ocsp.pki.goog/gts1c3
472 B IP
Hash 11428f669a78b9590668faeac6f11163
4d0cd300ee04649eb98f53fe5e3b00f33cab04ab
5849cca08de7b7d0aa64f18b12542e31a194081f276123f9de442109ae5622c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
poerwalaksana.blogspot.com/search/label/Internet
200 OK 49 kB URL User Request GET HTTP/2 poerwalaksana.blogspot.com/search/label/Internet
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (6604)
Hash dbdf22b005b752b9eec9f1d66623c1e4
ad24efff8dc3e5c8a22537f1d99e151cf7bf6264
cd009f7828c9dc15c95ede0c9f527e810b3fd4f53422a3b1e5ba323e4a40e99c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /search/label/Internet HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 19 Sep 2023 18:47:12 GMT
date: Tue, 19 Sep 2023 18:47:12 GMT
cache-control: private, max-age=0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
etag: W/"e9e5b86c8f7897c116688520c5de8bbe1be1e3478d317f757ab0fd0f7cef3322"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 48868
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash ee6dd3d5e439506c1c5d882849b6871e
62243782389a088216d40b2bf0684b4fa6fc5728
e499212218f87a738674cdeeda68c4ec05bf8bd780fd89125f5287b776595ca7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
poerwalaksana.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/3 poerwalaksana.blogspot.com/js/cookienotice.js
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/cookienotice.js HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 19 Sep 2023 18:47:13 GMT
expires: Tue, 26 Sep 2023 18:47:13 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 16:55:46 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash abdf8b53099dccf8d09dbfddf3de9ead
ae1e54f0d16df6b3c6c56a557b1d973b2d21e852
8e6598419100a6447e92e81214ae1277824289350a90fa89b3594f1288debcc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash da172efb0fd6da2c4ee844abac50aadc
084492ced57dd89b321f15d24352c905bee1e06a
d2e1252e318b7c2f54dd7b9701c1d2ad991f35719d474031202b2ad0b9fe666b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash da172efb0fd6da2c4ee844abac50aadc
084492ced57dd89b321f15d24352c905bee1e06a
d2e1252e318b7c2f54dd7b9701c1d2ad991f35719d474031202b2ad0b9fe666b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
200 OK 7.5 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (35063), with no line terminators
Hash ab6a6d5b5c66d4ee0203f97d9bd453c5
018fa22a975db5039d5a1f112d9e021b6e6dcb8f
2d903176d4df72e36c554fe65598e07df6e8b0b920cd9e37ee91d96389a44791
GET /static/v1/widgets/1535467126-widget_css_2_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 09:28:37 GMT
expires: Tue, 17 Sep 2024 09:28:37 GMT
cache-control: public, max-age=31536000
age: 119916
last-modified: Tue, 25 Nov 2014 14:03:24 GMT
content-type: text/css
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
200 OK 7.8 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (35959)
Hash 1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 20:27:35 GMT
expires: Tue, 17 Sep 2024 20:27:35 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Sep 2023 14:53:49 GMT
content-type: text/css
vary: Accept-Encoding
age: 80378
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
200 OK 33 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash ddb84c1587287b2df08966081ef063bf
9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f
88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33333
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 00:06:25 GMT
expires: Wed, 18 Sep 2024 00:06:25 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 67248
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
poerwalaksana.blogspot.com/feeds/comments/default?alt=json&callback=helploggercomments&max-results=4
200 OK 1.5 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/comments/default?alt=json&callback=helploggercomments&max-results=4
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type Unicode text, UTF-8 text, with very long lines (8398)
Hash fe6f09b61de45309dd82b51d9fe46a7c
9273a5a5cfa0405d031f080a0e74199f44e6e348
4d0d88c581bcbb51e8f42882a0cd32b0bad6955ae14764a14caa87ee6afe94b8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/comments/default?alt=json&callback=helploggercomments&max-results=4 HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"2f31b0bdfa995efa76dbb1d356c46a2dc53445b10a8a24b074176b17fee72c9f"
date: Tue, 19 Sep 2023 18:47:13 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:14 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 1532
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash a10c9ef71e1a6040cd98a8096dc61bbc
f033990641f4e87522f5b83d2fcdc269eda0dba9
bdfa32272569ad79c2959e7cd1240f7181c27144ce71b23a45742c0c55aa964e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1465578468-widgets.js
200 OK 58 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/1465578468-widgets.js
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (2215)
Hash a1cb4046392479f1acaeeba88535eaee
65ac5b085dd4b87ef3dbfe271254bd1d742f1abb
d49c1e3a643794375db57ab0f237a97a189577f3e822d8512ed383f95941dde8
GET /static/v1/widgets/1465578468-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 09:00:41 GMT
expires: Wed, 18 Sep 2024 09:00:41 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 15 Sep 2023 13:53:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 35192
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 64ed688baf8887c3e918f1a762cdc5b2
057b28a887cac1050b7c08d5647a1e4d8b416ebf
267244dad1693002d314ef71cc0317d4d942c4740009aacafac6a6ab7900a712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 7c6c4ab403868ce33ede1ab6647ba1f5
574286bad8cc750c13bae961e4ca9f949b7b0bab
2808d998194c57f0f000205adc947b346de85ce853383f4126c1bb0c868e647a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT
File type ASCII text, with very long lines (2664)
Hash bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Tue, 19 Sep 2023 18:47:13 GMT
expires: Tue, 19 Sep 2023 18:47:13 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-DfNztmjzhQ8/VNtgBG2tE5I/AAAAAAAAYCU/Xfp5JQddkM4/s1600/Digital%2BLogo%2B1a.png
200 OK 21 kB URL GET HTTP/2 3.bp.blogspot.com/-DfNztmjzhQ8/VNtgBG2tE5I/AAAAAAAAYCU/Xfp5JQddkM4/s1600/Digital%2BLogo%2B1a.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 199 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash c738ae0c91abd8315774fc7f6515c303
56e3928b7230c156d0cf54ce14d0ab6b60469f46
9245dd18a092f4c7d591fdd59f710096b401a7d99c3339ffa3fc47583bf2de43
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-DfNztmjzhQ8/VNtgBG2tE5I/AAAAAAAAYCU/Xfp5JQddkM4/s1600/Digital%2BLogo%2B1a.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v6026"
expires: Wed, 20 Sep 2023 18:47:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Digital Logo 1a.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:13 GMT
server: fife
content-length: 20890
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash abdf8b53099dccf8d09dbfddf3de9ead
ae1e54f0d16df6b3c6c56a557b1d973b2d21e852
8e6598419100a6447e92e81214ae1277824289350a90fa89b3594f1288debcc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash abdf8b53099dccf8d09dbfddf3de9ead
ae1e54f0d16df6b3c6c56a557b1d973b2d21e852
8e6598419100a6447e92e81214ae1277824289350a90fa89b3594f1288debcc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-bzuwVcm2QCk/T0DBqC5hi6I/AAAAAAAADRA/kN8AN0Bf6mw/s72-c/Facebook-logo.jpg
200 OK 2.5 kB URL GET HTTP/2 3.bp.blogspot.com/-bzuwVcm2QCk/T0DBqC5hi6I/AAAAAAAADRA/kN8AN0Bf6mw/s72-c/Facebook-logo.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 146878b992ce6eb3765c3273f0ec7cd6
a747227210ee8b2f056e96e5d826cd71d26409a6
fdc3e89ea40f7ab127c0047b64c531da346be4a703bb731351c308eac758f538
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bzuwVcm2QCk/T0DBqC5hi6I/AAAAAAAADRA/kN8AN0Bf6mw/s72-c/Facebook-logo.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd10"
expires: Wed, 20 Sep 2023 18:47:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Facebook-logo.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:13 GMT
server: fife
content-length: 2523
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-P87AK73RlDg/UAw1vSfZHSI/AAAAAAAAH_g/uew7_lnaypU/s72-c/Penemu+kuman+Antony+van+Leeuwenhoek.jpg
200 OK 3.3 kB URL GET HTTP/2 2.bp.blogspot.com/-P87AK73RlDg/UAw1vSfZHSI/AAAAAAAAH_g/uew7_lnaypU/s72-c/Penemu+kuman+Antony+van+Leeuwenhoek.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 63350bb61011e32245a88b7b1883b90a
ece893eadd3d0c229c6c5e955d7541cf968a3536
9d84ee463d03702978938d884931343f5f134c267fdd201e89a6f1ac1e4b2715
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-P87AK73RlDg/UAw1vSfZHSI/AAAAAAAAH_g/uew7_lnaypU/s72-c/Penemu+kuman+Antony+van+Leeuwenhoek.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1ff8"
expires: Wed, 20 Sep 2023 18:47:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Penemu kuman Antony van Leeuwenhoek.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:13 GMT
server: fife
content-length: 3274
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-nuL8LlhVZXs/VMX19nZFn2I/AAAAAAAAX1A/k9VoayFJMjo/s1600/iklan1.jpg
200 OK 7.9 kB URL GET HTTP/2 3.bp.blogspot.com/-nuL8LlhVZXs/VMX19nZFn2I/AAAAAAAAX1A/k9VoayFJMjo/s1600/iklan1.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 200x139, components 3\012- data
Hash af63522de15d35bb7a197c7fe4e57741
e15f8297c9f02a76f87369d9e177d32427a7fd32
9020e83ee5a0a44f5a24fb988ba6dfd5f5a9f6a3ec66dc4f4f7f328b3c40e908
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-nuL8LlhVZXs/VMX19nZFn2I/AAAAAAAAX1A/k9VoayFJMjo/s1600/iklan1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5f51"
expires: Wed, 20 Sep 2023 18:47:13 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="iklan1.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:13 GMT
server: fife
content-length: 7895
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-JmeJiMq7-J4/VMS-gMV2qeI/AAAAAAAAXwE/5mxRaiOXjMo/s72-c/Aeschylus.jpg
200 OK 2.6 kB URL GET HTTP/2 4.bp.blogspot.com/-JmeJiMq7-J4/VMS-gMV2qeI/AAAAAAAAXwE/5mxRaiOXjMo/s72-c/Aeschylus.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e9b23c632daf694b62e533d637f4f46b
60bf574c0ec26c60fb8073487c174a9ea3253cf1
c9283e03a0e1dd5f79581b20d704259b3edc17f32787bf466ba8b651b8bfb476
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-JmeJiMq7-J4/VMS-gMV2qeI/AAAAAAAAXwE/5mxRaiOXjMo/s72-c/Aeschylus.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5f02"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Aeschylus.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 2551
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-FjJPDQIPq58/TnDwUjsGHrI/AAAAAAAAACU/rN6oGFiv9Z0/s72-c/lins001itin02_01_tpg.gif
200 OK 4.3 kB URL GET HTTP/2 3.bp.blogspot.com/-FjJPDQIPq58/TnDwUjsGHrI/AAAAAAAAACU/rN6oGFiv9Z0/s72-c/lins001itin02_01_tpg.gif
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type GIF image data, version 89a, 72 x 72\012- data
Hash b6cb01a1849a5e75e8c39e6d51dd3e1d
ccbae5fe09cce167e7c30d5993f322a5b051397a
06a5d6a2eddb61d7028085fbbbe0a4d4c2c86f62a9765a0fd41f997be1daa303
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-FjJPDQIPq58/TnDwUjsGHrI/AAAAAAAAACU/rN6oGFiv9Z0/s72-c/lins001itin02_01_tpg.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5350"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="lins001itin02_01_tpg.gif"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 4294
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-WR_DuNrhxNo/Tu9Yl40ikOI/AAAAAAAAAxY/PT6VRAjeF74/s72-c/kaplan.jpg
200 OK 2.9 kB URL GET HTTP/2 4.bp.blogspot.com/-WR_DuNrhxNo/Tu9Yl40ikOI/AAAAAAAAAxY/PT6VRAjeF74/s72-c/kaplan.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 539e30f4ac5b1557671b08c103325b9f
85d454727e0278e9c15e19ccb782a51d45accddd
2d9bb9062b4bcf763996807c18afca4dc2714362063fb84bb3561343c0ffffde
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-WR_DuNrhxNo/Tu9Yl40ikOI/AAAAAAAAAxY/PT6VRAjeF74/s72-c/kaplan.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v316"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="kaplan.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 2924
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-m18PPyex36Y/Ue0nMBRzS9I/AAAAAAAAR2o/Sf9p4Le1f9o/s72-c/Mengapa+Gurkha+begitu+menakutkan+4.jpg
200 OK 2.3 kB URL GET HTTP/2 4.bp.blogspot.com/-m18PPyex36Y/Ue0nMBRzS9I/AAAAAAAAR2o/Sf9p4Le1f9o/s72-c/Mengapa+Gurkha+begitu+menakutkan+4.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash e2c5f1630d89f851a362ae49eb29a829
aa5fa49ede27455ceec049eebf35bcf8cd6a0cfa
cdde6c9b0396f7caaaea76270864cf110d11aab47b4b1739a76ae4fc2a54251b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-m18PPyex36Y/Ue0nMBRzS9I/AAAAAAAAR2o/Sf9p4Le1f9o/s72-c/Mengapa+Gurkha+begitu+menakutkan+4.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v476b"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Mengapa Gurkha begitu menakutkan 4.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 2339
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 64ed688baf8887c3e918f1a762cdc5b2
057b28a887cac1050b7c08d5647a1e4d8b416ebf
267244dad1693002d314ef71cc0317d4d942c4740009aacafac6a6ab7900a712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-DRZO-roV_fo/UdT9t2B640I/AAAAAAAARd4/bzwlxPd8Sbw/s72-c/poerwalaksana.blogspot.com+Anak+pemilik+jari+kaki+terbanyak+dunia...!!!.jpg
200 OK 3.2 kB URL GET HTTP/2 4.bp.blogspot.com/-DRZO-roV_fo/UdT9t2B640I/AAAAAAAARd4/bzwlxPd8Sbw/s72-c/poerwalaksana.blogspot.com+Anak+pemilik+jari+kaki+terbanyak+dunia...!!!.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 45cf934911f5525a1db38c43ee5585e6
f480aa41aa1dae10d23814789c92a54fb265202c
8dc112b3f58c95d15493a525b05624be0d2a275a1cd1848e9d08ed80902363a1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-DRZO-roV_fo/UdT9t2B640I/AAAAAAAARd4/bzwlxPd8Sbw/s72-c/poerwalaksana.blogspot.com+Anak+pemilik+jari+kaki+terbanyak+dunia...!!!.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v45df"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="poerwalaksana.blogspot.com Anak pemilik jari kaki terbanyak dunia...!!!.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 3204
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MxKMxc95uTiRxrUrD962RZjeNvUXpyclUGKPfk2tax7olIId15NUU2raC41-TZB4M3x8c1UOJBhuB4d0WfdY-zi-PP4LeNR61_pqMCUK9NOaw=s0-d
200 OK 43 B URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AAOd8MxKMxc95uTiRxrUrD962RZjeNvUXpyclUGKPfk2tax7olIId15NUU2raC41-TZB4M3x8c1UOJBhuB4d0WfdY-zi-PP4LeNR61_pqMCUK9NOaw=s0-d
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash ebd4c7248ac9be0c41d02060e3430a5d
eabc59bee6a7ff007a1dfc3da3b5493143c0d087
e1da5cd02d74bb5ba944e3ce44037860ac9f42392eec6c99b9543910e1a3a5fe
GET /blogger_img_proxy/AAOd8MxKMxc95uTiRxrUrD962RZjeNvUXpyclUGKPfk2tax7olIId15NUU2raC41-TZB4M3x8c1UOJBhuB4d0WfdY-zi-PP4LeNR61_pqMCUK9NOaw=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.gif"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 43
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 64ed688baf8887c3e918f1a762cdc5b2
057b28a887cac1050b7c08d5647a1e4d8b416ebf
267244dad1693002d314ef71cc0317d4d942c4740009aacafac6a6ab7900a712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (1368)
Hash 60cb3b69fb3e3b24891141159eb940ad
8b183b5d8df902f7919cec452bce4c7f1bd950a7
6bbd65596c2e3d24a2d396fbf8753545e8d6a3fe2a7467f9ef4e1b4c2a0494f9
GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61126
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 22:31:53 GMT
expires: Tue, 17 Sep 2024 22:31:53 GMT
cache-control: public, max-age=31536000
age: 72921
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/dyn-css/authorization.css?targetBlogID=8530049739229432657&zx=5f8d199a-cda1-4cb3-ac0a-1547593f4ab3
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=8530049739229432657&zx=5f8d199a-cda1-4cb3-ac0a-1547593f4ab3
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=8530049739229432657&zx=5f8d199a-cda1-4cb3-ac0a-1547593f4ab3 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 18:47:14 GMT
last-modified: Tue, 19 Sep 2023 18:47:14 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png
200 OK 953 B URL GET HTTP/3 4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 0eea26f07712e739f05d4af4ff7f679f
31c2536de1ca08a5c538ce8369cc70a895e2b7c4
8ba06da9e3b2565103c9ba09aa56fe85809aa49d218de985fbae4381b3c75d5e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="icon-search.png"
x-content-type-options: nosniff
server: fife
content-length: 953
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:23:40 GMT
expires: Wed, 20 Sep 2023 16:23:40 GMT
cache-control: public, max-age=86400, no-transform
age: 8614
etag: "v13f"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-JoYKBRH4WWs/VJqoskUlp2I/AAAAAAAADLk/rDmRmUDdoaA/s1600/bg_nav%2B(1).png
200 OK 219 B URL GET HTTP/3 1.bp.blogspot.com/-JoYKBRH4WWs/VJqoskUlp2I/AAAAAAAADLk/rDmRmUDdoaA/s1600/bg_nav%2B(1).png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 2 x 54, 8-bit/color RGB, non-interlaced\012- data
Hash ef73bd1f53e5201f0c27398e9e3b6411
326392905f20fc2985a1b15d75f0901042884f7f
6ac63eefaea6563cfc7ed0e8567c942a6f85c0aaac151d5c8229add3dcdc4d96
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-JoYKBRH4WWs/VJqoskUlp2I/AAAAAAAADLk/rDmRmUDdoaA/s1600/bg_nav%2B(1).png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bg_nav (1).png"
x-content-type-options: nosniff
server: fife
content-length: 219
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:25:20 GMT
expires: Wed, 20 Sep 2023 16:25:20 GMT
cache-control: public, max-age=86400, no-transform
age: 8514
etag: "vcba"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-3ho0g-Dc4Y0/U7ZbVW1tuKI/AAAAAAAAAzE/bpGJ-s7r3Wk/s1600/facebook.png
200 OK 669 B URL GET HTTP/3 1.bp.blogspot.com/-3ho0g-Dc4Y0/U7ZbVW1tuKI/AAAAAAAAAzE/bpGJ-s7r3Wk/s1600/facebook.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ddbff957ba3e2d453d7aac9a2eea5ae
0b69cb736caf706c29b95cea0e0d70f6389db405
426d9d7b609164484ef83ab3eb383c2dda83f96feb147b82375dba814554f266
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-3ho0g-Dc4Y0/U7ZbVW1tuKI/AAAAAAAAAzE/bpGJ-s7r3Wk/s1600/facebook.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="facebook.png"
x-content-type-options: nosniff
server: fife
content-length: 669
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:23:15 GMT
expires: Wed, 20 Sep 2023 16:23:15 GMT
cache-control: public, max-age=86400, no-transform
age: 8639
etag: "v333"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-sIGAQtPQHP8/U7ZbVYIZcXI/AAAAAAAAAzI/GIY14uvXhg4/s1600/twitter.png
1.1 kB URL 4.bp.blogspot.com/-sIGAQtPQHP8/U7ZbVYIZcXI/AAAAAAAAAzI/GIY14uvXhg4/s1600/twitter.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash a41dfbeffc1ebbde4c57b89c41219921
d89b7eb6e59926eb1b2efbeceeaf88b95b2f9e94
9dbbb52e23ebff1b66e672e1e0f3a501c1f8086dedf7f8da779c2f5d9c2f5f29
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-sIGAQtPQHP8/U7ZbVYIZcXI/AAAAAAAAAzI/GIY14uvXhg4/s1600/twitter.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="twitter.png"
x-content-type-options: nosniff
server: fife
content-length: 1078
x-xss-protection: 0
date: Tue, 19 Sep 2023 17:16:02 GMT
expires: Wed, 20 Sep 2023 17:16:02 GMT
cache-control: public, max-age=86400, no-transform
age: 5472
etag: "v337"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/--F1xUtN_8FQ/U7ZbWG6lHdI/AAAAAAAAAzU/5GojeL_5aYc/s1600/vimeo.png
200 OK 1.1 kB URL GET HTTP/3 1.bp.blogspot.com/--F1xUtN_8FQ/U7ZbWG6lHdI/AAAAAAAAAzU/5GojeL_5aYc/s1600/vimeo.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 57873bee140944142f0849e6334dd407
9cf8cccd49fb81c8db63ca279f3c953645ffdb0c
e357c79acdc37b1a7632681bb467526814d6b6a49bbb12dcd26e011bc4685616
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /--F1xUtN_8FQ/U7ZbWG6lHdI/AAAAAAAAAzU/5GojeL_5aYc/s1600/vimeo.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="vimeo.png"
x-content-type-options: nosniff
server: fife
content-length: 1146
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:23:15 GMT
expires: Wed, 20 Sep 2023 16:23:15 GMT
cache-control: public, max-age=86400, no-transform
age: 8639
etag: "v338"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
3.bp.blogspot.com/-rJglRJh1WW0/U7ZbcTKQcbI/AAAAAAAAAzk/33OW1b2t1xI/s1600/flickr.png
200 OK 552 B URL GET HTTP/3 3.bp.blogspot.com/-rJglRJh1WW0/U7ZbcTKQcbI/AAAAAAAAAzk/33OW1b2t1xI/s1600/flickr.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d51b352517f6a7926939501f03aa1c6
6888c12927019bac9f81009bf431b0e09d892fb5
dda4be3411b1db8eb35137039acb42ffdbd6521aae1354ec659e14aced216bfb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-rJglRJh1WW0/U7ZbcTKQcbI/AAAAAAAAAzk/33OW1b2t1xI/s1600/flickr.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="flickr.png"
x-content-type-options: nosniff
server: fife
content-length: 552
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:57:50 GMT
expires: Wed, 20 Sep 2023 16:57:50 GMT
cache-control: public, max-age=86400, no-transform
age: 6564
etag: "v33b"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/-n0U6_fs415s/U7ZbVQ_YSRI/AAAAAAAAAzQ/wUAF46WN5oo/s1600/linkedin.png
200 OK 892 B URL GET HTTP/3 2.bp.blogspot.com/-n0U6_fs415s/U7ZbVQ_YSRI/AAAAAAAAAzQ/wUAF46WN5oo/s1600/linkedin.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 24498072d73643dbf7312aaec50239ed
c177085f78036af00b572acc461f5a392e4d34e2
d8a541328a3381b808282fcc340d0df0b9a5756a7e5874125d93c2ed9de485ec
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-n0U6_fs415s/U7ZbVQ_YSRI/AAAAAAAAAzQ/wUAF46WN5oo/s1600/linkedin.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="linkedin.png"
x-content-type-options: nosniff
server: fife
content-length: 892
x-xss-protection: 0
date: Tue, 19 Sep 2023 15:04:55 GMT
expires: Wed, 20 Sep 2023 15:04:55 GMT
cache-control: public, max-age=86400, no-transform
age: 13339
etag: "v336"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
3.bp.blogspot.com/-NmMcKECatSQ/U6V_5SbOF1I/AAAAAAAAAkM/PWAmCSVs_wA/s1600/dribbble.png
200 OK 1.5 kB URL GET HTTP/3 3.bp.blogspot.com/-NmMcKECatSQ/U6V_5SbOF1I/AAAAAAAAAkM/PWAmCSVs_wA/s1600/dribbble.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash b4ab2414cda79f08e1e26c3c6899dca6
abc91915bb82262116f3a00cf2df301c70fcdee7
9d5ce4853857058bcfa2acacc5e4ab58cbb35466a919e0c21d8ff592e8f1be74
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-NmMcKECatSQ/U6V_5SbOF1I/AAAAAAAAAkM/PWAmCSVs_wA/s1600/dribbble.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="dribbble.png"
x-content-type-options: nosniff
server: fife
content-length: 1526
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:19:40 GMT
expires: Wed, 20 Sep 2023 16:19:40 GMT
cache-control: public, max-age=86400, no-transform
age: 8854
etag: "v246"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
3.bp.blogspot.com/-RhkXdjwgEVo/U7ZbcWu-iTI/AAAAAAAAAzo/43hPWkLD5hQ/s1600/googleplus.png
200 OK 1.4 kB URL GET HTTP/3 3.bp.blogspot.com/-RhkXdjwgEVo/U7ZbcWu-iTI/AAAAAAAAAzo/43hPWkLD5hQ/s1600/googleplus.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 40 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d0bfbf8f18a7d2b91ad49c373c095de
2c21cc5f07b1941971ce114e295c03d8252377a9
348cf6a5fc93c375e9022add216607dea193b422654a3186abbe307b4b2193a4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-RhkXdjwgEVo/U7ZbcWu-iTI/AAAAAAAAAzo/43hPWkLD5hQ/s1600/googleplus.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="googleplus.png"
x-content-type-options: nosniff
server: fife
content-length: 1350
x-xss-protection: 0
date: Tue, 19 Sep 2023 18:23:35 GMT
expires: Wed, 20 Sep 2023 18:23:35 GMT
cache-control: public, max-age=86400, no-transform
age: 1419
etag: "v33c"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 7c6c4ab403868ce33ede1ab6647ba1f5
574286bad8cc750c13bae961e4ca9f949b7b0bab
2808d998194c57f0f000205adc947b346de85ce853383f4126c1bb0c868e647a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 3050f8e9fc21f3199fe194b0eb9a7b42
1c05b867d9fd08afefeb8e919e90006f24a913b4
2fd4fad4b095b269298a40660c643fa68c923cc6a06e593dfc0eaad9d48325d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MyjkV9LymgKq2b0EZT52mn579OCORNjusKWOwZYSlVEdZILV0zt_EPQ05x48UNMTUk6Wfmx6OySTTobj8tw1MyNkXcVmFdNkTJufQ0=s0-d
200 OK 185 B URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AAOd8MyjkV9LymgKq2b0EZT52mn579OCORNjusKWOwZYSlVEdZILV0zt_EPQ05x48UNMTUk6Wfmx6OySTTobj8tw1MyNkXcVmFdNkTJufQ0=s0-d
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type GIF image data, version 89a, 80 x 15\012- data
Hash 9eaa775f0b2fae54a6cfc93e933ea886
e8d064bda6fd14c549e30f2154ce294cadd92873
dd886ed8f5f0357fd0b7240a655040c0424d62864859f7af957879a22442b167
GET /blogger_img_proxy/AAOd8MyjkV9LymgKq2b0EZT52mn579OCORNjusKWOwZYSlVEdZILV0zt_EPQ05x48UNMTUk6Wfmx6OySTTobj8tw1MyNkXcVmFdNkTJufQ0=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.gif"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 185
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 42 B URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Tue, 19 Sep 2023 14:42:48 GMT
expires: Tue, 03 Oct 2023 14:42:48 GMT
cache-control: public, max-age=1209600
age: 14666
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 85073dc38dce61b5a442199213e5e449
436a960500e7061a8bfa3cc3fa897efdaa3dcaa4
0215bd45a978d1802cb17ebe04b8f9b322e7e3b2f12cfbcd8bc61369aeeee040
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h140-c/no-image.png
200 OK 4.2 kB URL GET HTTP/3 3.bp.blogspot.com/-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h140-c/no-image.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 200 x 140, 8-bit/color RGB, non-interlaced\012- data
Hash b1f7091ff96e73bb5bc1a0447302938d
c977ab44faf0f889a3ee557017e20dc4697c8db5
cbb1abeec0baceede77ec7ae2a83e9bc51a784a8d45af600c3ade3fddbe55b9a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h140-c/no-image.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="no-image.png"
x-content-type-options: nosniff
server: fife
content-length: 4221
x-xss-protection: 0
date: Tue, 19 Sep 2023 15:36:26 GMT
expires: Wed, 20 Sep 2023 15:36:26 GMT
cache-control: public, max-age=86400, no-transform
age: 11448
etag: "vd0b"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
200 OK 21 kB URL GET HTTP/2 fonts.gstatic.com/s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 21444, version 1.0\012- data
Hash ffd3d57638a7899d80bcc108713c271c
d186409ee24fc3d1cc8194434dd707181ead20ec
99027d866818f716d208569108a962ac72200197cae503efe5b6bf002bf4915b
GET /s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://poerwalaksana.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 04:12:06 GMT
expires: Wed, 18 Sep 2024 04:12:06 GMT
cache-control: public, max-age=31536000
age: 52508
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 3050f8e9fc21f3199fe194b0eb9a7b42
1c05b867d9fd08afefeb8e919e90006f24a913b4
2fd4fad4b095b269298a40660c643fa68c923cc6a06e593dfc0eaad9d48325d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
200 OK 45 kB URL GET HTTP/2 fonts.gstatic.com/s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 44584, version 1.0\012- data
Hash e04669366cda1aca21161f9e22bac3ae
157532ec5cdb07c395eb96aa6e9d0de1eeb869a7
43a079fd739dffa727de659b5bbf44596031aa7542c8a8afbc54a243aab96b47
GET /s/fjallaone/v15/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://poerwalaksana.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44584
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 08:56:52 GMT
expires: Wed, 18 Sep 2024 08:56:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 03 Apr 2023 20:46:24 GMT
content-type: font/woff2
age: 35422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
200 OK 64 kB URL GET HTTP/3 maxcdn.bootstrapcdn.com/font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 64464, version 4.262\012- data
Hash 4b5a84aaf1c9485e060c503a0ff8cadb
574ea2698c03ae9477db2ea3baf460ee32f1a7ea
3c4a1bb7ce3234407184f0d80cc4dec075e4ad616b44dcc5778e1cfb1bc24019
GET /font-awesome/4.4.0/fonts/fontawesome-webfont.woff2?v=4.4.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://poerwalaksana.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 19 Sep 2023 18:47:14 GMT
content-type: font/woff2
content-length: 64464
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "4b5a84aaf1c9485e060c503a0ff8cadb"
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 06/09/2022 10:24:04
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e62d1e13dde16f7127144624821d5aa3
cdn-cache: HIT
cf-cache-status: HIT
age: 269225
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8093fefb9b5356a4-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
472 B IP
Hash 85073dc38dce61b5a442199213e5e449
436a960500e7061a8bfa3cc3fa897efdaa3dcaa4
0215bd45a978d1802cb17ebe04b8f9b322e7e3b2f12cfbcd8bc61369aeeee040
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 18:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
poerwalaksana.blogspot.com/feeds/posts/summary/-/Internet?alt=json-in-script&callback=pageNavi&max-results=99999
200 OK 6.6 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/summary/-/Internet?alt=json-in-script&callback=pageNavi&max-results=99999
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type Unicode text, UTF-8 text, with very long lines (34691)
Hash 390d94e380b62ca75526d995f09aa71d
841d77c1a6c9899d1039bee65eec62ca88970703
ec330a10a3af95b07b864578ff731794247db2a56bc11b961b8381e85af2713a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/summary/-/Internet?alt=json-in-script&callback=pageNavi&max-results=99999 HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"a376f32418ebd3f37ddc2e77d0ec88b63601cdde31a8e0f407fdbc3c1d4c802b"
date: Tue, 19 Sep 2023 18:47:14 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:15 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 6589
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
2.6 kB URL www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 95c0f76782c6f272a771422f7b578d0a
63b4a0542ab8a5a3db5dbc72fb5efc6f4193f177
8f873e4df9bf35e220c0a43b729e6341980df804774374f705c1b6f271a31e87
GET /navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 18:47:14 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2595
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MzpSgRDOwMWKz_fokNnq_49agbjHU05JZCLAFJTFLyOwSmJNAC1n6N4avpNZ67Rn1qanxLBOu6O7zai0CaItqjqlYr2fnLG4vI0B-zfnyWBpQeldcEh2EfZffDOICkdH65nQ9bHBNumaBwEhrDVQnwvwa3Oi0hJ0cIoUYeyICDAQIQA7zF3ehWtDKUB8o-TdyyW3A5gBsEyZlBAnQRMSVF9uDM=s0-d
200 OK 97 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AAOd8MzpSgRDOwMWKz_fokNnq_49agbjHU05JZCLAFJTFLyOwSmJNAC1n6N4avpNZ67Rn1qanxLBOu6O7zai0CaItqjqlYr2fnLG4vI0B-zfnyWBpQeldcEh2EfZffDOICkdH65nQ9bHBNumaBwEhrDVQnwvwa3Oi0hJ0cIoUYeyICDAQIQA7zF3ehWtDKUB8o-TdyyW3A5gBsEyZlBAnQRMSVF9uDM=s0-d
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type PNG image data, 364 x 647, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b9f89e8d48ca99f892df0040189326d
760a419af1185146d6ca9d0c2d731c9d94c49eb7
044d2fa47da23bd7c63312e19f6792fbc0443d3e605c9089f50badc5de8867be
GET /blogger_img_proxy/AAOd8MzpSgRDOwMWKz_fokNnq_49agbjHU05JZCLAFJTFLyOwSmJNAC1n6N4avpNZ67Rn1qanxLBOu6O7zai0CaItqjqlYr2fnLG4vI0B-zfnyWBpQeldcEh2EfZffDOICkdH65nQ9bHBNumaBwEhrDVQnwvwa3Oi0hJ0cIoUYeyICDAQIQA7zF3ehWtDKUB8o-TdyyW3A5gBsEyZlBAnQRMSVF9uDM=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
date: Tue, 19 Sep 2023 18:47:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate, no-transform
content-disposition: attachment;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 96694
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.EU_6xqSFz4M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrU0T4__bvFvP22KEhdENMuBtuHLg/m=el_main
200 OK 78 kB URL GET HTTP/3 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.EU_6xqSFz4M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrU0T4__bvFvP22KEhdENMuBtuHLg/m=el_main
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (1660)
Hash 42b3443506434d91a713994a20c48146
0674ef476ac7751b105d41f24f4a693c3fc02b81
a707c3581c3371aa8d1fb05c30bd6b4ceb5a4885edc1bdfd0747bc71a40841c9
GET /_/translate_http/_/js/k=translate_http.tr.no.EU_6xqSFz4M.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrU0T4__bvFvP22KEhdENMuBtuHLg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 78099
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 19:16:16 GMT
expires: Tue, 17 Sep 2024 19:16:16 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 16 Sep 2023 21:12:23 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 84658
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
3.bp.blogspot.com/-ePek5Ykg3PI/T16A85m58vI/AAAAAAAAFFU/JbjPhEpQUlc/w300-h190-c/1.yunus+attsaouly+aka+irhaby+007.jpg
200 OK 13 kB URL GET HTTP/3 3.bp.blogspot.com/-ePek5Ykg3PI/T16A85m58vI/AAAAAAAAFFU/JbjPhEpQUlc/w300-h190-c/1.yunus+attsaouly+aka+irhaby+007.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash f75c52664ed41772b2a88ce96117580c
86ff4f6efd544ecf9801e2e77b4d9a0d81799dd8
ce6ef6f3b8209f1423b2527c925ef6d60abda645cfad01c46cb8e892f83e4c75
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ePek5Ykg3PI/T16A85m58vI/AAAAAAAAFFU/JbjPhEpQUlc/w300-h190-c/1.yunus+attsaouly+aka+irhaby+007.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1455"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1.yunus attsaouly aka irhaby 007.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 13074
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200 OK 34 kB URL GET HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (2450)
Hash fc106a0ab70492fdef5b446f9bd73077
a40961aabd3777f751fb3c51d164d0c34e528915
fea1c6c2e39b799cf852ee21a42eef1103ed6f9f7ed5fd05b14223a75e52dc2e
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 18:47:13 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+398; expires=Thu, 18-Sep-2025 18:47:13 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-4xKBXZCEyNQ/T0rduVhAprI/AAAAAAAADz8/o4bBLmgpw9o/w300-h190-c/Webcam+pertamakali+digunakan.jpg
200 OK 9.0 kB URL GET HTTP/3 4.bp.blogspot.com/-4xKBXZCEyNQ/T0rduVhAprI/AAAAAAAADz8/o4bBLmgpw9o/w300-h190-c/Webcam+pertamakali+digunakan.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash 2c8efa370f88582de714521b502b7e17
5c0b365bf4a1d3c7c46796403a1fb10747299be4
1007af63ef87a1a30d657a8bc309fda13935dfcc76c31c4cd3695d30e32dc041
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-4xKBXZCEyNQ/T0rduVhAprI/AAAAAAAADz8/o4bBLmgpw9o/w300-h190-c/Webcam+pertamakali+digunakan.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vf3f"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Webcam pertamakali digunakan.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 9043
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-XcpB__jVM8Y/Ug8jomg-ksI/AAAAAAAAShg/GYZAxQJ-USg/w300-h190-c/1_psn.jpg
13 kB URL 1.bp.blogspot.com/-XcpB__jVM8Y/Ug8jomg-ksI/AAAAAAAAShg/GYZAxQJ-USg/w300-h190-c/1_psn.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash e5308905bc46b553988a71cc6be6019a
4743f28051ac3a78e5ff10ada5a876602defd54d
e5e1e78bcc083c2ed2c4863599b0e7b19359bfd57385a62117d7652da85af1bd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-XcpB__jVM8Y/Ug8jomg-ksI/AAAAAAAAShg/GYZAxQJ-USg/w300-h190-c/1_psn.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v4a19"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1_psn.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 12882
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/-6UqIawqqyYE/UK5qINnUb3I/AAAAAAAAOxA/mZruP0kKhbY/w300-h190-c/les-horribles-cernettes--Photo+pertama+yang+di+Upload+ke+Internet...!!!.jpg
200 OK 27 kB URL GET HTTP/3 2.bp.blogspot.com/-6UqIawqqyYE/UK5qINnUb3I/AAAAAAAAOxA/mZruP0kKhbY/w300-h190-c/les-horribles-cernettes--Photo+pertama+yang+di+Upload+ke+Internet...!!!.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash b4aa5ed00367dec6d2124f186de92f4d
9b93a5143a39d8523a0e1917e45185d46cb559e3
cc8369e3d4e4a7ad13c0cccf242576e11b715fd9896e80b46e33f06a612d6fa3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-6UqIawqqyYE/UK5qINnUb3I/AAAAAAAAOxA/mZruP0kKhbY/w300-h190-c/les-horribles-cernettes--Photo+pertama+yang+di+Upload+ke+Internet...!!!.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v3b10"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="les-horribles-cernettes--Photo pertama yang di Upload ke Internet...!!!.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 26757
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-dhh1Rq39G_k/URewjDLYWDI/AAAAAAAAP8E/sox0bj_9o3g/w300-h190-c/Internet+mendunia+oleh+orang-orang+ini-douglas.jpg
27 kB URL 4.bp.blogspot.com/-dhh1Rq39G_k/URewjDLYWDI/AAAAAAAAP8E/sox0bj_9o3g/w300-h190-c/Internet+mendunia+oleh+orang-orang+ini-douglas.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash 386e46606b1525e14fc9de526f3a6fca
ae10d2da3bc51549bc5ccc6b0463de54b4b7a6b8
44a9533008d6e853c17c3eed37274c0af45c82671eef6362a879d6ae1d4ce658
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-dhh1Rq39G_k/URewjDLYWDI/AAAAAAAAP8E/sox0bj_9o3g/w300-h190-c/Internet+mendunia+oleh+orang-orang+ini-douglas.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v3fc1"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Internet mendunia oleh orang-orang ini-douglas.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 26893
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/-1jbU77T9cOQ/T0YEjGAOTFI/AAAAAAAADpA/NwCQe8y2AWw/w300-h190-c/Warcraft++DOTA.jpg
200 OK 21 kB URL GET HTTP/3 2.bp.blogspot.com/-1jbU77T9cOQ/T0YEjGAOTFI/AAAAAAAADpA/NwCQe8y2AWw/w300-h190-c/Warcraft++DOTA.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash 3359c6a7281cbbf1877192347f5d8d7b
dd4857be58959a53a886203ea9945b7988cceea4
1729a250993fcf0cb7e654e5e25b00663027bdcb3b9a5cc5f42feec7a2aab0dd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-1jbU77T9cOQ/T0YEjGAOTFI/AAAAAAAADpA/NwCQe8y2AWw/w300-h190-c/Warcraft++DOTA.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "ve90"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Warcraft DOTA.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 21067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-NGptq7S_X20/UnB80waxB_I/AAAAAAAAVGs/Fplry45v4R8/w300-h190-c/national+geographic.jpg
11 kB URL 1.bp.blogspot.com/-NGptq7S_X20/UnB80waxB_I/AAAAAAAAVGs/Fplry45v4R8/w300-h190-c/national+geographic.jpg
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x190, components 3\012- data
Hash 6642df877ddac561c4e3d598674a4e0a
62332d027a865d39416b355f2042aa23f8bfbbf8
5f2578e42be15f1cfdf86a0482f1eb0feeb026d5f26c4f33c9196cdfd5e0fbc4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-NGptq7S_X20/UnB80waxB_I/AAAAAAAAVGs/Fplry45v4R8/w300-h190-c/national+geographic.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v546c"
expires: Wed, 20 Sep 2023 18:47:14 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="national geographic.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:14 GMT
server: fife
content-length: 10709
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fpoerwalaksana.blogspot.com&pfname=&rpctoken=31533043
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (2664)
Hash 3e680d5a22266127e8a36263d1aff76d
792c1e4b9c3082d83eadb73e0a171f5af216b74b
646858dc6120e933f6d0951560063dea27b2cbf64693f5b3e45d637166266de1
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21850
date: Tue, 19 Sep 2023 18:47:15 GMT
expires: Tue, 19 Sep 2023 18:47:15 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3da185580d4f9ca7"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_peach.png
200 OK 907 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_peach.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fpoerwalaksana.blogspot.com&pfname=&rpctoken=31533043
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 02:45:24 GMT
expires: Tue, 26 Sep 2023 02:45:24 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 11:52:55 GMT
content-type: image/png
age: 57711
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-light.png
200 OK 117 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-light.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fpoerwalaksana.blogspot.com&pfname=&rpctoken=31533043
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 02:56:18 GMT
expires: Tue, 26 Sep 2023 02:56:18 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 01:56:24 GMT
content-type: image/png
age: 57057
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fpoerwalaksana.blogspot.com&pfname=&rpctoken=31533043
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (1368)
Hash 6ad382fa50a2250514d6142072a647f4
316d68172c63ff03f82bb644b5a1ef54149ae818
6c34aa6863dc470b805525b8db49e29a2946b73cc81c1ab6b558efd49a5b2efe
GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45681
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 22:31:54 GMT
expires: Tue, 17 Sep 2024 22:31:54 GMT
cache-control: public, max-age=31536000
age: 72921
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/feeds/posts/default/-/Misteri?max-results=10&orderby=published&alt=json-in-script&callback=featuredposts
200 OK 38 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/default/-/Misteri?max-results=10&orderby=published&alt=json-in-script&callback=featuredposts
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type Unicode text, UTF-8 text, with very long lines (65519)
Hash 680cd73c09ca41020ec5cb6342f1815b
376dfa598d706a7f8346825ff5d2feda0f9f76a0
b7804f2c49b9d5fd5fe79354ad8d023c4734656037098d2475695078530f28b6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/default/-/Misteri?max-results=10&orderby=published&alt=json-in-script&callback=featuredposts HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"facc30ea6f27bdc5f55c4898ca218624b1b53a10e64be9e6744f28c067a1be1c"
date: Tue, 19 Sep 2023 18:47:15 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:16 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 37986
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-bXYVCoukzcA/U6JQfhd-v9I/AAAAAAAAGbQ/-xcacm828Ds/s1600/download.png
200 OK 296 B URL GET HTTP/3 1.bp.blogspot.com/-bXYVCoukzcA/U6JQfhd-v9I/AAAAAAAAGbQ/-xcacm828Ds/s1600/download.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 217 x 10, 8-bit gray+alpha, non-interlaced\012- data
Hash 20523628b6c9751a3740b0c84c5960a4
1156f9d7600f352a4ad43776cf4fdba64c81cd55
36fd21e10fa7d17e04fe86450a6acaae58382933f93ac5e5d5b66e3c9400c776
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bXYVCoukzcA/U6JQfhd-v9I/AAAAAAAAGbQ/-xcacm828Ds/s1600/download.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v19b5"
expires: Wed, 20 Sep 2023 18:47:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="download.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:15 GMT
server: fife
content-length: 296
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-SRSVCXNxbAc/UrbxxXd06YI/AAAAAAAAFl4/332qncR9pD4/s1600/default-avatar.jpg
200 OK 19 kB URL GET HTTP/3 4.bp.blogspot.com/-SRSVCXNxbAc/UrbxxXd06YI/AAAAAAAAFl4/332qncR9pD4/s1600/default-avatar.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x400, components 3\012- data
Hash ad76d9ae1f8f7c8c4f9c83bfc73b774f
f9053cafcf0d9a5f8acebd6a250e73a389757322
a23ffc354156d434d27a529a8f30cebdcc893ad60fa4612662cdace5db65169b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-SRSVCXNxbAc/UrbxxXd06YI/AAAAAAAAFl4/332qncR9pD4/s1600/default-avatar.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="default-avatar.jpg"
x-content-type-options: nosniff
server: fife
content-length: 18923
x-xss-protection: 0
date: Tue, 19 Sep 2023 15:33:17 GMT
expires: Wed, 20 Sep 2023 15:33:17 GMT
cache-control: public, max-age=86400, no-transform
age: 11638
etag: "v328a"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&max-results=0&callback=randomposts
200 OK 956 B URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&max-results=0&callback=randomposts
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type ASCII text, with very long lines (2114)
Hash 1fa0ae11fc1c21979ad893421e72b60c
9e5b1fa2c58badeda997257043f9a1b56dc6b05f
79fb1adfac587295741988cf2fb8d4a3b48e8f6d4f42ee443a266a08f031de20
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/default?alt=json-in-script&max-results=0&callback=randomposts HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"228bf0b3bf88dfd8004115ce461afbb58292958ece47c09d5c2f5b9b762d2841"
date: Tue, 19 Sep 2023 18:47:15 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:16 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 956
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-a52wNrqojBE/VsgEpdMAN5I/AAAAAAAAZSk/-5jEFYyjxxc/s400/1.jpg
200 OK 33 kB URL GET HTTP/3 1.bp.blogspot.com/-a52wNrqojBE/VsgEpdMAN5I/AAAAAAAAZSk/-5jEFYyjxxc/s400/1.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x186, components 3\012- data
Hash b6dd88b8d8e1fae5df96b4933e6a0c12
8438fbcab569e2a386c0e455b92b3d96ad454519
ca1ba963225225b5d3b274a3528217fe88e51739359c03a7a988599fc7bf3dfb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-a52wNrqojBE/VsgEpdMAN5I/AAAAAAAAZSk/-5jEFYyjxxc/s400/1.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v652b"
expires: Wed, 20 Sep 2023 18:47:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:15 GMT
server: fife
content-length: 32766
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-L9m5FVbym8E/VdSnJ5oQtRI/AAAAAAAAYt0/FoulzCLkYMg/s320/Deja%2BVu.jpg
200 OK 18 kB URL GET HTTP/3 4.bp.blogspot.com/-L9m5FVbym8E/VdSnJ5oQtRI/AAAAAAAAYt0/FoulzCLkYMg/s320/Deja%2BVu.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x216, components 3\012- data
Hash 12d5dbdf4f8c059fac9ed670471757cc
cf7369abeb69e8022a536ba47f9836545ee3fb44
88325bff3f24ae4fac3f794e1ec41ad2ba4ada4ca53ce5788f443194dfc07520
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-L9m5FVbym8E/VdSnJ5oQtRI/AAAAAAAAYt0/FoulzCLkYMg/s320/Deja%2BVu.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v62de"
expires: Wed, 20 Sep 2023 18:47:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Deja Vu.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:15 GMT
server: fife
content-length: 17623
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-uo3a-ufqrqE/Vs2HWr6XheI/AAAAAAAAZUw/7WDs29YwHGk/s400/D.B.-Cooper.jpg
200 OK 22 kB URL GET HTTP/3 1.bp.blogspot.com/-uo3a-ufqrqE/Vs2HWr6XheI/AAAAAAAAZUw/7WDs29YwHGk/s400/D.B.-Cooper.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x214, components 3\012- data
Hash 42903051434fc32a6a51036862e79633
df0f42df4610c5fe211b53a0ef145f2a31affbac
55a4e4b09f11c1d2faee6eaa93a3b83ffeab183719339831a9470935d93e869c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-uo3a-ufqrqE/Vs2HWr6XheI/AAAAAAAAZUw/7WDs29YwHGk/s400/D.B.-Cooper.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v654e"
expires: Wed, 20 Sep 2023 18:47:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="D.B.-Cooper.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:15 GMT
server: fife
content-length: 22422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-duO_hXu4V8g/Vg9RgcmUOsI/AAAAAAAAZBk/VMFHEUZvqCk/s320/Apollo%2B11.jpeg
200 OK 27 kB URL GET HTTP/3 1.bp.blogspot.com/-duO_hXu4V8g/Vg9RgcmUOsI/AAAAAAAAZBk/VMFHEUZvqCk/s320/Apollo%2B11.jpeg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x220, components 3\012- data
Hash 2e9f7a7ef7b9885faa52649c0cbe260b
b366f1498645b8dba501c5d2ff5ae820ff711cec
ad7710de3ca3fd3182f74a54e7c7b048828b2e78216aefc451c8500935a9a2d3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-duO_hXu4V8g/Vg9RgcmUOsI/AAAAAAAAZBk/VMFHEUZvqCk/s320/Apollo%2B11.jpeg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v641a"
expires: Wed, 20 Sep 2023 18:47:15 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Apollo 11.jpeg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:15 GMT
server: fife
content-length: 27374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=837&max-results=1&callback=random_posts
200 OK 5.6 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=837&max-results=1&callback=random_posts
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type Unicode text, UTF-8 text, with very long lines (15279)
Hash d982024d930d0f4d807261c2e1fe3db3
c0ebd13b274d6e87684a7d42e5c8887c7fd0ef72
fa8b0df125090bae4fb1e77c4090ff21410a2771f933bb1224b05f5da961a452
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/default?alt=json-in-script&start-index=837&max-results=1&callback=random_posts HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"c1daf2f9d99ccc08035dd620e160962f8893a289041208dec6e92bd49c50a16e"
date: Tue, 19 Sep 2023 18:47:16 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:17 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 5594
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=640&max-results=1&callback=random_posts
200 OK 4.1 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=640&max-results=1&callback=random_posts
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type ASCII text, with very long lines (13171)
Hash aeef68be089b2bc398e5ab63ff41adfb
95f1ecab34e91e33a78637da03f87dc02be596ec
51b3579a536e4ae9e3907767e9ab1494eb03a5a6ad1d98de0b7f95bdcd702f51
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/default?alt=json-in-script&start-index=640&max-results=1&callback=random_posts HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"0f91e95e7e2034d449116fcd81e75365f010413e609b13d82eb16e0d2b9cc877"
date: Tue, 19 Sep 2023 18:47:16 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:17 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 4061
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=325&max-results=1&callback=random_posts
200 OK 4.8 kB URL GET HTTP/3 poerwalaksana.blogspot.com/feeds/posts/default?alt=json-in-script&start-index=325&max-results=1&callback=random_posts
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type ASCII text, with very long lines (17732)
Hash 36043c967f2a2f474d3a11f1ae17580d
0b6c91025adb3a3d8c86e758794471540b085b86
e96f421e30efa14e7dfa02c53a35f95be79bfd3c4874ae53810d3e7b311b0305
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /feeds/posts/default?alt=json-in-script&start-index=325&max-results=1&callback=random_posts HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"b6f4497a2db7b0b9f2919fdb2ece13927d40ae44d4255a96c548fd75e7fc0a57"
date: Tue, 19 Sep 2023 18:47:16 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Tue, 19 Sep 2023 18:47:17 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 17 Sep 2023 08:25:38 GMT
content-encoding: gzip
content-length: 4776
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
3.bp.blogspot.com/-dcsvfxVJ5RI/Ty1Bl6FsP5I/AAAAAAAACsM/WfIhT4EMIS4/s72-c/janizaries.jpg
200 OK 4.6 kB URL GET HTTP/3 3.bp.blogspot.com/-dcsvfxVJ5RI/Ty1Bl6FsP5I/AAAAAAAACsM/WfIhT4EMIS4/s72-c/janizaries.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9d530144c69ce80b2a888041978d507a
011a3254813add360f15f710eb701b0832f2c780
0f919bf72afa46152b45dc69045bd3431bbd6cb2dea32d1a2db6f916211c191c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-dcsvfxVJ5RI/Ty1Bl6FsP5I/AAAAAAAACsM/WfIhT4EMIS4/s72-c/janizaries.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vac3"
expires: Wed, 20 Sep 2023 18:47:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="janizaries.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:16 GMT
server: fife
content-length: 4564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
200 OK 3.3 kB URL GET HTTP/3 fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Hash 2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09
GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 03:53:48 GMT
expires: Wed, 18 Sep 2024 03:53:48 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 53608
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
200 OK 6.9 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.4.0/css/font-awesome.min.css
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (26548)
Hash 0831cba6a670e405168b84aa20798347
05ea25bc9b3ac48993e1fee322d3bc94b49a6e22
936ffccdc35bc55221e669d0e76034af76ba8c080c1b1149144dbbd3b5311829
GET /font-awesome/4.4.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 19 Sep 2023 18:47:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 12/13/2021 21:25:06
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 632
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 8ac87b10825a6871d9cd076fc3a23e4f
cdn-cache: HIT
cf-cache-status: HIT
age: 9059984
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8093fef4e9fc56a9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
1.8 kB URL www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 14:17:19 GMT
expires: Tue, 17 Sep 2024 14:17:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
age: 102597
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
poerwalaksana.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmA-DUB3yOTR_PcWHbXlQw645dmFbPKTJh9s7MddIWSHb_rEr8pnQUjxHQf_LEI97qQS2IyXwkwAYPY3YyEOjiOTu6utFg
200 OK 260 B URL GET HTTP/3 poerwalaksana.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmA-DUB3yOTR_PcWHbXlQw645dmFbPKTJh9s7MddIWSHb_rEr8pnQUjxHQf_LEI97qQS2IyXwkwAYPY3YyEOjiOTu6utFg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JSON data\012- , ASCII text, with very long lines (410), with no line terminators
Hash 915f3a2b116e8e79c62bfee73a338213
f0c5aaf564d604911e2712d79995d4c549fff8fc
6cf8d776374a1e174059e297d752e776bbe6f0c6ede362b4fe1ff35350c7c12a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmA-DUB3yOTR_PcWHbXlQw645dmFbPKTJh9s7MddIWSHb_rEr8pnQUjxHQf_LEI97qQS2IyXwkwAYPY3YyEOjiOTu6utFg HTTP/1.1
Host: poerwalaksana.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/search/label/Internet
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Tue, 19 Sep 2023 18:47:16 GMT
expires: Tue, 19 Sep 2023 18:47:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 260
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
1.4 kB URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
Hash a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067
GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 19 Sep 2023 18:47:16 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=b6mGM_A3DNVa5MIIO5p5YmMisPvIGaH0p8N5X8jlzPrVJTKnIzIcI2v2lhfStmFWjb8AvR-Oj0jKslOSYEEkb7AVfuZ-0POcnsLSc4DASxxnVtTK83DAlBts3uXxSIA1kcMQi4jREi--0Xcz-eS32k_s7Fxsj-Q91u3h4qRERuU; expires=Wed, 20-Mar-2024 18:47:16 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+111; expires=Thu, 18-Sep-2025 18:47:16 GMT; path=/; domain=.googleapis.com; Secure
expires: Tue, 19 Sep 2023 18:47:16 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/img/widgets/stats-flipper.png
200 OK 233 B URL GET HTTP/3 www.blogger.com/img/widgets/stats-flipper.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type PNG image data, 88 x 30, 8-bit grayscale, non-interlaced\012- data
Hash 99a2cb03ed5a76104972e477196f1f09
4e12527ed6d99f198728c6631bf7a787911bf4bc
2911f4e04096744757ceab7a895e0ee51494b6feaefaef9f1870272b3dc2dcca
GET /img/widgets/stats-flipper.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 233
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 04:11:20 GMT
expires: Tue, 26 Sep 2023 04:11:20 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 05:51:50 GMT
content-type: image/png
age: 52556
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230917
204 No Content 0 B URL GET HTTP/3 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230917
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230917 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 18:47:16 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-dSJHVZY9T9NLTSCC0q0efA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
cross-origin-opener-policy: same-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=14.SE=FUzEAA0WZjWXKPn2yQ2Xo5vwiaDfxCh46bGBULXBfAm--Ee-e08Py7QlcPnH8jVxdifqwYR-x1vOcwaAjZ76ChmgEp64g_cmW7mH8_JlyR3Si8Rjjk6iZzD9TiUEu3KwcNf9EXdwNfHriSIDE7oa1kHQLllWUj9Vq9HsyIgMVyk; expires=Sat, 19-Oct-2024 11:05:34 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/-FkUUYyS8Ot0/VPfyNSRX-sI/AAAAAAAAYG0/CXEfJ2xRo2k/s1600/Barcode.png
2.5 kB URL 2.bp.blogspot.com/-FkUUYyS8Ot0/VPfyNSRX-sI/AAAAAAAAYG0/CXEfJ2xRo2k/s1600/Barcode.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 279 x 180, 8-bit colormap, non-interlaced\012- data
Hash 6d5fc05b7f197be150e081574f6533a7
15f7b60d7ce65458bcd735e5d297d6a63949ff93
15bfc95ff5fc5d16df766a6d15feb4976b1642d440d6de55bc293ab2dfd81be3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-FkUUYyS8Ot0/VPfyNSRX-sI/AAAAAAAAYG0/CXEfJ2xRo2k/s1600/Barcode.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v606e"
expires: Wed, 20 Sep 2023 18:47:16 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Barcode.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:16 GMT
server: fife
content-length: 2513
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-HMC1dlIHrQ8/T1_HNvA8aSI/AAAAAAAAFJw/dwEJBY90iSU/s72-c/1.+Marybeth+Tinning.jpg
200 OK 2.5 kB URL GET HTTP/3 1.bp.blogspot.com/-HMC1dlIHrQ8/T1_HNvA8aSI/AAAAAAAAFJw/dwEJBY90iSU/s72-c/1.+Marybeth+Tinning.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 56544ee9e8263d5f610300d5e7f23d5b
c1b26ed2f88cfcec6223e62a40628492b5242a22
3c66a04dd90b0f2d70e61c6f3335df1982147ae54381efb772bb0d25ebcfc83a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-HMC1dlIHrQ8/T1_HNvA8aSI/AAAAAAAAFJw/dwEJBY90iSU/s72-c/1.+Marybeth+Tinning.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v149c"
expires: Wed, 20 Sep 2023 18:47:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1. Marybeth Tinning.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:17 GMT
server: fife
content-length: 2517
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-x9XsFEVISzI/UJxOyZmd3jI/AAAAAAAAOCU/jUxcneFW2tw/s72-c/Film+Prno+dan+sejarahnya-Austyn_Moore,_Victoria_Sin,_Aurora_Snow,_Cara_Lott.jpg
200 OK 3.7 kB URL GET HTTP/3 4.bp.blogspot.com/-x9XsFEVISzI/UJxOyZmd3jI/AAAAAAAAOCU/jUxcneFW2tw/s72-c/Film+Prno+dan+sejarahnya-Austyn_Moore,_Victoria_Sin,_Aurora_Snow,_Cara_Lott.jpg
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 0a9a1acf91694d03b2f218b3cfabcec0
c5a3dbf50e82186d8d43b29dafd97e79f86850b6
af622ef7fc3fa20af2253336a73214a14d537658a012030b89a70fc727016e41
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-x9XsFEVISzI/UJxOyZmd3jI/AAAAAAAAOCU/jUxcneFW2tw/s72-c/Film+Prno+dan+sejarahnya-Austyn_Moore,_Victoria_Sin,_Aurora_Snow,_Cara_Lott.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v3825"
expires: Wed, 20 Sep 2023 18:47:17 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Film Prno dan sejarahnya-Austyn_Moore,_Victoria_Sin,_Aurora_Snow,_Cara_Lott.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 18:47:17 GMT
server: fife
content-length: 3702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.iconj.com/icon.php?pid=ewp88uv9ae
404 Not Found 1.8 kB URL GET HTTP/2 www.iconj.com/icon.php?pid=ewp88uv9ae
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuercPanel, Inc.
Subjecticonj.com
FingerprintC2:FD:48:5D:AE:17:69:37:15:2F:C0:AE:20:83:8D:59:2D:E8:A0:40
ValiditySun, 03 Sep 2023 00:00:00 GMT - Sat, 02 Dec 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (661)
Hash 7090adabc6d364ab684dfff938342eee
7aaa880b1b7e35c89377bbd2ebdc087b01721794
e8022ad8909a6aa00ae3f6f113fe5ca52e4b951ac845986509221be901349704
GET /icon.php?pid=ewp88uv9ae HTTP/1.1
Host: www.iconj.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html
last-modified: Wed, 15 Dec 2021 15:58:33 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1784
date: Tue, 19 Sep 2023 18:47:18 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
0 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://poerwalaksana.blogspot.com/
Origin: https://poerwalaksana.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://poerwalaksana.blogspot.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Tue, 19 Sep 2023 18:47:26 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+834; expires=Thu, 18-Sep-2025 18:47:26 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 19 Sep 2023 18:47:26 GMT
cache-control: private
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
131 B URL translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 317
Origin: https://poerwalaksana.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://poerwalaksana.blogspot.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 19 Sep 2023 18:47:26 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+964; expires=Thu, 18-Sep-2025 18:47:26 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 19 Sep 2023 18:47:26 GMT
fonts.googleapis.com/css?family=Open+Sans:400,700,400italic%7CArchivo+Narrow:400,700,400italic%7COswald:400italic,700italic,400,700&subset=latin
200 OK 16 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700,400italic%7CArchivo+Narrow:400,700,400italic%7COswald:400italic,700italic,400,700&subset=latin
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
Hash 0e616bdebe4b230375e386c6bfa3e505
e07cdc25a8f61eafe0f6b4b8b204fbb5e7d07e2c
aad479c93ffee465e9d00606325660c711d861bb0894d9b5adff98174ed27a24
GET /css?family=Open+Sans:400,700,400italic%7CArchivo+Narrow:400,700,400italic%7COswald:400italic,700italic,400,700&subset=latin HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 19 Sep 2023 18:47:13 GMT
date: Tue, 19 Sep 2023 18:47:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
xslt.alexa.com/site_stats/js/s/a?url=http://poerwalaksana.blogspot.com/
0 B URL GET xslt.alexa.com/site_stats/js/s/a?url=http://poerwalaksana.blogspot.com/
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /site_stats/js/s/a?url=http://poerwalaksana.blogspot.com/ HTTP/1.1
Host: xslt.alexa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mzfs_2LauoLnwzdlvEF6Bnh3tDwRCwzjAePTrDPcM4CZwJmXV6nHYsioCvNyL6E49oMoIVD8-GSKO4qXueqDUTjRQ7CTC0IwtM4p5GZev8=s0-d
0 B URL GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mzfs_2LauoLnwzdlvEF6Bnh3tDwRCwzjAePTrDPcM4CZwJmXV6nHYsioCvNyL6E49oMoIVD8-GSKO4qXueqDUTjRQ7CTC0IwtM4p5GZev8=s0-d
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /blogger_img_proxy/AAOd8Mzfs_2LauoLnwzdlvEF6Bnh3tDwRCwzjAePTrDPcM4CZwJmXV6nHYsioCvNyL6E49oMoIVD8-GSKO4qXueqDUTjRQ7CTC0IwtM4p5GZev8=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6889), with no line terminators
Hash 4a8f13c6c622e12985e4b1f89fbddada
8b6db42d52cc2eebe59362212c9fdde02f99e242
6a751474be01f252fa34c318a386448dcb43ecb38faf9f752d7b2cdc06439756
GET /navbar.g?targetBlogID=8530049739229432657&blogName=Digit-All+Data&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://poerwalaksana.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://poerwalaksana.blogspot.com/&vt=6048900983414039792&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 18:47:14 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2595
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
200 OK 20 kB URL GET HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type ASCII text, with very long lines (20367), with no line terminators
Hash 72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1
GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 17:35:35 GMT
expires: Wed, 18 Sep 2024 17:35:35 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 4299
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Fjalla+One
200 OK 1.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Fjalla+One
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (1468), with no line terminators
Hash 70a2aa099a3e85e44357e3a58970cb53
032aa4d04538e24d8333af1dc48a0b852d596395
ec51097a73b339c3a9a9f261a6ae67ffc6ae4a6501aa2d22e313cf5f1ffb06ed
GET /css?family=Fjalla+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 19 Sep 2023 18:47:13 GMT
date: Tue, 19 Sep 2023 18:47:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
200 OK 910 B URL GET HTTP/3 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
Requested by https://poerwalaksana.blogspot.com/search/label/Internet
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://poerwalaksana.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 01:13:51 GMT
expires: Wed, 18 Sep 2024 01:13:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
vary: Origin
age: 63205
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
172.217.21.161
0.0.0.0
0.0.0.0