| jamaluddin-id.blogspot.sk/ | 216.58.207.193 | 302 Found | 201 B |
URL User Request GET HTTP/2jamaluddin-id.blogspot.sk/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text Hash04640114b9e1e4049ab33d9ab7cbb110 4afd2d824960ce2eee46590a8df08b9446ce7155 4ad290f10574c4e3b39aeac546b6da8b9ca44c86967be6692b71b54770d8abfe
GET / HTTP/1.1
Host: jamaluddin-id.blogspot.sk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://jamaluddin-id.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Fri, 26 Apr 2024 06:23:16 GMT
expires: Fri, 26 Apr 2024 06:23:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 201
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jamaluddin-id.blogspot.com/ | 216.58.207.193 | 200 OK | 47 kB |
URL GET HTTP/3jamaluddin-id.blogspot.com/ IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text, with very long lines (712) Hash1d74148e3a373632c93bfc4a581ef6d6 625dbecee8bebf99933dc22c1baa1fb005c8c6c0 57feacdb1e273a5e7627ff1de79f16283268d34d574f53921ec6e5e49075f9f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 26 Apr 2024 06:23:16 GMT
date: Fri, 26 Apr 2024 06:23:16 GMT
cache-control: private, max-age=0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
etag: W/"46cf9ef9726d755f14596800ee3d9c76e9afb6c978e4fa7c39f9ca6a29547e98"
x-robots-tag: all
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 46720
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jamaluddin-id.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/3jamaluddin-id.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /js/cookienotice.js HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 26 Apr 2024 06:23:16 GMT
expires: Fri, 03 May 2024 06:23:16 GMT
cache-control: public, max-age=604800
last-modified: Fri, 26 Apr 2024 03:56:13 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js | 142.250.74.170 | 200 OK | 34 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP142.250.74.170:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (65483) Hash3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:55:03 GMT
expires: Sat, 26 Apr 2025 05:55:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 1693
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.98 | 200 OK | 51 kB |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJavaScript source, ASCII text, with very long lines (3920) Hash6e14eab117d6dba1219dfc5fa3d7a0be 6165147c908a41cba8fb10d15fed63d5b8cbb748 116c78e05f838df296cae9af77408e8487f3f9dce3dc95ca2d1320633232ad71
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Fri, 26 Apr 2024 06:23:17 GMT
expires: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 6976895832492034799
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51438
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css | 142.250.74.41 | 200 OK | 6.6 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css IP142.250.74.41:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeASCII text, with very long lines (30596) Hashe3f09df1bc175f411d1ec3dfb5afb17b 3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9 1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:09:51 GMT
expires: Sat, 26 Apr 2025 06:09:51 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Apr 2024 06:00:02 GMT
content-type: text/css
vary: Accept-Encoding
age: 806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/1807328581-widgets.js | 142.250.74.41 | 200 OK | 51 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/1807328581-widgets.js IP142.250.74.41:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hash3fd63936a88c795358e97868e471a443 ca64663c1f3115e480fc373d6e47b01d1f5b03a0 d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1
GET /static/v1/widgets/1807328581-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:54:37 GMT
expires: Sat, 26 Apr 2025 05:54:37 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 25 Apr 2024 06:59:28 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 1720
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| rilwis.googlecode.com/svn/trunk/blogger/pagenavi.min.js | 173.194.73.82 | 404 Not Found | 1.6 kB |
URL GET HTTP/2rilwis.googlecode.com/svn/trunk/blogger/pagenavi.min.js IP173.194.73.82:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.googlecode.com Fingerprint17:1A:D3:E2:99:C0:CF:FC:09:5B:37:09:9C:B4:EC:19:FA:60:CB:30 ValidityMon, 08 Apr 2024 07:27:43 GMT - Mon, 01 Jul 2024 07:27:42 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (1136) Hash2c7dd5a463e144f4c5e23003f56bd487 1660d3f838a5f9be9bbe7e9b4137cfc2510b5b9e 032e4103634d09bee93525eae5025df80df42afd811588f5779509c42fe7600f
GET /svn/trunk/blogger/pagenavi.min.js HTTP/1.1
Host: rilwis.googlecode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 1594
date: Fri, 26 Apr 2024 06:23:17 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| netdna.bootstrapcdn.com/font-awesome/3.2.1/font/fontawesome-webfont.woff?v=3.2.1 | 104.18.10.207 | 200 OK | 44 kB |
URL GET HTTP/3netdna.bootstrapcdn.com/font-awesome/3.2.1/font/fontawesome-webfont.woff?v=3.2.1 IP104.18.10.207:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeWeb Open Font Format, TrueType, length 43572, version 1.0 Hashb683029bafe0305ac2234038a03e1541 12f8c193902e99348493ace32e498031bf79b654 18e6b5ff511b90edf098e62ac45ed9d6673a3eee10165d0de4164d4d02a3a77f
GET /font-awesome/3.2.1/font/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jamaluddin-id.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://netdna.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: font/woff
content-length: 43572
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "b683029bafe0305ac2234038a03e1541"
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 08/20/2022 02:34:02
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 722
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 3f0b1a455d33f3ec988c03df19c8c09f
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a47bb4eeab1c16-OSL
alt-svc: h3=":443"; ma=86400
|
|
| 4.bp.blogspot.com/-QNS2CA_-gQk/UoSHkm5IzyI/AAAAAAAAAB8/FNifXgfnvrw/s1600/button-search.png | 142.250.74.161 | 200 OK | 757 B |
URL GET HTTP/24.bp.blogspot.com/-QNS2CA_-gQk/UoSHkm5IzyI/AAAAAAAAAB8/FNifXgfnvrw/s1600/button-search.png IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typePNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced Hash2bb75a74cc340513eb64873c2c723a43 fba218c9d43730e05e5320e83830068e97c804b8 f1be174cf05fd6ac8dc83d74f214732e66d06f8ebbe709887f7398eeacc2f926
GET /-QNS2CA_-gQk/UoSHkm5IzyI/AAAAAAAAAB8/FNifXgfnvrw/s1600/button-search.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v20"
expires: Sat, 27 Apr 2024 06:23:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="button-search.png"
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 IP216.58.207.227:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16348, version 1.0 Hash8dc707b4818131fab44d482b1db5d458 8a0ff82b12fa25391ce17a6ae069d7fe5002f12d 9e64f128d5352d04ea5c87031e4cf1ad204b72a0afb003ece52eeb997d28a570
GET /s/oxygen/v15/2sDfZG1Wl4LcnbuKjk0m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jamaluddin-id.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:00:17 GMT
expires: Sat, 26 Apr 2025 06:00:17 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 May 2022 18:31:32 GMT
content-type: font/woff2
age: 1380
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 | 216.58.207.227 | 200 OK | 28 kB |
URL GET HTTP/2fonts.gstatic.com/s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 IP216.58.207.227:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 28512, version 1.0 Hash16cba75f4b9969077ff30bea2f494e12 71b32a3bbcc6157da9d52accf124660a3cfc66dc 241ced7f220982f5679a64cc6db34ed42cd21274508cc5814616d9efe374afde
GET /s/oswald/v53/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jamaluddin-id.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28512
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 02:32:48 GMT
expires: Fri, 25 Apr 2025 02:32:48 GMT
cache-control: public, max-age=31536000
age: 100229
last-modified: Tue, 15 Aug 2023 18:44:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js | 142.250.74.98 | 200 OK | 51 kB |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJavaScript source, ASCII text, with very long lines (3920) Hash908ad272d9780233de1fcf584474fdd2 d2bf99640ce85d7373e24a2539e50f24d758dec1 9be012ba9bae4beae9132ce319d817568021dfd752ef78c29544255d9fe4044e
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Fri, 26 Apr 2024 06:23:17 GMT
expires: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 14972574112744618483
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 51437
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| 4.bp.blogspot.com/-eRuYGIJ6kZU/Un8xjrEuaUI/AAAAAAAABto/rEx77zt-lr4/s1600/seperator.gif | 142.250.74.161 | 404 Not Found | 832 B |
URL GET HTTP/24.bp.blogspot.com/-eRuYGIJ6kZU/Un8xjrEuaUI/AAAAAAAABto/rEx77zt-lr4/s1600/seperator.gif IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hash596246739a83bb45e30e13437e0810d9 203d99f5cb1f2c816d6f9974cc5a73cf412892a6 94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-eRuYGIJ6kZU/Un8xjrEuaUI/AAAAAAAABto/rEx77zt-lr4/s1600/seperator.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/managed/js/adsense/m202404220101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4758917310250397&plah=jamaluddin-id.blogspot.com&aplac=true | 142.250.74.98 | 200 OK | 143 kB |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/managed/js/adsense/m202404220101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4758917310250397&plah=jamaluddin-id.blogspot.com&aplac=true IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJavaScript source, ASCII text, with very long lines (1838) Size143 kB (142655 bytes) Hash83f64a5e0e0befd55d2f9119db86259c 78ae08a40b06b9ff770428fdca272a2f675e88d4 75847fc9fbb32dabc2d3c5d76324d4592ef23f2b6feec6f1b94d20a30c5ddfb8
GET /pagead/managed/js/adsense/m202404220101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-4758917310250397&plah=jamaluddin-id.blogspot.com&aplac=true HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 26 Apr 2024 06:23:17 GMT
expires: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 18368429275878746261
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 142655
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597178&_=1714112597200 | 216.58.207.193 | 200 OK | 719 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597178&_=1714112597200 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1489) Hasha8a71a4a25792b0300dc8bc8ed1ba0e9 591187bd2718afd81f2a3f8fabb50c4e462080c5 3824d6451bb51e488921e7457c3e017a42b7e9d9463ec343bd5690522ece073f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597178&_=1714112597200 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"ff769cc038a106da75a4dab040f29ca21a36502db5b61303337952b74cf51770"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 719
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css | 104.18.10.207 | 200 OK | 6.2 kB |
URL GET HTTP/2netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css IP104.18.10.207:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (301) Hash2d53b06f292dcb355b5e1a39ec065054 57ca25a18cbdedf36973b712bc81f9e3f883a371 22a22e76f4de930e54dd33af00c71b68828847409e5e79787df5224dd9776c6f
GET /font-awesome/3.2.1/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 06:23:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2d53b06f292dcb355b5e1a39ec065054"
last-modified: Mon, 25 Jan 2021 22:04:51 GMT
cdn-cachedat: 09/20/2023 06:56:32
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 638666ed235e0f2f16cad6a214bec893
cdn-cache: HIT
cf-cache-status: HIT
age: 13308250
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87a47bb318265695-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 2.bp.blogspot.com/-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png | 142.250.74.65 | 404 Not Found | 832 B |
URL GET HTTP/22.bp.blogspot.com/-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png IP142.250.74.65:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hash596246739a83bb45e30e13437e0810d9 203d99f5cb1f2c816d6f9974cc5a73cf412892a6 94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-UaTAJnIDgZ8/UlByOYLIkSI/AAAAAAAABB8/T1SXV2gfcqM/s1600/borderbottom.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 4.bp.blogspot.com/-F2TdEesOinU/UkxHqP-51DI/AAAAAAAADOA/_zd9a-LX1S8/s320/ajax-loader.gif | 142.250.74.161 | 200 OK | 3.2 kB |
URL GET HTTP/24.bp.blogspot.com/-F2TdEesOinU/UkxHqP-51DI/AAAAAAAADOA/_zd9a-LX1S8/s320/ajax-loader.gif IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeGIF image data, version 89a, 32 x 32 Hasha51c5608d01acf32df728f299767f82b 2eb3f9f430fb2a6267e0d252129ef6473d074f37 aebc793d0064383ee6b1625bf3bb32532ec30a5c12bf9117066107d412119123
GET /-F2TdEesOinU/UkxHqP-51DI/AAAAAAAADOA/_zd9a-LX1S8/s320/ajax-loader.gif HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vce1"
expires: Sat, 27 Apr 2024 06:23:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ajax-loader(1).gif"
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 3208
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 2.bp.blogspot.com/-hd9k84GEpk8/WG2zjtikUoI/AAAAAAAAADY/ajdmbsigOqgbYsRZM0d5LKt9TdR1x1fAwCK4B/s1600/logo-blogger2%2Bcopy.png | 142.250.74.65 | 200 OK | 19 kB |
URL GET HTTP/22.bp.blogspot.com/-hd9k84GEpk8/WG2zjtikUoI/AAAAAAAAADY/ajdmbsigOqgbYsRZM0d5LKt9TdR1x1fAwCK4B/s1600/logo-blogger2%2Bcopy.png IP142.250.74.65:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typePNG image data, 240 x 92, 8-bit/color RGBA, non-interlaced Hashf5a27cba00e40099666d77caf6e7fe54 da447994092937258bcc9563cb0d7bd338340078 37e855363d9f1a3c615318287ff70dc3af16180ac41963891ecbb9c663d7ec8b
GET /-hd9k84GEpk8/WG2zjtikUoI/AAAAAAAAADY/ajdmbsigOqgbYsRZM0d5LKt9TdR1x1fAwCK4B/s1600/logo-blogger2%2Bcopy.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v37"
expires: Sat, 27 Apr 2024 06:23:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="logo-blogger2 copy.png"
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 18864
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=280&slotname=5205898261&adk=38798045&adf=1160936722&pi=t.ma~as.5205898261&w=660&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=660x280&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=3&wgl=1&dt=1714112597369&bpp=3&bdt=533&idt=251&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&correlator=590146308580&frm=20&pv=2&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=140&ady=1403&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=1&uci=a!1&btvi=1&fsb=1&dtd=268 | 142.250.74.98 | 400 Bad Request | 46 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=280&slotname=5205898261&adk=38798045&adf=1160936722&pi=t.ma~as.5205898261&w=660&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=660x280&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=3&wgl=1&dt=1714112597369&bpp=3&bdt=533&idt=251&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&correlator=590146308580&frm=20&pv=2&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=140&ady=1403&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=1&uci=a!1&btvi=1&fsb=1&dtd=268 IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeHTML document, ASCII text, with very long lines (603), with no line terminators Hash2c739853e3edfa26869416e3d4e5d369 c263dc1c36c954b252bc7e775e6e82865d9b29b8 00daef3b4a945d15f73efa05e0ce2ca51f2f8252e1da8fae5c2efb0f6dddacce
GET /pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=280&slotname=5205898261&adk=38798045&adf=1160936722&pi=t.ma~as.5205898261&w=660&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=660x280&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=3&wgl=1&dt=1714112597369&bpp=3&bdt=533&idt=251&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&correlator=590146308580&frm=20&pv=2&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=140&ady=1403&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeEbr%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=1&uci=a!1&btvi=1&fsb=1&dtd=268 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 400 Bad Request
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 26 Apr 2024 06:23:17 GMT
server: cafe
content-length: 46
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=600&slotname=5205898261&adk=1014511953&adf=277587611&pi=t.ma~as.5205898261&w=300&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=300x600&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=4&wgl=1&dt=1714112597372&bpp=3&bdt=536&idt=304&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=840&ady=548&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=2&uci=a!2&fsb=1&dtd=311 | 142.250.74.98 | 400 Bad Request | 46 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=600&slotname=5205898261&adk=1014511953&adf=277587611&pi=t.ma~as.5205898261&w=300&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=300x600&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=4&wgl=1&dt=1714112597372&bpp=3&bdt=536&idt=304&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=840&ady=548&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=2&uci=a!2&fsb=1&dtd=311 IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeHTML document, ASCII text, with very long lines (603), with no line terminators Hash2c739853e3edfa26869416e3d4e5d369 c263dc1c36c954b252bc7e775e6e82865d9b29b8 00daef3b4a945d15f73efa05e0ce2ca51f2f8252e1da8fae5c2efb0f6dddacce
GET /pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&h=600&slotname=5205898261&adk=1014511953&adf=277587611&pi=t.ma~as.5205898261&w=300&fwrn=4&fwrnh=100&lmt=1707404227&rafmt=1&format=300x600&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&fwr=0&rpe=1&resp_fmts=4&wgl=1&dt=1714112597372&bpp=3&bdt=536&idt=304&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=840&ady=548&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7CeE%7C&abl=CS&pfx=0&fu=128&bc=31&bz=1&ifi=2&uci=a!2&fsb=1&dtd=311 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 400 Bad Request
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Fri, 26 Apr 2024 06:23:17 GMT
server: cafe
content-length: 46
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=top&ign=false&pw=1280&ph=1024&x=1255&y=999 | 142.250.74.98 | 204 No Content | 0 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=top&ign=false&pw=1280&ph=1024&x=1255&y=999 IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&tn=DIV&id=top&ign=false&pw=1280&ph=1024&x=1255&y=999 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 06:23:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0 | 142.250.74.98 | 204 No Content | 0 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0 IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 06:23:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&adk=1812271804&adf=3025194257&lmt=1707404227&plat=1%3A16777216%2C2%3A16777216%2C3%3A16%2C4%3A16%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&pra=7&wgl=1&easpi=0&asro=0&aslmct=0.7&asamct=0.7&dt=1714112597375&bpp=1&bdt=539&idt=322&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280%2C300x600&nras=1&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=3&uci=a!3&fsb=1&dtd=341 | 142.250.74.98 | 200 OK | 0 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&adk=1812271804&adf=3025194257&lmt=1707404227&plat=1%3A16777216%2C2%3A16777216%2C3%3A16%2C4%3A16%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&pra=7&wgl=1&easpi=0&asro=0&aslmct=0.7&asamct=0.7&dt=1714112597375&bpp=1&bdt=539&idt=322&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280%2C300x600&nras=1&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=3&uci=a!3&fsb=1&dtd=341 IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/ads?npa=1<d_cs=1&client=ca-pub-4758917310250397&output=html&adk=1812271804&adf=3025194257&lmt=1707404227&plat=1%3A16777216%2C2%3A16777216%2C3%3A16%2C4%3A16%2C8%3A4194304%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fjamaluddin-id.blogspot.com%2F&host=ca-host-pub-1556223355139109&pra=7&wgl=1&easpi=0&asro=0&aslmct=0.7&asamct=0.7&dt=1714112597375&bpp=1&bdt=539&idt=322&shv=r20240424&mjsv=m202404220101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=660x280%2C300x600&nras=1&correlator=590146308580&frm=20&pv=1&ga_vid=658783508.1714112598&ga_sid=1714112598&ga_hid=1416258914&ga_fc=0&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C31083013%2C31083029%2C44795922%2C95326316%2C95331042%2C95331366%2C95331555&oid=2&pvsid=1806254254525496&tmod=1443962509&nvt=1&fsapi=1&fc=896&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=3&uci=a!3&fsb=1&dtd=341 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/ | 216.58.207.193 | 200 OK | 47 kB |
URL GET HTTP/3jamaluddin-id.blogspot.com/ IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text, with very long lines (712) Hash1d74148e3a373632c93bfc4a581ef6d6 625dbecee8bebf99933dc22c1baa1fb005c8c6c0 57feacdb1e273a5e7627ff1de79f16283268d34d574f53921ec6e5e49075f9f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-robots-tag: all
content-type: text/html; charset=UTF-8
expires: Fri, 26 Apr 2024 06:23:17 GMT
date: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
etag: W/"46cf9ef9726d755f14596800ee3d9c76e9afb6c978e4fa7c39f9ca6a29547e98"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 46720
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.blogger.com/dyn-css/authorization.css?targetBlogID=5317961091872029142&zx=07cabe44-5618-400d-9611-b5b3a75289ac | 142.250.74.41 | 200 OK | 21 B |
URL GET HTTP/2www.blogger.com/dyn-css/authorization.css?targetBlogID=5317961091872029142&zx=07cabe44-5618-400d-9611-b5b3a75289ac IP142.250.74.41:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typevery short file (no magic) Hash68b329da9893e34099c7d8ad5cb9c940 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=5317961091872029142&zx=07cabe44-5618-400d-9611-b5b3a75289ac HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 Apr 2024 06:23:17 GMT
last-modified: Fri, 26 Apr 2024 06:23:17 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20240424&st=env | 142.250.74.98 | 200 OK | 12 kB |
URL GET HTTP/3pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20240424&st=env IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
Hash93a595687347facf0b6b920e0da4a836 1e173d9a835ea560a8a294c879d9443f93fc35df cfbd719e19beb57bf0405728f52aafd46918262a119f2f17b73f911f12c99812
GET /getconfig/sodar?sv=200&tid=gda&tv=r20240424&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jamaluddin-id.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 26 Apr 2024 06:23:17 GMT
server: cafe
content-length: 12124
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| tpc.googlesyndication.com/sodar/sodar2.js | 142.250.74.161 | 200 OK | 6.4 kB |
URL GET HTTP/2tpc.googlesyndication.com/sodar/sodar2.js IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjecttpc.googlesyndication.com Fingerprint26:0A:D2:26:CC:CA:77:A9:66:3C:10:C3:76:3D:EA:C0:C4:10:87:8B ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeJavaScript source, ASCII text, with very long lines (1321) Hash2cc87e9764aebcbbf36ff2061e6a2793 b4f2ffdf4c695aa79f0e63651c18a88729c2407b 61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 26 Apr 2024 06:23:17 GMT
expires: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tpc.googlesyndication.com/sodar/sodar2/225/runner.html | 142.250.74.161 | 200 OK | 5.0 kB |
URL GET HTTP/2tpc.googlesyndication.com/sodar/sodar2/225/runner.html IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjecttpc.googlesyndication.com Fingerprint26:0A:D2:26:CC:CA:77:A9:66:3C:10:C3:76:3D:EA:C0:C4:10:87:8B ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeHTML document, ASCII text, with very long lines (2020) Hash1d3d22df067f5219073f9c0fabb74fdd d5c226022639323d93946df3571404116041e588 55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:50:23 GMT
expires: Sat, 26 Apr 2025 05:50:23 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 1975
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/Foods?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597182&_=1714112597211 | 216.58.207.193 | 200 OK | 737 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/Foods?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597182&_=1714112597211 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1519) Hash300c7de2e55eb305f533394475b6a212 f9fe68af73d72ffe99e48235d5f18786ca33f8e5 b997b189fd97fc497230a5ce680e7ee76d6dfa2c8a45a0433ceb844b7bf07bfb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/Foods?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597182&_=1714112597211 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"e8f53a5197343f9fa025638328476dda34a1385f2d84b371fd178451c58e4366"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 737
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/News?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597183&_=1714112597212 | 216.58.207.193 | 200 OK | 735 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/News?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597183&_=1714112597212 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1517) Hasha460135a41072eac8b529989964eabd3 8044b0f605889386df1aa9ca6008aa7a404a62b7 c3767457199f793ff105c7159d9f8dd422c0f9482710ab7fb9c8785f282ba34c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/News?max-results=3&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597183&_=1714112597212 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"7beecc4c399264276d2fe4cbd16cb3ca443323337662c4beb338f1a73c41d0d8"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 735
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/Body?max-results=8&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597179&_=1714112597206 | 216.58.207.193 | 200 OK | 737 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/Body?max-results=8&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597179&_=1714112597206 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1517) Hash1c5ab142a15d2ff50f83a8ead9263460 3a0efa595b65742383754ff2a193b92f78935b32 f74a743d099838ea0c516571ca9c7cb94ecaa6f89c0d0b18ed49c0ae7a689c1d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/Body?max-results=8&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597179&_=1714112597206 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"5360c45f1ee8cae56dc7c8763ef10522321c6bcd42643531906701f30c073bfe"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 737
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/bg/9R1FZ20NYW4cLDdMVea6_UP2qLDV8HWycUuqYMxTb9Y.js | 142.250.74.98 | | 16 kB |
URL pagead2.googlesyndication.com/bg/9R1FZ20NYW4cLDdMVea6_UP2qLDV8HWycUuqYMxTb9Y.js IP142.250.74.98:0
CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
File typeJavaScript source, ASCII text, with very long lines (40154) Hash31f73d07c80649c2b8c509c43e0a358f 4bf48f2a6a4f21d404a261f56fadbc333ce8dab6 f51d45676d0d616e1c2c374c55e6bafd43f6a8b0d5f075b2714baa60cc536fd6
GET /bg/9R1FZ20NYW4cLDdMVea6_UP2qLDV8HWycUuqYMxTb9Y.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 15927
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 00:21:51 GMT
expires: Fri, 25 Apr 2025 00:21:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 17:38:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 108087
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/Body?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597181&_=1714112597210 | 216.58.207.193 | 200 OK | 737 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/Body?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597181&_=1714112597210 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1517) Hash01e5ce2f6c05fa313345ab4c0f878590 d24da3caa815aed56804940c735b894aca4bd786 5ad81c08fd9ce71400519a85c16f5e12fac230c4b8521bdb19c920d0cae1e4ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/Body?max-results=5&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597181&_=1714112597210 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"45ebea6c687a31f2b6db72cf7c43440b0fb8679fd8b834f63809adebddc4a3bc"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 737
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112597208 | 216.58.207.193 | 200 OK | 736 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112597208 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1521) Hash769e205f6930cad182508db316b39c80 33259dab9ec4c833866962bc8f097972f40d3bd5 5522648940adbc8a8f881395df90982cd273dae1f5c002c2af880baf63226016
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112597208 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"cdfc7ac17a9830b7eac4bf99a42f3f2bd613953c13a90b93f7ced1a6c1703668"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 736
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/summary/-/Mitos?max-results=6&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597184&_=1714112597256 | 216.58.207.193 | 200 OK | 737 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/summary/-/Mitos?max-results=6&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597184&_=1714112597256 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1519) Hash8352521a48cd2939ea120b203a717986 2e3059f8bdaa1bbac43431fd1775405a6e1483c4 4311f7f572fadb20a279399e6b6f6d1672bad19114de83f2fc5270e46ecb007c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/summary/-/Mitos?max-results=6&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597184&_=1714112597256 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"e8d5782c139f8bb600edcb18f9edbe09cc667f18f943987694c629bb2c13ec4b"
date: Fri, 26 Apr 2024 06:23:17 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 737
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/ | 216.58.207.193 | 200 OK | 47 kB |
URL GET HTTP/3jamaluddin-id.blogspot.com/ IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text, with very long lines (712) Hash1d74148e3a373632c93bfc4a581ef6d6 625dbecee8bebf99933dc22c1baa1fb005c8c6c0 57feacdb1e273a5e7627ff1de79f16283268d34d574f53921ec6e5e49075f9f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
x-robots-tag: all
content-type: text/html; charset=UTF-8
expires: Fri, 26 Apr 2024 06:23:17 GMT
date: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
etag: W/"46cf9ef9726d755f14596800ee3d9c76e9afb6c978e4fa7c39f9ca6a29547e98"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 46720
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| tpc.googlesyndication.com/generate_204?tdm4TA | 142.250.74.161 | | 0 B |
URL tpc.googlesyndication.com/generate_204?tdm4TA IP142.250.74.161:0
CertificateIssuerGoogle Trust Services LLC Subjecttpc.googlesyndication.com Fingerprint26:0A:D2:26:CC:CA:77:A9:66:3C:10:C3:76:3D:EA:C0:C4:10:87:8B ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?tdm4TA HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 26 Apr 2024 06:23:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/feeds/posts/default/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112598171 | 216.58.207.193 | 200 OK | 735 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/feeds/posts/default/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112598171 IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeASCII text, with very long lines (1521) Hash8dd35d02085552e15e82954868b8c0ea 4ae30be36c9e39b727ea99b6940bf1aec8d2067a f9ccf81dd7567228ac7228d0dfd080bb4a6f1d7815ea963dcccc7b3aa3dd076c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /feeds/posts/default/-/Sexual?max-results=0&orderby=published&alt=json-in-script&callback=jQuery1830563602221050532_1714112597180&_=1714112598171 HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"cc4c2e3829ac744382972c610208c0c2dae4a825cbdf5db0a0416e6c8ab05625"
date: Fri, 26 Apr 2024 06:23:18 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Fri, 26 Apr 2024 06:23:19 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
content-encoding: gzip
content-length: 735
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/favicon.ico | 216.58.207.193 | 200 OK | 437 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/favicon.ico IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash832c1ee6bf870ec49d4d7b0fb8cd5821 fc67960b120e37a71f936244c0f80facef1f87f0 cfa725225bc9150e5c34fb7579e2f7ebd64d45595311f1d5873d8e72def7b611
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 26 Apr 2024 06:23:18 GMT
date: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: private, max-age=86400
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
etag: W/"46cf9ef9726d755f14596800ee3d9c76e9afb6c978e4fa7c39f9ca6a29547e98"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 437
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240424&jk=1806254254525496&bg=!7-yl7KPNAAYBeExMIXg7ADQBe5WfOJZlgLwvuTzF_ahubo_xXx3513MyqL_vnVyXxy1gQF22RwOmZIgoMYFD-CCCOX2IAgAAAKZSAAAABGgBB34ANNbAw1jQni4TOMnl9z8p-zU_Us-2wDa6rwmkGYlW2vjBDoF49jyXhH6HezaZHvlKZerD7IEKAC_-u4ddECxn69s95kUbz8M8oeqe-q8e-WLOhvyVMNu0mOvGI13D646_HgR7KMvGXJkCGKUGd0ONCYE4Xu6yH5iZKfzEVugvvEitDuhSau5Tuofd2sE9fCLtrBu21AJMAG766tJ0BXQlBuK_XqnqNmGSaT90Lv4XNezveVSec1QlxOVQ-k0AC7zKZh6adcaQAvX_2Oo4Dwb8z6isk5K9BvBbuVHol63ypqy3sLfBPz9i6QhOCGi-a5k_OhgfTeIfzfJVLrSEy286KAO4b_hRnyxVvhVWl8Aan_X4ruwyo3ZzBOLnrB6YcupqBCR5zu5OkF3ILPT2WACSL01F_gPE0d7QrpIwtX2pqss4Yy6Ec5iTXjuhALQWgZlWptSUgvmNg3ZszYOZichPWYy9uID2blhtcfiMmaQV7kZrw2hTIY-Rgs5oWa_paC9Vy_MjE5FN3YPhdZKvivvbtzmPcLfolsO6EYBtAcUeAflwOyyTZv8hSvbQyhFX6PjxlVWTh9MUUnWFI7e_B-IfBA7uHytgVI7ou2C7f0lKSWy22a6WhyRKlErgMvCSisBS-6SdtPmhd0BhGXCibM1Ilheie6OPiE9roQFVOTS4rxtmu61s3ydEqFLnwx9LOJppViDRBOCxmgCGEAw5DiBoF3izb-b1CbklVUr7eQYcJYIxI7EJhtmNcELpnGv_U49NEDc898Cj76cFc9urO0bIx2qaJGC9NWWdbOKXSqR_tXs45h9m02dYLqe-KW3PhVaoBM_W3LLkXkBPzomVoDaYrMqD | 142.250.74.98 | 204 No Content | 0 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240424&jk=1806254254525496&bg=!7-yl7KPNAAYBeExMIXg7ADQBe5WfOJZlgLwvuTzF_ahubo_xXx3513MyqL_vnVyXxy1gQF22RwOmZIgoMYFD-CCCOX2IAgAAAKZSAAAABGgBB34ANNbAw1jQni4TOMnl9z8p-zU_Us-2wDa6rwmkGYlW2vjBDoF49jyXhH6HezaZHvlKZerD7IEKAC_-u4ddECxn69s95kUbz8M8oeqe-q8e-WLOhvyVMNu0mOvGI13D646_HgR7KMvGXJkCGKUGd0ONCYE4Xu6yH5iZKfzEVugvvEitDuhSau5Tuofd2sE9fCLtrBu21AJMAG766tJ0BXQlBuK_XqnqNmGSaT90Lv4XNezveVSec1QlxOVQ-k0AC7zKZh6adcaQAvX_2Oo4Dwb8z6isk5K9BvBbuVHol63ypqy3sLfBPz9i6QhOCGi-a5k_OhgfTeIfzfJVLrSEy286KAO4b_hRnyxVvhVWl8Aan_X4ruwyo3ZzBOLnrB6YcupqBCR5zu5OkF3ILPT2WACSL01F_gPE0d7QrpIwtX2pqss4Yy6Ec5iTXjuhALQWgZlWptSUgvmNg3ZszYOZichPWYy9uID2blhtcfiMmaQV7kZrw2hTIY-Rgs5oWa_paC9Vy_MjE5FN3YPhdZKvivvbtzmPcLfolsO6EYBtAcUeAflwOyyTZv8hSvbQyhFX6PjxlVWTh9MUUnWFI7e_B-IfBA7uHytgVI7ou2C7f0lKSWy22a6WhyRKlErgMvCSisBS-6SdtPmhd0BhGXCibM1Ilheie6OPiE9roQFVOTS4rxtmu61s3ydEqFLnwx9LOJppViDRBOCxmgCGEAw5DiBoF3izb-b1CbklVUr7eQYcJYIxI7EJhtmNcELpnGv_U49NEDc898Cj76cFc9urO0bIx2qaJGC9NWWdbOKXSqR_tXs45h9m02dYLqe-KW3PhVaoBM_W3LLkXkBPzomVoDaYrMqD IP142.250.74.98:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.g.doubleclick.net Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20240424&jk=1806254254525496&bg=!7-yl7KPNAAYBeExMIXg7ADQBe5WfOJZlgLwvuTzF_ahubo_xXx3513MyqL_vnVyXxy1gQF22RwOmZIgoMYFD-CCCOX2IAgAAAKZSAAAABGgBB34ANNbAw1jQni4TOMnl9z8p-zU_Us-2wDa6rwmkGYlW2vjBDoF49jyXhH6HezaZHvlKZerD7IEKAC_-u4ddECxn69s95kUbz8M8oeqe-q8e-WLOhvyVMNu0mOvGI13D646_HgR7KMvGXJkCGKUGd0ONCYE4Xu6yH5iZKfzEVugvvEitDuhSau5Tuofd2sE9fCLtrBu21AJMAG766tJ0BXQlBuK_XqnqNmGSaT90Lv4XNezveVSec1QlxOVQ-k0AC7zKZh6adcaQAvX_2Oo4Dwb8z6isk5K9BvBbuVHol63ypqy3sLfBPz9i6QhOCGi-a5k_OhgfTeIfzfJVLrSEy286KAO4b_hRnyxVvhVWl8Aan_X4ruwyo3ZzBOLnrB6YcupqBCR5zu5OkF3ILPT2WACSL01F_gPE0d7QrpIwtX2pqss4Yy6Ec5iTXjuhALQWgZlWptSUgvmNg3ZszYOZichPWYy9uID2blhtcfiMmaQV7kZrw2hTIY-Rgs5oWa_paC9Vy_MjE5FN3YPhdZKvivvbtzmPcLfolsO6EYBtAcUeAflwOyyTZv8hSvbQyhFX6PjxlVWTh9MUUnWFI7e_B-IfBA7uHytgVI7ou2C7f0lKSWy22a6WhyRKlErgMvCSisBS-6SdtPmhd0BhGXCibM1Ilheie6OPiE9roQFVOTS4rxtmu61s3ydEqFLnwx9LOJppViDRBOCxmgCGEAw5DiBoF3izb-b1CbklVUr7eQYcJYIxI7EJhtmNcELpnGv_U49NEDc898Cj76cFc9urO0bIx2qaJGC9NWWdbOKXSqR_tXs45h9m02dYLqe-KW3PhVaoBM_W3LLkXkBPzomVoDaYrMqD HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:18 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jamaluddin-id.blogspot.com/favicon.ico | 216.58.207.193 | 200 OK | 437 B |
URL GET HTTP/3jamaluddin-id.blogspot.com/favicon.ico IP216.58.207.193:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel Hash832c1ee6bf870ec49d4d7b0fb8cd5821 fc67960b120e37a71f936244c0f80facef1f87f0 cfa725225bc9150e5c34fb7579e2f7ebd64d45595311f1d5873d8e72def7b611
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: jamaluddin-id.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon
expires: Fri, 26 Apr 2024 06:23:18 GMT
date: Fri, 26 Apr 2024 06:23:18 GMT
cache-control: private, max-age=86400
last-modified: Thu, 08 Feb 2024 14:57:07 GMT
etag: W/"46cf9ef9726d755f14596800ee3d9c76e9afb6c978e4fa7c39f9ca6a29547e98"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 437
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Oswald:400,700,300&ver=3.5.1 | 216.58.207.234 | 200 OK | 5.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Oswald:400,700,300&ver=3.5.1 IP216.58.207.234:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (5082), with no line terminators Hashe34183d9cfa7f8e5983d94640abff9c7 85694baeebdacf25b0d51936f76f3b8271eef905 3bc26c31892ac082836cd36b8743b6309c40901665c3601dc95be44b0de127e2
GET /css?family=Oswald:400,700,300&ver=3.5.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 06:23:17 GMT
date: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Oxygen | 216.58.207.234 | 200 OK | 730 B |
URL GET HTTP/2fonts.googleapis.com/css?family=Oxygen IP216.58.207.234:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (746), with no line terminators Hash4bcaa4b437ac69a45f6704c69c0d81b9 ccbbeb5c3a0ce0e7023ce3eb4beedef285325686 ac3d86af12b2cfdb10b3a92a11efd33f9d7488fa88d8953edb62f1624da7e0b2
GET /css?family=Oxygen HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 06:23:17 GMT
date: Fri, 26 Apr 2024 06:23:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 4.bp.blogspot.com/-7Rs_0rC1_gs/UkPvqlBeHQI/AAAAAAAAA3w/KWNA4XSGK8k/s1600/top-button.png | 142.250.74.161 | 404 Not Found | 832 B |
URL GET HTTP/24.bp.blogspot.com/-7Rs_0rC1_gs/UkPvqlBeHQI/AAAAAAAAA3w/KWNA4XSGK8k/s1600/top-button.png IP142.250.74.161:443
Requested byhttps://jamaluddin-id.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typePNG image data, 200 x 200, 8-bit colormap, non-interlaced Hash596246739a83bb45e30e13437e0810d9 203d99f5cb1f2c816d6f9974cc5a73cf412892a6 94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
GET /-7Rs_0rC1_gs/UkPvqlBeHQI/AAAAAAAAA3w/KWNA4XSGK8k/s1600/top-button.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://jamaluddin-id.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Fri, 26 Apr 2024 06:23:17 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|