ocsp.pki.goog/gts1c3
472 B IP
Hash ee6dd3d5e439506c1c5d882849b6871e
62243782389a088216d40b2bf0684b4fa6fc5728
e499212218f87a738674cdeeda68c4ec05bf8bd780fd89125f5287b776595ca7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sarkisidinle.blogspot.com/?m=1
200 OK 17 kB URL User Request GET HTTP/2 sarkisidinle.blogspot.com/?m=1
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2253)
Hash adfab019b3e90ad20170eec4f6fab2e0
1b440cc10042c1333483428929df2ee55b6ca2eb
11763401b02fea4029fd9f31f032611c221c14506bc91c7f5a29aae0089d3941
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?m=1 HTTP/1.1
Host: sarkisidinle.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 19 Sep 2023 19:49:32 GMT
date: Tue, 19 Sep 2023 19:49:32 GMT
cache-control: private, max-age=0
last-modified: Mon, 03 Apr 2023 15:37:20 GMT
etag: W/"c58c3422fc86125e2cf743f7c0b6760655e00b23d6b21eeb5e9840cf56ba8258"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 17356
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 11428f669a78b9590668faeac6f11163
4d0cd300ee04649eb98f53fe5e3b00f33cab04ab
5849cca08de7b7d0aa64f18b12542e31a194081f276123f9de442109ae5622c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sarkisidinle.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/3 sarkisidinle.blogspot.com/js/cookienotice.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/cookienotice.js HTTP/1.1
Host: sarkisidinle.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Tue, 26 Sep 2023 19:49:33 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 16:55:46 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
code.jquery.com/jquery-latest.js
200 OK 84 kB URL GET HTTP/2 code.jquery.com/jquery-latest.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
Hash 3d93b072d14f2bd1ede58f4847f537fd
73e5d044bd153dd912930e8be433059454ce19cd
3029834a820c79c154c377f52e2719fc3ff2a27600a07ae089ea7fde9087f6bc
GET /jquery-latest.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-4508e"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 19 Sep 2023 19:49:33 GMT
age: 352355
x-served-by: cache-lga21958-LGA, cache-bma1632-BMA
x-cache: HIT, HIT
x-cache-hits: 780, 49778
x-timer: S1695152974.525060,VS0,VE0
vary: Accept-Encoding
content-length: 83875
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1465578468-widgets.js
200 OK 58 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/1465578468-widgets.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (2215)
Hash a1cb4046392479f1acaeeba88535eaee
65ac5b085dd4b87ef3dbfe271254bd1d742f1abb
d49c1e3a643794375db57ab0f237a97a189577f3e822d8512ed383f95941dde8
GET /static/v1/widgets/1465578468-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 09:00:41 GMT
expires: Wed, 18 Sep 2024 09:00:41 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 15 Sep 2023 13:53:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 38932
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
200 OK 6.6 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (30596)
Hash e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 15:00:46 GMT
expires: Tue, 17 Sep 2024 15:00:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Sep 2023 12:52:31 GMT
content-type: text/css
vary: Accept-Encoding
age: 103727
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 3050f8e9fc21f3199fe194b0eb9a7b42
1c05b867d9fd08afefeb8e919e90006f24a913b4
2fd4fad4b095b269298a40660c643fa68c923cc6a06e593dfc0eaad9d48325d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash a10c9ef71e1a6040cd98a8096dc61bbc
f033990641f4e87522f5b83d2fcdc269eda0dba9
bdfa32272569ad79c2959e7cd1240f7181c27144ce71b23a45742c0c55aa964e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
472 B IP
Hash 3ae85c0cdc6129ff27e64236e6f3bb79
fc95a54e57fc58f7fab88cb36737337e8d5d9480
0a08b323b5b6e1b337c7f2e05d4b82096c3cdaa5198ff5f2132e90d6e22c184c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 19 Sep 2023 19:49:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 17 Sep 2023 02:38:49 GMT
Expires: Sun, 24 Sep 2023 02:38:48 GMT
Etag: "fc95a54e57fc58f7fab88cb36737337e8d5d9480"
Cache-Control: max-age=370384,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80945a44f9cfb521-OSL
ocsp.pki.goog/gts1c3
472 B IP
Hash 9f0e261ab8e2a186c6abcb7311a0a9b1
5b2521de7c88b8f767301d6976696b49224ee36c
8c4a73c04f1e533a06f2f6a82e8946c188d432ce04702525b59dd59bb912cce9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT
File type ASCII text, with very long lines (2664)
Hash bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Tue, 19 Sep 2023 19:49:33 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 51 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (3920)
Hash 021fda7ac6ec3b3dc23ded3a77050249
a8c775a954d79b61e9118f1ca1834ec59292a126
764ee4d574be350daf3f98ed4f834465d713163882aba89d1a4ded853c886590
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Tue, 19 Sep 2023 19:49:33 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8212610800750623923
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50647
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
say.ac/v2.php?sid=13364
200 OK 20 B IP
ASN #14061 DIGITALOCEAN-ASN
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerLet's Encrypt
Subjectsay.ac
Fingerprint63:78:5A:A7:DF:A8:0F:09:FF:BF:14:65:6E:10:5F:F7:4A:D5:15:E1
ValidityWed, 06 Sep 2023 11:53:54 GMT - Tue, 05 Dec 2023 11:53:53 GMT
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /v2.php?sid=13364 HTTP/1.1
Host: say.ac
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Tue, 19 Sep 2023 19:49:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Time: 0.022
ocsp.pki.goog/gts1c3
471 B IP
Hash 64ed688baf8887c3e918f1a762cdc5b2
057b28a887cac1050b7c08d5647a1e4d8b416ebf
267244dad1693002d314ef71cc0317d4d942c4740009aacafac6a6ab7900a712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 3050f8e9fc21f3199fe194b0eb9a7b42
1c05b867d9fd08afefeb8e919e90006f24a913b4
2fd4fad4b095b269298a40660c643fa68c923cc6a06e593dfc0eaad9d48325d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
472 B IP
Hash 3ae85c0cdc6129ff27e64236e6f3bb79
fc95a54e57fc58f7fab88cb36737337e8d5d9480
0a08b323b5b6e1b337c7f2e05d4b82096c3cdaa5198ff5f2132e90d6e22c184c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 19 Sep 2023 19:49:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 17 Sep 2023 02:38:49 GMT
Expires: Sun, 24 Sep 2023 02:38:48 GMT
Etag: "fc95a54e57fc58f7fab88cb36737337e8d5d9480"
Cache-Control: max-age=371173,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80945a44f950b529-OSL
ocsp.sectigo.com/
472 B IP
Hash 3ae85c0cdc6129ff27e64236e6f3bb79
fc95a54e57fc58f7fab88cb36737337e8d5d9480
0a08b323b5b6e1b337c7f2e05d4b82096c3cdaa5198ff5f2132e90d6e22c184c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 19 Sep 2023 19:49:33 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 17 Sep 2023 02:38:49 GMT
Expires: Sun, 24 Sep 2023 02:38:48 GMT
Etag: "fc95a54e57fc58f7fab88cb36737337e8d5d9480"
Cache-Control: max-age=371173,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80945a44fe9756a8-OSL
bumerang.hurriyet.com.tr/show_ads.js
200 OK 1.2 kB URL GET HTTP/1.1 bumerang.hurriyet.com.tr/show_ads.js
IP
ASN #12978 Andromeda Tv Digital Platform Isletmeciligi A.s.
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGlobalSign nv-sa
Subject*.hurriyet.com.tr
Fingerprint40:2D:30:53:AC:E4:92:6D:56:18:20:3B:E1:E6:DB:BB:59:2B:2C:97
ValidityMon, 26 Jun 2023 10:04:01 GMT - Sat, 27 Jul 2024 10:04:00 GMT
File type ASCII text, with CRLF line terminators
Hash 1999745c7c5ee8584f1389912d49d448
2d5d03f5e72fa278eea5d88baddf4b258f4f418d
2b46de3afd1e8cc0653c8d4a3e2948694c1837ec796d6c4e221839979bd4e583
GET /show_ads.js HTTP/1.1
Host: bumerang.hurriyet.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Encoding: gzip
Last-Modified: Thu, 04 Aug 2016 14:47:25 GMT
Accept-Ranges: bytes
ETag: "8261811d5feed11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/7.5
XSrv: BOOM01
Date: Tue, 19 Sep 2023 19:48:46 GMT
Content-Length: 1195
3.bp.blogspot.com/-nSFXRg1DBww/Tn-HVrm5ozI/AAAAAAAABRc/JSErfmazXGA/s1600/author.png
404 Not Found 832 B URL GET HTTP/3 3.bp.blogspot.com/-nSFXRg1DBww/Tn-HVrm5ozI/AAAAAAAABRc/JSErfmazXGA/s1600/author.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-nSFXRg1DBww/Tn-HVrm5ozI/AAAAAAAABRc/JSErfmazXGA/s1600/author.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-5DzlNsvmM5o/UheowWWyQJI/AAAAAAAAChc/-NRcxEdUGJ4/s1600/Onur-Murat.jpg
200 OK 20 kB URL GET HTTP/3 1.bp.blogspot.com/-5DzlNsvmM5o/UheowWWyQJI/AAAAAAAAChc/-NRcxEdUGJ4/s1600/Onur-Murat.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 225x225, components 3\012- data
Hash 380f933e4b14d481a2ca3487172be6eb
3f1a73e46ebb69d40d4077ae10efcad605e51baa
00fa9e4721ff0e6ac7ce98fe5433d9d7eae09a4ade67537cb498a172e9ade648
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-5DzlNsvmM5o/UheowWWyQJI/AAAAAAAAChc/-NRcxEdUGJ4/s1600/Onur-Murat.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "va18"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Onur-Murat.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 20202
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MywvQ2GQ7O_OA5NeaPCi2QKM13b8PIiPNxgvoiMpG8yYbDK3S1bWNXGtyCoVG8UA3TIKv8t09bG9MEWrvG0H9nZyxWT_3ADkTyLvUx9=s0-d
404 Not Found 1.7 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/AAOd8MywvQ2GQ7O_OA5NeaPCi2QKM13b8PIiPNxgvoiMpG8yYbDK3S1bWNXGtyCoVG8UA3TIKv8t09bG9MEWrvG0H9nZyxWT_3ADkTyLvUx9=s0-d
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash f1437cb468990d5244029b3933df63a9
a77a024860e0dc171502719f3e59d75323b0b4e7
cd257e02064af0da08edd53ecc8825d0883ca59b0b27a9572f6c1df3f3aae961
GET /blogger_img_proxy/AAOd8MywvQ2GQ7O_OA5NeaPCi2QKM13b8PIiPNxgvoiMpG8yYbDK3S1bWNXGtyCoVG8UA3TIKv8t09bG9MEWrvG0H9nZyxWT_3ADkTyLvUx9=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 1692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 42 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Tue, 19 Sep 2023 14:42:48 GMT
expires: Tue, 03 Oct 2023 14:42:48 GMT
cache-control: public, max-age=1209600
age: 18406
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-5OC0yNBEu0U/T4V6yAHYDNI/AAAAAAAAB-I/KCa5Us3AXZ0/s1600/bg-pattern.png
200 OK 229 B URL GET HTTP/3 4.bp.blogspot.com/-5OC0yNBEu0U/T4V6yAHYDNI/AAAAAAAAB-I/KCa5Us3AXZ0/s1600/bg-pattern.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 15 x 15, 8-bit/color RGB, non-interlaced\012- data
Hash d55d380a7af27db92efa3ca9b634f708
515919f70ae3ee6d883d686daf3b365b37f1b2d7
e3433519b46ebb6f2e46dec42ded320e3285b2379d2cd4db773367b8ec100dfe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-5OC0yNBEu0U/T4V6yAHYDNI/AAAAAAAAB-I/KCa5Us3AXZ0/s1600/bg-pattern.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v7e2"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="bg-pattern.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 229
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (1368)
Hash 60cb3b69fb3e3b24891141159eb940ad
8b183b5d8df902f7919cec452bce4c7f1bd950a7
6bbd65596c2e3d24a2d396fbf8753545e8d6a3fe2a7467f9ef4e1b4c2a0494f9
GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61126
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 22:31:53 GMT
expires: Tue, 17 Sep 2024 22:31:53 GMT
cache-control: public, max-age=31536000
age: 76661
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh4.googleusercontent.com/-xl2Mk8939vg/TlABtjJteAI/AAAAAAAADkU/MsPgjTDDSwc/ico-feed.png
200 OK 827 B URL GET HTTP/2 lh4.googleusercontent.com/-xl2Mk8939vg/TlABtjJteAI/AAAAAAAADkU/MsPgjTDDSwc/ico-feed.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type PNG image data, 15 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 9cd59a8926aafcce2d2947f9df173bc3
11768d4c4ba246ae3aa663999c89f366851b1e19
21136f5c21c2ff15df321f4dff17b98fdf309cef56a755b500bb89abffabaec1
GET /-xl2Mk8939vg/TlABtjJteAI/AAAAAAAADkU/MsPgjTDDSwc/ico-feed.png HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="ico-feed.png"
x-content-type-options: nosniff
server: fife
content-length: 827
x-xss-protection: 0
date: Tue, 19 Sep 2023 16:29:34 GMT
expires: Wed, 20 Sep 2023 16:29:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "ve45"
content-type: image/png
vary: Origin
age: 12000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-1qHjs0feGZE/TvDmxPtXmYI/AAAAAAAAAMM/0J_eyX2xDTE/s1600/pophoarka.png
200 OK 410 B URL GET HTTP/3 2.bp.blogspot.com/-1qHjs0feGZE/TvDmxPtXmYI/AAAAAAAAAMM/0J_eyX2xDTE/s1600/pophoarka.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 920 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 826ff9a2bd9d20be4c3ace6bee41f449
d136bc27d3db80b88084f9f36514555d2952d28e
32e790e3fe8d78807632a7f0535f2df240c13b2429c58f09c8a580cff767ebfe
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-1qHjs0feGZE/TvDmxPtXmYI/AAAAAAAAAMM/0J_eyX2xDTE/s1600/pophoarka.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vc3"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pophoarka.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 410
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh5.googleusercontent.com/-ogDOASAyoks/TlABu8qhr3I/AAAAAAAADkc/OCfD9SrafcM/ico-twitter.png
200 OK 704 B URL GET HTTP/2 lh5.googleusercontent.com/-ogDOASAyoks/TlABu8qhr3I/AAAAAAAADkc/OCfD9SrafcM/ico-twitter.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 086d3c25fd9373736680814f1c9e5bca
4d2dd30615c0a801e4a6d2a3d810958b4746a00a
3f604029a0c9e0933ba648b6a65b1c3d94361bb96cdd29870291bb706b806a06
GET /-ogDOASAyoks/TlABu8qhr3I/AAAAAAAADkc/OCfD9SrafcM/ico-twitter.png HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "ve47"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ico-twitter.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 704
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh6.googleusercontent.com/-YxH3qqdAJnU/TlABtbG4thI/AAAAAAAADkQ/FUmXrfGWCQQ/ico-facebook.png
200 OK 678 B URL GET HTTP/2 lh6.googleusercontent.com/-YxH3qqdAJnU/TlABtbG4thI/AAAAAAAADkQ/FUmXrfGWCQQ/ico-facebook.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c1bdcf7152d7cd805d98a679b1ffde8
4f9674ed9266c821a40e37cb1458e49678900153
5fc22d97e45103a73cedc7187af9f31004b71c336631e930da85051911abb1a0
GET /-YxH3qqdAJnU/TlABtbG4thI/AAAAAAAADkQ/FUmXrfGWCQQ/ico-facebook.png HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "ve44"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ico-facebook.png"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 678
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-0LaD7l3h-Qc/UhijFG7wt9I/AAAAAAAACjM/Aui1t7Zef6M/s1600/ekinyelbo%C4%9Fa2014.jpg
200 OK 16 kB URL GET HTTP/3 3.bp.blogspot.com/-0LaD7l3h-Qc/UhijFG7wt9I/AAAAAAAACjM/Aui1t7Zef6M/s1600/ekinyelbo%C4%9Fa2014.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 275x183, components 3\012- data
Hash 17667c58aae294cd9738b3dbcd7cabce
c25b93a6243d809b27904171c83bcbb8fddbd962
1c684cabaa7754d0a54aa8186b559750b3076cc95b13cbe69175facdee37ddfb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-0LaD7l3h-Qc/UhijFG7wt9I/AAAAAAAACjM/Aui1t7Zef6M/s1600/ekinyelbo%C4%9Fa2014.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "va34"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ekinyelbo_a2014.jpg";filename*=UTF-8''ekinyelbo%C4%9Fa2014.jpg
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 15638
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-VLxNKhlu3Tw/VMAnFDtSewI/AAAAAAAADa0/fGx1LPIG3xA/s1600/SEZO.jpg
200 OK 14 kB URL GET HTTP/3 1.bp.blogspot.com/-VLxNKhlu3Tw/VMAnFDtSewI/AAAAAAAADa0/fGx1LPIG3xA/s1600/SEZO.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 237x213, components 3\012- data
Hash c55c1e7cd15d74fa77f5ef7c1661c743
28827f709dfe5d9cc1b73cad45451f1b65dc605f
db7a03a204402836bf867fa9afe4e8de4df9f388b4595693c9695fee669db0ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-VLxNKhlu3Tw/VMAnFDtSewI/AAAAAAAADa0/fGx1LPIG3xA/s1600/SEZO.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vdae"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="SEZO.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 14151
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh3.ggpht.com/_JU2brDDXPIY/TIyhQtS4OzI/AAAAAAAAE5c/z6h2pBQmjug/yorum.gif
200 OK 546 B URL GET HTTP/2 lh3.ggpht.com/_JU2brDDXPIY/TIyhQtS4OzI/AAAAAAAAE5c/z6h2pBQmjug/yorum.gif
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
File type GIF image data, version 89a, 16 x 16\012- data
Hash 56653b6f6c047727a66525fde5c1502e
26e329a78bf62959299af8b59d49e85061762a46
ea2700a0144b9add1ae1a9357cd6ef79bfb1482ac8a76b9e040a081bc943dd4b
GET /_JU2brDDXPIY/TIyhQtS4OzI/AAAAAAAAE5c/z6h2pBQmjug/yorum.gif HTTP/1.1
Host: lh3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="yorum.gif"
x-content-type-options: nosniff
server: fife
content-length: 546
x-xss-protection: 0
date: Tue, 19 Sep 2023 19:49:34 GMT
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
etag: "v25c2"
content-type: image/gif
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-TNEqwuk9y1Q/U5mv-GwmLrI/AAAAAAAADRE/L9xvMLha4v8/s1600/demet-2014.jpg
200 OK 120 kB URL GET HTTP/3 4.bp.blogspot.com/-TNEqwuk9y1Q/U5mv-GwmLrI/AAAAAAAADRE/L9xvMLha4v8/s1600/demet-2014.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 530x530, components 3\012- data
Size 120 kB (120298 bytes)
Hash 92d36faba74d10e9191a2c3a2133ee86
336bf9c06207aba1062d69e254c62979bf72990a
91d4d9f094e0458befd77d62af3a0b4bcaf3e1aacb14385cb51718a3512153ee
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-TNEqwuk9y1Q/U5mv-GwmLrI/AAAAAAAADRE/L9xvMLha4v8/s1600/demet-2014.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd12"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="demet-2014.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 120298
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-JiZMIY-hjVU/U3gS9d3krzI/AAAAAAAADO8/fPnv64uuPqE/s1600/yuksek-sadakat-2014.jpg
200 OK 17 kB URL GET HTTP/3 1.bp.blogspot.com/-JiZMIY-hjVU/U3gS9d3krzI/AAAAAAAADO8/fPnv64uuPqE/s1600/yuksek-sadakat-2014.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 230x219, components 3\012- data
Hash 89b030ebdfa24ae1aad87bd1b9e592f5
2c6444bb8a38496fc7ee0a3be0f3fba6428e4423
b9c7657eacbcb2d39da17fef324ec4de308b065defa5aff7c8eeb643a91caf5b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-JiZMIY-hjVU/U3gS9d3krzI/AAAAAAAADO8/fPnv64uuPqE/s1600/yuksek-sadakat-2014.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vcf0"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="yuksek-sadakat-2014.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 16629
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/-K9H7SiTv9pY/UzbBLjsEjsI/AAAAAAAADOQ/9QvaXVLTdMs/s1600/nazan-Oncel-2014.jpg
200 OK 22 kB URL GET HTTP/3 2.bp.blogspot.com/-K9H7SiTv9pY/UzbBLjsEjsI/AAAAAAAADOQ/9QvaXVLTdMs/s1600/nazan-Oncel-2014.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x300, components 3\012- data
Hash 6683a163ec4b3cb7e043347271c44e26
758a9a70f5de1b997660932a1544c472d43ba96e
71226db3640ddda704530deafad64381a648b213060fb42000efa7240c0a323a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-K9H7SiTv9pY/UzbBLjsEjsI/AAAAAAAADOQ/9QvaXVLTdMs/s1600/nazan-Oncel-2014.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vce5"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="nazan-Oncel-2014.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 22190
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
4.bp.blogspot.com/-4KSBVbSCejk/TxeupRCIilI/AAAAAAAACTg/3cRw3drAI48/s1600/ustkisimarkaorj.png
404 Not Found 832 B URL GET HTTP/3 4.bp.blogspot.com/-4KSBVbSCejk/TxeupRCIilI/AAAAAAAACTg/3cRw3drAI48/s1600/ustkisimarkaorj.png
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 596246739a83bb45e30e13437e0810d9
203d99f5cb1f2c816d6f9974cc5a73cf412892a6
94aa7bf7f0d9660bb348ed4ed7faaa42c63f1a40f591dab32ce5046765df3615
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-4KSBVbSCejk/TxeupRCIilI/AAAAAAAACTg/3cRw3drAI48/s1600/ustkisimarkaorj.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/png
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 7c6c4ab403868ce33ede1ab6647ba1f5
574286bad8cc750c13bae961e4ca9f949b7b0bab
2808d998194c57f0f000205adc947b346de85ce853383f4126c1bb0c868e647a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/dyn-css/authorization.css?targetBlogID=409137903712425178&zx=61e404bc-d180-4880-a521-4b432960e5b4
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=409137903712425178&zx=61e404bc-d180-4880-a521-4b432960e5b4
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=409137903712425178&zx=61e404bc-d180-4880-a521-4b432960e5b4 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 19:49:34 GMT
last-modified: Tue, 19 Sep 2023 19:49:34 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash fe704f1fc624b4900172e83e20ad7c95
584b993ed1557e607362f7ba7f34b7b588c409ad
32c845313425787f331e7b2173d258f5f2f878e8a876b32bbb2b1e275d6ca705
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.bp.blogspot.com/-bHu7lh0fYKM/Tz9t117OkGI/AAAAAAAAAbE/4NfvBGmj3JI/s1600/ok.gif
200 OK 54 B URL GET HTTP/3 3.bp.blogspot.com/-bHu7lh0fYKM/Tz9t117OkGI/AAAAAAAAAbE/4NfvBGmj3JI/s1600/ok.gif
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type GIF image data, version 87a, 13 x 9\012- data
Hash b36547e94588980072a737e5bb5d4fb1
15d72663ee1215b80aedeb1b0cc6213d9923ec37
ade89dd7e34effb8ae58cec466ce83d6d94a66cfe6df5f13dc8180c994beb25f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bHu7lh0fYKM/Tz9t117OkGI/AAAAAAAAAbE/4NfvBGmj3JI/s1600/ok.gif HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1208"
expires: Wed, 20 Sep 2023 19:49:34 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ok.gif"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 54
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mw5nWwZ2Y9IVS4PhC-IoN1sP17GRzvqnhrRcmgobf5Id0sjTwfLZxPjr7xBi3hAUhnZ3FSCKZVcXmTby9n0JKC3p_3Y9NhVHOqlyw7A=s0-d
404 Not Found 1.7 kB URL GET HTTP/3 lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mw5nWwZ2Y9IVS4PhC-IoN1sP17GRzvqnhrRcmgobf5Id0sjTwfLZxPjr7xBi3hAUhnZ3FSCKZVcXmTby9n0JKC3p_3Y9NhVHOqlyw7A=s0-d
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 111a81b11f2d28b138666be5be0b7f5c
5ecea71943d089f780f3d2b9d44cc79a0761c3ef
6ef3d474d41fd714b8f7d69056cc983128b5ba67ead0c943f22915d6532be318
GET /blogger_img_proxy/AAOd8Mw5nWwZ2Y9IVS4PhC-IoN1sP17GRzvqnhrRcmgobf5Id0sjTwfLZxPjr7xBi3hAUhnZ3FSCKZVcXmTby9n0JKC3p_3Y9NhVHOqlyw7A=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 1692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MydTqE5Ijhf8K4_WLKD95J8Cv10R1Jq8oUIM5LYi8o1LnGws6scO4jvwMuiCkuhblpFbXv95TzAKS6ZbEV99iPj-_7iFsHVJ_E8Jv7r=s0-d
404 Not Found 1.7 kB URL GET HTTP/3 lh3.googleusercontent.com/blogger_img_proxy/AAOd8MydTqE5Ijhf8K4_WLKD95J8Cv10R1Jq8oUIM5LYi8o1LnGws6scO4jvwMuiCkuhblpFbXv95TzAKS6ZbEV99iPj-_7iFsHVJ_E8Jv7r=s0-d
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash bf63096f714f180933619017c0a79a24
d79d95b89d500a94abab88f2b02e49d7408b9623
522e8ae362af0d8844059268b64a72482b00a4c9ff9a1e4caa3c578b65e9a757
GET /blogger_img_proxy/AAOd8MydTqE5Ijhf8K4_WLKD95J8Cv10R1Jq8oUIM5LYi8o1LnGws6scO4jvwMuiCkuhblpFbXv95TzAKS6ZbEV99iPj-_7iFsHVJ_E8Jv7r=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:34 GMT
server: fife
content-length: 1692
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
2.bp.blogspot.com/__CQiIHB_Y8Q/TGmgmg0g7gI/AAAAAAAAA_Q/m63hEGJa0Tc/s1600/buton.gif
200 OK 648 B URL GET HTTP/3 2.bp.blogspot.com/__CQiIHB_Y8Q/TGmgmg0g7gI/AAAAAAAAA_Q/m63hEGJa0Tc/s1600/buton.gif
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type GIF image data, version 89a, 60 x 20\012- data
Hash db9f58a5bc3b16ed200688d29b592caf
d1816b5940ba077ab5b8398ea965b0d841deaa80
8943304a6c8e9a4bbb0e517949c86bc94e6671e58e348496ed01ad4f0383b6b2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /__CQiIHB_Y8Q/TGmgmg0g7gI/AAAAAAAAA_Q/m63hEGJa0Tc/s1600/buton.gif HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vb40"
expires: Wed, 20 Sep 2023 19:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="buton.gif"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:35 GMT
server: fife
content-length: 648
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8854705041799366&plah=sarkisidinle.blogspot.com
200 OK 132 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8854705041799366&plah=sarkisidinle.blogspot.com
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (2079)
Size 132 kB (131564 bytes)
Hash cd86426b536ca28405c1a1dd796890d6
ffa50db3281091f611330758f226d6204906ee2d
2280dcdfd9aa95908b6ca2926c799224dcc522e6242e430e2ed0154199014032
GET /pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8854705041799366&plah=sarkisidinle.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 19 Sep 2023 19:49:34 GMT
expires: Tue, 19 Sep 2023 19:49:34 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 3209374642158089868
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 131564
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
1.bp.blogspot.com/-gL37DI0AlJY/TjmThr0YhVI/AAAAAAAAAjY/y601RxVhXw8/s000/2nrklth.jpg
200 OK 85 kB URL GET HTTP/3 1.bp.blogspot.com/-gL37DI0AlJY/TjmThr0YhVI/AAAAAAAAAjY/y601RxVhXw8/s000/2nrklth.jpg
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1024x800, components 3\012- data
Hash d480f9cdf1204bce008e6895497f940b
ee38025b0947cab6eef792b458883a885b799fda
c56639f3998ddefa4cfac28b5abbc6a436ceababa825d695ff9009186263e222
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-gL37DI0AlJY/TjmThr0YhVI/AAAAAAAAAjY/y601RxVhXw8/s000/2nrklth.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v236"
expires: Wed, 20 Sep 2023 19:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2nrklth.jpg"
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:35 GMT
server: fife
content-length: 85172
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
2.6 kB URL www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash 1167d89feaf47dd18529242af9180901
84baa118e84109eb2bf62ffa86a8ab01bc83cae5
3ef2dc5c7b3774b6c40f9e08cbc7f39e1feffafdff5404f5970d2dbf5773f9c2
GET /navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 19:49:35 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2596
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sarkisidinle.blogspot.com/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5PQtF3wzV4sfeqpLZbNEF3fJWAgQ%3A1695152972791
200 OK 581 B URL GET HTTP/3 sarkisidinle.blogspot.com/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5PQtF3wzV4sfeqpLZbNEF3fJWAgQ%3A1695152972791
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type ASCII text, with very long lines (1401)
Hash a48c1d6d51651b39e5b58289addb61ce
c2aa38264c8e5064fdbe82643f097572f5f59c65
9110c8549cb57ff7c41eddc4fd7c539f89ee1b87a45d823d358877e0ff641f14
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY5PQtF3wzV4sfeqpLZbNEF3fJWAgQ%3A1695152972791 HTTP/1.1
Host: sarkisidinle.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/?m=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
expires: Tue, 19 Sep 2023 19:49:35 GMT
date: Tue, 19 Sep 2023 19:49:35 GMT
cache-control: private, max-age=0
last-modified: Mon, 03 Apr 2023 15:37:20 GMT
etag: "61e404bc-d180-4880-a521-4b432960e5b4"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 581
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsarkisidinle.blogspot.com&pfname=&rpctoken=24152546
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (2664)
Hash 3e680d5a22266127e8a36263d1aff76d
792c1e4b9c3082d83eadb73e0a171f5af216b74b
646858dc6120e933f6d0951560063dea27b2cbf64693f5b3e45d637166266de1
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21850
date: Tue, 19 Sep 2023 19:49:35 GMT
expires: Tue, 19 Sep 2023 19:49:35 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3da185580d4f9ca7"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-light.png
200 OK 117 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-light.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsarkisidinle.blogspot.com&pfname=&rpctoken=24152546
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 02:56:18 GMT
expires: Tue, 26 Sep 2023 02:56:18 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 01:56:24 GMT
content-type: image/png
age: 60797
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_peach.png
200 OK 907 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_peach.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsarkisidinle.blogspot.com&pfname=&rpctoken=24152546
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 02:45:24 GMT
expires: Tue, 26 Sep 2023 02:45:24 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 11:52:55 GMT
content-type: image/png
age: 61451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 0911771dbbbabd9b246f572f48ea124c
11441eec1fbf0484ce82467af1d5759eeb1bb07b
7571285a261202593aa5850fe3edc789879a9127286293554b80831ec272dfd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
200 OK 46 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsarkisidinle.blogspot.com&pfname=&rpctoken=24152546
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (1368)
Hash 6ad382fa50a2250514d6142072a647f4
316d68172c63ff03f82bb644b5a1ef54149ae818
6c34aa6863dc470b805525b8db49e29a2946b73cc81c1ab6b558efd49a5b2efe
GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45681
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 22:31:54 GMT
expires: Tue, 17 Sep 2024 22:31:54 GMT
cache-control: public, max-age=31536000
age: 76661
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
partner.googleadservices.com/gampad/cookie.js?domain=sarkisidinle.blogspot.com&callback=_gfp_s_&client=ca-pub-8854705041799366
200 OK 251 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=sarkisidinle.blogspot.com&callback=_gfp_s_&client=ca-pub-8854705041799366
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
FingerprintCD:27:C6:EF:01:EC:85:7D:56:5E:10:61:E6:5F:12:B9:54:18:95:D0
ValidityMon, 14 Aug 2023 08:21:12 GMT - Mon, 06 Nov 2023 08:21:11 GMT
File type ASCII text, with very long lines (391), with no line terminators
Hash fef5846084c5518c98ce80fe9ffc62bb
5c27dd974273da22ac379852e9b5cfce12b43d5f
ee67d7bc082e6b7ea4780cc1d6a6ea5562934a3ff2ce228cb6d1ecc3a52c4df0
GET /gampad/cookie.js?domain=sarkisidinle.blogspot.com&callback=_gfp_s_&client=ca-pub-8854705041799366 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 19 Sep 2023 19:49:35 GMT
server: cafe
cache-control: private
content-length: 251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 19 Sep 2023 19:49:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 0911771dbbbabd9b246f572f48ea124c
11441eec1fbf0484ce82467af1d5759eeb1bb07b
7571285a261202593aa5850fe3edc789879a9127286293554b80831ec272dfd5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230918&st=env
200 OK 12 kB URL GET HTTP/3 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230918&st=env
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type JSON data\012- , ASCII text, with very long lines (15646), with no line terminators
Hash ae30d5de39393ac3794877749050b613
54334a966599090a9f0ebc25b03e86ed871f1836
aa7f180d99ca90432204e26e675fe8ea199b0cef5ef9d427a886c756598de7fd
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230918&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sarkisidinle.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 19 Sep 2023 19:49:35 GMT
server: cafe
content-length: 11806
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash da4440bd7a0a53926c346c8bffa3ce2c
886839686b04a4db061c9a38f71f6fb3aa941613
242047f972a8ed8006fde3fc3629375a7aaf07659481aa32b7f23c2d95aed3c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL GET HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint22:90:92:F5:E8:D9:40:2B:BD:CC:C8:AF:61:09:52:B9:5D:30:B1:34
ValidityMon, 14 Aug 2023 08:22:24 GMT - Mon, 06 Nov 2023 08:22:23 GMT
File type ASCII text, with very long lines (1321)
Hash 2cc87e9764aebcbbf36ff2061e6a2793
b4f2ffdf4c695aa79f0e63651c18a88729c2407b
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 19 Sep 2023 19:49:35 GMT
expires: Tue, 19 Sep 2023 19:49:35 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL GET HTTP/3 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash 1d3d22df067f5219073f9c0fabb74fdd
d5c226022639323d93946df3571404116041e588
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 02:05:29 GMT
expires: Wed, 18 Sep 2024 02:05:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 63846
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
sarkisidinle.blogspot.com/favicon.ico
200 OK 412 B URL GET HTTP/3 sarkisidinle.blogspot.com/favicon.ico
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: sarkisidinle.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/?m=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Tue, 19 Sep 2023 19:49:35 GMT
date: Tue, 19 Sep 2023 19:49:35 GMT
cache-control: private, max-age=86400
last-modified: Mon, 03 Apr 2023 15:37:20 GMT
etag: W/"c58c3422fc86125e2cf743f7c0b6760655e00b23d6b21eeb5e9840cf56ba8258"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 92a15348a22feb36b0226c56f9243648
269519b91eb941311112a2133c9f08714d405235
1cb3e158f67e534af13b24e4c9560f2622d6cdcd2e2344572e49d15a51ff74f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 19:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
200 OK 535 B URL GET HTTP/2 www.google.com/recaptcha/api2/aframe
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint46:10:6A:3E:F0:E9:34:E0:79:83:32:6E:2E:D8:2A:57:15:BD:AC:4C
ValidityMon, 14 Aug 2023 08:23:03 GMT - Mon, 06 Nov 2023 08:23:02 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (829), with no line terminators
Hash 0ceea92facf9ba5a32d16c1e21266969
8200aa8c2da081886670d9649614ba1100e2165a
4fdd4c8d9cfcd9d334a3d8f0b9cfa07bdf00268b7a6dcb4e3b21268b97df6d9d
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 19 Sep 2023 19:49:35 GMT
date: Tue, 19 Sep 2023 19:49:35 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-btkamn7WD_euSXUWEdstlw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 535
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/D38i8ocviMyns63bFlxz04547CGgVcdJsS8VZS_5djY.js
15 kB URL pagead2.googlesyndication.com/bg/D38i8ocviMyns63bFlxz04547CGgVcdJsS8VZS_5djY.js
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (37336)
Hash 85fdbeb19d2fd9f46d4bd3740d5fffcd
732e242eb505c59e619eebad607c65d3abf81259
0f7f22f2872f88cca7b3addb165c73d38e78ec21a055c749b12f15652ff97636
GET /bg/D38i8ocviMyns63bFlxz04547CGgVcdJsS8VZS_5djY.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14739
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 17:04:58 GMT
expires: Tue, 17 Sep 2024 17:04:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Sep 2023 20:08:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 96277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230918&jk=3589917918504149&rc=
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230918&jk=3589917918504149&rc=
IP
Requested by https://www.google.com/recaptcha/api2/aframe
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20230918&jk=3589917918504149&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:35 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tpc.googlesyndication.com/generate_204?h90Skw
0 B URL tpc.googlesyndication.com/generate_204?h90Skw
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint22:90:92:F5:E8:D9:40:2B:BD:CC:C8:AF:61:09:52:B9:5D:30:B1:34
ValidityMon, 14 Aug 2023 08:22:24 GMT - Mon, 06 Nov 2023 08:22:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?h90Skw HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 19 Sep 2023 19:49:36 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230918&jk=3589917918504149&bg=!GxilGFfNAAbP3fMH7907ADQBe5WfOOlBdjM69_yTK8usErs2C9d_G8lXehCgr4h5-Cho-aKxSNqiz2WqpU9YyBLci4OAAgAAAURSAAAAEGgBBwoA1hcxud_t1STuRYeDlyibC0Iy3XIwqi20nD9Y3BIkk3PtJZzWd4PlNOW5xJINwVplRFJLSe_krUHuz3vaRjCc5Rtg9rrXClBPnO4Tscuqm-I8w8KKu-eBQmrZ7aNtB15Ru2uWnEzjHPvk3a-LRc1MydCKNJDnfpppmBaW8PruMgK4-53MJL_w58eCbt8xck-yqNLIrEqYW-Ms7lD6av6BTmLywR7O-AaoJgIeLOQCpanQ44NMlsH054KMUkL3dDhwVc8Y_bl40JpCWDQAcyD7mhks-90x-ReZAoP0YYw4ZILW9jdS4oxZJ63Y1onsAFwWr22tXRsqO0MOnnMHM6a1VsOet4lv2jH8tvMWLZKWH3gnVV1QJpeJtPUXG9-A42fgpqsl2Yp0E6BZi06cyDylfToNMfKN-A615zhPqwDl_UjWetC-Ii-_Lurn9WwivZXoWdUk7JsZaui3FMT9rVQvDl5xc9GCzf7IByh3brmvpuUHLx_bwuTLBunmRL3n8tolB2T4q0i99ZoRTui1jm6uT6aefldDLIq__uHjW0rAipT2V7U89V0NBSS6Q4d7ggyJWoEz6QwXjpC8r9u97oJwBTrN21a3bqu4rwpw6VnXqMlWpwtp9QFz7i5YO-9hgjrBoXGL9ZAVx-QyStJBFRSJClxds6S-7aMxLeAC0aDSARYoRX1acHauYazEfBmuVRRuIkCOLOj9SLkh2im8MpzPxGmp2fQokUuBuIRMciXiyTKZTT2fdli9AU0Z9uAsenClMgbIRDQIuLaw5twvD2bbeNexxkNtA48GMuguF-xk0ramVzwADDC1SUP5TFDyFO9VsNccpOJSFRhM9KsFeIjHFeLMMzKbXtKSDwxaaCfVgfvdYWvfk946G9fEM_dOBvJZV2rrr_AETPsRwPFOj5Z_6eVVomm2ZQ_l8wb8_MOBhK6wlkSlDiw2FAtfcmdu83fSApjFoz1uRrZ7H7xVxiXLYWwvN_KJWBm9sBhKrXTBFo4gnz3A44X0pGPdXtBYPq6SX4qHcMUk5YRyqI1n4qhGI37Y4uG7Q96NKL5GAqUrVnh2J5mqEza3J15_FwhKK44YenZ0FJz_WwVUzkhsn0gax4QuvAjkPrp6ujFAsFqbSYhPpSuvIN3qZjYt2d4y
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230918&jk=3589917918504149&bg=!GxilGFfNAAbP3fMH7907ADQBe5WfOOlBdjM69_yTK8usErs2C9d_G8lXehCgr4h5-Cho-aKxSNqiz2WqpU9YyBLci4OAAgAAAURSAAAAEGgBBwoA1hcxud_t1STuRYeDlyibC0Iy3XIwqi20nD9Y3BIkk3PtJZzWd4PlNOW5xJINwVplRFJLSe_krUHuz3vaRjCc5Rtg9rrXClBPnO4Tscuqm-I8w8KKu-eBQmrZ7aNtB15Ru2uWnEzjHPvk3a-LRc1MydCKNJDnfpppmBaW8PruMgK4-53MJL_w58eCbt8xck-yqNLIrEqYW-Ms7lD6av6BTmLywR7O-AaoJgIeLOQCpanQ44NMlsH054KMUkL3dDhwVc8Y_bl40JpCWDQAcyD7mhks-90x-ReZAoP0YYw4ZILW9jdS4oxZJ63Y1onsAFwWr22tXRsqO0MOnnMHM6a1VsOet4lv2jH8tvMWLZKWH3gnVV1QJpeJtPUXG9-A42fgpqsl2Yp0E6BZi06cyDylfToNMfKN-A615zhPqwDl_UjWetC-Ii-_Lurn9WwivZXoWdUk7JsZaui3FMT9rVQvDl5xc9GCzf7IByh3brmvpuUHLx_bwuTLBunmRL3n8tolB2T4q0i99ZoRTui1jm6uT6aefldDLIq__uHjW0rAipT2V7U89V0NBSS6Q4d7ggyJWoEz6QwXjpC8r9u97oJwBTrN21a3bqu4rwpw6VnXqMlWpwtp9QFz7i5YO-9hgjrBoXGL9ZAVx-QyStJBFRSJClxds6S-7aMxLeAC0aDSARYoRX1acHauYazEfBmuVRRuIkCOLOj9SLkh2im8MpzPxGmp2fQokUuBuIRMciXiyTKZTT2fdli9AU0Z9uAsenClMgbIRDQIuLaw5twvD2bbeNexxkNtA48GMuguF-xk0ramVzwADDC1SUP5TFDyFO9VsNccpOJSFRhM9KsFeIjHFeLMMzKbXtKSDwxaaCfVgfvdYWvfk946G9fEM_dOBvJZV2rrr_AETPsRwPFOj5Z_6eVVomm2ZQ_l8wb8_MOBhK6wlkSlDiw2FAtfcmdu83fSApjFoz1uRrZ7H7xVxiXLYWwvN_KJWBm9sBhKrXTBFo4gnz3A44X0pGPdXtBYPq6SX4qHcMUk5YRyqI1n4qhGI37Y4uG7Q96NKL5GAqUrVnh2J5mqEza3J15_FwhKK44YenZ0FJz_WwVUzkhsn0gax4QuvAjkPrp6ujFAsFqbSYhPpSuvIN3qZjYt2d4y
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230918&jk=3589917918504149&bg=!GxilGFfNAAbP3fMH7907ADQBe5WfOOlBdjM69_yTK8usErs2C9d_G8lXehCgr4h5-Cho-aKxSNqiz2WqpU9YyBLci4OAAgAAAURSAAAAEGgBBwoA1hcxud_t1STuRYeDlyibC0Iy3XIwqi20nD9Y3BIkk3PtJZzWd4PlNOW5xJINwVplRFJLSe_krUHuz3vaRjCc5Rtg9rrXClBPnO4Tscuqm-I8w8KKu-eBQmrZ7aNtB15Ru2uWnEzjHPvk3a-LRc1MydCKNJDnfpppmBaW8PruMgK4-53MJL_w58eCbt8xck-yqNLIrEqYW-Ms7lD6av6BTmLywR7O-AaoJgIeLOQCpanQ44NMlsH054KMUkL3dDhwVc8Y_bl40JpCWDQAcyD7mhks-90x-ReZAoP0YYw4ZILW9jdS4oxZJ63Y1onsAFwWr22tXRsqO0MOnnMHM6a1VsOet4lv2jH8tvMWLZKWH3gnVV1QJpeJtPUXG9-A42fgpqsl2Yp0E6BZi06cyDylfToNMfKN-A615zhPqwDl_UjWetC-Ii-_Lurn9WwivZXoWdUk7JsZaui3FMT9rVQvDl5xc9GCzf7IByh3brmvpuUHLx_bwuTLBunmRL3n8tolB2T4q0i99ZoRTui1jm6uT6aefldDLIq__uHjW0rAipT2V7U89V0NBSS6Q4d7ggyJWoEz6QwXjpC8r9u97oJwBTrN21a3bqu4rwpw6VnXqMlWpwtp9QFz7i5YO-9hgjrBoXGL9ZAVx-QyStJBFRSJClxds6S-7aMxLeAC0aDSARYoRX1acHauYazEfBmuVRRuIkCOLOj9SLkh2im8MpzPxGmp2fQokUuBuIRMciXiyTKZTT2fdli9AU0Z9uAsenClMgbIRDQIuLaw5twvD2bbeNexxkNtA48GMuguF-xk0ramVzwADDC1SUP5TFDyFO9VsNccpOJSFRhM9KsFeIjHFeLMMzKbXtKSDwxaaCfVgfvdYWvfk946G9fEM_dOBvJZV2rrr_AETPsRwPFOj5Z_6eVVomm2ZQ_l8wb8_MOBhK6wlkSlDiw2FAtfcmdu83fSApjFoz1uRrZ7H7xVxiXLYWwvN_KJWBm9sBhKrXTBFo4gnz3A44X0pGPdXtBYPq6SX4qHcMUk5YRyqI1n4qhGI37Y4uG7Q96NKL5GAqUrVnh2J5mqEza3J15_FwhKK44YenZ0FJz_WwVUzkhsn0gax4QuvAjkPrp6ujFAsFqbSYhPpSuvIN3qZjYt2d4y HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 19 Sep 2023 19:49:36 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
img86.xooimage.com/files/e/3/3/kodu-calamassin-37959cf.js
200 OK 1.5 kB URL GET HTTP/2 img86.xooimage.com/files/e/3/3/kodu-calamassin-37959cf.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerLet's Encrypt
Subject*.xooimage.com
FingerprintB5:5C:F0:49:04:21:C1:47:5C:8F:8B:D6:18:9F:D9:E8:13:44:D0:7E
ValidityTue, 15 Aug 2023 02:07:15 GMT - Mon, 13 Nov 2023 02:07:14 GMT
File type ASCII text, with very long lines (1627), with no line terminators
Hash f339d9bdf224d965a5a2782ad63644be
97c4b9645d834f709f9d4d5f57bd8a7a2bade7d9
d7f49ff091b7b1bb601d4534b65af421c7c0a9edb8012d6768152fce47f97bbe
GET /files/e/3/3/kodu-calamassin-37959cf.js HTTP/1.1
Host: img86.xooimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 19 Sep 2023 19:49:33 GMT
content-type: application/javascript
last-modified: Wed, 13 May 2013 13:13:13 GMT
etag: W/"50420de7-601"
expires: Wed, 18 Sep 2024 19:49:33 GMT
cache-control: max-age=31536000
content-encoding: gzip
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6900), with no line terminators
Hash 9af98466d5ade49552adfe59cf4426fa
efa6d0ccd3141505fc4e5c6014dd762d141045dc
922693aacbf70777c48733dfa078867fc345a83ca118fca0ea3ae428e222308c
GET /navbar.g?targetBlogID=409137903712425178&blogName=Son+Alb%C3%BCm+%C5%9Eark%C4%B1s%C4%B1+Dinle+2014&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://sarkisidinle.blogspot.com/search&blogLocale=tr&v=2&homepageUrl=https://sarkisidinle.blogspot.com/&vt=6208632398779611917&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 19 Sep 2023 19:49:35 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2596
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yourjavascript.com/92119021114/jquery.bxslider2.0.1.min.js
0 B URL GET yourjavascript.com/92119021114/jquery.bxslider2.0.1.min.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerSectigo Limited
Subjectyourjavascript.com
FingerprintDB:A3:F2:89:E7:B7:98:30:D6:A6:1A:B8:D7:E8:61:8C:56:70:25:93
ValidityFri, 04 Aug 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /92119021114/jquery.bxslider2.0.1.min.js HTTP/1.1
Host: yourjavascript.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Tue, 19 Sep 2023 19:49:33 GMT
pragma: no-cache
server: NginX
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Owlvbmf3I9pY+5AHwZm4yzgZtfIYDjIqx78Esb3vpuvDFpEBDK8dI5mvfj6a5FYeR5xtpXaOskngfeRrVaDtkQ==
x-cache-miss-from: parking-6f7d579cd8-6rwdm
x-powered-by: PHP/8.1.17
X-Firefox-Spdy: h2
yourjavascript.com/21914931171/jquery.pngFix.js
0 B URL GET yourjavascript.com/21914931171/jquery.pngFix.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerSectigo Limited
Subjectyourjavascript.com
FingerprintDB:A3:F2:89:E7:B7:98:30:D6:A6:1A:B8:D7:E8:61:8C:56:70:25:93
ValidityFri, 04 Aug 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /21914931171/jquery.pngFix.js HTTP/1.1
Host: yourjavascript.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Tue, 19 Sep 2023 19:49:33 GMT
pragma: no-cache
server: NginX
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_KCoUro5HwUUQx/QWPEjtCbkNQxJqoG6enHfWUieXrEs/g+PuVavkPRc8UEUKdxCGjKMrSOup04j9zE9JmHrItw==
x-cache-miss-from: parking-6f7d579cd8-6rwdm
x-powered-by: PHP/8.1.17
X-Firefox-Spdy: h2
yourjavascript.com/11724990112/script.js
0 B URL GET yourjavascript.com/11724990112/script.js
IP
Requested by https://sarkisidinle.blogspot.com/?m=1
Certificate IssuerSectigo Limited
Subjectyourjavascript.com
FingerprintDB:A3:F2:89:E7:B7:98:30:D6:A6:1A:B8:D7:E8:61:8C:56:70:25:93
ValidityFri, 04 Aug 2023 00:00:00 GMT - Sat, 03 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11724990112/script.js HTTP/1.1
Host: yourjavascript.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sarkisidinle.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Tue, 19 Sep 2023 19:49:33 GMT
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Tue, 19 Sep 2023 19:49:33 GMT
pragma: no-cache
server: NginX
vary: Accept-Encoding
x-adblock-key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANnylWw2vLY4hUn9w06zQKbhKBfvjFUCsdFlb6TdQhxb9RXWXuI4t31c+o8fYOv/s8q1LGPga3DE1L/tHU4LENMCAwEAAQ==_Ybf2BbDsyCDWiB6PB40b69s/y3RkgzPVg2TepOutXFN1/05s1wZoTxp2xNQba5dtOnWVagpnN5/JOI1VIDNIUQ==
x-cache-miss-from: parking-6f7d579cd8-6rwdm
x-powered-by: PHP/8.1.17
X-Firefox-Spdy: h2
142.250.74.161
5.135.39.55
104.18.14.101
83.66.162.14
104.248.240.127
0.0.0.0