70875f7e096bf86c130b01177276dc13eb1a0bf6592f5507d0afd046be42c71e

Analysis

max time kernel
143s
max time network
145s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
16/06/2024, 23:25 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b5bb21a605e23e7dc32aa41719e1362e_JaffaCakes118.html
Size

94KB
MD5

b5bb21a605e23e7dc32aa41719e1362e
SHA1

1754f14fd7f5b54741eabba7181b5b036ca48417
SHA256

70875f7e096bf86c130b01177276dc13eb1a0bf6592f5507d0afd046be42c71e
SHA512

cce84d7cc2ee39b8548d002bd2a0c23f74eb157ccccffb637eb71a6a8a38c1f9334ca3c4ed2fe162508f60e518d7011957113dacffcacab47a0987e7a1d58ccc
SSDEEP

1536:ZU76Bi9JMxclgvSfy2PezyKavozy75BGag44gThwPXYXotHBx:ZIgiMQDBPemAze5QgThwwXotz

Score

1^/10

Malware Config

Signatures

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --single-argument C:\Users\Admin\AppData\Local\Temp\b5bb21a605e23e7dc32aa41719e1362e_JaffaCakes118.html
1⤵
PID:1372

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=16 --field-trial-handle=3820,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=4588 /prefetch:1
1⤵
PID:1884

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=15 --field-trial-handle=3852,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=4424 /prefetch:1
1⤵
PID:2028

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=17 --field-trial-handle=5296,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=5332 /prefetch:1
1⤵
PID:1188

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=5468,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=5496 /prefetch:8
1⤵
PID:4568

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=entity_extraction_service.mojom.Extractor --lang=en-US --service-sandbox-type=entity_extraction --onnx-enabled-for-ee --field-trial-handle=5464,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=5540 /prefetch:8
1⤵
PID:4208

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=20 --field-trial-handle=5996,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=6008 /prefetch:1
1⤵
PID:3104

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=21 --field-trial-handle=6152,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=6796 /prefetch:1
1⤵
PID:2796

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=22 --field-trial-handle=6912,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=6924 /prefetch:1
1⤵
PID:860

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=23 --field-trial-handle=6728,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=7056 /prefetch:1
1⤵
PID:2928

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=renderer --enable-dinosaur-easter-egg-alt-images --disable-gpu-compositing --lang=en-US --js-flags=--ms-user-locale= --device-scale-factor=1 --num-raster-threads=1 --renderer-client-id=24 --field-trial-handle=6696,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=6644 /prefetch:1
1⤵
PID:4648

C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=edge_search_indexer.mojom.SearchIndexerInterfaceBroker --lang=en-US --service-sandbox-type=search_indexer --message-loop-type-ui --field-trial-handle=5504,i,1236064252342462940,13180713657498721890,262144 --variations-seed-version --mojo-platform-channel-handle=5808 /prefetch:8
1⤵
PID:3556

Network

DNS

api.edgeoffer.microsoft.com

Remote address:

8.8.8.8:53

Request

api.edgeoffer.microsoft.com

IN A

Response

api.edgeoffer.microsoft.com

IN CNAME

bingadsedgeextension-prod.trafficmanager.net

bingadsedgeextension-prod.trafficmanager.net

IN CNAME

bingadsedgeextension-prod-europe.azurewebsites.net

bingadsedgeextension-prod-europe.azurewebsites.net

IN CNAME

ssl.bingadsedgeextension-prod-europe.azurewebsites.net

ssl.bingadsedgeextension-prod-europe.azurewebsites.net

IN A

94.245.104.56
DNS

api.edgeoffer.microsoft.com

Remote address:

8.8.8.8:53

Request

api.edgeoffer.microsoft.com

IN Unknown

Response

api.edgeoffer.microsoft.com

IN CNAME

bingadsedgeextension-prod.trafficmanager.net

bingadsedgeextension-prod.trafficmanager.net

IN CNAME

bingadsedgeextension-prod-europe.azurewebsites.net

bingadsedgeextension-prod-europe.azurewebsites.net

IN CNAME

ssl.bingadsedgeextension-prod-europe.azurewebsites.net
DNS

business.bing.com

Remote address:

8.8.8.8:53

Request

business.bing.com

IN A

Response

business.bing.com

IN CNAME

business-bing-com.b-0005.b-msedge.net

business-bing-com.b-0005.b-msedge.net

IN CNAME

b-0005.b-msedge.net

b-0005.b-msedge.net

IN A

13.107.6.158
DNS

business.bing.com

Remote address:

8.8.8.8:53

Request

business.bing.com

IN Unknown

Response

business.bing.com

IN CNAME

business-bing-com.b-0005.b-msedge.net

business-bing-com.b-0005.b-msedge.net

IN CNAME

b-0005.b-msedge.net
DNS

maxcdn.bootstrapcdn.com

Remote address:

8.8.8.8:53

Request

maxcdn.bootstrapcdn.com

IN A

Response

maxcdn.bootstrapcdn.com

IN A

104.18.11.207

maxcdn.bootstrapcdn.com

IN A

104.18.10.207
DNS

maxcdn.bootstrapcdn.com

Remote address:

8.8.8.8:53

Request

maxcdn.bootstrapcdn.com

IN Unknown

Response

maxcdn.bootstrapcdn.com

IN Unknown

h3h2h �h� &Gh �&Gh�
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN A

Response

www.blogger.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.186.73
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN Unknown

Response

www.blogger.com

IN CNAME

blogger.l.google.com
DNS

ajax.googleapis.com

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN A

Response

ajax.googleapis.com

IN A

172.217.23.106
DNS

ajax.googleapis.com

Remote address:

8.8.8.8:53

Request

ajax.googleapis.com

IN Unknown

Response
DNS

2.bp.blogspot.com

Remote address:

8.8.8.8:53

Request

2.bp.blogspot.com

IN A

Response

2.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.186.161
DNS

2.bp.blogspot.com

Remote address:

8.8.8.8:53

Request

2.bp.blogspot.com

IN Unknown

Response

2.bp.blogspot.com

IN CNAME

photos-ugc.l.googleusercontent.com
DNS

st-n.ads3-adnow.com

Remote address:

8.8.8.8:53

Request

st-n.ads3-adnow.com

IN A

Response

st-n.ads3-adnow.com

IN A

142.132.202.70
DNS

st-n.ads3-adnow.com

Remote address:

8.8.8.8:53

Request

st-n.ads3-adnow.com

IN Unknown

Response
DNS

platform.linkedin.com

Remote address:

8.8.8.8:53

Request

platform.linkedin.com

IN A

Response

platform.linkedin.com

IN CNAME

2-01-2c3e-0055.cdx.cedexis.net

2-01-2c3e-0055.cdx.cedexis.net

IN CNAME

cs767.wpc.epsiloncdn.net

cs767.wpc.epsiloncdn.net

IN A

152.199.22.144
GET

http://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js

Remote address:

172.217.23.106:80

Request

GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 95786
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 12 Jun 2024 23:32:01 GMT
Expires: Thu, 12 Jun 2025 23:32:01 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Vary: Accept-Encoding
Age: 345187
GET

http://2.bp.blogspot.com/-8w50B3ku-nM/Vzn0kBLerKI/AAAAAAAAHlc/JAf8d3tndyEPFQcL2NnuzKLB9hqIWuQzwCK4B/s1600/Jendela%2BKesehatan%2Bxyz.png

Remote address:

142.250.186.161:80

Request

GET /-8w50B3ku-nM/Vzn0kBLerKI/AAAAAAAAHlc/JAf8d3tndyEPFQcL2NnuzKLB9hqIWuQzwCK4B/s1600/Jendela%2BKesehatan%2Bxyz.png HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
ETag: "v1e58"
Expires: Mon, 17 Jun 2024 23:25:08 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Jendela Kesehatan xyz.png"
X-Content-Type-Options: nosniff
Date: Sun, 16 Jun 2024 23:25:08 GMT
Server: fife
Content-Length: 29325
X-XSS-Protection: 0
GET

http://st-n.ads3-adnow.com/js/adv_out.js

Remote address:

142.132.202.70:80

Request

GET /js/adv_out.js HTTP/1.1
Host: st-n.ads3-adnow.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: */*
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 404 Not Found

Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 16 Jun 2024 23:25:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
DNS

bzib.nelreports.net

Remote address:

8.8.8.8:53

Request

bzib.nelreports.net

IN A

Response

bzib.nelreports.net

IN CNAME

bzib.nelreports.net.akamaized.net

bzib.nelreports.net.akamaized.net

IN CNAME

a416.dscd.akamai.net

a416.dscd.akamai.net

IN A

184.31.15.40

a416.dscd.akamai.net

IN A

184.31.15.35
DNS

bzib.nelreports.net

Remote address:

8.8.8.8:53

Request

bzib.nelreports.net

IN Unknown
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.55.97.181
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.55.97.181
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN Unknown

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net
GET

http://fonts.googleapis.com/css?family=Open+Sans+Condensed:700

Remote address:

142.250.185.74:80

Request

GET /css?family=Open+Sans+Condensed:700 HTTP/1.1
Host: fonts.googleapis.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: text/css,*/*;q=0.1
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 16 Jun 2024 23:25:08 GMT
Date: Sun, 16 Jun 2024 23:25:08 GMT
Cache-Control: private, max-age=86400, stale-while-revalidate=604800
Last-Modified: Sun, 16 Jun 2024 23:25:08 GMT
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
GET

http://fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2

Remote address:

142.250.181.227:80

Request

GET /s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2 HTTP/1.1
Host: fonts.gstatic.com
Connection: keep-alive
Origin: null
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: */*
Referer: http://fonts.googleapis.com/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16324
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 10 Jun 2024 20:51:30 GMT
Expires: Tue, 10 Jun 2025 20:51:30 GMT
Cache-Control: public, max-age=31536000
Age: 527618
Last-Modified: Tue, 19 Apr 2022 18:08:32 GMT
Content-Type: font/woff2
DNS

8.8.8.8.in-addr.arpa

Remote address:

8.8.8.8:53

Request

8.8.8.8.in-addr.arpa

IN PTR

Response

8.8.8.8.in-addr.arpa

IN PTR

dnsgoogle
DNS

159.113.53.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

159.113.53.23.in-addr.arpa

IN PTR

Response

159.113.53.23.in-addr.arpa

IN PTR

a23-53-113-159deploystaticakamaitechnologiescom
DNS

207.11.18.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

207.11.18.104.in-addr.arpa

IN PTR

Response
DNS

56.104.245.94.in-addr.arpa

Remote address:

8.8.8.8:53

Request

56.104.245.94.in-addr.arpa

IN PTR

Response
DNS

106.23.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

106.23.217.172.in-addr.arpa

IN PTR

Response

106.23.217.172.in-addr.arpa

IN PTR

mil04s23-in-f1061e100net

106.23.217.172.in-addr.arpa

IN PTR

mil04s23-in-f10�J

106.23.217.172.in-addr.arpa

IN PTR

fra16s45-in-f10�J
DNS

161.186.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.186.250.142.in-addr.arpa

IN PTR

Response

161.186.250.142.in-addr.arpa

IN PTR

fra24s08-in-f11e100net
DNS

70.202.132.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

70.202.132.142.in-addr.arpa

IN PTR

Response

70.202.132.142.in-addr.arpa

IN PTR

static70202132142clientsyour-serverde
DNS

40.15.31.184.in-addr.arpa

Remote address:

8.8.8.8:53

Request

40.15.31.184.in-addr.arpa

IN PTR

Response

40.15.31.184.in-addr.arpa

IN PTR

a184-31-15-40deploystaticakamaitechnologiescom
DNS

181.97.55.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

181.97.55.23.in-addr.arpa

IN PTR

Response

181.97.55.23.in-addr.arpa

IN PTR

a23-55-97-181deploystaticakamaitechnologiescom
DNS

74.185.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

74.185.250.142.in-addr.arpa

IN PTR

Response

74.185.250.142.in-addr.arpa

IN PTR

fra16s48-in-f101e100net
DNS

73.186.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

73.186.250.142.in-addr.arpa

IN PTR

Response

73.186.250.142.in-addr.arpa

IN PTR

fra24s05-in-f91e100net
GET

http://2.bp.blogspot.com/-yNE4A_H3C2o/U1E6RPYNEpI/AAAAAAAADRQ/UOP1mUKaxGE/s1600/line.png

Remote address:

142.250.186.161:80

Request

GET /-yNE4A_H3C2o/U1E6RPYNEpI/AAAAAAAADRQ/UOP1mUKaxGE/s1600/line.png HTTP/1.1
Host: 2.bp.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="line.png"
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 735
X-XSS-Protection: 0
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 16 Jun 2024 22:22:33 GMT
Expires: Mon, 17 Jun 2024 22:22:33 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 3755
ETag: "vd15"
Content-Type: image/png
Vary: Origin
DNS

apis.google.com

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.185.174
DNS

apis.google.com

Remote address:

8.8.8.8:53

Request

apis.google.com

IN Unknown

Response

apis.google.com

IN CNAME

plus.l.google.com
DNS

g.bing.com

Remote address:

8.8.8.8:53

Request

g.bing.com

IN A

Response

g.bing.com

IN CNAME

g-bing-com.dual-a-0034.a-msedge.net

g-bing-com.dual-a-0034.a-msedge.net

IN CNAME

dual-a-0034.a-msedge.net

dual-a-0034.a-msedge.net

IN A

13.107.21.237

dual-a-0034.a-msedge.net

IN A

204.79.197.237
GET

https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=531098720&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E

Remote address:

13.107.21.237:443

Request

GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=531098720&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3AC0D14C46776E5036D0C5EC47506FDB; domain=.bing.com; expires=Fri, 11-Jul-2025 23:25:08 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CE00B12572CA43C89AC65516576C5EBA Ref B: LON04EDGE0720 Ref C: 2024-06-16T23:25:08Z
date: Sun, 16 Jun 2024 23:25:08 GMT
GET

https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E

Remote address:

13.107.21.237:443

Request

GET /neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E HTTP/2.0
host: g.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=3AC0D14C46776E5036D0C5EC47506FDB; _EDGE_S=SID=0241ABA543E46895216CBF05422469E8

Response

HTTP/2.0 204

cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MSPTC=XUlEke8oAsFnzaA2DS5-j5apMtw_CLIUXRpXREQo-SM; domain=.bing.com; expires=Fri, 11-Jul-2025 23:25:09 GMT; path=/; Partitioned; secure; SameSite=None
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 86460D70C48B4701AC6FDC6A1B7E13D9 Ref B: LON04EDGE0720 Ref C: 2024-06-16T23:25:09Z
date: Sun, 16 Jun 2024 23:25:09 GMT
DNS

www.microsoft.com

Remote address:

8.8.8.8:53

Request

www.microsoft.com

IN A

Response

www.microsoft.com

IN CNAME

www.microsoft.com-c-3.edgekey.net

www.microsoft.com-c-3.edgekey.net

IN CNAME

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

www.microsoft.com-c-3.edgekey.net.globalredir.akadns.net

IN CNAME

e13678.dscb.akamaiedge.net

e13678.dscb.akamaiedge.net

IN A

23.55.97.181
DNS

platform.linkedin.com

Remote address:

8.8.8.8:53

Request

platform.linkedin.com

IN A

Response

platform.linkedin.com

IN CNAME

2-01-2c3e-0055.cdx.cedexis.net

2-01-2c3e-0055.cdx.cedexis.net

IN CNAME

cs767.wpc.epsiloncdn.net

cs767.wpc.epsiloncdn.net

IN A

152.199.22.144
GET

https://www.bing.com/aes/c.gif?RG=2351337da26b4dd3ab23f396c46f2118&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240611T221026Z&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640

Remote address:

2.17.107.105:443

Request

GET /aes/c.gif?RG=2351337da26b4dd3ab23f396c46f2118&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240611T221026Z&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640 HTTP/2.0
host: www.bing.com
accept-encoding: gzip, deflate
user-agent: WindowsShellClient/9.0.40929.0 (Windows)
cookie: MUID=3AC0D14C46776E5036D0C5EC47506FDB

Response

HTTP/2.0 200

cache-control: private,no-store
pragma: no-cache
vary: Origin
p3p: CP=BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 85E53AD79A844EC89B1D2662280519F4 Ref B: DUS30EDGE0419 Ref C: 2024-06-16T23:25:09Z
content-length: 0
date: Sun, 16 Jun 2024 23:25:09 GMT
set-cookie: _EDGE_S=SID=0241ABA543E46895216CBF05422469E8; path=/; httponly; domain=bing.com
set-cookie: MUIDB=3AC0D14C46776E5036D0C5EC47506FDB; path=/; httponly; expires=Fri, 11-Jul-2025 23:25:09 GMT
alt-svc: h3=":443"; ma=93600
x-cdn-traceid: 0.656b1102.1718580309.92cc338
DNS

nav-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav-edge.smartscreen.microsoft.com

IN A

Response

nav-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-uw-1.ukwest.cloudapp.azure.com

prod-agic-uw-1.ukwest.cloudapp.azure.com

IN A

51.140.242.104
DNS

nav-edge.smartscreen.microsoft.com

Remote address:

8.8.8.8:53

Request

nav-edge.smartscreen.microsoft.com

IN Unknown

Response

nav-edge.smartscreen.microsoft.com

IN CNAME

tm-prod-wd-csp-edge.trafficmanager.net

tm-prod-wd-csp-edge.trafficmanager.net

IN CNAME

prod-agic-us-2.uksouth.cloudapp.azure.com
DNS

227.181.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

227.181.250.142.in-addr.arpa

IN PTR

Response

227.181.250.142.in-addr.arpa

IN PTR

fra16s56-in-f31e100net
DNS

142.16.217.172.in-addr.arpa

Remote address:

8.8.8.8:53

Request

142.16.217.172.in-addr.arpa

IN PTR

Response

142.16.217.172.in-addr.arpa

IN PTR

zrh04s06-in-f1421e100net

142.16.217.172.in-addr.arpa

IN PTR

fra15s46-in-f14�J
DNS

174.185.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

174.185.250.142.in-addr.arpa

IN PTR

Response

174.185.250.142.in-addr.arpa

IN PTR

fra16s51-in-f141e100net
DNS

91.90.14.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

91.90.14.23.in-addr.arpa

IN PTR

Response

91.90.14.23.in-addr.arpa

IN PTR

a23-14-90-91deploystaticakamaitechnologiescom
DNS

105.107.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

105.107.17.2.in-addr.arpa

IN PTR

Response

105.107.17.2.in-addr.arpa

IN PTR

a2-17-107-105deploystaticakamaitechnologiescom
DNS

88.156.103.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

88.156.103.20.in-addr.arpa

IN PTR

Response
DNS

edgestatic.azureedge.net

Remote address:

8.8.8.8:53

Request

edgestatic.azureedge.net

IN A

Response

edgestatic.azureedge.net

IN CNAME

edgestatic.afd.azureedge.net

edgestatic.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

edgestatic.azureedge.net

Remote address:

8.8.8.8:53

Request

edgestatic.azureedge.net

IN Unknown

Response

edgestatic.azureedge.net

IN CNAME

edgestatic.afd.azureedge.net

edgestatic.afd.azureedge.net

IN CNAME

azureedge-t-prod.trafficmanager.net

azureedge-t-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net
DNS

c.s-microsoft.com

Remote address:

8.8.8.8:53

Request

c.s-microsoft.com

IN A

Response

c.s-microsoft.com

IN CNAME

c-s.cms.ms.akadns.net

c-s.cms.ms.akadns.net

IN CNAME

c.s-microsoft.com-c.edgekey.net

c.s-microsoft.com-c.edgekey.net

IN CNAME

e13678.dscg.akamaiedge.net

e13678.dscg.akamaiedge.net

IN A

23.53.113.225
DNS

c.s-microsoft.com

Remote address:

8.8.8.8:53

Request

c.s-microsoft.com

IN Unknown

Response

c.s-microsoft.com

IN CNAME

c-s.cms.ms.akadns.net

c-s.cms.ms.akadns.net

IN CNAME

c.s-microsoft.com-c.edgekey.net

c.s-microsoft.com-c.edgekey.net

IN CNAME

e13678.dscg.akamaiedge.net
DNS

104.242.140.51.in-addr.arpa

Remote address:

8.8.8.8:53

Request

104.242.140.51.in-addr.arpa

IN PTR

Response
DNS

wcpstatic.microsoft.com

Remote address:

8.8.8.8:53

Request

wcpstatic.microsoft.com

IN A

Response

wcpstatic.microsoft.com

IN CNAME

consentdeliveryfd.azurefd.net

consentdeliveryfd.azurefd.net

IN CNAME

firstparty-azurefd-prod.trafficmanager.net

firstparty-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net

s-part-0036.t-0009.t-msedge.net

IN A

13.107.246.64
DNS

wcpstatic.microsoft.com

Remote address:

8.8.8.8:53

Request

wcpstatic.microsoft.com

IN Unknown

Response

wcpstatic.microsoft.com

IN CNAME

consentdeliveryfd.azurefd.net

consentdeliveryfd.azurefd.net

IN CNAME

firstparty-azurefd-prod.trafficmanager.net

firstparty-azurefd-prod.trafficmanager.net

IN CNAME

shed.dual-low.s-part-0036.t-0009.t-msedge.net

shed.dual-low.s-part-0036.t-0009.t-msedge.net

IN CNAME

s-part-0036.t-0009.t-msedge.net
DNS

98.107.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

98.107.17.2.in-addr.arpa

IN PTR

Response

98.107.17.2.in-addr.arpa

IN PTR

a2-17-107-98deploystaticakamaitechnologiescom
DNS

connect.facebook.net

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

163.70.147.23
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN A

Response

www.blogger.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.186.73
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN Unknown

Response

www.blogger.com

IN CNAME

blogger.l.google.com
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN A

Response

www.blogger.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.186.73
DNS

log.viva.co.id

Remote address:

8.8.8.8:53

Request

log.viva.co.id

IN A

Response
DNS

log.viva.co.id

Remote address:

8.8.8.8:53

Request

log.viva.co.id

IN Unknown

Response
DNS

log.viva.co.id

Remote address:

8.8.8.8:53

Request

log.viva.co.id

IN A

Response
DNS

apis.google.com

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.185.174
DNS

apis.google.com

Remote address:

8.8.8.8:53

Request

apis.google.com

IN Unknown

Response

apis.google.com

IN CNAME

plus.l.google.com
DNS

apis.google.com

Remote address:

8.8.8.8:53

Request

apis.google.com

IN A

Response

apis.google.com

IN CNAME

plus.l.google.com

plus.l.google.com

IN A

142.250.185.174
DNS

platform.twitter.com

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN A

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net

cs41.wac.edgecastcdn.net

IN A

93.184.220.66
DNS

platform.twitter.com

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN Unknown

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN A

Response
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN Unknown

Response
DNS

log.viva.co.id

Remote address:

8.8.8.8:53

Request

log.viva.co.id

IN A

Response
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN A

Response
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN Unknown

Response
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN A

Response

developers.google.com

IN A

142.250.181.238
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN A

Response

developers.google.com

IN A

142.250.181.238
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN Unknown

Response
DNS

66.220.184.93.in-addr.arpa

Remote address:

8.8.8.8:53

Request

66.220.184.93.in-addr.arpa

IN PTR

Response
GET

http://developers.google.com/

Remote address:

142.250.181.238:80

Request

GET / HTTP/1.1
Host: developers.google.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
DNT: 1
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 301 Moved Permanently

Location: https://developers.google.com/
X-Cloud-Trace-Context: f0ccd4e621ba8689e6a828ef47e5e7bc
Date: Sun, 16 Jun 2024 23:25:30 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

platform.twitter.com

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN A

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net

cs41.wac.edgecastcdn.net

IN A

93.184.220.66
DNS

platform.twitter.com

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN Unknown

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net
DNS

platform.twitter.com

Remote address:

8.8.8.8:53

Request

platform.twitter.com

IN A

Response

platform.twitter.com

IN CNAME

cs472.wac.edgecastcdn.net

cs472.wac.edgecastcdn.net

IN CNAME

cs1-apr-8315.wac.edgecastcdn.net

cs1-apr-8315.wac.edgecastcdn.net

IN CNAME

wac.apr-8315.edgecastdns.net

wac.apr-8315.edgecastdns.net

IN CNAME

cs1-lb-eu.8315.ecdns.net

cs1-lb-eu.8315.ecdns.net

IN CNAME

cs41.wac.edgecastcdn.net

cs41.wac.edgecastcdn.net

IN A

93.184.220.66
DNS

syndication.twitter.com

Remote address:

8.8.8.8:53

Request

syndication.twitter.com

IN A

Response

syndication.twitter.com

IN A

104.244.42.72
DNS

syndication.twitter.com

Remote address:

8.8.8.8:53

Request

syndication.twitter.com

IN Unknown

Response
DNS

www.blogger.com

Remote address:

8.8.8.8:53

Request

www.blogger.com

IN A

Response

www.blogger.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.186.73
DNS

ssl.gstatic.com

Remote address:

8.8.8.8:53

Request

ssl.gstatic.com

IN A

Response

ssl.gstatic.com

IN A

216.58.206.67
DNS

ssl.gstatic.com

Remote address:

8.8.8.8:53

Request

ssl.gstatic.com

IN Unknown

Response
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN A

Response

developers.google.com

IN A

142.250.181.238
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN A

Response

developers.google.com

IN A

142.250.181.238
DNS

developers.google.com

Remote address:

8.8.8.8:53

Request

developers.google.com

IN Unknown

Response
DNS

twitter.com

Remote address:

8.8.8.8:53

Request

twitter.com

IN A

Response

twitter.com

IN A

104.244.42.65
DNS

twitter.com

Remote address:

8.8.8.8:53

Request

twitter.com

IN Unknown

Response
DNS

www.google.com

Remote address:

8.8.8.8:53

Request

www.google.com

IN A

Response

www.google.com

IN A

142.250.184.228
DNS

www.google.com

Remote address:

8.8.8.8:53

Request

www.google.com

IN Unknown

Response

www.google.com

IN Unknown

h2h3
DNS

resources.blogblog.com

Remote address:

8.8.8.8:53

Request

resources.blogblog.com

IN A

Response

resources.blogblog.com

IN CNAME

blogger.l.google.com

blogger.l.google.com

IN A

142.250.186.73
DNS

resources.blogblog.com

Remote address:

8.8.8.8:53

Request

resources.blogblog.com

IN Unknown

Response

resources.blogblog.com

IN CNAME

blogger.l.google.com
DNS

connect.facebook.net

Remote address:

8.8.8.8:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

163.70.147.23
DNS

84.27.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

84.27.250.142.in-addr.arpa

IN PTR

Response

84.27.250.142.in-addr.arpa

IN PTR

ra-in-f841e100net
DNS

238.181.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

238.181.250.142.in-addr.arpa

IN PTR

Response

238.181.250.142.in-addr.arpa

IN PTR

fra16s56-in-f141e100net
DNS

72.42.244.104.in-addr.arpa

Remote address:

8.8.8.8:53

Request

72.42.244.104.in-addr.arpa

IN PTR

Response
DNS

67.206.58.216.in-addr.arpa

Remote address:

8.8.8.8:53

Request

67.206.58.216.in-addr.arpa

IN PTR

Response

67.206.58.216.in-addr.arpa

IN PTR

lhr35s11-in-f31e100net

67.206.58.216.in-addr.arpa

IN PTR

tzfraa-aa-in-f3�G

67.206.58.216.in-addr.arpa

IN PTR

mil07s08-in-f3�G
DNS

228.184.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

228.184.250.142.in-addr.arpa

IN PTR

Response

228.184.250.142.in-addr.arpa

IN PTR

fra24s12-in-f41e100net
DNS

86.23.85.13.in-addr.arpa

Remote address:

8.8.8.8:53

Request

86.23.85.13.in-addr.arpa

IN PTR

Response
DNS

198.187.3.20.in-addr.arpa

Remote address:

8.8.8.8:53

Request

198.187.3.20.in-addr.arpa

IN PTR

Response
DNS

35.15.31.184.in-addr.arpa

Remote address:

8.8.8.8:53

Request

35.15.31.184.in-addr.arpa

IN PTR

Response

35.15.31.184.in-addr.arpa

IN PTR

a184-31-15-35deploystaticakamaitechnologiescom
DNS

s10.histats.com

Remote address:

8.8.8.8:53

Request

s10.histats.com

IN A

Response

s10.histats.com

IN CNAME

s10.histats.com.cdn.cloudflare.net

s10.histats.com.cdn.cloudflare.net

IN A

104.20.19.71

s10.histats.com.cdn.cloudflare.net

IN A

104.20.18.71
DNS

s10.histats.com

Remote address:

8.8.8.8:53

Request

s10.histats.com

IN A

Response

s10.histats.com

IN CNAME

s10.histats.com.cdn.cloudflare.net

s10.histats.com.cdn.cloudflare.net

IN A

104.20.19.71

s10.histats.com.cdn.cloudflare.net

IN A

104.20.18.71
DNS

22.236.111.52.in-addr.arpa

Remote address:

8.8.8.8:53

Request

22.236.111.52.in-addr.arpa

IN PTR

Response
DNS

200.131.50.23.in-addr.arpa

Remote address:

8.8.8.8:53

Request

200.131.50.23.in-addr.arpa

IN PTR

Response

200.131.50.23.in-addr.arpa

IN PTR

a23-50-131-200deploystaticakamaitechnologiescom
DNS

jendela92.blogspot.com

Remote address:

8.8.8.8:53

Request

jendela92.blogspot.com

IN A

Response

jendela92.blogspot.com

IN CNAME

blogspot.l.googleusercontent.com

blogspot.l.googleusercontent.com

IN A

142.250.185.161
DNS

jendela92.blogspot.com

Remote address:

8.8.8.8:53

Request

jendela92.blogspot.com

IN Unknown

Response

jendela92.blogspot.com

IN CNAME

blogspot.l.googleusercontent.com
GET

http://jendela92.blogspot.com/favicon.ico

Remote address:

142.250.185.161:80

Request

GET /favicon.ico HTTP/1.1
Host: jendela92.blogspot.com
Connection: keep-alive
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36 Edg/125.0.0.0
DNT: 1
Accept: image/avif,image/webp,image/apng,image/svg+xml,image/*,*/*;q=0.8
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9

Response

HTTP/1.1 200 OK

Content-Type: image/x-icon; charset=UTF-8
Expires: Sun, 16 Jun 2024 23:26:14 GMT
Date: Sun, 16 Jun 2024 23:26:14 GMT
Cache-Control: private, max-age=86400
Last-Modified: Wed, 07 Feb 2024 18:19:52 GMT
ETag: W/"b12ec2e6d9fd6f2426e39babf0f71bb2819fdb68a34a4f8b5964cad8ab623c5f"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 826
Server: GSE
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN A

Response
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN Unknown

Response
DNS

www.jendelakesehatan.xyz

Remote address:

8.8.8.8:53

Request

www.jendelakesehatan.xyz

IN A

Response
DNS

161.185.250.142.in-addr.arpa

Remote address:

8.8.8.8:53

Request

161.185.250.142.in-addr.arpa

IN PTR

Response

161.185.250.142.in-addr.arpa

IN PTR

fra16s51-in-f11e100net
DNS

99.107.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

99.107.17.2.in-addr.arpa

IN PTR

Response

99.107.17.2.in-addr.arpa

IN PTR

a2-17-107-99deploystaticakamaitechnologiescom
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN Unknown

Response
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

172.214.232.199.in-addr.arpa

Remote address:

8.8.8.8:53

Request

172.214.232.199.in-addr.arpa

IN PTR

Response
DNS

113.107.17.2.in-addr.arpa

Remote address:

8.8.8.8:53

Request

113.107.17.2.in-addr.arpa

IN PTR

Response

113.107.17.2.in-addr.arpa

IN PTR

a2-17-107-113deploystaticakamaitechnologiescom
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN Unknown

Response
DNS

accounts.google.com

Remote address:

8.8.8.8:53

Request

accounts.google.com

IN A

Response

accounts.google.com

IN A

142.250.27.84

94.245.104.56:443

api.edgeoffer.microsoft.com

tls

3.0kB
6.7kB
14
13
13.107.6.158:443

business.bing.com

tls

3.9kB
10.2kB
20
25
94.245.104.56:443

api.edgeoffer.microsoft.com

tls

6.4kB
7.7kB
16
16
142.250.185.74:80

fonts.googleapis.com

236 B
144 B
5
3
142.250.186.73:443

www.blogger.com

tls

2.2kB
5.7kB
10
8
142.250.186.73:443

www.blogger.com

tls

2.3kB
6.8kB
11
10
172.217.23.106:80

http://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js

http

2.7kB
99.9kB
44
78

HTTP Request

GET http://ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js

HTTP Response

200
142.250.186.161:80

http://2.bp.blogspot.com/-8w50B3ku-nM/Vzn0kBLerKI/AAAAAAAAHlc/JAf8d3tndyEPFQcL2NnuzKLB9hqIWuQzwCK4B/s1600/Jendela%2BKesehatan%2Bxyz.png

http

1.8kB
31.0kB
19
28

HTTP Request

GET http://2.bp.blogspot.com/-8w50B3ku-nM/Vzn0kBLerKI/AAAAAAAAHlc/JAf8d3tndyEPFQcL2NnuzKLB9hqIWuQzwCK4B/s1600/Jendela%2BKesehatan%2Bxyz.png

HTTP Response

200
152.199.22.144:445

platform.linkedin.com

260 B
5
142.132.202.70:80

http://st-n.ads3-adnow.com/js/adv_out.js

http

884 B
564 B
6
4

HTTP Request

GET http://st-n.ads3-adnow.com/js/adv_out.js

HTTP Response

404
184.31.15.40:443

bzib.nelreports.net

tls

4.3kB
6.1kB
14
16
23.55.97.181:443

www.microsoft.com

tls

6.8kB
21.6kB
28
35
142.250.185.74:80

http://fonts.googleapis.com/css?family=Open+Sans+Condensed:700

http

666 B
1.6kB
7
7

HTTP Request

GET http://fonts.googleapis.com/css?family=Open+Sans+Condensed:700

HTTP Response

200
142.250.186.73:443

www.blogger.com

tls

5.5kB
60.8kB
61
64
142.250.181.227:80

http://fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2

http

1.0kB
17.9kB
13
18

HTTP Request

GET http://fonts.gstatic.com/s/opensanscondensed/v23/z7NFdQDnbTkabZAIOl9il_O6KJj73e7Ff0GmDuXMRw.woff2

HTTP Response

200
142.250.186.161:80

http://2.bp.blogspot.com/-yNE4A_H3C2o/U1E6RPYNEpI/AAAAAAAADRQ/UOP1mUKaxGE/s1600/line.png

http

738 B
1.5kB
7
6

HTTP Request

GET http://2.bp.blogspot.com/-yNE4A_H3C2o/U1E6RPYNEpI/AAAAAAAADRQ/UOP1mUKaxGE/s1600/line.png

HTTP Response

200
142.250.185.174:443

apis.google.com

tls

7.3kB
127.3kB
100
106
13.107.21.237:443

https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E

tls, http2

2.6kB
9.0kB
20
17

HTTP Request

GET https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=531098720&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E

HTTP Response

204

HTTP Request

GET https://g.bing.com/neg/0?action=impression&rlink=https%3A%2F%2Fwww.bing.com%2Faclick%3Fld%3De8UrbBXpUxEcjjUD48ZJPyqjVUCUzM9FB7Wy67RM30PPyWi1anrwQSKamFrKlxDGqyH_GzNnMHeRXfhO2xRlv7HQil7XRlBDPw_e6oeqVaaZ5ZBhweoseU4loCHKvZkKPPc5lhcNauLLjcfj49Ax8Ph2mHf9lM_pXokmWsSjPEONIqD2ja%26u%3DbWljcm9zb2Z0LWVkZ2UlM2FodHRwcyUzYSUyZiUyZnd3dy5taWNyb3NvZnQuY29tJTJmbWljcm9zb2Z0LTM2NSUyZm1pY3Jvc29mdC0zNjUtYmFzaWMtZmFxcyUzZk9DSUQlM2RjbW1sdWMyOWxxOQ%26rlid%3De5b397e615bf14ee62b7f18ede8c6e52&TIME=20240611T221026Z&CID=531098720&EID=&tids=15000&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640&muid=8CE4F47C62C1CBA160834AA98427395E

HTTP Response

204
2.17.107.105:443

https://www.bing.com/aes/c.gif?RG=2351337da26b4dd3ab23f396c46f2118&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240611T221026Z&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640

tls, http2

1.5kB
5.4kB
17
12

HTTP Request

GET https://www.bing.com/aes/c.gif?RG=2351337da26b4dd3ab23f396c46f2118&med=10&pubId=251978541&tids=15000&type=mv&reqver=1.0&TIME=20240611T221026Z&adUnitId=11730597&localId=w:8CE4F47C-62C1-CBA1-6083-4AA98427395E&deviceId=6825835407638640

HTTP Response

200
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

2.2kB
6.8kB
10
10
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

14.1kB
13.9kB
33
34
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

2.2kB
6.7kB
10
9
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

2.3kB
6.8kB
10
10
51.140.242.104:443

nav-edge.smartscreen.microsoft.com

tls

2.3kB
6.7kB
11
9
152.199.22.144:139

platform.linkedin.com

260 B
5
13.107.246.64:443

edgestatic.azureedge.net

tls

3.1kB
7.9kB
13
14
13.107.246.64:443

edgestatic.azureedge.net

tls

94.6kB
4.8MB
1957
3424
13.107.246.64:443

edgestatic.azureedge.net

tls

3.1kB
7.8kB
13
13
13.107.246.64:443

edgestatic.azureedge.net

tls

9.2kB
272.2kB
126
208
13.107.246.64:443

wcpstatic.microsoft.com

tls

5.3kB
91.0kB
53
78
163.70.147.23:445

connect.facebook.net

260 B
5
142.250.186.73:443

www.blogger.com

tls

2.4kB
6.8kB
11
10
142.250.186.73:443

www.blogger.com

tls

3.6kB
11.3kB
20
25
142.250.185.174:443

apis.google.com

tls

2.4kB
6.8kB
11
10
142.250.185.174:443

apis.google.com

tls

3.8kB
14.6kB
21
23
93.184.220.66:443

platform.twitter.com

tls

4.6kB
37.8kB
25
37
142.250.27.84:443

accounts.google.com

tls

4.4kB
11.3kB
25
29
142.250.181.238:80

http://developers.google.com/

http

734 B
475 B
6
5

HTTP Request

GET http://developers.google.com/

HTTP Response

301
142.250.27.84:443

accounts.google.com

98 B
52 B
2
1
93.184.220.66:443

platform.twitter.com

tls

2.9kB
5.4kB
12
15
93.184.220.66:443

platform.twitter.com

tls

4.1kB
18.7kB
17
23
104.244.42.72:443

syndication.twitter.com

tls

3.4kB
4.6kB
12
11
216.58.206.67:443

ssl.gstatic.com

tls

3.2kB
12.7kB
17
18
142.250.181.238:443

developers.google.com

tls

3.4kB
26.0kB
22
29
142.250.184.228:443

www.google.com

tls

3.8kB
28.9kB
30
31
142.250.186.73:443

resources.blogblog.com

tls

3.4kB
9.6kB
19
19
142.250.186.73:443

resources.blogblog.com

98 B
52 B
2
1
163.70.147.23:139

connect.facebook.net

260 B
5
104.20.19.71:445

s10.histats.com

260 B
5
104.20.18.71:445

s10.histats.com

260 B
5
142.250.185.161:80

http://jendela92.blogspot.com/favicon.ico

http

599 B
1.5kB
5
5

HTTP Request

GET http://jendela92.blogspot.com/favicon.ico

HTTP Response

200
2.17.107.99:443

www.bing.com

tls

2.3kB
5.2kB
10
12
2.17.107.113:443

www.bing.com

tls

2.5kB
946 B
8
8

8.8.8.8:53

api.edgeoffer.microsoft.com

dns

73 B
226 B
1
1

DNS Request

api.edgeoffer.microsoft.com

DNS Response

94.245.104.56
8.8.8.8:53

api.edgeoffer.microsoft.com

dns

73 B
271 B
1
1

DNS Request

api.edgeoffer.microsoft.com
8.8.8.8:53

business.bing.com

dns

63 B
144 B
1
1

DNS Request

business.bing.com

DNS Response

13.107.6.158
8.8.8.8:53

business.bing.com

dns

63 B
185 B
1
1

DNS Request

business.bing.com
8.8.8.8:53

maxcdn.bootstrapcdn.com

dns

69 B
101 B
1
1

DNS Request

maxcdn.bootstrapcdn.com

DNS Response

104.18.11.207

104.18.10.207
8.8.8.8:53

maxcdn.bootstrapcdn.com

dns

69 B
142 B
1
1

DNS Request

maxcdn.bootstrapcdn.com
8.8.8.8:53

www.blogger.com

dns

61 B
108 B
1
1

DNS Request

www.blogger.com

DNS Response

142.250.186.73
8.8.8.8:53

www.blogger.com

dns

61 B
142 B
1
1

DNS Request

www.blogger.com
8.8.8.8:53

ajax.googleapis.com

dns

65 B
81 B
1
1

DNS Request

ajax.googleapis.com

DNS Response

172.217.23.106
8.8.8.8:53

ajax.googleapis.com

dns

65 B
122 B
1
1

DNS Request

ajax.googleapis.com
8.8.8.8:53

2.bp.blogspot.com

dns

63 B
124 B
1
1

DNS Request

2.bp.blogspot.com

DNS Response

142.250.186.161
8.8.8.8:53

2.bp.blogspot.com

dns

63 B
165 B
1
1

DNS Request

2.bp.blogspot.com
8.8.8.8:53

st-n.ads3-adnow.com

dns

65 B
81 B
1
1

DNS Request

st-n.ads3-adnow.com

DNS Response

142.132.202.70
8.8.8.8:53

st-n.ads3-adnow.com

dns

65 B
127 B
1
1

DNS Request

st-n.ads3-adnow.com
8.8.8.8:53

platform.linkedin.com

dns

67 B
162 B
1
1

DNS Request

platform.linkedin.com

DNS Response

152.199.22.144
104.18.11.207:443

maxcdn.bootstrapcdn.com

https

5.2kB
16.4kB
15
21
8.8.8.8:53

bzib.nelreports.net

dns

65 B
172 B
1
1

DNS Request

bzib.nelreports.net

DNS Response

184.31.15.40

184.31.15.35
8.8.8.8:53

bzib.nelreports.net

dns

65 B
1

DNS Request

bzib.nelreports.net
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

23.55.97.181
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

23.55.97.181
8.8.8.8:53

www.microsoft.com

dns

63 B
275 B
1
1

DNS Request

www.microsoft.com
8.8.8.8:53

8.8.8.8.in-addr.arpa

dns

66 B
90 B
1
1

DNS Request

8.8.8.8.in-addr.arpa
8.8.8.8:53

159.113.53.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

159.113.53.23.in-addr.arpa
8.8.8.8:53

207.11.18.104.in-addr.arpa

dns

72 B
134 B
1
1

DNS Request

207.11.18.104.in-addr.arpa
8.8.8.8:53

56.104.245.94.in-addr.arpa

dns

72 B
146 B
1
1

DNS Request

56.104.245.94.in-addr.arpa
8.8.8.8:53

106.23.217.172.in-addr.arpa

dns

73 B
173 B
1
1

DNS Request

106.23.217.172.in-addr.arpa
8.8.8.8:53

161.186.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

161.186.250.142.in-addr.arpa
8.8.8.8:53

70.202.132.142.in-addr.arpa

dns

73 B
131 B
1
1

DNS Request

70.202.132.142.in-addr.arpa
8.8.8.8:53

40.15.31.184.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

40.15.31.184.in-addr.arpa
8.8.8.8:53

181.97.55.23.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

181.97.55.23.in-addr.arpa
8.8.8.8:53

74.185.250.142.in-addr.arpa

dns

73 B
112 B
1
1

DNS Request

74.185.250.142.in-addr.arpa
8.8.8.8:53

73.186.250.142.in-addr.arpa

dns

73 B
111 B
1
1

DNS Request

73.186.250.142.in-addr.arpa
142.250.186.73:443

www.blogger.com

https

4.2kB
8.8kB
6
9
8.8.8.8:53

apis.google.com

dns

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.185.174
8.8.8.8:53

apis.google.com

dns

61 B
132 B
1
1

DNS Request

apis.google.com
104.18.11.207:443

maxcdn.bootstrapcdn.com

https

7.0kB
78.3kB
39
74
8.8.8.8:53

g.bing.com

dns

56 B
151 B
1
1

DNS Request

g.bing.com

DNS Response

13.107.21.237

204.79.197.237
8.8.8.8:53

www.microsoft.com

dns

63 B
230 B
1
1

DNS Request

www.microsoft.com

DNS Response

23.55.97.181
8.8.8.8:53

platform.linkedin.com

dns

67 B
162 B
1
1

DNS Request

platform.linkedin.com

DNS Response

152.199.22.144
8.8.8.8:53

nav-edge.smartscreen.microsoft.com

dns

80 B
199 B
1
1

DNS Request

nav-edge.smartscreen.microsoft.com

DNS Response

51.140.242.104
8.8.8.8:53

nav-edge.smartscreen.microsoft.com

dns

80 B
244 B
1
1

DNS Request

nav-edge.smartscreen.microsoft.com
8.8.8.8:53

227.181.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

227.181.250.142.in-addr.arpa
8.8.8.8:53

142.16.217.172.in-addr.arpa

dns

73 B
143 B
1
1

DNS Request

142.16.217.172.in-addr.arpa
8.8.8.8:53

174.185.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

174.185.250.142.in-addr.arpa
8.8.8.8:53

91.90.14.23.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

91.90.14.23.in-addr.arpa
8.8.8.8:53

105.107.17.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

105.107.17.2.in-addr.arpa
8.8.8.8:53

88.156.103.20.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

88.156.103.20.in-addr.arpa
8.8.8.8:53

edgestatic.azureedge.net

dns

70 B
231 B
1
1

DNS Request

edgestatic.azureedge.net

DNS Response

13.107.246.64
8.8.8.8:53

edgestatic.azureedge.net

dns

70 B
275 B
1
1

DNS Request

edgestatic.azureedge.net
8.8.8.8:53

c.s-microsoft.com

dns

63 B
193 B
1
1

DNS Request

c.s-microsoft.com

DNS Response

23.53.113.225
8.8.8.8:53

c.s-microsoft.com

dns

63 B
238 B
1
1

DNS Request

c.s-microsoft.com
8.8.8.8:53

104.242.140.51.in-addr.arpa

dns

73 B
147 B
1
1

DNS Request

104.242.140.51.in-addr.arpa
8.8.8.8:53

wcpstatic.microsoft.com

dns

69 B
251 B
1
1

DNS Request

wcpstatic.microsoft.com

DNS Response

13.107.246.64
8.8.8.8:53

wcpstatic.microsoft.com

dns

69 B
282 B
1
1

DNS Request

wcpstatic.microsoft.com
2.17.107.98:443

www.bing.com

https

3.0kB
6.6kB
7
10
8.8.8.8:53

98.107.17.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

98.107.17.2.in-addr.arpa
8.8.8.8:53

connect.facebook.net

dns

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

163.70.147.23
8.8.8.8:53

www.blogger.com

dns

61 B
108 B
1
1

DNS Request

www.blogger.com

DNS Response

142.250.186.73
8.8.8.8:53

www.blogger.com

dns

61 B
142 B
1
1

DNS Request

www.blogger.com
8.8.8.8:53

www.blogger.com

dns

61 B
108 B
1
1

DNS Request

www.blogger.com

DNS Response

142.250.186.73
8.8.8.8:53

log.viva.co.id

dns

60 B
125 B
1
1

DNS Request

log.viva.co.id
8.8.8.8:53

log.viva.co.id

dns

60 B
125 B
1
1

DNS Request

log.viva.co.id
8.8.8.8:53

log.viva.co.id

dns

60 B
125 B
1
1

DNS Request

log.viva.co.id
8.8.8.8:53

apis.google.com

dns

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.185.174
8.8.8.8:53

apis.google.com

dns

61 B
132 B
1
1

DNS Request

apis.google.com
8.8.8.8:53

apis.google.com

dns

61 B
98 B
1
1

DNS Request

apis.google.com

DNS Response

142.250.185.174
8.8.8.8:53

platform.twitter.com

dns

66 B
241 B
1
1

DNS Request

platform.twitter.com

DNS Response

93.184.220.66
8.8.8.8:53

platform.twitter.com

dns

66 B
278 B
1
1

DNS Request

platform.twitter.com
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
142.250.185.174:443

apis.google.com

https

4.4kB
9.7kB
10
10
8.8.8.8:53

log.viva.co.id

dns

60 B
125 B
1
1

DNS Request

log.viva.co.id
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
8.8.8.8:53

accounts.google.com

dns

65 B
115 B
1
1

DNS Request

accounts.google.com
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
8.8.8.8:53

developers.google.com

dns

67 B
83 B
1
1

DNS Request

developers.google.com

DNS Response

142.250.181.238
8.8.8.8:53

developers.google.com

dns

67 B
83 B
1
1

DNS Request

developers.google.com

DNS Response

142.250.181.238
8.8.8.8:53

developers.google.com

dns

67 B
117 B
1
1

DNS Request

developers.google.com
8.8.8.8:53

66.220.184.93.in-addr.arpa

dns

72 B
143 B
1
1

DNS Request

66.220.184.93.in-addr.arpa
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
8.8.8.8:53

platform.twitter.com

dns

66 B
241 B
1
1

DNS Request

platform.twitter.com

DNS Response

93.184.220.66
8.8.8.8:53

platform.twitter.com

dns

66 B
278 B
1
1

DNS Request

platform.twitter.com
8.8.8.8:53

platform.twitter.com

dns

66 B
241 B
1
1

DNS Request

platform.twitter.com

DNS Response

93.184.220.66
8.8.8.8:53

syndication.twitter.com

dns

69 B
85 B
1
1

DNS Request

syndication.twitter.com

DNS Response

104.244.42.72
8.8.8.8:53

syndication.twitter.com

dns

69 B
126 B
1
1

DNS Request

syndication.twitter.com
8.8.8.8:53

www.blogger.com

dns

61 B
108 B
1
1

DNS Request

www.blogger.com

DNS Response

142.250.186.73
142.250.186.73:443

www.blogger.com

https

6.7kB
66.2kB
37
62
8.8.8.8:53

ssl.gstatic.com

dns

61 B
77 B
1
1

DNS Request

ssl.gstatic.com

DNS Response

216.58.206.67
8.8.8.8:53

ssl.gstatic.com

dns

61 B
118 B
1
1

DNS Request

ssl.gstatic.com
142.250.185.174:443

apis.google.com

https

5.5kB
36.8kB
20
33
8.8.8.8:53

developers.google.com

dns

67 B
83 B
1
1

DNS Request

developers.google.com

DNS Response

142.250.181.238
8.8.8.8:53

developers.google.com

dns

67 B
83 B
1
1

DNS Request

developers.google.com

DNS Response

142.250.181.238
8.8.8.8:53

developers.google.com

dns

67 B
117 B
1
1

DNS Request

developers.google.com
8.8.8.8:53

twitter.com

dns

57 B
73 B
1
1

DNS Request

twitter.com

DNS Response

104.244.42.65
8.8.8.8:53

twitter.com

dns

57 B
122 B
1
1

DNS Request

twitter.com
8.8.8.8:53

www.google.com

dns

60 B
76 B
1
1

DNS Request

www.google.com

DNS Response

142.250.184.228
8.8.8.8:53

www.google.com

dns

60 B
85 B
1
1

DNS Request

www.google.com
8.8.8.8:53

resources.blogblog.com

dns

68 B
115 B
1
1

DNS Request

resources.blogblog.com

DNS Response

142.250.186.73
8.8.8.8:53

resources.blogblog.com

dns

68 B
149 B
1
1

DNS Request

resources.blogblog.com
8.8.8.8:53

connect.facebook.net

dns

66 B
114 B
1
1

DNS Request

connect.facebook.net

DNS Response

163.70.147.23
8.8.8.8:53

84.27.250.142.in-addr.arpa

dns

72 B
105 B
1
1

DNS Request

84.27.250.142.in-addr.arpa
8.8.8.8:53

238.181.250.142.in-addr.arpa

dns

74 B
113 B
1
1

DNS Request

238.181.250.142.in-addr.arpa
8.8.8.8:53

72.42.244.104.in-addr.arpa

dns

72 B
72 B
1
1

DNS Request

72.42.244.104.in-addr.arpa
8.8.8.8:53

67.206.58.216.in-addr.arpa

dns

72 B
169 B
1
1

DNS Request

67.206.58.216.in-addr.arpa
8.8.8.8:53

228.184.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

228.184.250.142.in-addr.arpa
8.8.8.8:53

86.23.85.13.in-addr.arpa

dns

70 B
144 B
1
1

DNS Request

86.23.85.13.in-addr.arpa
8.8.8.8:53

198.187.3.20.in-addr.arpa

dns

71 B
157 B
1
1

DNS Request

198.187.3.20.in-addr.arpa
8.8.8.8:53

35.15.31.184.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

35.15.31.184.in-addr.arpa
8.8.8.8:53

s10.histats.com

dns

61 B
141 B
1
1

DNS Request

s10.histats.com

DNS Response

104.20.19.71

104.20.18.71
8.8.8.8:53

s10.histats.com

dns

61 B
141 B
1
1

DNS Request

s10.histats.com

DNS Response

104.20.19.71

104.20.18.71
8.8.8.8:53

22.236.111.52.in-addr.arpa

dns

72 B
158 B
1
1

DNS Request

22.236.111.52.in-addr.arpa
224.0.0.251:5353

204 B
3
8.8.8.8:53

200.131.50.23.in-addr.arpa

dns

72 B
137 B
1
1

DNS Request

200.131.50.23.in-addr.arpa
8.8.8.8:53

jendela92.blogspot.com

dns

68 B
127 B
1
1

DNS Request

jendela92.blogspot.com

DNS Response

142.250.185.161
8.8.8.8:53

jendela92.blogspot.com

dns

68 B
168 B
1
1

DNS Request

jendela92.blogspot.com
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
8.8.8.8:53

www.jendelakesehatan.xyz

dns

70 B
135 B
1
1

DNS Request

www.jendelakesehatan.xyz
8.8.8.8:53

161.185.250.142.in-addr.arpa

dns

74 B
112 B
1
1

DNS Request

161.185.250.142.in-addr.arpa
8.8.8.8:53

99.107.17.2.in-addr.arpa

dns

70 B
133 B
1
1

DNS Request

99.107.17.2.in-addr.arpa
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
8.8.8.8:53

accounts.google.com

dns

65 B
115 B
1
1

DNS Request

accounts.google.com
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
142.250.27.84:443

accounts.google.com

https

4.4kB
9.8kB
10
10
8.8.8.8:53

172.214.232.199.in-addr.arpa

dns

74 B
128 B
1
1

DNS Request

172.214.232.199.in-addr.arpa
8.8.8.8:53

113.107.17.2.in-addr.arpa

dns

71 B
135 B
1
1

DNS Request

113.107.17.2.in-addr.arpa
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
8.8.8.8:53

accounts.google.com

dns

65 B
115 B
1
1

DNS Request

accounts.google.com
8.8.8.8:53

accounts.google.com

dns

65 B
81 B
1
1

DNS Request

accounts.google.com

DNS Response

142.250.27.84
142.250.27.84:443

accounts.google.com

https

5.1kB
6.7kB
12
14

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Response