Report - xczxzcxvcfs.blogspot.tw/

Report Overview

Submitted URL
xczxzcxvcfs.blogspot.tw/
IP
216.58.207.193
ASN
#15169 GOOGLE
Submitted
2024-05-04 16:41:41
Access
public
Website Title
VID_20222012_050741.mp4- MEGA
Final URL
xczxzcxvcfs.blogspot.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
xczxzcxvcfs.blogspot.tw	unknown	unknown	No data	No data	478 B	694 B	216.58.207.193
xczxzcxvcfs.blogspot.com	unknown	unknown	No data	No data	920 B	6.5 kB	216.58.207.193
www.blogger.com	8975	1999-06-22	2012-05-22	2024-05-04	899 B	59 kB	142.250.74.73
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-03	895 B	167 kB	142.250.74.168
dailynews1.xyz	unknown	2022-08-10	2022-08-10	2024-04-14	1.8 kB	14 kB	188.114.96.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-04	medium	xczxzcxvcfs.blogspot.tw/	Facebook, Inc.
2024-05-04	medium	xczxzcxvcfs.blogspot.com/	Facebook, Inc.
2024-05-04	medium	xczxzcxvcfs.blogspot.com/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.blogger.com/static/v1/widgets/4290687098-widgets.js	144 kB	2024-04-29	2024-05-14
Pretty URL www.blogger.com/static/v1/widgets/4290687098-widgets.js IP 142.250.74.73 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-29 04:27:43 Last Seen2024-05-14 01:22:31 Times Seen2188 Hash 30490c5bf1c9a62c3f7aaf45de530b69 89fdf91f40944a3babf7d9f485cbfbcc32454d50 b7c68fe77654ca4d42928e0a0ea49c642de2887b1ef65e5123105f5359390d49 Loading...

	xczxzcxvcfs.blogspot.com/	0 B	2023-03-07	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 10:42:16 Times Seen37780104 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.googletagmanager.com/gtag/js?id=UA-192860878-1	197 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=UA-192860878-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 18:41:47 Last Seen2024-05-04 18:41:48 Times Seen2 Hash 786ea91b312efda4bf0bb5c6290d9452 35a5e66a0d465262b675026e2b46378cbda42420 6dee719fae26525e1143b9d4206f5d6503dc9656bc85f1572cae8e9dcde4acd8 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 10:38:09 Times Seen349709 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	xczxzcxvcfs.blogspot.com/	0 B	2023-03-07	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 10:42:16 Times Seen37780104 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	xczxzcxvcfs.blogspot.com/	0 B	2023-03-07	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 10:42:16 Times Seen37780104 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	xczxzcxvcfs.blogspot.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 10:38:09 Times Seen350221 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.googletagmanager.com/gtag/js?id=G-MP3W8BQK16&l=dataLayer&cx=c	274 kB	2024-05-04	2024-05-04
Pretty URL www.googletagmanager.com/gtag/js?id=G-MP3W8BQK16&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-04 18:41:48 Last Seen2024-05-04 18:41:48 Times Seen2 Hash 4388b33627ee43c498906be7b871ec8a 56037b36ae8feef7412b16a0dba9a9447e329d39 5cd1b5a77b9427b5f37b08539f108a368b8bd6e349f2c22c4e67f18098c27677 Loading...

	xczxzcxvcfs.blogspot.com/	0 B	2023-03-07	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-18 10:42:16 Times Seen37780104 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	xczxzcxvcfs.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-05-18
Pretty URL xczxzcxvcfs.blogspot.com/js/cookienotice.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-18 09:37:46 Times Seen117333 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

HTTP Transactions (11)

URL IP Response Size

xczxzcxvcfs.blogspot.tw/

216.58.207.193

302 Found

200 B

URL User Request GET HTTP/2
xczxzcxvcfs.blogspot.tw/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
200 B (200 bytes)
Hash
db8242c56e30bf8918c4ea1ba4f2359a
6068f50ef7f135d2cb1b4ae176f3b83b15601816
3cc2fccca29a33b3bf910fd1417220675cf274ae5f9838b4515e82b83e0471b5

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: xczxzcxvcfs.blogspot.tw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://xczxzcxvcfs.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 04 May 2024 16:41:15 GMT
expires: Sat, 04 May 2024 16:41:15 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 200
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

xczxzcxvcfs.blogspot.com/

216.58.207.193

200 OK

3.3 kB

URL User Request GET HTTP/2
xczxzcxvcfs.blogspot.com/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (4293)
Size
3.3 kB (3309 bytes)
Hash
799a086867dff1190cafcc0f4be89038
c09ef7a126114b9148975df4526db2743d3968b4
dcc7f5fc0fa06c311391e1ec5d056db06c97731bce4b2db3c856879905a531c8

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: xczxzcxvcfs.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 04 May 2024 16:41:16 GMT
date: Sat, 04 May 2024 16:41:16 GMT
cache-control: private, max-age=0
last-modified: Tue, 12 Mar 2024 23:29:45 GMT
etag: W/"566bdaa0173e2ad2ea36008eef05fd57c2360296015838375bb7b642b47ca355"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 3309
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

xczxzcxvcfs.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL GET HTTP/3
xczxzcxvcfs.blogspot.com/js/cookienotice.js
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: xczxzcxvcfs.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 16:40:56 GMT
expires: Sat, 11 May 2024 16:40:56 GMT
cache-control: public, max-age=604800
last-modified: Sat, 04 May 2024 12:52:22 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 21
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/widgets/4290687098-widgets.js

142.250.74.73

200 OK

51 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/4290687098-widgets.js
IP
142.250.74.73:443
ASN
#15169 GOOGLE

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
JavaScript source, ASCII text, with very long lines (1941)
Size
51 kB (51402 bytes)
Hash
30490c5bf1c9a62c3f7aaf45de530b69
89fdf91f40944a3babf7d9f485cbfbcc32454d50
b7c68fe77654ca4d42928e0a0ea49c642de2887b1ef65e5123105f5359390d49

HTTP Headers

GET /static/v1/widgets/4290687098-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51402
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:08:26 GMT
expires: Fri, 02 May 2025 02:08:26 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 23:54:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 225171
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

142.250.74.73

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
142.250.74.73:443
ASN
#15169 GOOGLE

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 18:17:49 GMT
expires: Fri, 02 May 2025 18:17:49 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 08:55:18 GMT
content-type: text/css
vary: Accept-Encoding
age: 167008
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-192860878-1

142.250.74.168

200 OK

72 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-192860878-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (1822)
Size
72 kB (71583 bytes)
Hash
786ea91b312efda4bf0bb5c6290d9452
35a5e66a0d465262b675026e2b46378cbda42420
6dee719fae26525e1143b9d4206f5d6503dc9656bc85f1572cae8e9dcde4acd8

HTTP Headers

GET /gtag/js?id=UA-192860878-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 16:41:17 GMT
expires: Sat, 04 May 2024 16:41:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 71583
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-MP3W8BQK16&l=dataLayer&cx=c

142.250.74.168

200 OK

95 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-MP3W8BQK16&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94631 bytes)
Hash
4388b33627ee43c498906be7b871ec8a
56037b36ae8feef7412b16a0dba9a9447e329d39
5cd1b5a77b9427b5f37b08539f108a368b8bd6e349f2c22c4e67f18098c27677

HTTP Headers

GET /gtag/js?id=G-MP3W8BQK16&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 16:41:17 GMT
expires: Sat, 04 May 2024 16:41:17 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94631
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

dailynews1.xyz/codemess/style.css

188.114.96.1

404 Not Found

726 B

URL GET HTTP/3
dailynews1.xyz/codemess/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectdailynews1.xyz
FingerprintAF:3F:B2:BA:7F:82:55:B0:2E:90:87:BD:8E:8A:72:9F:1D:79:0B:39
ValiditySat, 13 Apr 2024 10:18:01 GMT - Fri, 12 Jul 2024 10:18:00 GMT

File type
HTML document, ASCII text
Size
726 B (726 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

HTTP Headers

GET /codemess/style.css HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sat, 04 May 2024 16:41:17 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=i%2FVyidrtXIPc1QtJERyRy4JfYfV%2FFMy0LPse7ixD76g%2Fdj8QX6sWcSuqgEfmHebgjlHUjRTLoET9KA%2BXBC8QSID2afiXa4mI9g8QVMpYFGCUd1OReN8dYvxkZE9Je7tasA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e9effb19445691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dailynews1.xyz/codemess/style.css

188.114.96.1

404 Not Found

10 kB

URL GET HTTP/3
dailynews1.xyz/codemess/style.css
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectdailynews1.xyz
FingerprintAF:3F:B2:BA:7F:82:55:B0:2E:90:87:BD:8E:8A:72:9F:1D:79:0B:39
ValiditySat, 13 Apr 2024 10:18:01 GMT - Fri, 12 Jul 2024 10:18:00 GMT

File type
HTML document, ASCII text
Size
10 kB (10177 bytes)
Hash
a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

HTTP Headers

GET /codemess/style.css HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
date: Sat, 04 May 2024 16:41:17 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 21
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cvKMT9vf4ZWfwnQ6vdxO7Npo1O1DhMjVTU4PX2QO%2BjvVS%2FGCZeRcGkuBTKYKxPsaUY3cQsw%2FnM39KiUs8hDDpqZKQQ9CINHCp7jKkHKYqOrICjMK%2FerGVyZ%2FiG3jxA30LQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e9effc7adb0b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dailynews1.xyz/codenew2/sat/ic.png

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
dailynews1.xyz/codenew2/sat/ic.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectdailynews1.xyz
FingerprintAF:3F:B2:BA:7F:82:55:B0:2E:90:87:BD:8E:8A:72:9F:1D:79:0B:39
ValiditySat, 13 Apr 2024 10:18:01 GMT - Fri, 12 Jul 2024 10:18:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /codenew2/sat/ic.png HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 04 May 2024 16:41:17 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 20
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NUOBcDSnslMFwQCKTUn6%2FWV65HB0K2hQHRW1eAo4lQTFrUp1aTizTn5mQCJQ0mAkenUB3A%2BJWf35qU5J5o5vkT5mT2qcyLxDi5bEn7Kvtmg408u5xXkWs3NmvKRaFMP1bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e9effd4bd80b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dailynews1.xyz/codenew2/sat/ic.png

188.114.96.1

404 Not Found

0 B

URL GET HTTP/3
dailynews1.xyz/codenew2/sat/ic.png
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://xczxzcxvcfs.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectdailynews1.xyz
FingerprintAF:3F:B2:BA:7F:82:55:B0:2E:90:87:BD:8E:8A:72:9F:1D:79:0B:39
ValiditySat, 13 Apr 2024 10:18:01 GMT - Fri, 12 Jul 2024 10:18:00 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /codenew2/sat/ic.png HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://xczxzcxvcfs.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sat, 04 May 2024 16:41:17 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 20
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S7r6%2BqMjDiTXLuBkGq5t9FJeoQc3TP%2BrW1NCnUvA2QXhTy6tbChplEnT2SHIjImbULw%2FBaZy%2FPXxQR0mINlpP1J%2BXNseLNMfipAFvSro3Xr02GyJbLLZU8PuKbLrlbRDMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e9effd4bd60b61-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML