Report - andersonneto.blogspot.com.br/2014/07/tutorial-odin-309-android.html

Report Overview

URL

andersonneto.blogspot.com.br/2014/07/tutorial-odin-309-android.html
IP

172.217.21.161

ASN

#15169 GOOGLE
Submitted

2023-05-27T06:41:15Z

Access

public
Tags

None
urlquery detections

No alerts detected

Detections

urlquery

0
Network Intrusion Detection

4
Threat Detection Systems

6

Domain Summary

Domain	Rank	First Seen	Last Seen	Sent	Received	IP
www.blogger.com (14)	8975	2012-05-22 09:35:03	2023-05-26 05:16:21	12566	737320	216.58.207.233
blogpager.com (1)	unknown	2015-06-07 00:58:56	2023-05-24 13:23:35	412	7676	45.152.44.151
fonts.gstatic.com (6)	unknown	2014-09-09 02:40:21	2023-05-26 08:15:38	3272	204202	142.250.74.35
ssl.gstatic.com (1)	unknown	2012-05-23 08:57:57	2023-05-26 06:24:00	437	6076	142.250.74.131
www.google.com (3)	7	2015-05-10 13:11:19	2023-05-26 09:14:50	1806	30600	216.58.207.228
ocsp.pki.goog (21)	175	2018-07-01 08:43:07	2023-05-26 05:09:27	6993	14692	142.250.74.131
accounts.google.com (7)	81	2016-03-20 13:44:49	2023-05-26 06:31:02	5441	13010	142.250.74.109
3.bp.blogspot.com (1)	11048	2012-05-21 18:26:21	2023-05-26 05:16:31	508	911	142.250.74.129
floats.clickafiliados.com.br (2)	unknown	2014-06-07 15:11:03	2019-03-30 18:43:27	866	0	0.0.0.0
go.infotips.xyz (1)	unknown	2020-07-15 20:27:11	2023-05-24 13:23:15	505	21244	184.154.10.253
fonts.googleapis.com (1)	8877	2013-06-10 22:14:26	2023-05-26 08:47:13	483	103749	142.250.74.106
andersonneto.blogspot.com.br (1)	unknown	2015-08-14 17:24:31	2023-05-21 18:51:45	523	742	172.217.21.161
ajax.googleapis.com (1)	12905	2013-08-16 11:51:31	2023-05-26 09:59:40	442	34316	142.250.74.74
apis.google.com (7)	105	2013-05-06 22:20:21	2023-05-26 05:10:45	4245	282465	172.217.21.174
4.bp.blogspot.com (3)	11215	2012-05-21 15:44:19	2023-05-26 05:16:26	1559	63087	142.250.74.129
bloggercomment.com (1)	unknown	2012-10-02 14:40:13	2023-05-22 00:41:25	421	7676	45.152.44.151
dl.dropboxusercontent.com (3)	12831	2019-02-11 02:24:40	2019-03-28 09:18:21	1328	55016	162.125.71.15
www.gstatic.com (5)	unknown	2016-07-26 11:37:06	2023-05-26 07:01:06	2417	530306	142.250.74.35
andersonneto.blogspot.com (4)	unknown	2014-12-02 22:00:33	2023-05-23 08:08:55	2116	24118	172.217.21.161
2.bp.blogspot.com (2)	11071	2012-05-21 15:44:19	2023-05-26 08:56:53	1050	36278	142.250.74.129
sites.google.com (4)	3163	2012-05-21 15:44:20	2023-05-26 08:38:58	1878	3824	142.250.74.78
img2.blogblog.com (1)	113758	2012-05-21 15:44:19	2023-05-26 10:17:36	465	801	216.58.207.233
play.google.com (2)	34	2013-05-31 01:24:35	2023-05-26 08:02:16	1130	1591	216.58.207.238

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-27T06:40:53Z	low	Client IP	162.125.71.15	ET INFO DropBox User Content Domain (dl .dropboxusercontent .com in TLS SNI)
2023-05-27T06:40:54Z	low	Client IP	162.125.71.15	ET INFO DropBox User Content Domain (dl .dropboxusercontent .com in TLS SNI)
2023-05-27T06:40:54Z	low	162.125.71.15	Client IP	ET INFO DropBox User Content Download Access over SSL M2
2023-05-27T06:40:54Z	low	162.125.71.15	Client IP	ET INFO DropBox User Content Download Access over SSL M2

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator
2023-05-27	medium	andersonneto.blogspot.com.br/2014/07/tutorial-odin-309-android.html
2023-05-27	medium	andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
2023-05-27	medium	andersonneto.blogspot.com/js/cookienotice.js
2023-05-27	medium	bloggercomment.com/allowComments.js

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-05-27	medium	clickafiliados.com.br
2023-05-27	medium	clickafiliados.com.br

ThreatFox

No alerts detected

HTTP Transactions (92)

URL IP Response Size

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

c54e74f9b5e06609c2e505886b62816a

f3fb1db664260eee6cb452bc5464883fbb159125

277ebcad925076c28fd8cfd6803b2dc5ecc81fe17d33e351fb95b9a403c8ad82

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

andersonneto.blogspot.com.br/2014/07/tutorial-odin-309-android.html

172.217.21.161

302 Found

209

URL User Request GET HTTP/2

andersonneto.blogspot.com.br/2014/07/tutorial-odin-309-android.html
IP

172.217.21.161:443
ASN

#15169 GOOGLE

Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

Size

209
Hash

3df71e20784983d8b8f3c83ae85887b9

df110770f9805763d72d008eb72586b4e345dcc2

c62c68a5dfe15baedbf6a9bfef18af5bbe25feb852aefe81a8d262754a8baf9d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /2014/07/tutorial-odin-309-android.html HTTP/1.1
Host: andersonneto.blogspot.com.br
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 302 Found
location: https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sat, 27 May 2023 06:40:52 GMT
expires: Sat, 27 May 2023 06:40:52 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 209
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

c54e74f9b5e06609c2e505886b62816a

f3fb1db664260eee6cb452bc5464883fbb159125

277ebcad925076c28fd8cfd6803b2dc5ecc81fe17d33e351fb95b9a403c8ad82

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

c54e74f9b5e06609c2e505886b62816a

f3fb1db664260eee6cb452bc5464883fbb159125

277ebcad925076c28fd8cfd6803b2dc5ecc81fe17d33e351fb95b9a403c8ad82

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html

172.217.21.161

200 OK

19432

URL User Request GET HTTP/2

andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
IP

172.217.21.161:443
ASN

#15169 GOOGLE

Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1291)

Size

19432
Hash

f1ead620cb2aa885e36deb656524e2b4

40498901df2bdc5c14f6be831526ab5c26675eac

baeca781069d683768afd702d057792a7e3610316eb4f79818084147c5907915

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /2014/07/tutorial-odin-309-android.html HTTP/1.1
Host: andersonneto.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sat, 27 May 2023 06:40:53 GMT
date: Sat, 27 May 2023 06:40:53 GMT
cache-control: private, max-age=0
last-modified: Thu, 18 May 2023 13:26:12 GMT
etag: W/"e17f3e59c156d0dd5f5c70876958d5e581299060adb6f0b0c007aa74706f5674"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 19432
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

andersonneto.blogspot.com/js/cookienotice.js

172.217.21.161

200 OK

2026

URL GET HTTP/3

andersonneto.blogspot.com/js/cookienotice.js
IP

172.217.21.161:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

ASCII text

Size

2026
Hash

a705132a2174f88e196ec3610d68faa8

3bad57a48d973a678fec600d45933010f6edc659

068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

                                        GET /js/cookienotice.js HTTP/1.1
Host: andersonneto.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sat, 03 Jun 2023 06:40:54 GMT
cache-control: public, max-age=604800
last-modified: Sat, 27 May 2023 01:51:11 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

85471de8fa57e18a916d213cd7f98c72

0b1f3aaa959d04446520d822d80753a96f8cb4a2

467b6ee6f78a7c1a40bfda8c29c67c6200f7157d1f543572fc2ccfe402cc5886

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

216.58.207.233

200 OK

6620

URL GET HTTP/2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP

216.58.207.233:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.blogger.com

FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C

ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT

Magic

ASCII text, with very long lines (30596)

Size

6620
Hash

e3f09df1bc175f411d1ec3dfb5afb17b

3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9

1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

                                        GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 09:20:33 GMT
expires: Wed, 22 May 2024 09:20:33 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 08:53:29 GMT
content-type: text/css
vary: Accept-Encoding
age: 336021
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

0d8c522376f9142e51e824edd98e58a7

d43799c84f65ad12b94ac35a4cab08d7eb788741

36915e19659d8c250b3d74fc5705a9d358f95affdbf65ce97d7672883f4071a3

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

0d8c522376f9142e51e824edd98e58a7

d43799c84f65ad12b94ac35a4cab08d7eb788741

36915e19659d8c250b3d74fc5705a9d358f95affdbf65ce97d7672883f4071a3

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

8fdba15b1e036bbb416fbd6c272e5543

20193b9d3ced059164358e60bad68a0ea1bc87b9

1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

8fdba15b1e036bbb416fbd6c272e5543

20193b9d3ced059164358e60bad68a0ea1bc87b9

1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js

142.250.74.74

200 OK

33333

URL GET HTTP/2

ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP

142.250.74.74:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectupload.video.google.com

Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C

ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

Magic

HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)

Size

33333
Hash

ddb84c1587287b2df08966081ef063bf

9eb9ac595e9b5544e2dc79fff7cd2d0b4b5ef71f

88171413fc76dda23ab32baa17b11e4fff89141c633ece737852445f1ba6c1bd

HTTP Headers

                                        GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33333
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 May 2023 14:52:30 GMT
expires: Sat, 25 May 2024 14:52:30 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 56904
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

c7b6eb00de039f94d8c7ed2a05c851df

5322aa1b35e2e577e8071e43c366a222e8ab25d3

91e58a4c83ed845f33a5fe1abad8f6cf1b244e85eb8ceadefd0c1a3003c350d0

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/jsbin/976584016-comment_from_post_iframe.js

216.58.207.233

200 OK

6756

URL GET HTTP/2

www.blogger.com/static/v1/jsbin/976584016-comment_from_post_iframe.js
IP

216.58.207.233:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.blogger.com

FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C

ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT

Magic

ASCII text, with very long lines (1720)

Size

6756
Hash

5a1230877181e2b320b74f62e318783f

c1da03b719d792acd56b25b66e9af008a35fbbc6

2bba036d27948ede7fad38a33790a10fda10c36768cf985cebdaa6cc931636b6

HTTP Headers

                                        GET /static/v1/jsbin/976584016-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:55:58 GMT
expires: Wed, 22 May 2024 18:55:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:55:27 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 301496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/541336192-widgets.js

216.58.207.233

200 OK

56539

URL GET HTTP/2

www.blogger.com/static/v1/widgets/541336192-widgets.js
IP

216.58.207.233:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.blogger.com

FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C

ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT

Magic

ASCII text, with very long lines (2215)

Size

56539
Hash

aa44d6ded7a7f494bb801da2e270d438

2afe3b98239baba11dae4252198314c3c06088ab

9ca45e0cd2719c8403f25e13c931515b162cbb57faf9773db1033fee191efeff

HTTP Headers

                                        GET /static/v1/widgets/541336192-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56539
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 02:05:25 GMT
expires: Thu, 23 May 2024 02:05:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 24 May 2023 01:50:57 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 275729
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

85471de8fa57e18a916d213cd7f98c72

0b1f3aaa959d04446520d822d80753a96f8cb4a2

467b6ee6f78a7c1a40bfda8c29c67c6200f7157d1f543572fc2ccfe402cc5886

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

172.217.21.174

200 OK

21024

URL GET HTTP/2

apis.google.com/js/platform.js
IP

172.217.21.174:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.apis.google.com

Fingerprint4F:FF:C8:C8:21:72:D7:61:54:72:75:EA:84:95:AD:F2:71:2F:C6:33

ValidityMon, 08 May 2023 08:25:22 GMT - Mon, 31 Jul 2023 08:25:21 GMT

Magic

ASCII text, with very long lines (1429)

Size

21024
Hash

dc45b6eb10077c08f12b3279cbc9dd76

b87c081875e16f6b50a06684c8b798dc070d791b

bee2fb8dbd24a9be20e2c6bb22028e8b86c3851cb3037f1870edc5dcebde32b4

HTTP Headers

                                        GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21024
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sat, 27 May 2023 06:40:54 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "535f677920da729c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

8fdba15b1e036bbb416fbd6c272e5543

20193b9d3ced059164358e60bad68a0ea1bc87b9

1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

472

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

472
Hash

8fdba15b1e036bbb416fbd6c272e5543

20193b9d3ced059164358e60bad68a0ea1bc87b9

1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471

URL

ocsp.pki.goog/gts1c3
IP

142.250.74.131:0
ASN

#15169 GOOGLE

Magic

data

Size

471
Hash

0d8c522376f9142e51e824edd98e58a7

d43799c84f65ad12b94ac35a4cab08d7eb788741

36915e19659d8c250b3d74fc5705a9d358f95affdbf65ce97d7672883f4071a3

HTTP Headers

                                        POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 27 May 2023 06:40:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

4.bp.blogspot.com/-RT0tB-jvT_Y/Vae8TiGCPSI/AAAAAAAAJ_4/g-a5bPSyKHU/s72-c/Captura%2Bde%2Btela%2B2015-07-16%2B11.12.55.png

142.250.74.129

200 OK

4137

URL GET HTTP/2

4.bp.blogspot.com/-RT0tB-jvT_Y/Vae8TiGCPSI/AAAAAAAAJ_4/g-a5bPSyKHU/s72-c/Captura%2Bde%2Btela%2B2015-07-16%2B11.12.55.png
IP

142.250.74.129:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data

Size

4137
Hash

05ff23bcdcd8c69328f121275fd0638a

f2f2f7d9ffc2fe687f927908b76aabd59c8ab6c0

f2a06f5c233722b636d3f71f5368224ab70cda1eae7a28214cf54eb70a37c34f

HTTP Headers

                                        GET /-RT0tB-jvT_Y/Vae8TiGCPSI/AAAAAAAAJ_4/g-a5bPSyKHU/s72-c/Captura%2Bde%2Btela%2B2015-07-16%2B11.12.55.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v27ff"
expires: Sun, 28 May 2023 06:40:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Captura de tela 2015-07-16 11.12.55.png"
x-content-type-options: nosniff
date: Sat, 27 May 2023 06:40:54 GMT
server: fife
content-length: 4137
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

4.bp.blogspot.com/-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s72-c/note_2_odin.JPG

142.250.74.129

200 OK

2769

URL GET HTTP/2

4.bp.blogspot.com/-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s72-c/note_2_odin.JPG
IP

142.250.74.129:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data

Size

2769
Hash

62165247ec81ef1f2d1b8d652935820d

7c0f8b3a17b31414ea4fe911d9a3e150fa6f8c15

c4bc7dec09323810c6f4390273bf40a7cafbd2bb04fd941471df2cb7ef58ac3e

HTTP Headers

                                        GET /-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s72-c/note_2_odin.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="note_2_odin.JPG"
x-content-type-options: nosniff
server: fife
content-length: 2769
x-xss-protection: 0
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sun, 28 May 2023 06:40:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "vc60"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

4.bp.blogspot.com/-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s1600/note_2_odin.JPG

142.250.74.129

200 OK

54576

URL GET HTTP/2

4.bp.blogspot.com/-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s1600/note_2_odin.JPG
IP

142.250.74.129:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 630x464, components 3\012- data

Size

54576
Hash

1ac512e772fc29a9a845702bfb1700d6

2afd3ea9f461b113171a3b79fe91f02c10e5c168

5864c4045eab12aed12bb7af8ec3b91987d91febe06793241820530f800a087a

HTTP Headers

                                        GET /-Dg6ks5aePE0/UlQnm30BGgI/AAAAAAAADF8/2BIJCdp1114/s1600/note_2_odin.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vc60"
expires: Sun, 28 May 2023 06:40:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="note_2_odin.JPG"
x-content-type-options: nosniff
date: Sat, 27 May 2023 06:40:54 GMT
server: fife
content-length: 54576
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/-4RwxsASYKIk/UtpwdbQLy3I/AAAAAAAAEBM/grpackKV9jc/s1600/Galaxy-S4-Odin-Download-Mode.jpg

142.250.74.129

200 OK

29543

URL GET HTTP/2

2.bp.blogspot.com/-4RwxsASYKIk/UtpwdbQLy3I/AAAAAAAAEBM/grpackKV9jc/s1600/Galaxy-S4-Odin-Download-Mode.jpg
IP

142.250.74.129:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, software=Google], baseline, precision 8, 400x600, components 3\012- data

Size

29543
Hash

f6e82f479fdb1d85fcaac8ed184c0d43

91d3ce3acaa80f151aca871db83d56e2e19a16bb

4c414a093836e16f5bc33d990df5a700201989ace4f10a3bd7fad2f3cad5cce5

HTTP Headers

                                        GET /-4RwxsASYKIk/UtpwdbQLy3I/AAAAAAAAEBM/grpackKV9jc/s1600/Galaxy-S4-Odin-Download-Mode.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1014"
expires: Sun, 28 May 2023 06:40:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Galaxy-S4-Odin-Download-Mode.jpg"
x-content-type-options: nosniff
date: Sat, 27 May 2023 06:40:54 GMT
server: fife
content-length: 29543
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

2.bp.blogspot.com/-ipfnzawvw2o/VPQ-qsXtjWI/AAAAAAAAHL8/3qKgSi5Iu-c/s72-c/Captura%2Bde%2BTela%2B(10).png

142.250.74.129

200 OK

5651

URL GET HTTP/2

2.bp.blogspot.com/-ipfnzawvw2o/VPQ-qsXtjWI/AAAAAAAAHL8/3qKgSi5Iu-c/s72-c/Captura%2Bde%2BTela%2B(10).png
IP

142.250.74.129:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subjectmisc-sni.blogspot.com

Fingerprint26:34:4C:10:BC:B6:BE:82:01:A8:4E:10:FA:6E:A6:48:C8:D8:4D:38

ValidityMon, 08 May 2023 08:24:11 GMT - Mon, 31 Jul 2023 08:24:10 GMT

Magic

PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data

Size

5651
Hash

869609a5d48277aa8e737cb2ef40df92

25870d2259314019cada2cf04eba1352d8e7c2bf

48109a0e9c402e4e41c8fbf5fe9de90b461e46c155d19bc030837aa11fc6dae4

HTTP Headers

                                        GET /-ipfnzawvw2o/VPQ-qsXtjWI/AAAAAAAAHL8/3qKgSi5Iu-c/s72-c/Captura%2Bde%2BTela%2B(10).png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Captura de Tela (10).png"
x-content-type-options: nosniff
server: fife
content-length: 5651
x-xss-protection: 0
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sun, 28 May 2023 06:40:54 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1cc0"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sites.google.com/site/contenttyp/post-title/html5.js

142.250.74.78

302 Found

231

URL GET HTTP/2

sites.google.com/site/contenttyp/post-title/html5.js
IP

142.250.74.78:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.google.com

Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF

ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

Size

231
Hash

f11b2f0f18c604d2fa7b5207eeee560f

5052898c3ce1d63456cef43d65e3614bf901e454

fa28da03c7c2078087b9208a828171e814325fcf27e6a1ce5ed100aa5c74a82d

HTTP Headers

                                        GET /site/contenttyp/post-title/html5.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fcontenttyp%2Fpost-title%2Fhtml5.js
content-encoding: gzip
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sat, 27 May 2023 06:40:54 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 231
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img2.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.233

200 OK

162

URL GET HTTP/3

img2.blogblog.com/img/icon18_edit_allbkg.gif
IP

216.58.207.233:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.blogger.com

FingerprintDE:92:6A:62:40:EC:E1:4D:B1:B9:E7:88:BD:44:5D:31:66:F5:37:5C

ValidityMon, 08 May 2023 08:19:48 GMT - Mon, 31 Jul 2023 08:19:47 GMT

Magic

GIF image data, version 89a, 18 x 18\012- data

Size

162
Hash

c991641178ff05adf0d004298b5eafa9

d8f6ce8ecd92b86d49849360f6b81ceb10b4c941

ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

                                        GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: img2.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                        HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 11:06:58 GMT
expires: Tue, 30 May 2023 11:06:58 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 May 2023 20:55:27 GMT
content-type: image/gif
age: 329637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

sites.google.com/site/jqueryfontsise/blogger/text.js

142.250.74.78

302 Found

232

URL GET HTTP/2

sites.google.com/site/jqueryfontsise/blogger/text.js
IP

142.250.74.78:443
ASN

#15169 GOOGLE

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerGoogle Trust Services LLC

Subject*.google.com

Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF

ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT

Magic

HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text

Size

232
Hash

73684fab5aa43272a70ea176d3f3e835

edfb0564ab65deb6ef3fe303e8fd9f910f2db3e8

31b4ee7316f8dbb80da78667cb0d0f2192f04ef165d70be8e405c5bb1b84c820

HTTP Headers

                                        GET /site/jqueryfontsise/blogger/text.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fjqueryfontsise%2Fblogger%2Ftext.js
content-encoding: gzip
date: Sat, 27 May 2023 06:40:54 GMT
expires: Sat, 27 May 2023 06:40:54 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 232
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

blogpager.com/dataolder.js

45.152.44.151

200 OK

7037

URL GET HTTP/2

blogpager.com/dataolder.js
IP

45.152.44.151:443
ASN

#0

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerLet's Encrypt

Subjectblogpager.com

Fingerprint04:63:3C:B2:88:15:D8:05:13:80:24:2F:AC:18:39:14:45:25:EB:C8

ValidityWed, 03 May 2023 20:14:05 GMT - Tue, 01 Aug 2023 20:14:04 GMT

Magic

ASCII text, with very long lines (15255), with CRLF line terminators

Size

7037
Hash

8c72e9fce2d61657b9851150e79f2dbc

cc72854cff046660068e05083ae42137644c9a71

f47826cb7633180333513c06f856286742658156eaa271e7430dd0679bdaa606

HTTP Headers

                                        GET /dataolder.js HTTP/1.1
Host: blogpager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Jun 2023 06:40:53 GMT
content-type: application/x-javascript
last-modified: Thu, 08 Jul 2021 22:00:14 GMT
etag: "5017-60e7756e-d54907709760ef11;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7037
date: Sat, 27 May 2023 06:40:53 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

bloggercomment.com/allowComments.js

45.152.44.151

200 OK

7037

URL GET HTTP/2

bloggercomment.com/allowComments.js
IP

45.152.44.151:443
ASN

#0

Requested by

https://andersonneto.blogspot.com/2014/07/tutorial-odin-309-android.html
Certificate

IssuerLet's Encrypt

Subjectbloggercomment.com

Fingerprint0F:ED:19:78:E2:19:C4:CD:FA:19:A9:28:EC:34:55:EC:EE:25:04:BD

ValidityWed, 03 May 2023 20:14:20 GMT - Tue, 01 Aug 2023 20:14:19 GMT

Magic

ASCII text, with very long lines (15255), with CRLF line terminators

Size

7037
Hash

8c72e9fce2d61657b9851150e79f2dbc

cc72854cff046660068e05083ae42137644c9a71

f47826cb7633180333513c06f856286742658156eaa271e7430dd0679bdaa606

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

                                        GET /allowComments.js HTTP/1.1
Host: bloggercomment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://andersonneto.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

                                        HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Jun 2023 06:40:53 GMT
content-type: application/x-javascript
last-modified: Thu, 08 Jul 2021 22:00:57 GMT
etag: "5017-60e77599-4cb262ff26e7cf67;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7037
date: Sat, 27 May 2023 06:40:53 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fcontenttyp%2Fpost-title%2Fhtml5.js

142.250.74.78

302 Found

295

Report Overview

URL

IP

ASN

Submitted

Access

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (64)

#1 JS:Script (size: 1329)

#2 JS:Script (size: 1248)

#3 JS:Script (size: 327)

#4 JS:Script (size: 18395)

#5 JS:Script (size: 275)

#6 JS:Script (size: 20503)

#7 JS:Script (size: 17841)

#8 JS:Script (size: 267)

#9 JS:Script (size: 1727)

#10 JS:Script (size: 156547)

#11 JS:Script (size: 74649)

#12 JS:Script (size: 416807)

#13 JS:Script (size: 69)

#14 JS:Script (size: 117)

#15 JS:Script (size: 54)

#16 JS:Script (size: 170)

#17 JS:Script (size: 101)

#18 JS:Script (size: 286510)

#19 JS:Script (size: 55238)

#20 JS:Script (size: 108)

#21 JS:Script (size: 12)

#22 JS:Script (size: 186780)

#23 JS:Script (size: 1545)

#24 JS:Script (size: 8679)

#25 JS:Script (size: 14883)

#26 JS:Script (size: 90)

#27 JS:Script (size: 130)

#28 JS:Script (size: 6179)

#29 JS:Script (size: 154168)

#30 JS:Script (size: 63)

#31 JS:Script (size: 100)

#32 JS:Script (size: 100)

#33 JS:Script (size: 661)

#34 JS:Script (size: 0)

#35 JS:Script (size: 43)

#36 JS:Script (size: 86)

#37 JS:Script (size: 12427)

#38 JS:Script (size: 27)

#39 JS:Script (size: 876)

#40 JS:Script (size: 16896)

#41 JS:Script (size: 1034)

#42 JS:Script (size: 104472)

#43 JS:Script (size: 1848)

#44 JS:Script (size: 76)

#45 JS:Script (size: 177)

#46 JS:Script (size: 6513)

#47 JS:Script (size: 77)

#48 JS:Script (size: 3539)

#49 JS:Script (size: 134)

#50 JS:Script (size: 73)

#51 JS:Script (size: 84)

#52 JS:Script (size: 105)

#53 JS:Script (size: 58539)

#54 JS:Script (size: 42817)

#55 JS:Script (size: 93868)

#56 JS:Script (size: 789)