Report - optusnet-com.blogspot.mx/

Report Overview

Submitted URL
optusnet-com.blogspot.mx/
IP
216.58.207.193
ASN
#15169 GOOGLE
Submitted
2024-03-28 16:01:27
Access
public
Website Title
optus
Final URL
optusnet-com.blogspot.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
optusnet-com.blogspot.mx	unknown	2009-05-31	2022-07-28	2023-09-15	479 B	693 B	216.58.207.193
optusnet-com.blogspot.com	unknown	2000-07-31	2022-06-03	2024-03-01	1.4 kB	7.3 kB	216.58.207.193
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-03-28	444 B	4.2 kB	142.250.74.35
www.blogger.com	8975	unknown	2012-05-22	2024-03-27	439 B	52 kB	142.250.74.105
pastebin.com	25623	2002-09-04	2012-05-20	2024-03-26	411 B	409 B	172.67.34.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-03-28	medium	optusnet-com.blogspot.mx/	Singtel Optus
2024-03-28	medium	optusnet-com.blogspot.com/	Singtel Optus
2024-03-28	medium	optusnet-com.blogspot.com/	Singtel Optus
2024-03-28	medium	optusnet-com.blogspot.com/	Singtel Optus

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	optusnet-com.blogspot.com/	0 B	2023-03-07	2024-04-27
Pretty URL optusnet-com.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 16:24:36 Times Seen37123187 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	optusnet-com.blogspot.com/	0 B	2023-03-07	2024-04-27
Pretty URL optusnet-com.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 16:24:36 Times Seen37123187 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js	12 kB	2023-04-05	2024-04-27
Pretty URL www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:08:00 Last Seen2024-04-27 11:57:18 Times Seen9739 Hash a1a2e5bd3af1cf7d730f15dd7e308a1b 6ab91a37884d5f70808157c5cb6ed7345d8f537a d5ecc1fcccdbc32c37aa7e46793befad6d98ff1a85d1760d732d710faf49a08e Loading...

	www.blogger.com/static/v1/widgets/2087407620-widgets.js	146 kB	2024-03-25	2024-03-29
Pretty URL www.blogger.com/static/v1/widgets/2087407620-widgets.js IP 142.250.74.105 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-25 05:24:09 Last Seen2024-03-29 05:17:52 Times Seen227 Hash 1dbb5864e5d7aaf652f8b459be70e7fd 4c9847755508a29d2f33b014f39d2db223ea2259 1a028e6c266677a8e7fcdffb70db432d50ee17514e1b0bc2fb0f701347ae7f3a Loading...

	optusnet-com.blogspot.com/	0 B	2023-03-07	2024-04-27
Pretty URL optusnet-com.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-27 16:24:36 Times Seen37123187 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	optusnet-com.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-27
Pretty URL optusnet-com.blogspot.com/js/cookienotice.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-27 16:11:58 Times Seen114016 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

HTTP Transactions (7)

URL IP Response Size

optusnet-com.blogspot.mx/

216.58.207.193

302 Found

198 B

URL User Request GET HTTP/2
optusnet-com.blogspot.mx/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
HTML document, ASCII text
Size
198 B (198 bytes)
Hash
1b6145bf332ae1d69f190bb9500dfd83
6b9a049f40f46068ac1add8e7c194e0754acb097
52fa1f9adfe133791d749b47be149269a1b94d35b62ea39396990f964fccfd95

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Singtel Optus

HTTP Headers

GET / HTTP/1.1
Host: optusnet-com.blogspot.mx
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://optusnet-com.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 28 Mar 2024 16:01:02 GMT
expires: Thu, 28 Mar 2024 16:01:02 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 198
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

optusnet-com.blogspot.com/

216.58.207.193

200 OK

3.2 kB

URL User Request GET HTTP/2
optusnet-com.blogspot.com/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (4037)
Size
3.2 kB (3202 bytes)
Hash
98aa956ef4575eafd8cd119a6eb8ee97
a9c8add804047d72498bcde1efe08da0a02eb271
a0eb377408c6c175623dedc7ab5a31cab5e9e528d506faf73820c74aa87ba51f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Singtel Optus

HTTP Headers

GET / HTTP/1.1
Host: optusnet-com.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 28 Mar 2024 16:01:02 GMT
date: Thu, 28 Mar 2024 16:01:02 GMT
cache-control: private, max-age=0
last-modified: Sun, 17 Mar 2024 12:15:04 GMT
etag: W/"2949e7ed20d29364ae5d916ebd5370f23a229ceba19293ec3bc2aee03087f319"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 3202
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

optusnet-com.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL GET HTTP/3
optusnet-com.blogspot.com/js/cookienotice.js
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://optusnet-com.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Singtel Optus

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: optusnet-com.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://optusnet-com.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Thu, 28 Mar 2024 16:01:02 GMT
expires: Thu, 04 Apr 2024 16:01:02 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 12:59:59 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js

142.250.74.35

200 OK

3.5 kB

URL GET HTTP/2
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://optusnet-com.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E
ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (10473)
Size
3.5 kB (3475 bytes)
Hash
158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94

HTTP Headers

GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://optusnet-com.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 16:01:02 GMT
expires: Thu, 28 Mar 2024 16:01:02 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2087407620-widgets.js

142.250.74.105

200 OK

52 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/2087407620-widgets.js
IP
142.250.74.105:443
ASN
#15169 GOOGLE

Requested by
https://optusnet-com.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C
ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT

File type
JavaScript source, ASCII text, with very long lines (2302)
Size
52 kB (51806 bytes)
Hash
1dbb5864e5d7aaf652f8b459be70e7fd
4c9847755508a29d2f33b014f39d2db223ea2259
1a028e6c266677a8e7fcdffb70db432d50ee17514e1b0bc2fb0f701347ae7f3a

HTTP Headers

GET /static/v1/widgets/2087407620-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://optusnet-com.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51806
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Mar 2024 01:52:44 GMT
expires: Tue, 25 Mar 2025 01:52:44 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 24 Mar 2024 23:50:08 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 310098
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

optusnet-com.blogspot.com/favicon.ico

216.58.207.193

200 OK

412 B

URL GET HTTP/3
optusnet-com.blogspot.com/favicon.ico
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://optusnet-com.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Singtel Optus

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: optusnet-com.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://optusnet-com.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Thu, 28 Mar 2024 16:01:03 GMT
date: Thu, 28 Mar 2024 16:01:03 GMT
cache-control: private, max-age=86400
last-modified: Sun, 17 Mar 2024 12:15:04 GMT
etag: W/"2949e7ed20d29364ae5d916ebd5370f23a229ceba19293ec3bc2aee03087f319"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

pastebin.com/raw/RD9kQSUh

172.67.34.170

200 OK

0 B

URL GET HTTP/2
pastebin.com/raw/RD9kQSUh
IP
172.67.34.170:443
ASN
#13335 CLOUDFLARENET

Requested by
https://optusnet-com.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint55:C8:82:61:30:05:42:80:DB:47:5E:D0:66:B5:DF:AC:14:5B:19:6F
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /raw/RD9kQSUh HTTP/1.1
Host: pastebin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://optusnet-com.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 28 Mar 2024 16:01:03 GMT
content-type: text/plain; charset=utf-8
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1;mode=block
cache-control: public, max-age=1801
cf-cache-status: EXPIRED
last-modified: Thu, 28 Mar 2024 12:26:15 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b8d6290a42b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (7)

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL User Request GET HTTP/2

IP