| 5fgffggfgfg4g4ghfg4d.blogspot.com.by/ | 216.58.207.193 | 302 Found | 205 B |
URL User Request GET HTTP/25fgffggfgfg4g4ghfg4d.blogspot.com.by/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text Hashc187f5612d41f91985ef148f3b04a09d c03325d322caaa81ff209455ddb4d0f81e7c8340 9c8c3a55e65c5db359eec03651b451406ccbdb4f2a407fe42534e2c3b9f150a3
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: 5fgffggfgfg4g4ghfg4d.blogspot.com.by
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Thu, 25 Apr 2024 15:39:41 GMT
expires: Thu, 25 Apr 2024 15:39:41 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 205
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5fgffggfgfg4g4ghfg4d.blogspot.com/ | 216.58.207.193 | 200 OK | 5.1 kB |
URL User Request GET HTTP/25fgffggfgfg4g4ghfg4d.blogspot.com/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4392) Hash545fd14d0e2ee97a1b64971466b7e4d3 f8a58e84db311b82393fe5f293b5688e464564f8 998260ce24bf099179b6ad921436751c1df5afb03d3dc817010ca95ca5ff3739
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 5fgffggfgfg4g4ghfg4d.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 25 Apr 2024 15:39:41 GMT
date: Thu, 25 Apr 2024 15:39:41 GMT
cache-control: private, max-age=0
last-modified: Wed, 03 Apr 2024 22:42:27 GMT
etag: W/"9829d087f5ea1bd6ba30298251f8f016cdb8f294f53fcd5aae9c053b3ea2cb62"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 5107
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5fgffggfgfg4g4ghfg4d.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/35fgffggfgfg4g4ghfg4d.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/cookienotice.js HTTP/1.1
Host: 5fgffggfgfg4g4ghfg4d.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Thu, 25 Apr 2024 15:39:42 GMT
expires: Thu, 02 May 2024 15:39:42 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 04:54:23 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js | 142.250.74.170 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP142.250.74.170:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:46:15 GMT
expires: Fri, 18 Apr 2025 17:46:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 597207
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-782ZJ37PKK | 142.250.74.136 | 200 OK | 101 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-782ZJ37PKK IP142.250.74.136:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size101 kB (100618 bytes) Hash46666b00e4f5fd85e2cc964803ca9070 06c01b1fe8d42de65a3eb988c5bd03e2deb9f7eb f849fd6d4200809f68508992f6d01df517c5d5e92f52f16818dc73ee2f07c405
GET /gtag/js?id=G-782ZJ37PKK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 25 Apr 2024 15:39:42 GMT
expires: Thu, 25 Apr 2024 15:39:42 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100618
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css | 216.58.207.233 | 200 OK | 6.6 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css IP216.58.207.233:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeASCII text, with very long lines (30596) Hashe3f09df1bc175f411d1ec3dfb5afb17b 3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9 1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:06:37 GMT
expires: Wed, 23 Apr 2025 04:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 07:50:57 GMT
content-type: text/css
vary: Accept-Encoding
age: 214385
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/1807328581-widgets.js | 216.58.207.233 | 200 OK | 51 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/1807328581-widgets.js IP216.58.207.233:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hash3fd63936a88c795358e97868e471a443 ca64663c1f3115e480fc373d6e47b01d1f5b03a0 d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1
GET /static/v1/widgets/1807328581-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 01:58:46 GMT
expires: Thu, 24 Apr 2025 01:58:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 23:51:06 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 135656
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5fgffggfgfg4g4ghfg4d.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 15:39:42 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879f6d677cc21c0a-OSL
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5fgffggfgfg4g4ghfg4d.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 15:39:42 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 879f6d678cd21c0a-OSL
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: RA4HvKA0F12AbUEpWP1LdcWZxkKBJqt8xmYt0OZ0OZZQk85YNwOH3svklPMhZi/dL50NGQ0dOeMhJDj2SX51hw==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcLQhvt_1_DJWU39CMcPLSonLdTeuk6cx_VDmO0wV3X094FUazjay3o8pEzhXw"; e_clientaddr="AcL4N899JayTJ6P5qw54GET5kCsENFtNJxy5_Vr5OaB75Y3WCK0ua7wGV5ytx5k2uEjF27Uqq-a1Xp-M3C2MGbq5HQb0hUF41SSYxoqlfjd96JXT"; e_fb_vipport="AcIHfFEuwi05EqrKFbzqWVf8wGMYI_QpE2NIa3h-fOiOrDqUkkLCoOX37lnt"; e_upip="AcLLLyCmycWeb1D9wHXybJtZQOlhln4qWY9FrDo4X0NmIrP1lCbL4-pcGbG9DyYR2gc2vgur4oMn7yLC7qTWpoNSevSz3hYP1Jw"; e_fb_requestsequencenumber="AcLH05t18ZTbR7yoKElc2B-DxSlVDEMgHlHpUqeN74YTCF-d1AD7g7CPQqQ"; e_fb_hostheader="AcJ-lkDBkGWrMKN7tqkSKJmkcVtwLjVnDttzR0iVFrsbOICCrUwXyAU7e3eTNozOozzVeNd8XB2N20nmYw"; e_fb_vipaddr="AcIUXZdSs2ubyShepq_WLD73Z2Uk0NnwK2DqmAG6tSUIyx64NFBybmQmBMtRXRjn1rJfRjCXgzXX1bPHSVR2aQmtoiNv7E_HPA"; e_fb_requesthandler="AcInvVqUbilEl64BDXqcFcopdeLqJQNgG1f39pzoDl1F1hGlaqSGfanv0UDy4uFYeAcIHEtuIuo"; e_fb_requesttime="AcJA4Hq2RbUq82sE8puEqgpgwFsx7IKRsYGiDQ36QiaNchQUInWhdlzVFEHzRbREVBqW9e9rIQ"; e_fb_builduser="AcJJcOVf9D_JXPgwdu7CdHOLqB2az6tJGYcFyjKffI-jK9lTGAP4JduYo6b2NdndoZs"; e_fb_httpversion="AcJj7zrypSOEAgTAvJWIkkoyyxwbocRkPn49tLJyIBiVDsJdW8zso7Lra1B0"; e_fb_binaryversion="AcLVdTDr5t5ShZTV-eZbyuK-W2gc_qJfqjkQCgWJfPQpnt5GFMxZ9wZYVu2m7r7rsAsDrWIChKuBdd3SOwrSCPlXXnjsr20FvRQ"; e_proxy="AcLzaYdx4FQcyg5ShNTGJBEpLMuaRhCR2kX95GEEwSr6U9m9VU-SodnIsrRXHYa8BB4rjgOiHUy5OCXcNU8", http_request_error; e_fb_configversion="AcKrAnOgtQ0v4HMZZDpIEzVKUET3w5EV1khvyAgCFJdYpT8mdwj95782zh9hiA"; e_clientaddr="AcIpDl2J1F9BvYRSxMHxQiDe3WSGi5l0I1bhs9UPt27mEvnLjH4ve-sudzMwd2bF5srj4F5LzxTgk_nt"; e_fb_vipport="AcKrYAzrUvhHCdwTojpTsfLVACdc2lRITmySdKCGdp4lQLenU_evynAiSTTN"; e_fb_requestsequencenumber="AcKunCJOmUJsZzFj9WRTVeQr8R2943G9GSB0n12I1e5A3Nu_YMX3BPo_VQ"; e_fb_hostheader="AcIkN6aszCP88my1A6oQNSZM3h-x71l2LXfgnVfmgIn1ITThgckXzmjXqaTHzF_2iy7VHvt4-WnbZbkugg"; e_fb_vipaddr="AcLbqRhkITGYBvehveIyyepfB9INQSamfSD_1zVqLSWnAZdYizL2z7o1CX3z4Y390jTS3RM"; e_fb_requesthandler="AcJa6-zgCh7J4zmOMfbJLnZ66mPTAhaH_aIPmBa_ArWeFPPsfKwDI6TsI5iSqsRRIs1lCz4pQHauLQ"; e_fb_requesttime="AcKb9FqA0AcTYPX6X9TORg1fliB_zUoAUGlMnitJGCUGF6MMdSDtZQbfTt8zebHa5P036NI9XQ"; e_fb_builduser="AcJn5qykFV-svDIcvsYxQtAmpnrBguBo56958MjGPDKsi9Gl56yqgRAcPGgWJl8hliU"; e_fb_httpversion="AcI4-cgPf6gh2boZU8QNcR-mgJlk1DccYuVb88VCK9RQh0oTfcor_-yXPluX"; e_fb_binaryversion="AcKXGKTpkkUAirZjht6o6KaVwUuMtcsUgbTZr4D5sdWYH1UsukxVfJCWV8yhGpdlpUej_ANnWKF9dSndHBwJ9I3lo8e2wlsaljw"; e_proxy="AcIGJ3dz0sE_zeWVx7MrzPBBvj9sN4c54NEAzmRF3owq3f8yNZj-X6U5cIQbt2_ZoU_BkI-gTSi7zkh2"
date: Thu, 25 Apr 2024 15:39:42 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=14, rtx=0, c=13, mss=1380, tbw=3362, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5fgffggfgfg4g4ghfg4d.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffggfgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
content-type: text/html; charset="utf-8"
x-fb-debug: RA4HvKA0F12AbUEpWP1LdcWZxkKBJqt8xmYt0OZ0OZZQk85YNwOH3svklPMhZi/dL50NGQ0dOeMhJDj2SX51hw==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcLQhvt_1_DJWU39CMcPLSonLdTeuk6cx_VDmO0wV3X094FUazjay3o8pEzhXw"; e_clientaddr="AcL4N899JayTJ6P5qw54GET5kCsENFtNJxy5_Vr5OaB75Y3WCK0ua7wGV5ytx5k2uEjF27Uqq-a1Xp-M3C2MGbq5HQb0hUF41SSYxoqlfjd96JXT"; e_fb_vipport="AcIHfFEuwi05EqrKFbzqWVf8wGMYI_QpE2NIa3h-fOiOrDqUkkLCoOX37lnt"; e_upip="AcLLLyCmycWeb1D9wHXybJtZQOlhln4qWY9FrDo4X0NmIrP1lCbL4-pcGbG9DyYR2gc2vgur4oMn7yLC7qTWpoNSevSz3hYP1Jw"; e_fb_requestsequencenumber="AcLH05t18ZTbR7yoKElc2B-DxSlVDEMgHlHpUqeN74YTCF-d1AD7g7CPQqQ"; e_fb_hostheader="AcJ-lkDBkGWrMKN7tqkSKJmkcVtwLjVnDttzR0iVFrsbOICCrUwXyAU7e3eTNozOozzVeNd8XB2N20nmYw"; e_fb_vipaddr="AcIUXZdSs2ubyShepq_WLD73Z2Uk0NnwK2DqmAG6tSUIyx64NFBybmQmBMtRXRjn1rJfRjCXgzXX1bPHSVR2aQmtoiNv7E_HPA"; e_fb_requesthandler="AcInvVqUbilEl64BDXqcFcopdeLqJQNgG1f39pzoDl1F1hGlaqSGfanv0UDy4uFYeAcIHEtuIuo"; e_fb_requesttime="AcJA4Hq2RbUq82sE8puEqgpgwFsx7IKRsYGiDQ36QiaNchQUInWhdlzVFEHzRbREVBqW9e9rIQ"; e_fb_builduser="AcJJcOVf9D_JXPgwdu7CdHOLqB2az6tJGYcFyjKffI-jK9lTGAP4JduYo6b2NdndoZs"; e_fb_httpversion="AcJj7zrypSOEAgTAvJWIkkoyyxwbocRkPn49tLJyIBiVDsJdW8zso7Lra1B0"; e_fb_binaryversion="AcLVdTDr5t5ShZTV-eZbyuK-W2gc_qJfqjkQCgWJfPQpnt5GFMxZ9wZYVu2m7r7rsAsDrWIChKuBdd3SOwrSCPlXXnjsr20FvRQ"; e_proxy="AcLzaYdx4FQcyg5ShNTGJBEpLMuaRhCR2kX95GEEwSr6U9m9VU-SodnIsrRXHYa8BB4rjgOiHUy5OCXcNU8", http_request_error; e_fb_configversion="AcJFL2j4ekt6yXMYRDppC8SVIsMbSo3KUXbGfyVDQvVv_hCwEjheRZ7lzyOb_w"; e_clientaddr="AcKdaIMMEPb3_dOL6THooGsixFqZaujLTbRblwJPUwcdEbAwnePY77bvSqAGa9MK5SSM3r9woAKy1sXB"; e_fb_vipport="AcLTrmN7YF2wGKca0w4EiVP0i6KsQC2j1gc7yUOoChxg2JgFDArLHYbDjnqL"; e_fb_requestsequencenumber="AcI6SGmvbE6EKmlevSiJpaM2lf5TRb2t8rUUJTVGBzMomq_1mdJEFefIDQ"; e_fb_hostheader="AcKSOwi3g0R3Rx04QbXI18_KqXJmCpgte5daaWZukNHDdN7EAhAO-nEsjlKKAFKlqo-B6znR19JFx4WSvg"; e_fb_vipaddr="AcKVZLfi93mWsd7qt3dJB3WoLyHu8JJX1n-ccQjUpHljZ91FxGIqUB4XbSmsV7NnPtypLic"; e_fb_requesthandler="AcLEN4SdlGGA9O3Xg4X3FC5DFt9yMz0_TBYHsvZ7JNJu4QAWOwA2tfhSBwKQYAAVg6pKMByMm5viEA"; e_fb_requesttime="AcIn9_llVpyBf9dNIklWwYuvxN_xjT18LAPJOOAbr--_Oa8N2HITsv5ZcU4ITzEtmU8nU-nbNQ"; e_fb_builduser="AcIwjKIvuj_aaNnJGqpk26J_2Pmvy5vFTMESyj0aIwWudtgR9JNhczc2GuJz3eC4dBw"; e_fb_httpversion="AcKDnxdJdiUVKuQz2-JVhwv5BqNej2vFYcJfwKu66vbTQnhLGEU2XMzqM4lN"; e_fb_binaryversion="AcJCXKUuxgaCFGqrnhwJm5TpyUqLhzJS_B-wY8wR9ejOAMAzYyjl42-Xh1cTKovWSAqc7lsF9pCkLA2oIlU1kialsdvHH3DaPOY"; e_proxy="AcJEsIdXLtpiARcXF-59eBI3-AwInoMWOWCcopjEBt-AwmPEhVOiqHIvtcm9TdsohRotkdEcvfzEycKM"
date: Thu, 25 Apr 2024 15:39:42 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=14, rtx=0, c=13, mss=1380, tbw=7082, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=wcNSnJhDIDBAHjPa9lNxlbGt0LH7padjFDoeDAa8FwZ-_0-VdyOOPm0VgBbFPU6D_EXz6JxFnvChbB1euhsNltBmyrbveoct03k9fTOreqvYsv4_Lu1fskb5JLnPlHWs
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: MISS
content-encoding: gzip
via: 1.1 google
date: Thu, 25 Apr 2024 15:38:17 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 102
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|