Report - gfgfghhhhhhh.blogspot.ie/?m=1

Report Overview

Visited public
2023-09-24 01:01:32
Tags
URL
gfgfghhhhhhh.blogspot.ie/?m=1
Finishing URL
gfgfghhhhhhh.blogspot.com/?m=1
IP / ASN
172.217.21.161
#15169 GOOGLE
Title
Vídeos quentes ...

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-09-24 00:09:38	441 B	7.5 kB	142.250.74.106
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-09-23 18:12:07	3.7 kB	7.7 kB	172.217.21.163
gfgfghhhhhhh.blogspot.ie	unknown	2011-02-02	2023-09-23 09:51:06	2023-09-23 14:08:30	485 B	679 B	172.217.21.161
gfgfghhhhhhh.blogspot.com	unknown	2000-07-31	2023-09-23 09:51:06	2023-09-23 16:21:52	935 B	10 kB	172.217.21.161
1.bp.blogspot.com	8403	2000-07-31	2012-05-21 15:44:19	2023-09-23 18:30:21	550 B	6.8 kB	142.250.74.161
www.blogger.com	8975	1999-06-22	2012-05-22 09:35:03	2023-09-23 18:30:21	904 B	168 kB	216.58.207.233
code.jquery.com	634	2005-12-10	2012-05-21 19:28:02	2023-09-23 20:51:22	411 B	84 kB	151.101.194.137
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18 02:37:31	2023-09-23 18:48:38	501 B	22 kB	104.18.11.207
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-09-23 23:59:52	446 B	4.2 kB	142.250.74.35
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-09-24 00:19:52	434 B	86 kB	142.250.74.168
www.favicon.cc	unknown	2007-05-19	2017-01-31 15:13:03	2023-09-23 16:21:59	439 B	59 kB	65.109.146.249

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-09-24 01:01:17	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-09-24 01:01:17	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-09-24 01:01:17	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	gfgfghhhhhhh.blogspot.ie/?m=1	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-23	medium	gfgfghhhhhhh.blogspot.com	Sinkholed
2023-09-23	medium	gfgfghhhhhhh.blogspot.com	Sinkholed
2023-09-23	medium	bp.blogspot.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (12)

	URL	From	Size	First Seen	Last Seen
	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	274 B	2023-09-23	2024-08-21
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 15:28 Last Seen2024-08-21 05:57 Times Seen34 Hash 57440c6a5a7926b8158039a7dc79ff67 f55145a43b6254dddfa56d50c93426b079bc63e8 7757b37b1d238320d1e2107718db3819a4f61e1d37e3873761413de676f8ec84 Loading...

	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	16 B	2023-03-26	2024-10-12
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:56 Last Seen2024-10-12 22:57 Times Seen1735 Hash 06e5c799c02fbce9e3f1d547343eebc2 ba41dfbee7bc425b90300d9463b8aafecfad99c4 a3e6c67ebe7c4774df85c969bc170de0332e6a96043873965ae94c77618d2b43 Loading...

	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	789 B	2023-03-07	2024-08-21
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2024-08-21 09:44 Times Seen17283 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	gfgfghhhhhhh.blogspot.com/js/cookienotice.js	ScriptElement	6.5 kB	2023-03-07	2025-05-09
Pretty URL gfgfghhhhhhh.blogspot.com/js/cookienotice.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-09 11:20 Times Seen43827 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5	ScriptElement	243 kB	2023-09-24	2023-09-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-24 01:09 Last Seen2023-09-24 03:07 Times Seen54 Hash 49f520d7aa06686a4acf317b3946bf20 09433e92dbf69ad96c0969cd718eb81bfb8cd1c2 6ed5ff90dfb8ff92c9ab897f5f8a2cdac191474eb0220a6ae436e41378e050dc Loading...

	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	4.6 kB	2024-08-21	2024-08-21
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 05:54 Last Seen2024-08-21 05:54 Times Seen13 Hash 960642d2b9cc5d0b12dafff3ec7398ac ad1c2e360d8e67304c9c8b2c054cd5da19b939c4 40a8a405ac0a2bd4c49e9b4d5c4543f45d3e82b7fe587dec948c44e206195716 Loading...

	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	289 B	2023-05-25	2024-09-19
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-25 14:45 Last Seen2024-09-19 20:49 Times Seen477 Hash cc23ee25fdaa0b4a2e7351279b99676b 42186faba6bc8501d3ff98772f65c1507e6a8758 4c6fbcd237e68672c1b78f9efd8f21db7d8a80e479798f04c46fcc31dc54e410 Loading...

	gfgfghhhhhhh.blogspot.com/?m=1	ScriptElement	153 B	2023-03-26	2024-10-12
Pretty URL gfgfghhhhhhh.blogspot.com/?m=1 IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:56 Last Seen2024-10-12 22:57 Times Seen1796 Hash eb3bedd50a50ee11a1d057c4ecfe357d 07329c58869fc0346aa1db4f57afca0b5f02e0c4 ab109e9718e13f07d5fe62b4c59922817c0b4288808105941d122dcc317100af Loading...

	code.jquery.com/jquery.js	ScriptElement	283 kB	2023-03-07	2025-05-06
Pretty URL code.jquery.com/jquery.js IP 151.101.194.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25 Last Seen2025-05-06 11:26 Times Seen3705 Hash 3d93b072d14f2bd1ede58f4847f537fd 73e5d044bd153dd912930e8be433059454ce19cd 3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js	ScriptElement	17 kB	2023-03-07	2025-05-07
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js IP 142.250.74.106 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-05-07 05:05 Times Seen2518 Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 Loading...

	www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js	ScriptElement	12 kB	2023-04-05	2025-05-09
Pretty URL www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js IP 142.250.74.35 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:08 Last Seen2025-05-09 10:05 Times Seen8099 Hash a1a2e5bd3af1cf7d730f15dd7e308a1b 6ab91a37884d5f70808157c5cb6ed7345d8f537a d5ecc1fcccdbc32c37aa7e46793befad6d98ff1a85d1760d732d710faf49a08e Loading...

	www.blogger.com/static/v1/widgets/562952797-widgets.js	ScriptElement	160 kB	2023-09-20	2025-01-31
Pretty URL www.blogger.com/static/v1/widgets/562952797-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-20 04:35 Last Seen2025-01-31 05:40 Times Seen1951 Hash 0804e4c7fd72aea2ce34a04d9ec9686c 9f46bef1076230a1271d151a506fd1d91ae7df93 5ea4b0b19c5f030a3b42b570c07cbea89a7899f1d824a95b53ad2c4ca18a2b5c Loading...

HTTP Transactions (23)

URL IP Response Size

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
17d4dac18fa2e921b6142e9a6e7638e9
3e4d5337720590d6a2b8941baf90fa8dfd9d752b
f367bf987bcfb690ef53baf4cca8970b83fe522c820de2babb8cb3c943fa84c6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gfgfghhhhhhh.blogspot.ie/?m=1

172.217.21.161

180 B

URL
gfgfghhhhhhh.blogspot.ie/?m=1
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
180 B (180 bytes)
Hash
977cf0136d53cdf22018be5b854de2a8
871f45c043163b677b42b3824d59d95759c17d28
d60d4b89ca6528fa56725bea8fb0ab76464cdc7627ef75ee09a597090f5db0c1

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /?m=1 HTTP/1.1
Host: gfgfghhhhhhh.blogspot.ie
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://gfgfghhhhhhh.blogspot.com/?m=1
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 24 Sep 2023 01:01:15 GMT
expires: Sun, 24 Sep 2023 01:01:15 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 180
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
17d4dac18fa2e921b6142e9a6e7638e9
3e4d5337720590d6a2b8941baf90fa8dfd9d752b
f367bf987bcfb690ef53baf4cca8970b83fe522c820de2babb8cb3c943fa84c6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
17d4dac18fa2e921b6142e9a6e7638e9
3e4d5337720590d6a2b8941baf90fa8dfd9d752b
f367bf987bcfb690ef53baf4cca8970b83fe522c820de2babb8cb3c943fa84c6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

gfgfghhhhhhh.blogspot.com/?m=1

172.217.21.161

7.1 kB

URL
gfgfghhhhhhh.blogspot.com/?m=1
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (22504)
Size
7.1 kB (7132 bytes)
Hash
e8cb33b773d5efb9a26f796b88d97c89
931f30063ad1c31fe588318b629d4aec8cb48268
c40a9595d03678a7e793f76fd1ae7d62676c7a8fd807d4b4b2d7fb526d18b059

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?m=1 HTTP/1.1
Host: gfgfghhhhhhh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 24 Sep 2023 01:01:15 GMT
date: Sun, 24 Sep 2023 01:01:15 GMT
cache-control: private, max-age=0
last-modified: Wed, 15 Sep 2021 21:41:26 GMT
etag: W/"e2800144e4a7eabe0f350c6fbbb94fe93f8ab7d82889adc54ba0f8d3573e6d48"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 7132
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

gfgfghhhhhhh.blogspot.com/js/cookienotice.js

172.217.21.161

2.0 kB

URL
gfgfghhhhhhh.blogspot.com/js/cookienotice.js
IP
172.217.21.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: gfgfghhhhhhh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:27:49 GMT
expires: Sat, 30 Sep 2023 13:27:49 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Sep 2023 20:56:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 41607
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a5f5467555eddaec1c42dc5e77af601a
47c172dac1e914c8962b8ad8684ef16ad8742ce2
2e1982a8d405cc85b00953f293a893a61dc1d08977d3cef226054c33ba3c3f1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

1.bp.blogspot.com/-gnEsaXmRe7U/YAMAptXyZ0I/AAAAAAAAAUk/ZcoHshjB7zsb-ts0Tc_UpPzRsmOCHFNDACLcBGAsYHQ/s259/anh%2Bms299%2B-%2BCopy.jp

142.250.74.161

200 OK

6.3 kB

URL GET HTTP/2
1.bp.blogspot.com/-gnEsaXmRe7U/YAMAptXyZ0I/AAAAAAAAAUk/ZcoHshjB7zsb-ts0Tc_UpPzRsmOCHFNDACLcBGAsYHQ/s259/anh%2Bms299%2B-%2BCopy.jp
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://gfgfghhhhhhh.blogspot.com/?m=1
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 259x194, components 3\012- data
Size
6.3 kB (6294 bytes)
Hash
a2cdcb0daca982d8805329ac61bef868
c1473392157244e5d52f03440d682a7a792116e9
12ca159f81c2ad2ba92559300cc7f4767f7ca525fd7f2314fc9a0714bd355876

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-gnEsaXmRe7U/YAMAptXyZ0I/AAAAAAAAAUk/ZcoHshjB7zsb-ts0Tc_UpPzRsmOCHFNDACLcBGAsYHQ/s259/anh%2Bms299%2B-%2BCopy.jp HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="anh ms299 - Copy.jpg"
x-content-type-options: nosniff
server: fife
content-length: 6294
x-xss-protection: 0
date: Sat, 23 Sep 2023 23:14:35 GMT
expires: Sun, 24 Sep 2023 23:14:35 GMT
cache-control: public, max-age=86400, no-transform
age: 6401
etag: "v14a"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23ee71f34a80feec27e23d99ecada83e
62f4c8dcc03187e2bdcdfa76dc732d4eebde5cc1
429bd03ec19810ed389955d166c98e62d9850e52160fbec3dd27da2cc30200fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

216.58.207.233

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://gfgfghhhhhhh.blogspot.com/?m=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 11:21:39 GMT
expires: Fri, 20 Sep 2024 11:21:39 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Sep 2023 07:52:40 GMT
content-type: text/css
vary: Accept-Encoding
age: 221977
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css

104.18.11.207

21 kB

URL
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65371)
Size
21 kB (20781 bytes)
Hash
2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c

HTTP Headers

GET /bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gfgfghhhhhhh.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 24 Sep 2023 01:01:16 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2f624089c65f12185e79925bc5a7fc42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 08/20/2023 21:32:33
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 755
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 23e65ed585a0f2a9224418fc08425ca5
cdn-cache: HIT
cf-cache-status: HIT
age: 41607
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80b71863f94956c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
41d47531a53830929519cbac6bcf752a
c39e4c34f34823397d064f1dd018625b2321f892
77798848ecc76001633e9d6571748a6c58fc655abb7509c4deb52932479e93ca

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js

142.250.74.35

200 OK

3.5 kB

URL GET HTTP/2
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
142.250.74.35:443
ASN
#15169 GOOGLE

Requested by
https://gfgfghhhhhhh.blogspot.com/?m=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT

File type
Unicode text, UTF-8 text, with very long lines (10473)
Size
3.5 kB (3475 bytes)
Hash
158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94

HTTP Headers

GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 24 Sep 2023 01:01:16 GMT
expires: Sun, 24 Sep 2023 01:01:16 GMT
cache-control: public, max-age=0
age: 0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a5f5467555eddaec1c42dc5e77af601a
47c172dac1e914c8962b8ad8684ef16ad8742ce2
2e1982a8d405cc85b00953f293a893a61dc1d08977d3cef226054c33ba3c3f1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/jquery.js

151.101.194.137

84 kB

URL
code.jquery.com/jquery.js
IP
151.101.194.137:0
ASN
#54113 FASTLY

File type
ASCII text
Size
84 kB (83875 bytes)
Hash
3d93b072d14f2bd1ede58f4847f537fd
73e5d044bd153dd912930e8be433059454ce19cd
3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc

HTTP Headers

GET /jquery.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4508e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 24 Sep 2023 01:01:16 GMT
age: 715077
x-served-by: cache-lga13621-LGA, cache-bma1621-BMA
x-cache: HIT, HIT
x-cache-hits: 65, 3131
x-timer: S1695517277.847265,VS0,VE0
vary: Accept-Encoding
content-length: 83875
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js

142.250.74.106

6.5 kB

URL
ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1190)
Size
6.5 kB (6490 bytes)
Hash
593e60ad549e46f8ca9a60755336c7df
9c030800712c832f2a15040cf02f546884a99808
ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4

HTTP Headers

GET /ajax/libs/webfont/1.5.18/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 6490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 10:18:42 GMT
expires: Thu, 19 Sep 2024 10:18:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 312154
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5

142.250.74.168

200 OK

85 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://gfgfghhhhhhh.blogspot.com/?m=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT

File type
ASCII text, with very long lines (3034)
Size
85 kB (85102 bytes)
Hash
49f520d7aa06686a4acf317b3946bf20
09433e92dbf69ad96c0969cd718eb81bfb8cd1c2
6ed5ff90dfb8ff92c9ab897f5f8a2cdac191474eb0220a6ae436e41378e050dc

HTTP Headers

GET /gtag/js?id=G-GMPGBDMPN5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 24 Sep 2023 01:01:16 GMT
expires: Sun, 24 Sep 2023 01:01:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85102
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a5f5467555eddaec1c42dc5e77af601a
47c172dac1e914c8962b8ad8684ef16ad8742ce2
2e1982a8d405cc85b00953f293a893a61dc1d08977d3cef226054c33ba3c3f1a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/562952797-widgets.js

216.58.207.233

200 OK

160 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/562952797-widgets.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://gfgfghhhhhhh.blogspot.com/?m=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT

File type
ASCII text, with very long lines (2215)
Size
160 kB (160393 bytes)
Hash
0804e4c7fd72aea2ce34a04d9ec9686c
9f46bef1076230a1271d151a506fd1d91ae7df93
5ea4b0b19c5f030a3b42b570c07cbea89a7899f1d824a95b53ad2c4ca18a2b5c

HTTP Headers

GET /static/v1/widgets/562952797-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 160393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 02:21:50 GMT
expires: Thu, 19 Sep 2024 02:21:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 00:55:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 340767
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
23ee71f34a80feec27e23d99ecada83e
62f4c8dcc03187e2bdcdfa76dc732d4eebde5cc1
429bd03ec19810ed389955d166c98e62d9850e52160fbec3dd27da2cc30200fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
99734170fcdad2d52884412f61321bf8
25163901dbdc047070a12d8afadcaa7009d8b595
f2a2590ac5fa2bcc9db8c46b3b4ad45f0a03b03193f601a2636e900fe851cf59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

172.217.21.163

471 B

URL
ocsp.pki.goog/gts1c3
IP
172.217.21.163:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
41d47531a53830929519cbac6bcf752a
c39e4c34f34823397d064f1dd018625b2321f892
77798848ecc76001633e9d6571748a6c58fc655abb7509c4deb52932479e93ca

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 24 Sep 2023 01:01:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.favicon.cc/logo3d/781592.png

65.109.146.249

59 kB

URL
www.favicon.cc/logo3d/781592.png
IP
65.109.146.249:0
ASN
#24940 Hetzner Online GmbH

File type
PNG image data, 340 x 431, 16-bit/color RGBA, non-interlaced\012- data
Size
59 kB (58588 bytes)
Hash
1191df3e41a1ab9543d8936ec29667f0
55012a80dd5651d3b4e4b386bb6f1e69ae9d64ed
349f3e73891ee9590769354433097851beb0ffd2e9e2ff5922e0462bd9a000c2

HTTP Headers

GET /logo3d/781592.png HTTP/1.1
Host: www.favicon.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://gfgfghhhhhhh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 24 Sep 2023 01:01:17 GMT
Server: Apache/2.4.57
Strict-Transport-Security: max-age=63072000; includeSubdomains;
Last-Modified: Sun, 09 Nov 2014 17:57:28 GMT
ETag: "e4dc-50770c77ad200"
Accept-Ranges: bytes
Content-Length: 58588
Content-Security-Policy: frame-ancestors 'self';
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive
Content-Type: image/png

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by