GET /og/_/js/k=og.qtm.en_US._Y_GrwNhTr8.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTuFdMeuRY-i7JPqP_M8jfztH8nn8Q HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 58749
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:21:54 GMT
expires: Fri, 15 Nov 2024 23:21:54 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 14 Nov 2023 02:34:53 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 145501
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
professionalswebcheck.com/stats
200 OK 40 B URL GET HTTP/2 professionalswebcheck.com/stats
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 375cd36a8743c03bccb6e17ca8a7b76b
9c7b428624fbe8d76725e8bfd55d539c5dfff0a8
4fa4dc1f79e7b872548fa55bbb9c86365513756ad561368b446a2d1461ff2b32
GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.beruang.club
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=2fceb5f3-7cc4-4dbf-bff1-2779c604b347:3:1; expires=Tue, 15 Nov 2033 15:46:56 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0
200 OK 41 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 1ccd95d83b05996630e52aa8dae42f06
027c31f9399bfae7d6ffc8b8d7299b3a9e8e9080
9d4e56038dcccd960ea62bd2ee6925469001254602dfb54b740f1a1adaf0d7b2
GET /_/scs/abc-static/_/js/k=gapi.gapi.en.CzrNRWo3AFk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8xPbrtpW2bPUIcgU2adGqIEpV82Q/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 40799
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 05:05:17 GMT
expires: Fri, 15 Nov 2024 05:05:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Oct 2023 15:15:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 211299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/plusone.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/plusone.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (2664)
Hash 03f8c0cd20b9675c0fb54c3cccc6d1cf
e37d2a997e1045158c791667bb37fd244c9b66af
9b750b4baeaf88b2ac42100bcc3ea6d799a6ba8c3c5b2cce1d72a75a6c0952f7
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21931
date: Sat, 18 Nov 2023 15:46:56 GMT
expires: Sat, 18 Nov 2023 15:46:56 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "cf28888d642e74bc"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=Scb_aUytd-D91cg_H1M6rqvuWuUk2KQQFSVCdfuFZd2psuwfzg5yJgEDhYRkWNNZS2tLx8Ooa-cJrlVFBJ2SzN5pS1vQe0H2okCRbZ3LDP-Qxp0NXix_ez-q0Phj15KaB5o2EsByWEOnqZGWT9yTc7TI6Ftx1ccOwk3hU1e1TB8; expires=Sun, 19-May-2024 15:46:56 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AOzoyjtjrhQ.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9-fA1P7IZFa1fdRj158NoDqrnbYA/cb=gapi.loaded_0?le=scs
200 OK 56 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.AOzoyjtjrhQ.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9-fA1P7IZFa1fdRj158NoDqrnbYA/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 620fbf745646ea3a31a2c6a1e60f3980
bf980a07d73531ef056d421b2d0d92ac424cb5d7
3316b3ce32bd93cd3f04aa87e38fca639c28710f5b88c0ddc7b29d60e5d5eac4
GET /_/scs/abc-static/_/js/k=gapi.lb.en.AOzoyjtjrhQ.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9-fA1P7IZFa1fdRj158NoDqrnbYA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55543
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:25:18 GMT
expires: Fri, 15 Nov 2024 23:25:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Oct 2023 15:22:58 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 145298
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 2d0450888479d4ddda305bd96206b240
5b4595aab1cd3f854718e05db9be0c65a12ab2f6
44de073e74ff24c6b1c0fe1f3ac5b33d793560e85ef24fb6ce89e76c2cf90af6
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:56 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 29e49f28a03bce6ffa8460d605f4675c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 18 Nov 2023 15:46:55 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y0ibECZQ%2BUF4HfotzJdx7eD0LCw08hc7VVVU%2F%2F6jBi0SrrPPITCRcDihic4ecZK8Jguw%2B0G%2Br32pZpMkUxRPAcqcGnYGgqNeih5YgfFa%2BZ9ZQz1q0MUxy%2B3%2BccYWlx3oIk9EBlo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8281595bec97b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.beruang.club/favicon.ico
200 OK 412 B URL GET HTTP/2 www.beruang.club/favicon.ico
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectwww.beruang.club
FingerprintCD:D9:B4:18:7C:E4:4D:7A:FF:C8:51:12:CF:93:EF:41:DA:A1:8E:AA
ValiditySat, 11 Nov 2023 12:47:06 GMT - Fri, 09 Feb 2024 13:32:35 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: www.beruang.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Cookie: _ga_XM2YCT0PTM=GS1.1.1700322416.1.0.1700322416.0.0.0; _ga=GA1.1.1793574239.1700322416; _ga_EQ87SLSFFF=GS1.1.1700322416.1.0.1700322416.0.0.0; __PPU___PPU_SESSION_URL=%2F2022%2F10%2Fpunya-mamah-tiri-sangean.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sat, 18 Nov 2023 15:46:56 GMT
date: Sat, 18 Nov 2023 15:46:56 GMT
cache-control: private, max-age=86400
last-modified: Sat, 18 Nov 2023 08:03:36 GMT
etag: W/"d57d880b84e9ba2a11fd71ac773b3541df8a106c4440630033c72de81a9af800"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
X-Firefox-Spdy: h2
momhomicidalspa.com/sbar.json?key=0cba6f1e0cf973621a3090eac4e61908
200 OK 5.2 kB URL GET HTTP/1.1 momhomicidalspa.com/sbar.json?key=0cba6f1e0cf973621a3090eac4e61908
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
File type JSON data\012- , ASCII text, with very long lines (7548), with no line terminators
Hash 184b752c37c1e268170c4919cf8f8fcf
78f2b3055e57d0a2371123faf6d62cbc23bd105a
7fb32c206f36f89944157fd0470213df3c8bc2adb7d1ea89326ddf5b9a700ff2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=0cba6f1e0cf973621a3090eac4e61908 HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:57 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.beruang.club
Access-Control-Allow-Origin: https://www.beruang.club
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=20130351; expires=Sun, 19 Nov 2023 15:46:56 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 19 Nov 2023 15:46:57 GMT; secure; SameSite=None
uncs=1; expires=Sun, 19 Nov 2023 15:46:57 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 19 Nov 2023 15:46:57 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 19 Nov 2023 15:46:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d936ce073212614f4ec1487d64da5406
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjncV7NP1jmgt13ln2IUXrM7UtW9P5F_2AKC6_RhrBfqZLQiklQ9VAzUfqnd6Z5YNW_ZSKNMp3DNYJ5EX12F7LhjB7zEkKiv6Vscnmg2feHPPnQEj0y8Z78mV8Gd6K_2S338Mn5s3bWWMJ5raG72nw9iYWY6N-GfbGYOORWo6NTimsYjN5yabDmcf3F/s320/4.jpg
200 OK 37 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjncV7NP1jmgt13ln2IUXrM7UtW9P5F_2AKC6_RhrBfqZLQiklQ9VAzUfqnd6Z5YNW_ZSKNMp3DNYJ5EX12F7LhjB7zEkKiv6Vscnmg2feHPPnQEj0y8Z78mV8Gd6K_2S338Mn5s3bWWMJ5raG72nw9iYWY6N-GfbGYOORWo6NTimsYjN5yabDmcf3F/s320/4.jpg
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint2E:01:38:64:37:3C:F9:F4:3C:95:49:F1:9E:D9:61:5F:63:48:CF:CE
ValidityMon, 23 Oct 2023 11:23:50 GMT - Mon, 15 Jan 2024 11:23:49 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 227x320, components 3\012- data
Hash 04f8b5e403264525a6500f473cb7cc20
b9168d9f699796f58ee7a68675ce22fa5f7b22ad
91bf022ae4964784a9c29a83217cc3d2dd17ac3b2a6b2816adf592785d9cf058
GET /img/b/R29vZ2xl/AVvXsEjncV7NP1jmgt13ln2IUXrM7UtW9P5F_2AKC6_RhrBfqZLQiklQ9VAzUfqnd6Z5YNW_ZSKNMp3DNYJ5EX12F7LhjB7zEkKiv6Vscnmg2feHPPnQEj0y8Z78mV8Gd6K_2S338Mn5s3bWWMJ5raG72nw9iYWY6N-GfbGYOORWo6NTimsYjN5yabDmcf3F/s320/4.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "vff3f"
expires: Sun, 19 Nov 2023 15:46:57 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4.jpg"
x-content-type-options: nosniff
date: Sat, 18 Nov 2023 15:46:57 GMT
server: fife
content-length: 36957
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poweredby.jads.co/adshow.php?adzone=1040084
200 OK 1.5 kB URL GET HTTP/1.1 poweredby.jads.co/adshow.php?adzone=1040084
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (412), with CRLF, LF line terminators
Hash 130f97e504843fcff0a4da4948693ed3
a2d11595c13bc71189d1f61f1d9f3baaf26bee74
b4145e1c90ef19a0f1c7475a080c95498a117610f103daa37f562ec6f27eec0b
GET /adshow.php?adzone=1040084 HTTP/1.1
Host: poweredby.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 18 Nov 2023 15:46:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: close
X-Powered-By: PHP/5.6.40
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR OUR IND STA"
Set-Cookie: surferid=c8a14f3a63e73c5781df09aff7b5ab1f; expires=Sun, 17-Nov-2024 15:46:54 GMT; Max-Age=31536000; path=/; SameSite=None; Secure; domain=.jads.co
imps42805=1; expires=Sun, 19-Nov-2023 15:46:58 GMT; Max-Age=86400; path=/; SameSite=None; Secure; domain=.jads.co
juicy_data_1=YToxOntpOjExODA0MDY7aToxNzAwNTgxNjE0O30%3D; expires=Tue, 21-Nov-2023 15:46:54 GMT; Max-Age=259196; path=/; SameSite=None; Secure; domain=jads.co
juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D; expires=Tue, 21-Nov-2023 15:46:54 GMT; Max-Age=259196; path=/; SameSite=None; Secure; domain=jads.co
Content-Encoding: gzip
i.jads.co/network/user500/33261-1617884182-0301469001617884182.png
200 OK 1.5 kB URL GET HTTP/1.1 i.jads.co/network/user500/33261-1617884182-0301469001617884182.png
IP
Requested by https://poweredby.jads.co/adshow.php?adzone=1040084
Certificate IssuerSectigo Limited
Subject*.jads.co
Fingerprint9E:B2:20:AC:19:4B:72:8F:12:D9:D6:5A:6A:B5:BE:EE:46:13:48:EB
ValidityMon, 26 Dec 2022 00:00:00 GMT - Fri, 26 Jan 2024 23:59:59 GMT
File type PNG image data, 300 x 100, 8-bit colormap, non-interlaced\012- data
Hash a71c6a691a71340bd0749dc1fa6f67f2
93aab673319770c9a9f4db3d59636dc91fbf1227
f9e5e435e5aa5877bbe306abb79af87ebbabf89e2eb52dd4b3122c2af281c9d5
GET /network/user500/33261-1617884182-0301469001617884182.png HTTP/1.1
Host: i.jads.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poweredby.jads.co/
Cookie: surferid=c8a14f3a63e73c5781df09aff7b5ab1f; imps42805=1; juicy_data_1=YToxOntpOjExODA0MDY7aToxNzAwNTgxNjE0O30%3D; juicy_data=YToxOntzOjEyOiJqdWljeV9kYXRhXzEiO3M6MToiMSI7fQ%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 18 Nov 2023 15:46:58 GMT
Connection: Keep-Alive
ETag: "1617884182"
Cache-Control: max-age=16787461
Content-Length: 1470
Content-Type: image/png
Last-Modified: Thu, 08 Apr 2021 12:16:22 GMT
Accept-Ranges: bytes
X-HW: 1700322418.dop231.sk1.t,1700322418.cds252.sk1.shn,1700322418.dop231.sk1.t,1700322418.cds214.sk1.c
momhomicidalspa.com/ren.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2d2WmpIWmzZWmatEnEXgjlzJkzm9M9M2c8Z142uSpWpJcpgteTJ01rNbT2QvTCimy8EAPSrFcRjS%2Bg%2F4DQK0HZTWyt4J0PHJ7n4XkOfL7Pc85bK%2BmOokOKtptn%2BRJlDFXrFV07eMEwjmtTNEq7WrdhX7St45rIjhm6W9EPaacJ7vCqqRu6buiG1qSCBLxbNQyjogON112j4uoVy6wYdQu64vFcpipIpIKf7Sj7gfr9J9dvW0BxD6Lwg1NEdhIeH50MU4YSLiDzb74SdSKeRxA%2BCgOhQhDd3OsGLreanwKP1obAwLOHjR7tK%2BrPP4EX3dyjBC9b2wX1GJAIPP8pyLMeENYDinqA%2BRWg%2FpYCgH2YnoEovDHNRY4Wd6toUO0rIw9%2BBZr3lZHvnocovD3BaFeb4yxNKI8kdIMCaLcHtN2DON2AZEkFmm8ATt4A6n%2BlVB9MQRRen5GMA%2FWLoXhKe0CDHjCyDEiqkA4OVSENVEhjFUJ%2FW3Ow1Wj4jbqPCMamFxiNwAosF2E9wHrNNSHFA7xlSOJlwGwZsLgMsbgMHXptq74fRPoZyIUCpK%2BCTPqKev4yZH4BOVEglwrkSIGcKpAnCuRZseYzacrihs9k6hl73tzztWKVJ%2B0VtMaTNomUlXhH2TcYjVo7XIUO2dZ07CE7MIiOA9ep2aaBarqrE4QtYhuu3gBJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VMHdDCqtXQYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbjq7XTNMy7IZbLzvlhl03yobpWPV6rezpjkWcICi7xPTK9boblM26Z5frlm9bxLJt1yEQpptjH7%2FWvfHNl58A5T3A8ZvvlkqtkzPTpdL2xj%2FRhCQRFMuqRBmp0LA9RjISJSfoQ5nygEf9MvX%2FFcgDNGyfGKKM1sZHzeao2cR%2BVEFhRPJKRJJRs%2BlYhmO7ht0wLUs3DdNwHMesXIpJ%2B1apNN%2Ban5osle7O8YAS7WDNtLWQJEQculMqnZqcOznbOjffGgj%2B6AwPNZ4RcVRjSONSap0oZYzcKZWmxmdPT15snR0%2FPVkqbet%2FDuYxjurfKWq6Y%2B5SgIw3lT0DyRUQ7FHuxSrkabEqTG9zLPhw%2Bsj%2FXn4CGO0rE1%2F8Doxsjt3fa0ReAZL85eKjeEVehbZQASVXIAoLyEQBGSsAsWWQ6X9Xk1hsjn1dGxp4TF31mFCve0ywa7tfRNJtjTjEdl1Ltxxf1z3LN02jTjCqWchFphk4kMg%2BufDt638AAAD%2F%2FwEAAP%2F%2Fj0c80y0GAAA%3D
200 OK 7 B URL GET HTTP/1.1 momhomicidalspa.com/ren.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2d2WmpIWmzZWmatEnEXgjlzJkzm9M9M2c8Z142uSpWpJcpgteTJ01rNbT2QvTCimy8EAPSrFcRjS%2Bg%2F4DQK0HZTWyt4J0PHJ7n4XkOfL7Pc85bK%2BmOokOKtptn%2BRJlDFXrFV07eMEwjmtTNEq7WrdhX7St45rIjhm6W9EPaacJ7vCqqRu6buiG1qSCBLxbNQyjogON112j4uoVy6wYdQu64vFcpipIpIKf7Sj7gfr9J9dvW0BxD6Lwg1NEdhIeH50MU4YSLiDzb74SdSKeRxA%2BCgOhQhDd3OsGLreanwKP1obAwLOHjR7tK%2BrPP4EX3dyjBC9b2wX1GJAIPP8pyLMeENYDinqA%2BRWg%2FpYCgH2YnoEovDHNRY4Wd6toUO0rIw9%2BBZr3lZHvnocovD3BaFeb4yxNKI8kdIMCaLcHtN2DON2AZEkFmm8ATt4A6n%2BlVB9MQRRen5GMA%2FWLoXhKe0CDHjCyDEiqkA4OVSENVEhjFUJ%2FW3Ow1Wj4jbqPCMamFxiNwAosF2E9wHrNNSHFA7xlSOJlwGwZsLgMsbgMHXptq74fRPoZyIUCpK%2BCTPqKev4yZH4BOVEglwrkSIGcKpAnCuRZseYzacrihs9k6hl73tzztWKVJ%2B0VtMaTNomUlXhH2TcYjVo7XIUO2dZ07CE7MIiOA9ep2aaBarqrE4QtYhuu3gBJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VMHdDCqtXQYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbjq7XTNMy7IZbLzvlhl03yobpWPV6rezpjkWcICi7xPTK9boblM26Z5frlm9bxLJt1yEQpptjH7%2FWvfHNl58A5T3A8ZvvlkqtkzPTpdL2xj%2FRhCQRFMuqRBmp0LA9RjISJSfoQ5nygEf9MvX%2FFcgDNGyfGKKM1sZHzeao2cR%2BVEFhRPJKRJJRs%2BlYhmO7ht0wLUs3DdNwHMesXIpJ%2B1apNN%2Ban5osle7O8YAS7WDNtLWQJEQculMqnZqcOznbOjffGgj%2B6AwPNZ4RcVRjSONSap0oZYzcKZWmxmdPT15snR0%2FPVkqbet%2FDuYxjurfKWq6Y%2B5SgIw3lT0DyRUQ7FHuxSrkabEqTG9zLPhw%2Bsj%2FXn4CGO0rE1%2F8Doxsjt3fa0ReAZL85eKjeEVehbZQASVXIAoLyEQBGSsAsWWQ6X9Xk1hsjn1dGxp4TF31mFCve0ywa7tfRNJtjTjEdl1Ltxxf1z3LN02jTjCqWchFphk4kMg%2BufDt638AAAD%2F%2FwEAAP%2F%2Fj0c80y0GAAA%3D
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2d2WmpIWmzZWmatEnEXgjlzJkzm9M9M2c8Z142uSpWpJcpgteTJ01rNbT2QvTCimy8EAPSrFcRjS%2Bg%2F4DQK0HZTWyt4J0PHJ7n4XkOfL7Pc85bK%2BmOokOKtptn%2BRJlDFXrFV07eMEwjmtTNEq7WrdhX7St45rIjhm6W9EPaacJ7vCqqRu6buiG1qSCBLxbNQyjogON112j4uoVy6wYdQu64vFcpipIpIKf7Sj7gfr9J9dvW0BxD6Lwg1NEdhIeH50MU4YSLiDzb74SdSKeRxA%2BCgOhQhDd3OsGLreanwKP1obAwLOHjR7tK%2BrPP4EX3dyjBC9b2wX1GJAIPP8pyLMeENYDinqA%2BRWg%2FpYCgH2YnoEovDHNRY4Wd6toUO0rIw9%2BBZr3lZHvnocovD3BaFeb4yxNKI8kdIMCaLcHtN2DON2AZEkFmm8ATt4A6n%2BlVB9MQRRen5GMA%2FWLoXhKe0CDHjCyDEiqkA4OVSENVEhjFUJ%2FW3Ow1Wj4jbqPCMamFxiNwAosF2E9wHrNNSHFA7xlSOJlwGwZsLgMsbgMHXptq74fRPoZyIUCpK%2BCTPqKev4yZH4BOVEglwrkSIGcKpAnCuRZseYzacrihs9k6hl73tzztWKVJ%2B0VtMaTNomUlXhH2TcYjVo7XIUO2dZ07CE7MIiOA9ep2aaBarqrE4QtYhuu3gBJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VMHdDCqtXQYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbjq7XTNMy7IZbLzvlhl03yobpWPV6rezpjkWcICi7xPTK9boblM26Z5frlm9bxLJt1yEQpptjH7%2FWvfHNl58A5T3A8ZvvlkqtkzPTpdL2xj%2FRhCQRFMuqRBmp0LA9RjISJSfoQ5nygEf9MvX%2FFcgDNGyfGKKM1sZHzeao2cR%2BVEFhRPJKRJJRs%2BlYhmO7ht0wLUs3DdNwHMesXIpJ%2B1apNN%2Ban5osle7O8YAS7WDNtLWQJEQculMqnZqcOznbOjffGgj%2B6AwPNZ4RcVRjSONSap0oZYzcKZWmxmdPT15snR0%2FPVkqbet%2FDuYxjurfKWq6Y%2B5SgIw3lT0DyRUQ7FHuxSrkabEqTG9zLPhw%2Bsj%2FXn4CGO0rE1%2F8Doxsjt3fa0ReAZL85eKjeEVehbZQASVXIAoLyEQBGSsAsWWQ6X9Xk1hsjn1dGxp4TF31mFCve0ywa7tfRNJtjTjEdl1Ltxxf1z3LN02jTjCqWchFphk4kMg%2BufDt638AAAD%2F%2FwEAAP%2F%2Fj0c80y0GAAA%3D HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:58 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b32ca7c9666986d4d7cec5d8a46ff345
Strict-Transport-Security: max-age=0; includeSubdomains
www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
200 OK 6.5 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with very long lines (35889), with no line terminators
Hash e287450e0a5c5a5625f7ba3716c1b0cf
3287eee808b2a77f7e4ea16b148f4cd173cddb66
5ee6fb081a76cfc34678b67e894a1fa91ed96857c4d94710cb1a8cea5ea1d76b
GET /static/v1/v-css/3268905543-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:24:17 GMT
expires: Fri, 15 Nov 2024 23:24:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Nov 2023 22:10:20 GMT
content-type: text/css
vary: Accept-Encoding
age: 145361
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
professionalswebcheck.com/stats
200 OK 40 B URL GET HTTP/2 professionalswebcheck.com/stats
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerAmazon
Subjectprofessionalswebcheck.com
Fingerprint75:E9:08:FD:96:58:C7:98:43:E8:21:27:A8:E9:B9:A4:55:28:F2:0C
ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 375cd36a8743c03bccb6e17ca8a7b76b
9c7b428624fbe8d76725e8bfd55d539c5dfff0a8
4fa4dc1f79e7b872548fa55bbb9c86365513756ad561368b446a2d1461ff2b32
GET /stats HTTP/1.1
Host: professionalswebcheck.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: uid_id2=2fceb5f3-7cc4-4dbf-bff1-2779c604b347:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.beruang.club
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/rtb/mac/2/img/close.png
200 OK 6.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/rtb/mac/2/img/close.png
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/notifications/rtb/mac/2/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:58 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 17 May 2021 12:14:41 GMT
etag: "60a25e31-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1433116
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W8cmsTuKXSVIaGxF0IE8H%2Bx6D2XBoeDx5Ci9KueHWSQ2ha9Y%2BBr4IYrTOQ9fEZ7HN7DjzbXxAgeiBu6yrOgLritSFEEP6o768evFK%2F%2FdUBJfmc%2Bqogeqvw33YfVLTRwtm1Z89D18CWqi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8281596d983723fc-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fmagic.css&l=45250&fd=419
200 OK 0 B URL GET HTTP/1.1 momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fmagic.css&l=45250&fd=419
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fmagic.css&l=45250&fd=419 HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 13 Nov 2023 23:43:03 GMT
expires: Tue, 12 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 403436
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Nov 2023 21:52:12 GMT
expires: Thu, 14 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 237287
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
us.histi.co/nty/metrics/save.img?event=impressions&bid-id=v2-1700322416895-7-8651-1274553-b074e7ff-9e2b-559f-25b6-54d64e46697e&img=https%3A%2F%2Fcdn.amnew.net%2F741769168244021217772.jpeg
302 Found 0 B URL GET HTTP/2 us.histi.co/nty/metrics/save.img?event=impressions&bid-id=v2-1700322416895-7-8651-1274553-b074e7ff-9e2b-559f-25b6-54d64e46697e&img=https%3A%2F%2Fcdn.amnew.net%2F741769168244021217772.jpeg
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subject*.histi.co
Fingerprint82:6D:17:16:6F:80:15:D5:8D:45:F1:F8:56:02:25:10:5B:76:7C:28
ValiditySat, 07 Oct 2023 23:09:12 GMT - Fri, 05 Jan 2024 23:09:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /nty/metrics/save.img?event=impressions&bid-id=v2-1700322416895-7-8651-1274553-b074e7ff-9e2b-559f-25b6-54d64e46697e&img=https%3A%2F%2Fcdn.amnew.net%2F741769168244021217772.jpeg HTTP/1.1
Host: us.histi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: openresty/1.21.4.1
date: Sat, 18 Nov 2023 15:46:59 GMT
content-length: 0
location: https://cdn.amnew.net/741769168244021217772.jpeg
X-Firefox-Spdy: h2
momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fjs%2Fscript.js&l=373&fd=415
200 OK 0 B URL GET HTTP/1.1 momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fjs%2Fscript.js&l=373&fd=415
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fjs%2Fscript.js&l=373&fd=415 HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.amnew.net/741769168244021217772.jpeg
200 OK 4.5 kB URL GET HTTP/2 cdn.amnew.net/741769168244021217772.jpeg
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subject*.amnew.net
FingerprintCD:FA:D6:90:CC:92:60:B3:98:F6:3F:6B:31:49:10:90:01:51:A0:DE
ValiditySun, 08 Oct 2023 23:08:29 GMT - Sat, 06 Jan 2024 23:08:28 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 192x192, components 3\012- data
Hash c43829590b4e2fd073e36ad6a9cae85a
88fc6d1109a675fe15ec22042331bcb7375bd091
49801c07b825188fe89398214ba0124e40a8f51d4551928fa6deb97532192238
GET /741769168244021217772.jpeg HTTP/1.1
Host: cdn.amnew.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Sat, 18 Nov 2023 15:46:59 GMT
content-type: image/jpeg
content-length: 4462
last-modified: Thu, 05 Oct 2023 15:56:55 GMT
etag: "651edcc7-116e"
expires: Sat, 18 Nov 2023 16:54:34 GMT
cache-control: max-age=1209600
accept-ranges: bytes
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=2fceb5f3-7cc4-4dbf-bff1-2779c604b347&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=2fceb5f3-7cc4-4dbf-bff1-2779c604b347&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
FingerprintBE:8C:78:D1:BA:58:B8:88:10:09:32:1D:31:7A:D9:4A:09:BF:6C:7A
ValiditySat, 23 Sep 2023 07:33:12 GMT - Fri, 22 Dec 2023 07:33:11 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=2fceb5f3-7cc4-4dbf-bff1-2779c604b347&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&dev=e&res=14.2079&b_frame=0&pk=0cba6f1e0cf973621a3090eac4e61908&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=15 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4777a942cf5790320f83e8273943a625
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 694 B URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash cb2c9df74facee436bb99358b04d9bab
4bf65a78e6a0566051b5b47b75e8b0deac478071
e40dbc6da95b47d932014e5a93f35b13a341a37ea6fe7559dca041dc77271cd6
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 15:46:58 GMT
date: Sat, 18 Nov 2023 15:46:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
momhomicidalspa.com/impr.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2X3ZYakjZblqZJm0TshVDOnDmzOd0zc8Zz5mWTq2JFepkieD150rRWQ2svRC%2BsyMYLMSDNehXR%2BAL6Dwi9EpTdxNYK3vnA4XkenufA5%2Fs857y1ku4oOqRou3mWL1HGUNWu6NrBC4ZxXJuiUdrVunXnomMd10R2zNAbFf2QdprgDq%2BauqHrhm5oTSpIwLtVwzAqOtB4vWFUGnrFMiuGbUFXPJ7LVAWJVPCzHWU%2FUL%2F%2F5PptCyjuQRR%2BcIrITsLjo5NhylDCBWT%2BzVeiTsTzCMJHYSBUCKKbe93A5VbzU%2BDR2hAYePaw0aN9Rf35J%2FCim3uU4GVru6AeAxKB5z8FedYDwnpAUQ8wvwLU31IAsA%2FTMxCFN6a5yNHibhUNqn1l5MGvQPO%2BMvLd8xCFtycY7WpznKUJ5ZGEblAA7faAtnsQpxuQLKlA8w3AyRtA%2Fa%2BU6oMpiMLrM5JxoH4xFE9pD2jQA0aWAUkV0sGhKqSBCmmsQuhvay626nW%2FbvuIYGx6gVEPrMBqIKwHWK81TEjxAG8ZkngZMFsGLC5DLC5Dh17bsveDSD8DuVCA9FWQSV9Rz1%2BGzC8gJwrkUoEcKZBTBfJEgTwr1nwmTVnc8JlMPWPPm3u%2BVqzypL2C1njSJpGyEu8o%2BwajUWuHq9Ah25qOPeQEBtFx0HBrjmmgmt7QCcIWcYyGXgdJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VNHdDCqlXXYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbrq7XTNMynHrDLrvlumMbZcN0LduulT3dtYgbBOUGMb2ybTeCsml7Ttm2fMciluM0XAJhujn28WvdG998%2BQlQ3gMcv%2FluqdQ6OTNdKm1v%2FBNNSBJBsaxKlJEKDdtjJCNRcoI%2BlCkPeNQvU%2F9fgTxAw%2FaJIcpobXzUbI6aTexHFRRGJK9EJBk1m65luE7DcOqmZemmYRqu65qVSzFp3yqV5lvzU5Ol0t05HlCiHayZjhaShIhDd0qlU5NzJ2db5%2BZbA8EfneGhxjMijmoMaVxKrROljJE7pdLU%2BOzpyYuts%2BOnJ0ulbf3PwTzGUf07RU13zV0KkPGmsmcguQKCPcq9WIU8LVaF6W2OBR9OH%2Fnfy08Ao31l4ovfgZHNsft7jcgrQJK%2FXHwUr8ir0BYqoOQKRGEBmSggYwUgtgwy%2Fe9qEovNsa9rQwOPqaseE%2Bp1jwl2bfeLSLqtYawTZHiuQYhP7BrGloPrnhPULJfUbd%2BGRPbJhW9f%2FwMAAP%2F%2FAQAA%2F%2F9wYJTDLQYAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 momhomicidalspa.com/impr.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2X3ZYakjZblqZJm0TshVDOnDmzOd0zc8Zz5mWTq2JFepkieD150rRWQ2svRC%2BsyMYLMSDNehXR%2BAL6Dwi9EpTdxNYK3vnA4XkenufA5%2Fs857y1ku4oOqRou3mWL1HGUNWu6NrBC4ZxXJuiUdrVunXnomMd10R2zNAbFf2QdprgDq%2BauqHrhm5oTSpIwLtVwzAqOtB4vWFUGnrFMiuGbUFXPJ7LVAWJVPCzHWU%2FUL%2F%2F5PptCyjuQRR%2BcIrITsLjo5NhylDCBWT%2BzVeiTsTzCMJHYSBUCKKbe93A5VbzU%2BDR2hAYePaw0aN9Rf35J%2FCim3uU4GVru6AeAxKB5z8FedYDwnpAUQ8wvwLU31IAsA%2FTMxCFN6a5yNHibhUNqn1l5MGvQPO%2BMvLd8xCFtycY7WpznKUJ5ZGEblAA7faAtnsQpxuQLKlA8w3AyRtA%2Fa%2BU6oMpiMLrM5JxoH4xFE9pD2jQA0aWAUkV0sGhKqSBCmmsQuhvay626nW%2FbvuIYGx6gVEPrMBqIKwHWK81TEjxAG8ZkngZMFsGLC5DLC5Dh17bsveDSD8DuVCA9FWQSV9Rz1%2BGzC8gJwrkUoEcKZBTBfJEgTwr1nwmTVnc8JlMPWPPm3u%2BVqzypL2C1njSJpGyEu8o%2BwajUWuHq9Ah25qOPeQEBtFx0HBrjmmgmt7QCcIWcYyGXgdJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VNHdDCqlXXYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbrq7XTNMynHrDLrvlumMbZcN0LduulT3dtYgbBOUGMb2ybTeCsml7Ttm2fMciluM0XAJhujn28WvdG998%2BQlQ3gMcv%2FluqdQ6OTNdKm1v%2FBNNSBJBsaxKlJEKDdtjJCNRcoI%2BlCkPeNQvU%2F9fgTxAw%2FaJIcpobXzUbI6aTexHFRRGJK9EJBk1m65luE7DcOqmZemmYRqu65qVSzFp3yqV5lvzU5Ol0t05HlCiHayZjhaShIhDd0qlU5NzJ2db5%2BZbA8EfneGhxjMijmoMaVxKrROljJE7pdLU%2BOzpyYuts%2BOnJ0ulbf3PwTzGUf07RU13zV0KkPGmsmcguQKCPcq9WIU8LVaF6W2OBR9OH%2Fnfy08Ao31l4ovfgZHNsft7jcgrQJK%2FXHwUr8ir0BYqoOQKRGEBmSggYwUgtgwy%2Fe9qEovNsa9rQwOPqaseE%2Bp1jwl2bfeLSLqtYawTZHiuQYhP7BrGloPrnhPULJfUbd%2BGRPbJhW9f%2FwMAAP%2F%2FAQAA%2F%2F9wYJTDLQYAAA%3D%3D
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F6yT3Wsc1RvHZ36%2F8PuJb9giiBfCwJLSt92dmZ2X3ZYakjZblqZJm0TshVDOnDmzOd0zc8Zz5mWTq2JFepkieD150rRWQ2svRC%2BsyMYLMSDNehXR%2BAL6Dwi9EpTdxNYK3vnA4XkenufA5%2Fs857y1ku4oOqRou3mWL1HGUNWu6NrBC4ZxXJuiUdrVunXnomMd10R2zNAbFf2QdprgDq%2BauqHrhm5oTSpIwLtVwzAqOtB4vWFUGnrFMiuGbUFXPJ7LVAWJVPCzHWU%2FUL%2F%2F5PptCyjuQRR%2BcIrITsLjo5NhylDCBWT%2BzVeiTsTzCMJHYSBUCKKbe93A5VbzU%2BDR2hAYePaw0aN9Rf35J%2FCim3uU4GVru6AeAxKB5z8FedYDwnpAUQ8wvwLU31IAsA%2FTMxCFN6a5yNHibhUNqn1l5MGvQPO%2BMvLd8xCFtycY7WpznKUJ5ZGEblAA7faAtnsQpxuQLKlA8w3AyRtA%2Fa%2BU6oMpiMLrM5JxoH4xFE9pD2jQA0aWAUkV0sGhKqSBCmmsQuhvay626nW%2FbvuIYGx6gVEPrMBqIKwHWK81TEjxAG8ZkngZMFsGLC5DLC5Dh17bsveDSD8DuVCA9FWQSV9Rz1%2BGzC8gJwrkUoEcKZBTBfJEgTwr1nwmTVnc8JlMPWPPm3u%2BVqzypL2C1njSJpGyEu8o%2BwajUWuHq9Ah25qOPeQEBtFx0HBrjmmgmt7QCcIWcYyGXgdJC6DyP0O1S7SvHHnmWYhpXxk5%2FBt4aAMk2wBMnwOUvgQoX3VNHdDCqlXXYSla94hIUdSuYJZ64PMC4mQEkkV1he0oLw5XVNn3AxC8OXb%2Fx%2B9%2FOb%2F0NmBRQCwKuEQ%2FV6DNrq7O8ly5PstzqdydiRMa0iU0WN9cghKivHeGLOZc%2BK1TcvnWOB4UBuH6PJHJFIp8GrWl8v4E9X0imlxgotxryVeJdy6VCxOpiNJ46tzJZiuMBZGS8qgHiG5NHQJM%2B8r%2F37k3fJgvkKeBig0Q6TZfSJJYHqtWU1lZoDKhFcyrUbJYjblMPIQ7Vcwo7ox1yOKJzCwbrq7XTNMynHrDLrvlumMbZcN0LduulT3dtYgbBOUGMb2ybTeCsml7Ttm2fMciluM0XAJhujn28WvdG998%2BQlQ3gMcv%2FluqdQ6OTNdKm1v%2FBNNSBJBsaxKlJEKDdtjJCNRcoI%2BlCkPeNQvU%2F9fgTxAw%2FaJIcpobXzUbI6aTexHFRRGJK9EJBk1m65luE7DcOqmZemmYRqu65qVSzFp3yqV5lvzU5Ol0t05HlCiHayZjhaShIhDd0qlU5NzJ2db5%2BZbA8EfneGhxjMijmoMaVxKrROljJE7pdLU%2BOzpyYuts%2BOnJ0ulbf3PwTzGUf07RU13zV0KkPGmsmcguQKCPcq9WIU8LVaF6W2OBR9OH%2Fnfy08Ao31l4ovfgZHNsft7jcgrQJK%2FXHwUr8ir0BYqoOQKRGEBmSggYwUgtgwy%2Fe9qEovNsa9rQwOPqaseE%2Bp1jwl2bfeLSLqtYawTZHiuQYhP7BrGloPrnhPULJfUbd%2BGRPbJhW9f%2FwMAAP%2F%2FAQAA%2F%2F9wYJTDLQYAAA%3D%3D HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 01a3710f3188f83ec6e8348be17a8f39
Strict-Transport-Security: max-age=0; includeSubdomains
momhomicidalspa.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 momhomicidalspa.com/pixel/sbs?c=1
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www.blogger.com/static/v1/jsbin/2790809129-lbx.js
200 OK 124 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/2790809129-lbx.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document, ASCII text, with very long lines (1609)
Size 124 kB (123772 bytes)
Hash 5b9fcb4754e302d08217af18a1178d44
d3c68f76e29fef4950d5267b151db0b0a493abf3
9a2eb45f6c9b865e816485d68e1c8b67de5c7c7d054cad0a98c09ba95b619751
GET /static/v1/jsbin/2790809129-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 123772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Nov 2023 23:25:22 GMT
expires: Fri, 15 Nov 2024 23:25:22 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 15 Nov 2023 00:30:11 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 145297
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Open+Sans:300
200 OK 2.9 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Open+Sans:300
IP
Requested by https://www.blogger.com/blogin.g?blogspotURL=https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html&type=blog&bpli=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (2967), with no line terminators
Hash 80813f4f3e2e87ae1537b70663ba3399
e2d1a0120591483e9b7947cf780ffc1fe87e2d3c
ccfdc20a84580cca4432b1de5e2d47b8f05bd3b7b406b905f9200830a03df2ca
GET /css?family=Open+Sans:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 15:46:55 GMT
date: Sat, 18 Nov 2023 15:46:55 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c
200 OK 266 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3651)
Size 266 kB (266484 bytes)
Hash 2654777b52813bb51632a87099a4bc40
93967dac2f5aa314fa152aae75dba659665cebb2
a4f9f74b41b03e42d0b379ae666fc6a2ed15523d094f37d4c43ee26760dfd5a6
GET /gtag/js?id=G-XM2YCT0PTM&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 18 Nov 2023 15:46:54 GMT
expires: Sat, 18 Nov 2023 15:46:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89676
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fstyle.css&l=4309&fd=431
200 OK 0 B URL GET HTTP/1.1 momhomicidalspa.com/pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fstyle.css&l=4309&fd=431
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmomhomicidalspa.com
Fingerprint38:0E:9D:68:01:6E:8D:54:71:6F:84:B4:E6:69:35:75:EC:02:5B:0B
ValidityMon, 09 Oct 2023 12:37:37 GMT - Sun, 07 Jan 2024 12:37:36 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbls?bv=23.43.3723&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Frtb%2Fmac%2F2%2Fcss%2Fstyle.css&l=4309&fd=431 HTTP/1.1
Host: momhomicidalspa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Cookie: u_pl=20130351; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sat, 18 Nov 2023 15:46:59 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unpkg.com/video.js@8.6.1/dist/video.js
200 OK 2.2 MB URL GET HTTP/2 unpkg.com/video.js@8.6.1/dist/video.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 2.2 MB (2226543 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js@8.6.1/dist/video.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"21f96f-p9MFQLR18a5uiDlNiROPeiAZXDw"
via: 1.1 fly.io
fly-request-id: 01HDKNSZYFVTN5ZR324BYRE19W-arn
cf-cache-status: HIT
age: 2076176
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82815950eeb70b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.harmoniousfamiliar.pro/dea777/d9ecca21d1ef.js
200 OK 71 kB URL GET HTTP/2 www.harmoniousfamiliar.pro/dea777/d9ecca21d1ef.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectwww.harmoniousfamiliar.pro
FingerprintAF:20:9A:F3:9C:43:48:BB:2E:1D:7F:64:2E:29:8F:6B:2B:33:53:ED
ValidityThu, 16 Nov 2023 07:04:51 GMT - Wed, 14 Feb 2024 07:04:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dea777/d9ecca21d1ef.js HTTP/1.1
Host: www.harmoniousfamiliar.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ucdn/1.24.0
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315159500, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsog41fW3hOd965Uj5PfSqLO5jngzO4v15H/4XOXMHf5kCW9G0bgBQkxYucKEX6fKtb93GfiwdDVJfpgFbaGtVoq
x-served-from: l1
x-vhostid: 110, 21515
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/video.js/dist/video-js.css
302 Found 52 kB URL GET HTTP/2 unpkg.com/video.js/dist/video-js.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js/dist/video-js.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /video.js@8.6.1/dist/video-js.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HFHHE7E84CRYEW8D06NEG27D-arn
cf-cache-status: HIT
age: 389
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8281594ebd8a0b45-OSL
X-Firefox-Spdy: h2
www.harmoniousfamiliar.pro/dea777/d9ecca21d1ef.js
200 OK 71 kB URL GET HTTP/2 www.harmoniousfamiliar.pro/dea777/d9ecca21d1ef.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectwww.harmoniousfamiliar.pro
FingerprintAF:20:9A:F3:9C:43:48:BB:2E:1D:7F:64:2E:29:8F:6B:2B:33:53:ED
ValidityThu, 16 Nov 2023 07:04:51 GMT - Wed, 14 Feb 2024 07:04:50 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dea777/d9ecca21d1ef.js HTTP/1.1
Host: www.harmoniousfamiliar.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: ucdn/1.24.0
date: Sat, 18 Nov 2023 15:46:55 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315159500, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsog41fW3hOd965Uj5PfSqLO5jngzO4v15H/4XOXMHf5kCW9G0bgBQkxYucKEX6fKtb93GfiwdDVJfpgFbaGtVoq
x-served-from: l1
x-vhostid: 110, 21518
content-encoding: br
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=66761d80-1b6b-466c-85ce-85c94cdc60bd
200 OK 1 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=66761d80-1b6b-466c-85ce-85c94cdc60bd
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type ASCII text, with no line terminators
Hash 1d78758685e5e2f4efeeb490f8521abd
ef7e6794ca9c6a06b54b66f279237fb8daaaeea8
a80e516bfb196e1c48a9acbe39da8fceb6bc82e0d991b8a990b8f3239c7efaed
GET /dyn-css/authorization.css?targetBlogID=1931155852275062931&zx=66761d80-1b6b-466c-85ce-85c94cdc60bd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 18 Nov 2023 15:46:56 GMT
last-modified: Sat, 18 Nov 2023 15:46:56 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.creative-bars1.com/sb/notifications/rtb/mac/2/css/style.css
200 OK 4.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/rtb/mac/2/css/style.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (4582), with no line terminators
Hash 0145de647ccd73987db1cc1e5bed4896
973d77d0279787654745a85415c4e26d77bde734
9501e4a3359ab933ecfbf96b243dc0487c38c68e4c8e46cf264618ffb909a0a7
GET /sb/notifications/rtb/mac/2/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:59 GMT
content-type: text/css
last-modified: Mon, 17 May 2021 12:30:23 GMT
etag: W/"60a261df-10d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C31YK6Kvpm7ubGbbh4oAPF2BEv5X4aFPVCrIVWqiWmERDbA3oP7qb8qboteuDNXfkOYFh9TezcsTToodhqf2QYqWvN3shse%2FHrRcgWjNKbR6IJcbc%2FK4LENOTFB0olXQ5YONPHWbRUCk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8281596d6fed23fc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800
200 OK 28 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash 3e3f262b81699cff226ddfd43e81c0bf
60f993b3a4d1f6f31c191e981951d0117f15600e
b13d4ba577f8a1e50ca84576732bd47c5608583931791b476d06bf7bed513585
GET /css?family=Open+Sans:300italic,400italic,600italic,700italic,800italic,400,300,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 18 Nov 2023 15:46:54 GMT
date: Sat, 18 Nov 2023 15:46:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.creative-bars1.com/sb/notifications/rtb/mac/2/js/script.js
200 OK 373 B URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/rtb/mac/2/js/script.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (386), with no line terminators
Hash 5876fe78ca49e69d045222a98eae2980
8e747f20de7f9e854a7ea916dfa84f6d83b24664
2bc9d50980a2181671b02958265a0c9981545fb4187bb8257c0305bce56b4392
GET /sb/notifications/rtb/mac/2/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:59 GMT
content-type: application/javascript
last-modified: Mon, 17 May 2021 12:14:43 GMT
etag: W/"60a25e33-175"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3g%2FObSMXv1MIq6dCihwalTQIHj%2FypcABSq7y5CHFNzIVaFUjICdvwJ5bNNSqa3x4an6eDzSsv%2B%2FYLeVPCoBW85Qb0AIYa0SWpsMf%2FpKnVRj1d4DpZOcDj97wwBJGMJvCAKwsXr8wtuER"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8281596d6fea23fc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/rtb/mac/2/css/magic.css
200 OK 45 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/rtb/mac/2/css/magic.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash 029740c783c67f45e29fac4d40eea355
f40e2ec9b7c753e662a8de0fb163f7dfb2aedcb1
0ddb584ebcf704e97ce3c4b9f6114512cbefb9bb09d3de91143ee70920328ddd
GET /sb/notifications/rtb/mac/2/css/magic.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:59 GMT
content-type: text/css
last-modified: Mon, 17 May 2021 12:30:23 GMT
etag: W/"60a261df-b0c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TbbK0HByTsYIBoYeyhm%2F7BlPYipodHY07HoKhIJoLhKIJ4DWoZGrAp5Pd6hUo34FxFd2k7xnspIb1Z3lh3SqjzS9QJOZwIqjzdTvWaJNn1BWRrqS68pLY0FD7xyPewygwedyXjt%2FqWsd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8281596d6fee23fc-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mildlunch.com/bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj
200 OK 40 kB URL GET HTTP/2 mildlunch.com/bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectmildlunch.com
Fingerprint2C:50:55:2A:07:FA:71:63:92:47:2A:4B:B0:B4:A8:C5:8B:B1:B7:BA
ValiditySun, 08 Oct 2023 02:49:07 GMT - Sat, 06 Jan 2024 02:49:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bCXpVFs.diGwlf0EY/Wyck/jeumL9RuvZsU/lnkbPJTfQh3KO/T_QpzTNtDZERtpNgDEcC5/NvDIM/0mMYgj HTTP/1.1
Host: mildlunch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: application/javascript
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-WoW64
vary: Accept-Encoding, Origin
access-control-allow-headers: Content-Type
last-modified: Sat, 18 Nov 2023 15:46:54 GMT
access-control-allow-methods: GET
access-control-allow-credentials: true
access-control-allow-origin: https://www.beruang.club
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE3MDAyNjE2MTQsInpvbmVzIjp7IjQxNjA3MTkiOls0MTYwNzE5LDEsMTcwMDMyMjQwMl0sIjQzMDIzODAiOls0MzAyMzgwLDEsMTcwMDMyMjE0N10sIjQzODM2MDAiOls0MzgzNjAwLDEsMTcwMDI5ODkyN10sIjQ3MTc4MTIiOls0NzE3ODEyLDEsMTcwMDI5ODA3MV0sIjQ3NzMxNTUiOls0NzczMTU1LDEsMTcwMDMxNzc3NF0sIjQ3OTQzNDEiOls0Nzk0MzQxLDEsMTcwMDMyMjQxNF0sIjQ4NDE0MTkiOls0ODQxNDE5LDEsMTcwMDI5NjYwMl19fQ==; max-age=1731858414; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
200 OK 28 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awesome.min.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (27303)
Hash 4fbd15cb6047af93373f4f895639c8bf
12d6861075de8e293265ff6ff03b1f3adcb44c76
ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 19:04:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 1853973
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 828159512bf90b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.staticaly.com/gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js
0 B URL GET cdn.staticaly.com/gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gh/dedewap/googlecode/8ed25926/autoloadpostdedelk21.js HTTP/1.1
Host: cdn.staticaly.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
cdn.sslph.com/app.js
200 OK 111 kB IP
ASN #34989 ServeTheWorld AS
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectcdn.sslph.com
FingerprintE3:C6:74:72:B1:9A:43:90:0A:45:4A:77:C9:D2:11:0C:76:E4:13:FF
ValiditySat, 28 Oct 2023 11:08:31 GMT - Fri, 26 Jan 2024 11:08:30 GMT
File type ASCII text, with very long lines (65381)
Size 111 kB (111227 bytes)
Hash 29a189095e22ff77bc462ede3aad9270
04eac5f0387e9ab6015db9ad6b16da5c05b1a36e
f51575c1095e52ee4600a37e8f632b63c9e621f7b49348e460b4c4befcf1f433
GET /app.js HTTP/1.1
Host: cdn.sslph.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 244525
cdn-uid: 81f0ee8a-6b19-463e-a8be-46c199377685
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"6528086f-1b27b"
expires: Thu, 30 Nov 2023 19:17:17 GMT
last-modified: Thu, 12 Oct 2023 14:53:35 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uY4xOv51cpR1Q%2BMOmWdHPnf%2B3Ux9B%2B86xGnX4%2B4Z4L%2BOoH1yxhgFiSvJfwA6DF6cTRgQiz3zBMKvPv2zYMv7j7n7HrNaQ2PKRqwf4dsT%2FteZnfHSg6vDdiABLv8q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 81ee3cbe1a3fb4ed-OSL
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:17:17
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2c211899b4579f79592b0f4c4bba20ce
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fvcwqkkqmuv.com/aas/r45d/vki/1990932/6f2dbff8.js
200 OK 89 kB URL GET HTTP/2 fvcwqkkqmuv.com/aas/r45d/vki/1990932/6f2dbff8.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerBuypass AS-983163327
Subject
FingerprintF4:CF:5F:33:5D:62:A5:49:C0:ED:F4:A2:07:7B:6A:FC:5A:C8:EE:2D
ValiditySat, 28 Oct 2023 11:35:09 GMT - Wed, 24 Apr 2024 21:59:00 GMT
File type ASCII text, with very long lines (65106)
Hash 6c4eb73ac6f83c0cfc15bac9ed836bce
f5cc15fff1b6d41deb7eb9b793e411130cdfa554
084a10fefeac8036ac7cd6a97d0061e4075b27b8a1f88fc8e0097dc24b07f088
GET /aas/r45d/vki/1990932/6f2dbff8.js HTTP/1.1
Host: fvcwqkkqmuv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: application/javascript
last-modified: Wed, 15 Nov 2023 14:55:11 GMT
vary: Accept-Encoding
etag: W/"6554dbcf-15c1f"
x-js-ab2: current
timing-allow-origin: *
accept-ch: sec-ch-ua-wow64,sec-ch-ua-full-version-list,sec-ch-ua,sec-ch-ua-platform,sec-ch-ua-mobile,sec-ch-ua-full-version,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-bitness,sec-ch-ua-model,sec-ch-width,sec-ch-viewport-width,sec-ch-viewport-height,sec-ch-dpr,sec-ch-device-memory,sec-ch-rtt,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
200 OK 717 kB URL GET HTTP/2 unpkg.com/videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 717 kB (717184 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"af180-yddBL+N7CRgyB07pxWVoSeh+9Bw"
via: 1.1 fly.io
fly-request-id: 01HDN88KG5PS1Q4P7TN8M2H3HA-arn
cf-cache-status: HIT
age: 2023277
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82815950eeba0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/notifications/rtb/mac/2/index.html
200 OK 1.3 kB URL GET HTTP/2 cdn.barscreative1.com/sb/notifications/rtb/mac/2/index.html
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1338), with no line terminators
Hash 0c900b2d318b0cef9473e616046093df
6a156bbe183ec20343e2fb4383c30ecf4b78fd34
df4d4c901dcb050468b91f0136b087ae2672b47dad92af5b94022f4edfe0485c
GET /sb/notifications/rtb/mac/2/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.beruang.club
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:58 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Sat, 07 May 2022 03:21:27 GMT
etag: W/"6275e5b7-4e7"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sat, 18 Nov 2023 16:46:58 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js
302 Found 717 kB URL GET HTTP/2 unpkg.com/videojs-contrib-hls/dist/videojs-contrib-hls.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 717 kB (717184 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /videojs-contrib-hls/dist/videojs-contrib-hls.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /videojs-contrib-hls@5.15.0/dist/videojs-contrib-hls.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HFHHE7EAXA7T5XM3QRGFFYE9-arn
cf-cache-status: HIT
age: 389
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8281594ead800b45-OSL
X-Firefox-Spdy: h2
unpkg.com/video.js@8.6.1/dist/video-js.css
200 OK 52 kB URL GET HTTP/2 unpkg.com/video.js@8.6.1/dist/video-js.css
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (7288)
Hash 44e9d576b868846f76a7fe15713d455e
e6deef9c1cbc85dbb1d8c90a3fdcf5be47623955
4398326f7e2725e7813cb5d11c650a7890fe1605a9d56bce34d7454eeb79dcb1
GET /video.js@8.6.1/dist/video-js.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.beruang.club/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 18 Nov 2023 15:46:54 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"cb63-5t7vnBy8hdux2MkKP9z1vkdiOVU"
via: 1.1 fly.io
fly-request-id: 01HDVDT6A5WKVXMANETSSR0DGS-arn
cf-cache-status: HIT
age: 1816131
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82815950febe0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
unpkg.com/video.js/dist/video.js
302 Found 2.2 MB URL GET HTTP/2 unpkg.com/video.js/dist/video.js
IP
Requested by https://www.beruang.club/2022/10/punya-mamah-tiri-sangean.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 2.2 MB (2226543 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video.js/dist/video.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.beruang.club/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 18 Nov 2023 15:46:53 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /video.js@8.6.1/dist/video.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01HFHHE7E705D724H9H14W8J55-arn
cf-cache-status: HIT
age: 389
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8281594e9d650b45-OSL
X-Firefox-Spdy: h2
216.58.207.243
104.18.11.207
185.76.9.24
212.117.190.201
18.159.20.213
194.242.11.186
88.85.94.250
0.0.0.0