| 5fgfgfg4g4gh4hv.blogspot.pe/ | 142.250.74.65 | 302 Found | 201 B |
URL User Request GET HTTP/25fgfgfg4g4gh4hv.blogspot.pe/ IP142.250.74.65:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text Hashd1434ce7bd4bef2ffe2ff483eda1d7ac e6a45147d7f42234169ad9af76af10ab4d0259ca 110406079201f0ba30ad08a844f4129802c5d04a740576d9cf72332a956707ce
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: 5fgfgfg4g4gh4hv.blogspot.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://5fgfgfg4g4gh4hv.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 25 Apr 2024 17:37:31 GMT
expires: Thu, 25 Apr 2024 17:37:31 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 201
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5fgfgfg4g4gh4hv.blogspot.com/ | 216.58.207.193 | 200 OK | 5.1 kB |
URL User Request GET HTTP/25fgfgfg4g4gh4hv.blogspot.com/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4329) Hash666b9cfa6b63e0357ef906c3bf51fb3f a6b2d6916b4051f3be4112dc83cff3870aa556fc 36c7268a97102a2c8417416fa08e28da955baaff81824bc1ee884bd8ff77f0b2
GET / HTTP/1.1
Host: 5fgfgfg4g4gh4hv.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 25 Apr 2024 17:37:32 GMT
date: Thu, 25 Apr 2024 17:37:32 GMT
cache-control: private, max-age=0
last-modified: Thu, 14 Mar 2024 06:18:56 GMT
etag: W/"a064c665eef373ee4258553e50ffd226582eecab4486128be60534f20e042111"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 5103
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5fgfgfg4g4gh4hv.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/35fgfgfg4g4gh4hv.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: 5fgfgfg4g4gh4hv.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 12:05:16 GMT
expires: Thu, 02 May 2024 12:05:16 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 04:54:23 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 19936
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css | 216.58.207.233 | 200 OK | 6.6 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css IP216.58.207.233:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeASCII text, with very long lines (30596) Hashe3f09df1bc175f411d1ec3dfb5afb17b 3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9 1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:06:37 GMT
expires: Wed, 23 Apr 2025 04:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 07:50:57 GMT
content-type: text/css
vary: Accept-Encoding
age: 221455
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/1807328581-widgets.js | 216.58.207.233 | 200 OK | 51 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/1807328581-widgets.js IP216.58.207.233:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hash3fd63936a88c795358e97868e471a443 ca64663c1f3115e480fc373d6e47b01d1f5b03a0 d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1
GET /static/v1/widgets/1807328581-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 01:58:46 GMT
expires: Thu, 24 Apr 2025 01:58:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 23:51:06 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 142726
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js | 142.250.74.74 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP142.250.74.74:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 09:52:46 GMT
expires: Fri, 25 Apr 2025 09:52:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 27886
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-782ZJ37PKK | 142.250.74.72 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-782ZJ37PKK IP142.250.74.72:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size101 kB (100623 bytes) Hashbe1147c077464b9386b072825a3cc20e c396695e2f145c966e5409c4d0f32f3fb21b84b1 1ca0bb191c306feee39723ad8beb036ff9fd532fd44a301b80033c8dd1aab4b8
GET /gtag/js?id=G-782ZJ37PKK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 17:37:32 GMT
expires: Thu, 25 Apr 2024 17:37:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100623
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5fgfgfg4g4gh4hv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:37:33 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a01a04fc0256bb-OSL
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5fgfgfg4g4gh4hv.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 17:37:33 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a01a04fc0056bb-OSL
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://*.google-analytics.com *.google.com;style-src 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' https://*.google-analytics.com;img-src data: blob: 'self' https://*.google-analytics.com;block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
origin-agent-cluster: ?0
content-type: text/html; charset="utf-8"
x-fb-debug: qFdqIqjAK3U5jRqDaJqFA3vz9gbASi/sNHmt6lOwt8ySWrmmw410oToZ684yOlgCX1J45O8Ax/0PniQ8T4003g==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcJsRlIX2DayQ-anbV8kKzScoZenaeKDJ4KF6hnHzyW85jSbv-O_fKTXuFw1YQ"; e_clientaddr="AcJem0okk5e8nh7pV4JgxFo_fP-opiaYcXrRTvvasC3jFknwKIy1OlFCwUgzhUfKQ3zNbToRqqlqC7wnPssem0pHU_VBAzM7Pk8dUzoV3QU5mvzgUA"; e_fb_vipport="AcLA3wX0PnkGxmWtAop9HnW3lu1Zo-FykTMuVBjKMkZd9ZHB_VjIOPgWPU4Y"; e_upip="AcJTjmhvvtvzHaIYPNRtmQfXTxoEOqaQq0dRdXuYyx870rgF3EgGeQHzZcF98XlbGzowPxmfsKHBHZ8VZpxTqaJRbxv5EAuCXw"; e_fb_requestsequencenumber="AcLNlmYPMOXnURWmMNOioStpQRtbtEkVLmvY99InEMLTigR0PRUvgMJ8OxM"; e_fb_hostheader="AcIww0wJjJmnxVEuWuJZRZYqEMeOOi5ouZ4IbPSTf8kmJbPtOzAb_TLI8AF0_DmRqgAPXJkUyWfkdl6jFQ"; e_fb_vipaddr="AcKalgLDldGWu8OUKEe5w4yM26w-L2l2PYJZpo2jLrf9-IoFcN2u2IN1r8W1BZKrukNAQ1YO7jjZ_3TwvJofCD1qpLsDs70lnA"; e_fb_requesthandler="AcIBhN9JIR0LFHDHSMjhxRCGbVOhZk0esPVzomlrKn-Kxsj-Jo3Z_8kAJzJlfYTKpVDRHz5vKKw"; e_fb_requesttime="AcLudCHKEq0hE-FrE5mRJMC09vC9lYJPiMidmi_ONj7SqVdNQNB_bECo3riyOdyqLu7N_evGyw"; e_fb_builduser="AcL8rWo67B9aJDun9fVHDA8TwPRZMYXYjKkcexZmskptGA2MjJQS9wBbmUFZu1AR58k"; e_fb_httpversion="AcLSrSYNaRKBY6pp7rvzFlPmiAFyVVLLvDhG9ivwjS7t1DS9I9ATyUi9-5XM"; e_fb_binaryversion="AcJa0LNHKv0IrbjMqsVGY1O2oUpfRZXP-aG2pIBwoBaHywfqiU8C9apI0Ve9wy3U9zC2cAGmVrTHRcWNzy68tZjdR3BP_k8STV4"; e_proxy="AcLpXfVDQycCeZhHh23jl4eELTlsbIyNTt3b9dlO-NoU4Bg4HE131nx7jjNubUdDq6wxJGgWlu0tkbnmg9oU", http_request_error; e_fb_configversion="AcLMVNYIP-ZqCgRB539IIJevtb50SVMG3VU7XvwrUP-jcgGW0DP3Ys3_W_MWYQ"; e_clientaddr="AcLTpEMxoMXMRrZ7Nz8O9O2fHvb_OBwLPYwzOP3l3-yl9W8GdZ-RxdA80soYG-JUgQpYqgwVvJ_aWBs"; e_fb_vipport="AcJKhh7JHtcKOe84q7fnzOqbjUFwota7KyCGp46mdL5-vlieMThTtT9LeN1K"; e_fb_requestsequencenumber="AcI_12buU9aVJkc3eRUoBVtnhbQ20faGrYO54c35uq6zLMM_MQyByWPneA"; e_fb_hostheader="AcLTKk_ZAeGgV26z0cljrDVvH7XzeYAsrIWmRF5cA8SL7xTUCRy6MMhJNi1kmcn2awvn-7gjb8xbFY-Tiw"; e_fb_vipaddr="AcKMMlJz1ZZJX7W--mwnmJI5TdKdoFuqoA3Wo26elZIzYvhMYGz7uaROG9g9AWOshM-NhwI"; e_fb_requesthandler="AcItfa2ybHS-SI9C4DQSNZooagTV_D7OfxZv-6JdB5Ycb_SIH6MxxjhOBZPazZuIxLjqPKZK4It3NA"; e_fb_requesttime="AcJgJvRyuQLg6IFfe3uHQ-AKvRmvAU2Ml5fmFu5C8IGM5Whmej3bVAXU9-kise_ntP-zhn860w"; e_fb_builduser="AcLMGvGutVqG5j_A7neFsoQMGEvAvA7QLkeH6bjLqy5FgD2Bhcrs_Hhw4dXbZZM-IaM"; e_fb_httpversion="AcKvAQ-xzgvW5PKtK6pqUbMGDwG1f_c1rs2US5LvRI7DD4hjUkUVShxRdIfY"; e_fb_binaryversion="AcLjdUO6Pu0Zwk-dPi481FbiepUd54ML2kAy31NqqWxwVX8Z-q2iDIk1qNnW3-sWTt9vylA6nZgJsuzdcMH2OJK2MIcTxuvtyEE"; e_proxy="AcLKPBHo6WjeGLC53k8Ffb5NgchOoWXj51X8TWLKv8gftWYZU9awKxy4yutvA7SStRYLz4GoTznLHp8"
date: Thu, 25 Apr 2024 17:37:33 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=13, mss=1380, tbw=3464, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5fgfgfg4g4gh4hv.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgfgfg4g4gh4hv.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://*.google-analytics.com *.google.com;style-src 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' https://*.google-analytics.com;img-src data: blob: 'self' https://*.google-analytics.com;block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
origin-agent-cluster: ?0
content-type: text/html; charset="utf-8"
x-fb-debug: qFdqIqjAK3U5jRqDaJqFA3vz9gbASi/sNHmt6lOwt8ySWrmmw410oToZ684yOlgCX1J45O8Ax/0PniQ8T4003g==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcJsRlIX2DayQ-anbV8kKzScoZenaeKDJ4KF6hnHzyW85jSbv-O_fKTXuFw1YQ"; e_clientaddr="AcJem0okk5e8nh7pV4JgxFo_fP-opiaYcXrRTvvasC3jFknwKIy1OlFCwUgzhUfKQ3zNbToRqqlqC7wnPssem0pHU_VBAzM7Pk8dUzoV3QU5mvzgUA"; e_fb_vipport="AcLA3wX0PnkGxmWtAop9HnW3lu1Zo-FykTMuVBjKMkZd9ZHB_VjIOPgWPU4Y"; e_upip="AcJTjmhvvtvzHaIYPNRtmQfXTxoEOqaQq0dRdXuYyx870rgF3EgGeQHzZcF98XlbGzowPxmfsKHBHZ8VZpxTqaJRbxv5EAuCXw"; e_fb_requestsequencenumber="AcLNlmYPMOXnURWmMNOioStpQRtbtEkVLmvY99InEMLTigR0PRUvgMJ8OxM"; e_fb_hostheader="AcIww0wJjJmnxVEuWuJZRZYqEMeOOi5ouZ4IbPSTf8kmJbPtOzAb_TLI8AF0_DmRqgAPXJkUyWfkdl6jFQ"; e_fb_vipaddr="AcKalgLDldGWu8OUKEe5w4yM26w-L2l2PYJZpo2jLrf9-IoFcN2u2IN1r8W1BZKrukNAQ1YO7jjZ_3TwvJofCD1qpLsDs70lnA"; e_fb_requesthandler="AcIBhN9JIR0LFHDHSMjhxRCGbVOhZk0esPVzomlrKn-Kxsj-Jo3Z_8kAJzJlfYTKpVDRHz5vKKw"; e_fb_requesttime="AcLudCHKEq0hE-FrE5mRJMC09vC9lYJPiMidmi_ONj7SqVdNQNB_bECo3riyOdyqLu7N_evGyw"; e_fb_builduser="AcL8rWo67B9aJDun9fVHDA8TwPRZMYXYjKkcexZmskptGA2MjJQS9wBbmUFZu1AR58k"; e_fb_httpversion="AcLSrSYNaRKBY6pp7rvzFlPmiAFyVVLLvDhG9ivwjS7t1DS9I9ATyUi9-5XM"; e_fb_binaryversion="AcJa0LNHKv0IrbjMqsVGY1O2oUpfRZXP-aG2pIBwoBaHywfqiU8C9apI0Ve9wy3U9zC2cAGmVrTHRcWNzy68tZjdR3BP_k8STV4"; e_proxy="AcLpXfVDQycCeZhHh23jl4eELTlsbIyNTt3b9dlO-NoU4Bg4HE131nx7jjNubUdDq6wxJGgWlu0tkbnmg9oU", http_request_error; e_fb_configversion="AcIMeFM7YU5WGQ1UgLB9gNlybydNwkfGDWbPUVXig2AfiSnbSgbrb5YFkT9gVw"; e_clientaddr="AcKIV-JMPqsDUGCkAhwCYAxClA-FJ1oAbnLSsAEBdIKTYw7gNr1j5GSOsX8kiZA29KBmYWwhIVTFJd8"; e_fb_vipport="AcL_smwWJy2EuM3JJb8rGxdBsGB6w8uV0zIXvuFPYFugKThhVdRlenxBymU0"; e_fb_requestsequencenumber="AcK0t3hi9pus1uPTOzlMZamzdfcE7EST1qGPcY0kxZ1hxO1HYn-rksR6mw"; e_fb_hostheader="AcJyopvI70wz_vELjYgjLzIGCjGvJCrenk9sz7xzefra-MrIfRR7s71UL-xga7TfMEyyz91bTUZVsz486w"; e_fb_vipaddr="AcKPcIg3pLi-RCOnUmbzTfIZsIJ_VKXOuIQBZtS7JdRNMuSVpgnCDXc7GqQQvvXiWW-whWo"; e_fb_requesthandler="AcLPAWjkgD_YMftLkpXBdLb50vW3tudM5ICcFr6SmrqR8A6noL71smY4AgaYKeFCGC1_IQMCP3lb2w"; e_fb_requesttime="AcJh5agKC8ss6zYSq4rxOs-S5uXp8Oy9izj7nTPpPnMdiZDwyrcKB0GC-1E3LkXy_JaepMN7JA"; e_fb_builduser="AcJaXZI8GhUZ2LWLEKQsqFUtHiVueNU6-8L9maDFoJbeqFDNcDwcBnwdqfY5NTFWb4M"; e_fb_httpversion="AcK8v0jwkA_thDy27StoVfwSCX9QnrELgjmqT2HsObTYDh75W6WKmKIzf81d"; e_fb_binaryversion="AcJJdDPcCeAArUiRb2dF4DXCQ7w54gY2f2wSOqunkwqpmB7IqiR54S1BlqsElbFkRN2n5KNdJxDMg--1-aIX1rUzTs4Yr1dq834"; e_proxy="AcI68BlF1nmjiZMPXB1ErNpJmoAHb6g9qwYxxKQasKNGfUwdwQ9NIjY9_rHHj3urFmOeYmaKlrWIim4"
date: Thu, 25 Apr 2024 17:37:33 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=13, mss=1380, tbw=7356, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=zv5f4z8UwlecFqu8BhlrphNKruUJOo3N3jIr1QdsZcM8qvfDBTiKwDT8dz7BVhzfG7T26jOvzNQUB3H-ZS0jxIYVOSCkLa5O5I2Ysb30cRRGgCpAnvxafwaULkUeM_TS
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Thu, 25 Apr 2024 17:37:05 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 45
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|