Report - gikolibe.blogspot.com.tr/

Report Overview

Submitted URL
gikolibe.blogspot.com.tr/
IP
216.58.207.193
ASN
#15169 GOOGLE
Submitted
2024-05-05 18:03:40
Access
public
Website Title
Finner ikke blogg
Final URL
draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.gstatic.com	unknown	2008-02-11	2016-07-26	2024-05-05	1.8 kB	167 kB	142.250.74.99
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-05	1.1 kB	36 kB	216.58.207.227
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-05	892 B	64 kB	142.250.74.106
apis.google.com	105	1997-09-15	2013-05-06	2024-05-05	557 B	42 kB	142.250.74.110
gikolibe.blogspot.com.tr	unknown	unknown	No data	No data	754 B	1.3 kB	216.58.207.193
gikolibe.blogspot.com	unknown	unknown	No data	No data	1.1 kB	2.3 kB	142.250.74.65
draft.blogger.com	73550	1999-06-22	2012-07-15	2024-05-03	3.7 kB	200 kB	216.58.207.233
accounts.google.com	81	1997-09-15	2016-03-20	2024-05-04	1.4 kB	3.4 kB	74.125.131.84
www.blogger.com	8975	1999-06-22	2012-05-22	2024-05-04	1.3 kB	12 kB	216.58.207.233
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	417 B	13 kB	142.250.74.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	gikolibe.blogspot.com.tr/	Facebook, Inc.
2024-05-05	medium	gikolibe.blogspot.com/	Facebook, Inc.
2024-05-05	medium	gikolibe.blogspot.com.tr/	Facebook, Inc.
2024-05-05	medium	gikolibe.blogspot.com/	Facebook, Inc.
2024-05-05	medium	gikolibe.blogspot.com/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	draft.blogger.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-18
Pretty URL draft.blogger.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 23:09:55 Times Seen350467 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1	504 B	2023-03-07	2024-05-17
Pretty URL draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-17 21:01:19 Times Seen43389 Hash 870356cea637d383df0fe4fb0e3b60d9 1cac6735b1220dbf31fddfd1e3c4e0be7daed70f 4da852ba17c5f8841a61f48b2019ee33132419147e9a9e013834994ddf203b08 Loading...

	www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js	25 kB	2023-10-19	2024-05-17
Pretty URL www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-19 00:48:36 Last Seen2024-05-17 21:01:19 Times Seen36027 Hash 1c4256076fac77893331db4f22a9a41a eb8a7de989615278406bee51533b6f4f6a71c841 57f24a99b10ad3f6431e857b33b26015c29c4cccced30375d222a35f0c4f9bb1 Loading...

	draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1	222 B	2023-03-07	2024-05-17
Pretty URL draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-17 21:01:19 Times Seen43567 Hash 79eedbb18f42a4f8bca6e2ff5371053e b0ab226fa63e784abae9b7be78879a7fd8d2667f 12db8be2d97ddfab3d75287270704d83d97204327772b9a0b1e54a119dcbef77 Loading...

	draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1	78 kB	2024-05-05	2024-05-05
Pretty URL draft.blogger.com/blogin.g?blogspotURL=gikolibe.blogspot.com/&type=blog&bpli=1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-05 20:03:47 Last Seen2024-05-05 20:03:47 Times Seen1 Hash 2a8ed2b6ca644d2f481dcf879c7656ba f83de8336099ac163c7a5996b118d8eddcfff60b 5cf69b9555ac21fe0e508d6e776d193ad2bb46d6962e548d189d175fc5e7cc7f Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-18
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-18 23:09:56 Times Seen349952 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.gstatic.com/og/_/js/k=og.qtm.en_US.Ics7SFQVxbg.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtpRznzVJk75Y4TcT-zpGGUjebtAg	162 kB	2024-05-02	2024-05-07
Pretty URL www.gstatic.com/og/_/js/k=og.qtm.en_US.Ics7SFQVxbg.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtpRznzVJk75Y4TcT-zpGGUjebtAg IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-02 06:42:03 Last Seen2024-05-07 09:13:32 Times Seen182 Hash 96680911e2606eca2e0e493778db9960 f4422f94f8180ad33cd2d972eed3f4299742b99d 1ea84ded90d04372179c28435828cf62d137d187ab95ca0ce7a20fa003bfcb08 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0	122 kB	2024-04-22	2024-05-18
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0 IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-22 20:08:14 Last Seen2024-05-18 23:04:43 Times Seen3739 Hash f46acd807a10216e6eee8ea51e0f14d6 4702f47070f7046689432dcf605f11364bc0fbed d6b84873d27e7e83cf5184aaef778f1ccb896467576cd8af2cad09b31b3c6086 Loading...

HTTP Transactions (26)

URL IP Response Size

gikolibe.blogspot.com.tr/

216.58.207.193

302 Found

197 B

URL User Request GET HTTP/2
gikolibe.blogspot.com.tr/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
197 B (197 bytes)
Hash
1d1bc6132edfe2b3bf3bf7c62a5fd48e
cb04820971ef2482597c000e00873ceea6ccdfc9
0c16b7bff482866bd4fe9b12be313b7bf55fd53735c47013ee347a5d409a5230

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: gikolibe.blogspot.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://gikolibe.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 05 May 2024 18:03:15 GMT
expires: Sun, 05 May 2024 18:03:15 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 197
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

gikolibe.blogspot.com/

142.250.74.65

302 Found

233 B

URL User Request GET HTTP/2
gikolibe.blogspot.com/
IP
142.250.74.65:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
233 B (233 bytes)
Hash
939df0658e0df0ed6733d7354d910d04
26d0c1fd0360f670428a3b9b980019b2f2ac6573
54abac74942944e664fbaeb30e26441d15bac68a172b038ffed22812258f0a61

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: gikolibe.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:16 GMT
location: https://draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog
content-type: text/html; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 233
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog

216.58.207.233

302 Found

300 B

URL User Request GET HTTP/2
draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
HTML document, ASCII text, with very long lines (344)
Size
300 B (300 bytes)
Hash
d7f2b299e4f98007c037f28cbf76421b
7b0c292a9ef6e11db9ee3ce3ce487568e3894d89
52ec08a180c0a95f8f391b7697f790b656d536f68673733f1520355daeb377d1

HTTP Headers

GET /blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 05 May 2024 18:03:16 GMT
expires: Sun, 05 May 2024 18:03:16 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 300
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true

74.125.131.84

302 Found

0 B

URL User Request GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true
IP
74.125.131.84:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://draft.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: SOCS=CAESHAgBEhJnd3NfMjAyMjA5MjktMF9SQzEaAnJvIAEaBgiAkvOZBg
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:wQPjmPksbWkC0UICe6iY8jufpcSXOA:JXOuAd3hIJQICTr1; Expires=Tue, 05-May-2026 18:03:17 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:17 GMT
location: https://draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-isvRrBg0Fmpa0wLmoPT6Zw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

gikolibe.blogspot.com.tr/

216.58.207.193

302 Found

196 B

URL User Request GET HTTP/2
gikolibe.blogspot.com.tr/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
196 B (196 bytes)
Hash
02b6425546bc696b1095a79bdd497786
61f6dcda060dca9c75b590af3595bc1c0bf4a376
ebfe04982243122b6a8aef3b67d874a6f374e973eeeb73c98b33941328a992fb

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: gikolibe.blogspot.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Location: http://gikolibe.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 05 May 2024 18:03:17 GMT
Expires: Sun, 05 May 2024 18:03:17 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 196
Server: GSE

gikolibe.blogspot.com/

142.250.74.65

302 Found

197 B

URL User Request GET HTTP/2
gikolibe.blogspot.com/
IP
142.250.74.65:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
197 B (197 bytes)
Hash
4f45d4a7e0391d973c3ae501537325db
211eedaf73109d0ece3e0e8672b5b8449927f64f
c110168ef92b9abf60299fb8808d4f9769bd3392478b5a5288b200b6084461be

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: gikolibe.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Location: https://gikolibe.blogspot.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 05 May 2024 18:03:17 GMT
Expires: Sun, 05 May 2024 18:03:17 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 197
Server: GSE

draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog&bpli=1

216.58.207.233

404 Not Found

37 kB

URL User Request GET HTTP/3
draft.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog&bpli=1
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (32609)
Size
37 kB (36760 bytes)
Hash
0c0edabc72430fda75c8c86ef4fb899e
2055da26e987ca6c53b89f83b7f8210f57a155c6
be1ec34b902f7d046527084be524e642fa13e85c198770695c24e091709a7387

HTTP Headers

GET /blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog&bpli=1 HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:17 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 36760
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

gikolibe.blogspot.com/

142.250.74.65

302 Found

232 B

URL User Request GET HTTP/2
gikolibe.blogspot.com/
IP
142.250.74.65:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintC4:7D:61:88:AB:F1:15:A1:36:2A:68:39:51:62:46:00:23:6D:39:00
ValidityTue, 16 Apr 2024 03:45:20 GMT - Tue, 09 Jul 2024 03:45:19 GMT

File type
HTML document, ASCII text
Size
232 B (232 bytes)
Hash
679876734ef606e3b1305dcc65f8d374
ff4a9bbc766420d9f29ef32db66d1d02fd0acb83
cb650e32b957905fbc3fe7c70b1dcefaa6e01bac688b26e4d334309cddf3000d

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: gikolibe.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:18 GMT
location: https://www.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog
content-type: text/html; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 232
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog

216.58.207.233

299 B

URL
www.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog
IP
216.58.207.233:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (340)
Size
299 B (299 bytes)
Hash
d8e82b842c4d3a9a7d6f079aadea5ecb
a8d2dcbaf8de763d4d4d2fa6d0a3c8d8e9513b53
cb4e94c047f07f6863305ad8f0ba468470f09d2de4854d2a3825ec38546ee5b7

HTTP Headers

GET /blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 05 May 2024 18:03:18 GMT
expires: Sun, 05 May 2024 18:03:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 299
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true

74.125.131.84

0 B

URL
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true
IP
74.125.131.84:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint9A:72:A8:C3:56:5C:93:B4:72:C7:5B:1B:60:BB:0F:3E:1E:C4:1B:67
ValidityTue, 16 Apr 2024 04:20:36 GMT - Tue, 09 Jul 2024 04:20:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&followup=https://www.blogger.com/blogin.g?blogspotURL%3Dhttps://gikolibe.blogspot.com/%26type%3Dblog%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Ma_Lp7yJqkWs06k5r_M99m575ZiPFA:YWjUfujxdTqEpEAB; Expires=Tue, 05-May-2026 18:03:18 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:18 GMT
location: https://www.blogger.com/blogin.g?blogspotURL=https://gikolibe.blogspot.com/&type=blog&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-xOheojw_irYac4wMLtH-BA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1

216.58.207.233

302 Moved Temporarily

241 B

URL User Request GET HTTP/1.1
draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
IP
216.58.207.233:80
ASN
#15169 GOOGLE

File type
HTML document, ASCII text
Size
241 B (241 bytes)
Hash
9c5b3fc7f1686a82bef814f80cd35c9f
837ee5c51ef6c81d6dfdaac0846125c49f6b1faa
554e4e19b3317fd55fdcc608f6fa6b98c094e0c90e546b9c0c159d47bdb5e1c0

HTTP Headers

GET /blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1 HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
P3P: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
Location: https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 05 May 2024 18:03:18 GMT
Expires: Sun, 05 May 2024 18:03:18 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 241
Server: GSE

draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1

216.58.207.233

302 Moved Temporarily

37 kB

URL User Request GET HTTP/1.1
draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
IP
216.58.207.233:80
ASN
#15169 GOOGLE

File type
HTML document, Unicode text, UTF-8 text, with very long lines (32609)
Size
37 kB (36761 bytes)
Hash
bf0aabf4d1e3a419a231cdcf0181fcff
6d21c225fd9438ae60b5172686a4a0e7d7dcdab1
affc606e7af5007f664ed2710bd8650d930d348ab2c5340703f5caeb42f7845f

HTTP Headers

GET /blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1 HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 36761
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/v-css/2223071481-static_pages.css

216.58.207.233

200 OK

1.4 kB

URL GET HTTP/3
www.blogger.com/static/v1/v-css/2223071481-static_pages.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
ASCII text, with very long lines (3841)
Size
1.4 kB (1393 bytes)
Hash
abd7446453ccdc733ba0a08169aff6c9
5c6954a63f01d55721edaa6236c5815087635333
bc75b808f349e4fcec454de341b7f80ff44fccd902b0e1109e18d5b3a35b7de3

HTTP Headers

GET /static/v1/v-css/2223071481-static_pages.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 07:32:14 GMT
expires: Sat, 03 May 2025 07:32:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 19:56:34 GMT
content-type: text/css
vary: Accept-Encoding
age: 210665
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js

216.58.207.233

200 OK

8.1 kB

URL GET HTTP/3
www.blogger.com/static/v1/jsbin/671481879-analytics_autotrack.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
JavaScript source, ASCII text, with very long lines (524)
Size
8.1 kB (8121 bytes)
Hash
1c4256076fac77893331db4f22a9a41a
eb8a7de989615278406bee51533b6f4f6a71c841
57f24a99b10ad3f6431e857b33b26015c29c4cccced30375d222a35f0c4f9bb1

HTTP Headers

GET /static/v1/jsbin/671481879-analytics_autotrack.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 8121
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 04:49:02 GMT
expires: Sat, 03 May 2025 04:49:02 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 23:55:05 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 220457
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

draft.blogger.com/img/blogger-logotype-color-black-1x.png

216.58.207.233

200 OK

1.2 kB

URL GET HTTP/3
draft.blogger.com/img/blogger-logotype-color-black-1x.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
PNG image data, 112 x 27, 8-bit colormap, non-interlaced
Size
1.2 kB (1155 bytes)
Hash
a9d652846aeacdf8da5401f6e4d4a409
6127321cafe0be999bc0c9d952715ede2b9dd83d
cbad27c35fbc84e2da4280476adeb197566db2750b8b4a79eb7e872db8d8acb7

HTTP Headers

GET /img/blogger-logotype-color-black-1x.png HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1155
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 09:33:56 GMT
expires: Fri, 10 May 2024 09:33:56 GMT
cache-control: public, max-age=604800
last-modified: Fri, 03 May 2024 02:51:05 GMT
content-type: image/png
age: 203363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/css/maia.css

142.250.74.132

200 OK

12 kB

URL GET HTTP/2
www.google.com/css/maia.css
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
Unicode text, UTF-8 text, with very long lines (43499), with no line terminators
Size
12 kB (12181 bytes)
Hash
9e914fd11c5238c50eba741a873f0896
950316ffef900ceecca4cf847c9a8c14231271da
8684a32d1a10d050a26fc33192edf427a5f0c6874c590a68d77ae6e0d186bd8a

HTTP Headers

GET /css/maia.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/css
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 12181
date: Sun, 05 May 2024 18:03:19 GMT
expires: Sun, 05 May 2024 18:03:19 GMT
cache-control: private, max-age=0
last-modified: Mon, 25 May 2020 08:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg

142.250.74.99

200 OK

663 B

URL GET HTTP/2
www.gstatic.com/images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
SVG Scalable Vector Graphics image
Size
663 B (663 bytes)
Hash
554640f465eb3ed903b543dae0a1bcac
e0e6e2c8939008217eb76a3b3282ca75f3dc401a
99bf4aa403643a6d41c028e5db29c79c17cbc815b3e10cd5c6b8f90567a03e52

HTTP Headers

GET /images/branding/googlelogo/svg/googlelogo_clr_74x24px.svg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 663
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:48 GMT
expires: Fri, 02 May 2025 01:57:48 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 30 Dec 2021 12:48:00 GMT
content-type: image/svg+xml
vary: Accept-Encoding, Origin
age: 317131
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://draft.blogger.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 117282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2

216.58.207.227

200 OK

19 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 18704, version 1.0
Size
19 kB (18704 bytes)
Hash
e4bedefe2836b39d626053935cf2f803
105fc75ff4d76c2ae06e422f6304dc9b1552389d
758015e3cb56989df5cfcf912d2c3861a62e623d386ef12d4bacf15891a4eb81

HTTP Headers

GET /s/opensans/v40/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsiH0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://draft.blogger.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:45:23 GMT
expires: Fri, 02 May 2025 02:45:23 GMT
cache-control: public, max-age=31536000
age: 314276
last-modified: Thu, 14 Dec 2023 02:00:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700

142.250.74.106

200 OK

60 kB

URL GET HTTP/2
fonts.googleapis.com/css?lang=no&family=Product+Sans|Roboto:400,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2294)
Size
60 kB (60315 bytes)
Hash
b921e3711fc9df9790abd4f40cd25b04
47ff1ab10906b29b4c6fc55f758bee68239ac2be
d765a5b680acfeb27ca629854b7ab4396fdb232b8ec74e3c5be8717c6757b9eb

HTTP Headers

GET /css?lang=no&family=Product+Sans|Roboto:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 18:03:19 GMT
date: Sun, 05 May 2024 18:03:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Open+Sans:300

142.250.74.106

200 OK

2.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:300
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text, with very long lines (1722)
Size
2.2 kB (2167 bytes)
Hash
c68b2ad779ed59948c705cf45d464f61
f89128717ef57a5baeaa76ba9ae20091bfaae5ea
4c5c38d49e59d86e014f839613bb613081a6c85d023dfe9c793d3f7a1b5e09d7

HTTP Headers

GET /css?family=Open+Sans:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 May 2024 18:03:19 GMT
date: Sun, 05 May 2024 18:03:19 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

draft.blogger.com/favicon.ico

216.58.207.233

200 OK

412 B

URL GET HTTP/3
draft.blogger.com/favicon.ico
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
date: Sun, 05 May 2024 18:03:20 GMT
expires: Sun, 05 May 2024 19:03:20 GMT
cache-control: public, max-age=3600
last-modified: Fri, 03 May 2024 02:45:32 GMT
content-type: image/x-icon
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0

142.250.74.110

200 OK

41 kB

URL GET HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintA7:D6:BC:77:0E:91:14:D7:D6:8D:A4:E5:4C:00:57:E1:44:DB:F2:8B
ValidityTue, 16 Apr 2024 04:20:57 GMT - Tue, 09 Jul 2024 04:20:56 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
41 kB (41189 bytes)
Hash
f46acd807a10216e6eee8ea51e0f14d6
4702f47070f7046689432dcf605f11364bc0fbed
d6b84873d27e7e83cf5184aaef778f1ccb896467576cd8af2cad09b31b3c6086

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.gapi.en.SCWmpDDGjPk.O/m=gapi_iframes,googleapis_client/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo_Pl64J0IIHlj2zBtEJ3ZwdaJC3HA/cb=gapi.loaded_0 HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 41189
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 21:56:21 GMT
expires: Fri, 02 May 2025 21:56:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 17:34:54 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 245219
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/og/_/ss/k=og.qtm.6RMJViOe7ZY.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTvZZ4jsHBJ-CWBhAniXT5qahnvn4w

142.250.74.99

200 OK

1.7 kB

URL GET HTTP/2
www.gstatic.com/og/_/ss/k=og.qtm.6RMJViOe7ZY.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTvZZ4jsHBJ-CWBhAniXT5qahnvn4w
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
ASCII text, with very long lines (1724), with no line terminators
Size
1.7 kB (1722 bytes)
Hash
f753ad35249dab5f1229a8d615e4da34
36fdc9cae322966d3b42f5c507dd4faa567130f3
dad8084b12998002095b07465f6f46c439118629805b36d7449bd6c6d824dbaa

HTTP Headers

GET /og/_/ss/k=og.qtm.6RMJViOe7ZY.L.F4.O/m=qmd,qcwid/excm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/ct=zgms/rs=AA2YrTvZZ4jsHBJ-CWBhAniXT5qahnvn4w HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 668
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 05:06:48 GMT
expires: Sat, 03 May 2025 05:06:48 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 18 Apr 2024 01:43:59 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding, Origin
age: 219391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1

216.58.207.233

404 Not Found

118 kB

URL User Request GET HTTP/3
draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintC0:1E:A1:13:90:EF:53:21:6B:57:23:D5:7F:12:F9:D1:2B:71:7A:64
ValidityTue, 16 Apr 2024 03:15:50 GMT - Tue, 09 Jul 2024 03:15:49 GMT

File type

Size
118 kB (118254 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1 HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 05 May 2024 18:03:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 36761
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/og/_/js/k=og.qtm.en_US.Ics7SFQVxbg.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtpRznzVJk75Y4TcT-zpGGUjebtAg

142.250.74.99

200 OK

162 kB

URL GET HTTP/2
www.gstatic.com/og/_/js/k=og.qtm.en_US.Ics7SFQVxbg.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtpRznzVJk75Y4TcT-zpGGUjebtAg
IP
142.250.74.99:443
ASN
#15169 GOOGLE

Requested by
https://draft.blogger.com/blogin.g?blogspotURL=http://gikolibe.blogspot.com/&type=blog&bpli=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
JavaScript source, ASCII text, with very long lines (2294)
Size
162 kB (161958 bytes)
Hash
96680911e2606eca2e0e493778db9960
f4422f94f8180ad33cd2d972eed3f4299742b99d
1ea84ded90d04372179c28435828cf62d137d187ab95ca0ce7a20fa003bfcb08

HTTP Headers

GET /og/_/js/k=og.qtm.en_US.Ics7SFQVxbg.2019.O/rt=j/m=q_dnp,q_pc,qmd,qcwid,qapid,q_dg/exm=qaaw,qabr,qadd,qaid,qalo,qebr,qein,qhaw,qhawgm3,qhba,qhbr,qhbrgm3,qhch,qhchgm3,qhga,qhid,qhidgm3,qhin,qhlo,qhlogm3,qhmn,qhpc,qhsf,qhsfgm3,qhtt/d=1/ed=1/rs=AA2YrTtpRznzVJk75Y4TcT-zpGGUjebtAg HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://draft.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/one-google-eng
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="one-google-eng"
report-to: {"group":"one-google-eng","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/one-google-eng"}]}
content-length: 59544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 04:30:50 GMT
expires: Fri, 02 May 2025 04:30:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Apr 2024 01:31:15 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding, Origin
age: 307949
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML