Report - chiemnghiemmoingay.blogspot.com/

Report Overview

Submitted URL
chiemnghiemmoingay.blogspot.com/
IP
142.250.74.161
ASN
#15169 GOOGLE
Submitted
2022-10-02 16:12:30
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	54.70.239.215
themes.googleusercontent.com	9661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	836 B	58 kB	142.250.74.33
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	108.156.28.95
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	9.1 kB	142.250.74.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.103
static.xx.fbcdn.net	661	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	447 B	5.8 kB	157.240.221.16
3.bp.blogspot.com	11048	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	168 kB	142.250.74.161
resources.blogblog.com	13274	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	422 B	936 B	216.58.207.201
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	21 kB	142.250.74.163
www.blogblog.com	28878	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	662 B	1.8 kB	216.58.207.201
pagead2.googlesyndication.com	101	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	314 B	656 B	142.250.74.162
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	8.0 kB	157.240.221.35
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	4.4 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.9 kB	93.184.220.29
chiemnghiemmoingay.blogspot.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	34 kB	142.250.74.161
2.bp.blogspot.com	11071	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	284 kB	142.250.74.161
1.bp.blogspot.com	8403	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	766 B	81 kB	142.250.74.161
images.headlines.pw	156103	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	188 kB	104.21.57.97
www.blogger.com	8975	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.1 kB	201 kB	216.58.207.201
apis.google.com	105	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	906 B	80 kB	142.250.74.174
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	60 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-02	medium	chiemnghiemmoingay.blogspot.com/	Malware
2022-10-02	medium	chiemnghiemmoingay.blogspot.com/js/cookienotice.js	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (39)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/feedback/js/help/prod/service/lazy.min.js	95 kB	2023-03-08	2023-03-08
Pretty URL www.gstatic.com/feedback/js/help/prod/service/lazy.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:36:28 Last Seen2023-03-08 05:53:40 Times Seen1 Hash d4ea7a009de14327ebebb4b4712a9610 a5438335c90882b772238a1fed25f981151f2981 5c868149d42ff35650e14e039d994dfb5fd370c46d13c90301d78d5f88ff57df Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js	520 kB	2023-03-07	2024-04-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-24 12:08:33 Times Seen5089 Hash cacca7bca63f8956b13b911c990713b7 524b727b15d66f07bb9ffebd6f2ddf3464c39bfb 0867ee1df230c80dc1601a8c56c499fabe444ab3ec173ce8b901444560c8816d Loading...

	www.blogger.com/static/v1/jsbin/651750337-lbx__vi.js	380 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/static/v1/jsbin/651750337-lbx__vi.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash 9ae8aa1f587bbec50a60d81626d0d2ec f78b4ae03005b7cf04f879488982d191b79c0e53 7a914ab71abfb513fdfeafdd475e84687d29328f34b044ed9f792e9664982a85 Loading...

	www.blogger.com/static/v1/widgets/2377718498-widgets.js	158 kB	2023-03-08	2023-03-08
Pretty URL www.blogger.com/static/v1/widgets/2377718498-widgets.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:58:33 Last Seen2023-03-08 05:59:06 Times Seen1 Hash 82d5aabdc0a35d962bdd82e66a2ccbb4 a8fdef93598462d109eddb0d2b5659fcdb7e4822 909893d68ea8d0c35f69220c227cafa4f44c7c40270b4545369cbc19abf16e0b Loading...

	chiemnghiemmoingay.blogspot.com/	114 B	2023-03-08	2023-11-12
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-11-12 10:05:15 Times Seen2 Hash b8ccc2a8d426fa518417769c23df9065 b1ef361c22c698f7b407c365653df2e254d7dd53 b1a3c750e2a2876348ad0f868aa6f60c4818efeee1608f245a1717dad5d7c554 Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	341 B	2023-03-07	2023-03-17
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:32:04 Last Seen2023-03-17 11:38:02 Times Seen1 Hash bef278459757651eaeef3680b4612da7 490c359490369559f3510d19cd2849e7bacbf7d4 d42e4e7c2986a066af6e2cbca0324b0cf9714fdc342e32127b3c0e5079cf6022 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js	8.1 kB	2023-03-07	2024-04-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-24 12:08:33 Times Seen4920 Hash 99926767e2e026e6c3cbecd1ee31ceb0 113f33d54d13eb32ef908a8f2820bd14e369b93e 30c48eef4e305a1f7e77d50dcac4b5f7baf250b0d55dfbab468db645bfb13c65 Loading...

	chiemnghiemmoingay.blogspot.com/	172 B	2023-03-08	2023-11-12
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-11-12 10:05:15 Times Seen2 Hash 36d9cbeb6a5a13dc533b73ace6bdce99 f54c7236f2d5facd49b31786e1afafe9ad990c94 71e1f92f4a870ef9465c0577fb4b7467d9019669a8a9cc01dc94d63418206c88 Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	217 B	2023-03-08	2023-03-08
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash 7986165c191c14da46cb423055320650 3641179eb16a0fa3e7102e64e9cb3ac51a2ceeee 0bccf9f969a329a6328690ea2ef71a25c7b7cb0d14650201aaab91a01b7cd9f8 Loading...

	chiemnghiemmoingay.blogspot.com/	5.9 kB	2023-03-08	2024-04-19
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2024-04-19 13:22:03 Times Seen75 Hash cce5642a5b1abd7c9e53e9fbc463a130 51510950bcccca6003fb9175e2fc2c242e01ab8a c0b7409e0a5b3505de4a3fe0ea1caaf92d0a22ed613ef2a8e0a2fc1ed79fdbda Loading...

	chiemnghiemmoingay.blogspot.com/	158 B	2023-03-08	2023-11-12
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-11-12 10:05:15 Times Seen2 Hash 60b5e350763638effc533744866f7ca2 f93862700fb0f9ccd70927680e88eedd345badd5 bbb84b85f770bd7bba903fcf07be90df2cd20dede28e4bd2f0c884bfb4609fcd Loading...

	chiemnghiemmoingay.blogspot.com/	789 B	2023-03-07	2024-02-13
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	10 B	2023-03-07	2024-04-24
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:18 Last Seen2024-04-24 20:57:48 Times Seen14097 Hash 91b3d54bc665b27a303ea5103da4f0b5 1ea644a3b2b1e427686c79e379e4074d576e732a 8c946addeada771d3dc6866cc23be2d1ef3f84b0ae6a98989cbf25b1a9249a61 Loading...

	www.gstatic.com/charts/51/loader.js	49 kB	2023-03-07	2024-04-24
Pretty URL www.gstatic.com/charts/51/loader.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-24 12:08:33 Times Seen5182 Hash 0d4116dada2cae1db8727035a89248c1 cfe1a8697d0684f4872310b76523f949a3091d0a 15f9c7dcb6d3f3fd50ac55a55f8a4168652122756d7763c13c333c9d4b8a36f0 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js	269 kB	2023-03-07	2024-04-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:58 Last Seen2024-04-24 12:08:33 Times Seen5056 Hash a68870343cf229117e2e937de0a4bcab d26503d7966e135023baf2bd6492c7016bf5601b 7e7e72eecf6a4fb2981627eb8d15b947d394398db4e67c7ca7705749cdb2f832 Loading...

	chiemnghiemmoingay.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-25
Pretty URL chiemnghiemmoingay.blogspot.com/js/cookienotice.js IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 01:56:00 Times Seen113350 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	chiemnghiemmoingay.blogspot.com/	456 B	2023-03-08	2023-03-08
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash 98975734ad0cff719c6a8c7f0724fcb6 a9b430c5432cdd747ef93d39c8aabfeac3c14039 e8640e4d6518de782437610773e9877e4639042c839274e12a6f298116343504 Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	13 kB	2023-03-08	2023-03-08
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash 9fd71dd78d50e845a4ca3fac382a4f7c d84ed4d5b0c753b375ec571425ae618f805669cc dc45c6638c08e3527f81c2094f418638ff26f661dcd0463e2f683bfd7acc2a78 Loading...

	chiemnghiemmoingay.blogspot.com/	7.5 kB	2023-03-08	2023-03-08
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash 40921439347b12781fecf3163ca69034 ade58fd63f46a9d7da9c4e6589c7e334d942b986 c4aca3b0a6d830a2c11dce9c6bd36c81a63ba3006fab324358334c5aa15b6d42 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/exm=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs	34 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=profile/exm=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:32:32 Last Seen2023-03-17 12:55:31 Times Seen1 Hash 598ef319a24e3b4e049e4ef12e0dd6bf 3433639786d3a685b68d156b2ab7a28756d72e7b a3edf346bbfdcd0a111b42ca8277846aacdb66a705b778c4388e9629038ff116 Loading...

	www.gstatic.com/charts/loader.js	67 kB	2023-03-07	2023-06-19
Pretty URL www.gstatic.com/charts/loader.js IP 142.250.74.163 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:26 Last Seen2023-06-19 14:09:47 Times Seen6 Hash d2a657ff63538736c410d7aab46b85e1 37f934ab798602fcee9863ff945198de443a8686 297577d52fce5df45a53b1d2e06469f65ee1dcf2e9bfbc8e2f45dbd06a0de8b4 Loading...

	chiemnghiemmoingay.blogspot.com/	134 B	2023-03-07	2024-04-25
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-04-25 01:56:00 Times Seen13789 Hash 7e2a455be32f5870991d61ec53c7dc39 5b4ae6802be8b8b8033c315ae65a16eeaf7682aa 8f0eb730a7427cc79a611009ff5de0a3d74e5249ea9a9db98d1954e2b933d91d Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	137 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:12 Last Seen2024-03-07 18:38:30 Times Seen413 Hash 63b4170abc12dfbfa38f47edf480e8b5 1008359d34a8d1e802ec0cee27996156c8baf3ac e75bda2c361ed4d81816c5e6f9b3e380786b9cbe253f62dfecc6f296d851a6ff Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	252 B	2023-03-07	2024-03-07
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-03-07 18:38:30 Times Seen2234 Hash dfc334cd5201ae3c020f43848b1646c4 b951863e53fd874757a2d5a21c8739a4d3640947 6e28b909a82bf42f6a2b51d7bbdc3ecafc47cd43cd52d1a3b584250c2ae579fe Loading...

	chiemnghiemmoingay.blogspot.com/	302 B	2023-03-07	2024-04-25
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 01:39:32 Times Seen28669 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-04-25
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 01:39:33 Times Seen47908 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fchiemnghiemmoingay.blogspot.com&pfname=&rpctoken=33310743	184 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fchiemnghiemmoingay.blogspot.com&pfname=&rpctoken=33310743 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6539 Hash 55222ba6bc3c6d1b4e917bf57803f724 41907640a176f6c9e549bfd1e1bacaa29a302475 3cb3e98d555f2381f9ef9439a915bd523225a0fd1cb4303f2c676da5494e1428 Loading...

	www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fchiemnghiemmoingay.blogspot.com&pfname=&rpctoken=33310743	471 B	2023-03-07	2023-04-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=http%3A%2F%2Fchiemnghiemmoingay.blogspot.com&pfname=&rpctoken=33310743 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-04-05 02:12:11 Times Seen6549 Hash 817a2f878be59f132a6d67ba3dc44c12 74fa163d8e9121fc4be1b4b05974f7f08ac90267 7f417083e329ac4c097585dbe92c0de4527419243615b5a0c4245704cd09ccfc Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	54 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 86699298e9ac91b7d3047c1dd6c20a8b d18906decf243620da2249c951af4f1fc702c303 74771edecad704a2abf3efc46eea00a00c4e404481907ac881642037f6e4357c Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	131 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 8c367d9263e0440822e7e28574a782d6 37afed9428bb96e347d49f80f53ac4a5ab8e03d3 47858e4fa55e26f84c8025d699232106abfc921232a6f02edc556e59ce3a855b Loading...

	chiemnghiemmoingay.blogspot.com/	275 B	2023-03-07	2024-04-25
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 01:56:00 Times Seen57326 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js	25 kB	2023-03-07	2024-04-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:57 Last Seen2024-04-24 12:08:33 Times Seen5145 Hash 23c6f16903fe7d4b4c68bd9ae55b78b4 60b0d741aff75eb878e19547dc1a97ed7d891c10 9ad0d8bf9e4659eb773ec937a69b25c1e8869b17c43acd258f01e268f0194088 Loading...

	chiemnghiemmoingay.blogspot.com/	269 B	2023-03-07	2024-04-25
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-04-25 01:39:32 Times Seen27984 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	178 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:32:32 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 4d8f2e4c350eacf196ea2eea5583ebca 74564d56344d09d5fd4354d78851693184ef082d bb2d7194f576a59b09c5ac5a671f6481cda1dbb2ce3deac9ba9290e13d7dbf16 Loading...

	www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200	373 B	2023-03-08	2023-03-08
Pretty URL www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 IP 157.240.221.35 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash dee5719af210d53a22b9f28ef2b7d8ee de8f93853ec12e3565b1a6c13eb858bb731412bf 2a755230656b90320df7e77825218a8e331d3ce1186d003c61cf4e64c04e22c4 Loading...

	apis.google.com/js/platform.js	53 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 15765e8758982081f08a222a54783683 6282653ca157f529d587b92c552f2f9db446ad96 0da425eaadbec3853cae0b85493ea7ad6934972097b4f59d2a05dbb130585444 Loading...

	chiemnghiemmoingay.blogspot.com/	743 B	2023-03-08	2023-03-08
Pretty URL chiemnghiemmoingay.blogspot.com/ IP 142.250.74.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:39:25 Last Seen2023-03-08 04:39:25 Times Seen1 Hash c5ab8d1e0ef17df8a8e55d7aa8776154 1444bc46cfc08731beac482d158cb6f418cdb36e bdc01885a72b4ed5a37a629d400ca6a7121c896ae5524ed75af6b4a526dda0e6 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 1fc0d333fdfe09ed6f4d2f816cfaf9ad	99 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 23:32:50 Last Seen2024-04-24 19:27:50 Times Seen170 Hash 1fc0d333fdfe09ed6f4d2f816cfaf9ad de0c507e87e69aa4556e00ae39e88754bfe36279 41ba8b256a42e9294f5d2b6d074e16f6995d48ec6ad8bc452398a89423ed26e4 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5d74ec37651d8e39e5312eef09ef1110	422 B	2023-03-08	2023-11-12
Pretty Observations First Seen2023-03-08 04:39:25 Last Seen2023-11-12 10:05:15 Times Seen2 Hash 5d74ec37651d8e39e5312eef09ef1110 98b909ffbb4e5dec27bc60e1a7d6cec113b1882f cf72eed0dd1a0d779861e43c51b66a2bc3b4d122c694ebf234e4a3dddef976e9 Loading...

HTTP Transactions (71)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6882
Expires: Sun, 02 Oct 2022 18:07:01 GMT
Date: Sun, 02 Oct 2022 16:12:19 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

18.165.201.103

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 16:03:11 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 17d60a367e7e38c01f5a3242a9a3e784.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: SZyRK0mnKTDxQ2qORdeNWklGHtJeieZ52VQe97Fc_YuT143QQpjnzg==
Age: 548

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

108.156.28.95

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
108.156.28.95:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 ce738519b722f3350531751d4205f8f4.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: xgf95xP49KwgsfDtsloj3Ex0Z-5S7Mn-2G_YIjEQnxTyDuAiiPwkWg==
age: 45543
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 16:12:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.103

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.103:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 15:32:56 GMT
Expires: Sun, 02 Oct 2022 15:54:01 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e963d9388521b938ab0c2d19e2400bee.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: -SmpNmDZ2Btlv9Aa-Uhd4gur-OGCNk9B5Lyr1ODACRK0U7rE1dBRjA==
Age: 2363

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3782
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Last-Modified: Sun, 02 Oct 2022 15:09:18 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

chiemnghiemmoingay.blogspot.com/

142.250.74.161

200 OK

30 kB

URL HTTP/1.1
chiemnghiemmoingay.blogspot.com/
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1589)
Size
30 kB (29502 bytes)
Hash
131f2d42a2ccfbe969a5deb49551ca58
aba5568d5fbec9db8158a727c39c8a39c755afcc
599a1cd2ff7b060583ec66cda22de5332941963c3ca1bcea59795f94431dc071

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: chiemnghiemmoingay.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sun, 02 Oct 2022 16:12:20 GMT
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: private, max-age=0
Last-Modified: Sat, 11 Dec 2021 07:14:19 GMT
ETag: W/"4164d5d70a196c99bcd995547b34a892c5df91450d0a12c872cb2378a769f957"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 29502
Server: GSE

chiemnghiemmoingay.blogspot.com/js/cookienotice.js

142.250.74.161

200 OK

2.0 kB

URL HTTP/1.1
chiemnghiemmoingay.blogspot.com/js/cookienotice.js
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: chiemnghiemmoingay.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sun, 02 Oct 2022 16:12:20 GMT
Expires: Sun, 09 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 02 Oct 2022 12:49:01 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6c934479af13c3610adb14d03367e6dd
9472ffa8be13cd76e5dda4f4e990312b7ea26719
f63bc3767aed93a82146b82ed82672f519331c541d4bcc12e5a17bb0195ffc8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb03f64f6655f660ed9ec8a396075b3f
30ccf6aa3bc6394e05263e1ac62953d8ab74a4ab
55fd9961f7f89f7ab11fa531e8c1fd371e19edd0fb9edd330e5df64c6a2927f3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb03f64f6655f660ed9ec8a396075b3f
30ccf6aa3bc6394e05263e1ac62953d8ab74a4ab
55fd9961f7f89f7ab11fa531e8c1fd371e19edd0fb9edd330e5df64c6a2927f3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c1b8a915a7bb4ca56db44723914e51f0
c1e91b3d8d0b1c5ff53ee3d08932e08a586dc3e8
c2ffa67312afc8bc0e22f09438f243d696dddf6733c26701b07d12a0bd6ab8f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.201

200 OK

162 B

URL HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 18 x 18\012- data
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 19:52:13 GMT
expires: Sat, 08 Oct 2022 19:52:13 GMT
cache-control: public, max-age=604800
last-modified: Fri, 30 Sep 2022 19:52:35 GMT
content-type: image/gif
age: 73207
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css

216.58.207.201

200 OK

7.8 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35959)
Size
7.8 kB (7776 bytes)
Hash
5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630

HTTP Headers

GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 12:39:06 GMT
expires: Sun, 01 Oct 2023 12:39:06 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Sep 2022 19:52:35 GMT
content-type: text/css
age: 99194
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1277)
Size
20 kB (20361 bytes)
Hash
b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Sun, 02 Oct 2022 16:12:20 GMT
expires: Sun, 02 Oct 2022 16:12:20 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/2377718498-widgets.js

216.58.207.201

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/2377718498-widgets.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56828 bytes)
Hash
8f96746073ad2fcd019d09522b056391
1cf378276d2a2da983515524a6a0008429930b73
de94a14d9e5804a0ef1796a9e4779ac912dc4b64516b505667b9e6c405cecc9c

HTTP Headers

GET /static/v1/widgets/2377718498-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 02:14:10 GMT
expires: Fri, 29 Sep 2023 02:14:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 23:52:33 GMT
content-type: text/javascript
age: 309490
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/charts/loader.js

142.250.74.163

200 OK

20 kB

URL HTTP/2
www.gstatic.com/charts/loader.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2134)
Size
20 kB (19937 bytes)
Hash
f3341efa0432876b1697ccec98c33b01
55044e79afbe25d119b7b87dc7b5d1b3ec0c607a
6672904faeb4f203e0109279aa99d88f9e8690d2d696d80309ef50a974f88c77

HTTP Headers

GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 19937
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 15:46:53 GMT
expires: Sun, 02 Oct 2022 16:46:53 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 18:41:30 GMT
content-type: text/javascript
age: 1527
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb03f64f6655f660ed9ec8a396075b3f
30ccf6aa3bc6394e05263e1ac62953d8ab74a4ab
55fd9961f7f89f7ab11fa531e8c1fd371e19edd0fb9edd330e5df64c6a2927f3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogblog.com/1kt/ethereal/birds-2toned-bg.png

216.58.207.201

200 OK

486 B

URL HTTP/1.1
www.blogblog.com/1kt/ethereal/birds-2toned-bg.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 1 x 1510, 8-bit/color RGB, non-interlaced\012- data
Size
486 B (486 bytes)
Hash
7b055918ab95f06b5238f1bef6e3cd4c
9c87a92b394f587d43d193c8c3d98fdb2532b3a6
06eb13218426e0e280cdd790ee55945334498186483cff716e090ed2b840a4e1

HTTP Headers

GET /1kt/ethereal/birds-2toned-bg.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 486
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 01 Oct 2022 07:18:42 GMT
Expires: Sat, 08 Oct 2022 07:18:42 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 30 Sep 2022 21:57:44 GMT
Content-Type: image/png
Age: 118418

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eb03f64f6655f660ed9ec8a396075b3f
30ccf6aa3bc6394e05263e1ac62953d8ab74a4ab
55fd9961f7f89f7ab11fa531e8c1fd371e19edd0fb9edd330e5df64c6a2927f3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
24501d03aea1956ea72b57f8995de1bf
52664635fe59a95e14e3d0650dfc9adc325e12b9
331295e539c0b1182de294b4c42911a8d95507c8f0006731fc6e99200c76881d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

54.70.239.215

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.70.239.215:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +hdGtC0Yq8un1T9N3im6hw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fIvqVG/B9KQO6urhz0hS6TuYirA=

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs

142.250.74.174

200 OK

58 kB

URL HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (580)
Size
58 kB (57995 bytes)
Hash
d70fcc84d705c565b31a5835c0938d5b
d28e5dc9fcc6239d67986df3205468072023d2d7
1d558c94793446aa6a7832dde0c39ed7d9c77fd963ffb738c460e4f7369a7f4e

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57995
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 07:25:42 GMT
expires: Mon, 02 Oct 2023 07:25:42 GMT
cache-control: public, max-age=31536000
age: 31598
last-modified: Sat, 30 Jul 2022 15:17:53 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.162

200 OK

67 B

URL HTTP/1.1
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
67 B (67 bytes)
Hash
9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Sun, 02 Oct 2022 09:24:27 GMT
Expires: Sun, 16 Oct 2022 09:24:27 GMT
Cache-Control: public, max-age=1209600
Age: 24473
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
ab779588f01243aca896d41395f8bd90
b8ef2d7cdc6366c283db0d608766a126dce37164
5531deca73d8380883740395d82457f4d39761134404876881242e2135b1546a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
63ee7e605da25dbf1d62eea30a1ef246
c86b43b61afc5926ee7bc124cc30598d37ceb661
cb737283476421b6ce93b2909cf5277e82a7adbc3001f66946ff59ad6fabfdb2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200

157.240.221.35

301 Moved Permanently

0 B

URL HTTP/1.1
www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 02 Oct 2022 16:12:20 GMT
Connection: keep-alive
Content-Length: 0

www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30

157.240.221.35

301 Moved Permanently

0 B

URL HTTP/1.1
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
Content-Type: text/plain
Server: proxygen-bolt
Date: Sun, 02 Oct 2022 16:12:20 GMT
Connection: keep-alive
Content-Length: 0

www.blogger.com/dyn-css/authorization.css?targetBlogID=384225832234109112&zx=527e50e2-1dff-41cb-9f2b-fbe93726c9c7

216.58.207.201

200 OK

21 B

URL HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=384225832234109112&zx=527e50e2-1dff-41cb-9f2b-fbe93726c9c7
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=384225832234109112&zx=527e50e2-1dff-41cb-9f2b-fbe93726c9c7 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 02 Oct 2022 16:12:20 GMT
last-modified: Sun, 02 Oct 2022 16:12:20 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogblog.com/1kt/ethereal/bird-2toned-blue-fade.png

216.58.207.201

200 OK

135 B

URL HTTP/1.1
www.blogblog.com/1kt/ethereal/bird-2toned-blue-fade.png
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
PNG image data, 2 x 103, 8-bit/color RGBA, non-interlaced\012- data
Size
135 B (135 bytes)
Hash
f298020995c692cb2ce9afd9a5d6257e
f4301ab5b943f5c49f3b8fee825f157a52fc1611
4f97c4d5d5252e3495e1c998a66396d69ff1dc40e77e857bddb5106abcea6251

HTTP Headers

GET /1kt/ethereal/bird-2toned-blue-fade.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 135
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sat, 01 Oct 2022 09:47:17 GMT
Expires: Sat, 08 Oct 2022 09:47:17 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sat, 01 Oct 2022 08:51:32 GMT
Content-Type: image/png
Age: 109503

themes.googleusercontent.com/image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm

142.250.74.33

301 Moved Permanently

0 B

URL HTTP/1.1
themes.googleusercontent.com/image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 02 Oct 2022 16:12:20 GMT
Location: https://themes.googleusercontent.com/image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
72e8c21988f5ecd736fde162321f0984
4bb9f82a2f6114b344600d920f91f1cc9260bc42
326533b2b3a8b24f0b21dbe9b94e5d9086f862ad74a1d01942fb829dff0352f3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5945
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Last-Modified: Sun, 02 Oct 2022 14:33:15 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
72e8c21988f5ecd736fde162321f0984
4bb9f82a2f6114b344600d920f91f1cc9260bc42
326533b2b3a8b24f0b21dbe9b94e5d9086f862ad74a1d01942fb829dff0352f3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5945
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Last-Modified: Sun, 02 Oct 2022 14:33:15 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /widgets/like.php?href=https%3A%2F%2Fwww.facebook.com%2Fngan.thu.336%20&layout=standard&show_faces=true&width=80&action=like&colorscheme=light&height=30 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chiemnghiemmoingay.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: rhzWjwFF3+buucRpEJN0kSAcHKkjr2bsDAFIOrpwL9hTi0Gt+cWAqNSNt8zinJ9fK0ipn6I4rzNNq/qEu0CJSQ==
content-length: 0
date: Sun, 02 Oct 2022 16:12:20 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2.bp.blogspot.com/-ywtDGpO5eEM/VbmVLzvL5sI/AAAAAAAAChg/yYp1kBxejyA/s640/images.jpg

142.250.74.161

200 OK

7.1 kB

URL HTTP/1.1
2.bp.blogspot.com/-ywtDGpO5eEM/VbmVLzvL5sI/AAAAAAAAChg/yYp1kBxejyA/s640/images.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 290x174, components 3\012- data
Size
7.1 kB (7082 bytes)
Hash
095fef037a42f83e058ecf201c08e4c3
c59bc890e92b2c006f763ee4e5d76af0942d5ee5
11ae2a5a5d42d7f0af6c5f761eb04fa0265fe9ebb51d0b1be16758b19d4dcb7d

HTTP Headers

GET /-ywtDGpO5eEM/VbmVLzvL5sI/AAAAAAAAChg/yYp1kBxejyA/s640/images.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "va19"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="images.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 7082
X-XSS-Protection: 0

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
72e8c21988f5ecd736fde162321f0984
4bb9f82a2f6114b344600d920f91f1cc9260bc42
326533b2b3a8b24f0b21dbe9b94e5d9086f862ad74a1d01942fb829dff0352f3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5945
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Last-Modified: Sun, 02 Oct 2022 14:33:15 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c57a62fb230234e53b81a5603d3dce29
b6646ed0fd7416598a3b4137a17af8380428d277
e411e0959fc27b02f074b3bd685a9cb507dceb7295258b05577f481b03d3d36c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

chiemnghiemmoingay.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBNDRcaEv2_bmS3hWpsm_FDioa9J0AZ8odwsDpgima5cciSFu4feBwoMHcLbPIOnhykGDCEwZLrW8fgGf5wIW6999YlLw

142.250.74.161

200 OK

260 B

URL HTTP/1.1
chiemnghiemmoingay.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBNDRcaEv2_bmS3hWpsm_FDioa9J0AZ8odwsDpgima5cciSFu4feBwoMHcLbPIOnhykGDCEwZLrW8fgGf5wIW6999YlLw
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (406), with no line terminators
Size
260 B (260 bytes)
Hash
ff4ffb6671653e0a0202c563cd9a0c27
6668a986926614beea942c1c73e4444dd6e49a7e
625bb169db7119c25f43ecbd00666ee1e391d94d68e653040be9a3aa58f691f4

HTTP Headers

GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmBNDRcaEv2_bmS3hWpsm_FDioa9J0AZ8odwsDpgima5cciSFu4feBwoMHcLbPIOnhykGDCEwZLrW8fgGf5wIW6999YlLw HTTP/1.1
Host: chiemnghiemmoingay.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Cookie: faceLike=liked

HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 02 Oct 2022 16:12:20 GMT
Expires: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 260
Server: GSE

static.xx.fbcdn.net/rsrc.php/v3/yZ/l/0,cross/KU3Iz8BafL7.css?_nc_x=Ij3Wp8lg5Kz

157.240.221.16

200 OK

5.0 kB

URL HTTP/2
static.xx.fbcdn.net/rsrc.php/v3/yZ/l/0,cross/KU3Iz8BafL7.css?_nc_x=Ij3Wp8lg5Kz
IP
157.240.221.16:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (4093)
Size
5.0 kB (5047 bytes)
Hash
a87430d22ffcff3ae929ca7c0d993280
ad83623cea846a530dfa77294e37f1622828a6a9
d44b011e7e79f272382f7e636f364c9ab4635ea88e7c9e78450544bbaf534c7e

HTTP Headers

GET /rsrc.php/v3/yZ/l/0,cross/KU3Iz8BafL7.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sun, 01 Oct 2023 17:55:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: qHQw0i/8/zrpKcp8DZkygA==
x-fb-debug: lrjD5LgzfiyPeDcmIESnrOnxtc5UPvAaegF4cPJItlJ5oyRrgBLu36Qkhy6YoTLsttn2e4V0x1jlWQ7GGXD8Bg==
content-length: 5047
x-fb-trip-id: 1679558926
date: Sun, 02 Oct 2022 16:12:20 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

2.bp.blogspot.com/-4ct_HsAX9Cw/Uox4LtcmccI/AAAAAAAAAFs/nCJ9a-We0vo/w72-h72-p-k-no-nu/1450808_1414631182103526_534314735_n.jpg

142.250.74.161

200 OK

4.3 kB

URL HTTP/1.1
2.bp.blogspot.com/-4ct_HsAX9Cw/Uox4LtcmccI/AAAAAAAAAFs/nCJ9a-We0vo/w72-h72-p-k-no-nu/1450808_1414631182103526_534314735_n.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.3 kB (4324 bytes)
Hash
9c6fce130569886b971cd68da076b465
d348589e5f2a285d3f7b7d8be22cf03e964a6630
2ef3dd5861deef06824bc2ac2362923543449dca78edf0e34d1825b4b5b767e8

HTTP Headers

GET /-4ct_HsAX9Cw/Uox4LtcmccI/AAAAAAAAAFs/nCJ9a-We0vo/w72-h72-p-k-no-nu/1450808_1414631182103526_534314735_n.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v5c"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1450808_1414631182103526_534314735_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 4324
X-XSS-Protection: 0

1.bp.blogspot.com/-lIZTY7aCcNQ/UpRSYBF364I/AAAAAAAAAII/eaDaFdTinQA/w72-h72-p-k-no-nu/index.jpg

142.250.74.161

200 OK

3.6 kB

URL HTTP/1.1
1.bp.blogspot.com/-lIZTY7aCcNQ/UpRSYBF364I/AAAAAAAAAII/eaDaFdTinQA/w72-h72-p-k-no-nu/index.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.6 kB (3576 bytes)
Hash
9aa65dc127f858b85789770bfbff3d4a
c41ab6f81f6d1b50b37b49ea15a0af04fd02dbec
7cff818fb0e347a064f1d0b59c6394ad9cae464d4f720c44d871b7a708fd51c6

HTTP Headers

GET /-lIZTY7aCcNQ/UpRSYBF364I/AAAAAAAAAII/eaDaFdTinQA/w72-h72-p-k-no-nu/index.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v83"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="index.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 3576
X-XSS-Protection: 0

2.bp.blogspot.com/-07cwFVaqB-Y/UpLCiukh_AI/AAAAAAAAAH4/yAcE6KivBfA/w72-h72-p-k-no-nu/972014_683634254995431_55082164_n.jpg

142.250.74.161

200 OK

3.7 kB

URL HTTP/1.1
2.bp.blogspot.com/-07cwFVaqB-Y/UpLCiukh_AI/AAAAAAAAAH4/yAcE6KivBfA/w72-h72-p-k-no-nu/972014_683634254995431_55082164_n.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.7 kB (3712 bytes)
Hash
d62aaec6fa64179c26d0e67fef93e8d2
fa8ed3bfe53b93a889335a326529aa23524c2cab
ebf83c6abe8f551815d2c8f8475d8ba4397009166e0b8cd191bd72e55d191f08

HTTP Headers

GET /-07cwFVaqB-Y/UpLCiukh_AI/AAAAAAAAAH4/yAcE6KivBfA/w72-h72-p-k-no-nu/972014_683634254995431_55082164_n.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v7f"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="972014_683634254995431_55082164_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 3712
X-XSS-Protection: 0

3.bp.blogspot.com/-TV8YJNHARJw/VbmUiotcnEI/AAAAAAAAChU/Ih64d1scd7s/s640/1437985363565_25061.jpg

142.250.74.161

200 OK

82 kB

URL HTTP/1.1
3.bp.blogspot.com/-TV8YJNHARJw/VbmUiotcnEI/AAAAAAAAChU/Ih64d1scd7s/s640/1437985363565_25061.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 480x640, components 3\012- data
Size
82 kB (81472 bytes)
Hash
0d581faa12f99b5bf548e6c052af6abf
8c177e1f33fed8ae3e8583d4f2627b3a4354e0f4
fda283db04c35660a28b5ffe4ab3ae259f925d01ce1afd67761bf34d57e446fe

HTTP Headers

GET /-TV8YJNHARJw/VbmUiotcnEI/AAAAAAAAChU/Ih64d1scd7s/s640/1437985363565_25061.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "va15"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="1437985363565_25061.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 81472
X-XSS-Protection: 0

2.bp.blogspot.com/-rOyPoBj45Zg/VPULa6aGEnI/AAAAAAAACc8/T_5Ih-G2m-A/s1600/10934038_763548960400645_3608676224156557111_n.jpg

142.250.74.161

200 OK

149 kB

URL HTTP/1.1
2.bp.blogspot.com/-rOyPoBj45Zg/VPULa6aGEnI/AAAAAAAACc8/T_5Ih-G2m-A/s1600/10934038_763548960400645_3608676224156557111_n.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 900x900, components 3\012- data
Size
149 kB (148705 bytes)
Hash
60bfaa120e1962bf80359943638ac056
d31110526e8788e7fd0123d00a3abd3a60e0d64f
cbc4fe79dfa9f784068c40b4125ae3533c6e0bc4163ee45e8ba486242a956577

HTTP Headers

GET /-rOyPoBj45Zg/VPULa6aGEnI/AAAAAAAACc8/T_5Ih-G2m-A/s1600/10934038_763548960400645_3608676224156557111_n.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v9d0"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10934038_763548960400645_3608676224156557111_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 148705
X-XSS-Protection: 0

3.bp.blogspot.com/-b46kXFTyUNg/VPUMYaWRxUI/AAAAAAAACdE/XyvIp_bm6y4/s1600/10600503_761753973913477_6866102728507368302_n.jpg

142.250.74.161

200 OK

75 kB

URL HTTP/1.1
3.bp.blogspot.com/-b46kXFTyUNg/VPUMYaWRxUI/AAAAAAAACdE/XyvIp_bm6y4/s1600/10600503_761753973913477_6866102728507368302_n.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 851x315, components 3\012- data
Size
75 kB (75012 bytes)
Hash
7487890d7e8c971a541a624277679c17
c3a9b311bb25f16de87c3485afe512d3c963afd7
ded6b00239e0219ace950adeb1385aa9870fbf1c2c534734c3e57b28f63e3e6c

HTTP Headers

GET /-b46kXFTyUNg/VPUMYaWRxUI/AAAAAAAACdE/XyvIp_bm6y4/s1600/10600503_761753973913477_6866102728507368302_n.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v9d2"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10600503_761753973913477_6866102728507368302_n.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 75012
X-XSS-Protection: 0

2.bp.blogspot.com/-x2uuIqXv1Gc/VcVn3xOkTTI/AAAAAAAACiM/KkAH7J-hrEU/s640/1080339_211658155658522_1386708753_n.jpg

142.250.74.161

200 OK

118 kB

URL HTTP/2
2.bp.blogspot.com/-x2uuIqXv1Gc/VcVn3xOkTTI/AAAAAAAACiM/KkAH7J-hrEU/s640/1080339_211658155658522_1386708753_n.jpg
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 640x480, components 3\012- data
Size
118 kB (117697 bytes)
Hash
9b0e7bd571382f2f23058408a362db0b
ea5ecf05496e26294d119bd2bd5784e0c41653ee
14c3d6f29eaab230f0a9e529f645f1ccbd9b9e0e3ee520f9ed4e41d5d22083c4

HTTP Headers

GET /-x2uuIqXv1Gc/VcVn3xOkTTI/AAAAAAAACiM/KkAH7J-hrEU/s640/1080339_211658155658522_1386708753_n.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va24"
expires: Mon, 03 Oct 2022 16:12:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1080339_211658155658522_1386708753_n.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 02 Oct 2022 16:12:20 GMT
server: fife
content-length: 117697
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f463246d0c457f4f56bc3e1804e7595d
ec27ed90d931e85184d47c818018b4bb9eae30f3
fba2c18e2c4084dd63024f16f96c0a8223a4c7e903f67f2c8c458658f22d15fc

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

3.bp.blogspot.com/-l2m3CljQcc0/VAkrxU4SxEI/AAAAAAAACHs/-VQ3TIrkAos/w72-h72-p-k-no-nu/img_201408082037017728.png

142.250.74.161

200 OK

10 kB

URL HTTP/1.1
3.bp.blogspot.com/-l2m3CljQcc0/VAkrxU4SxEI/AAAAAAAACHs/-VQ3TIrkAos/w72-h72-p-k-no-nu/img_201408082037017728.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Size
10 kB (10523 bytes)
Hash
4df534bbca74c15f7032ded574e0f75b
e50d66699f30ae92524e2bdc7033abe1325cd987
b3f9ce33ab4d1dea3f2ee839c9d169817ae9b5c05e8cb94ac5d3546ec528b345

HTTP Headers

GET /-l2m3CljQcc0/VAkrxU4SxEI/AAAAAAAACHs/-VQ3TIrkAos/w72-h72-p-k-no-nu/img_201408082037017728.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v87c"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="img_201408082037017728.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 10523
X-XSS-Protection: 0

1.bp.blogspot.com/-jJbKnnBfTPg/VQDzZfvIcDI/AAAAAAAACdY/bKkgpFKnNJ8/s1600/10003894_692592114113406_1674348945_n.png

142.250.74.161

200 OK

76 kB

URL HTTP/1.1
1.bp.blogspot.com/-jJbKnnBfTPg/VQDzZfvIcDI/AAAAAAAACdY/bKkgpFKnNJ8/s1600/10003894_692592114113406_1674348945_n.png
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
PNG image data, 480 x 177, 8-bit/color RGB, non-interlaced\012- data
Size
76 kB (76396 bytes)
Hash
1624f86a73d0014745bcc70fe98410fe
36f2410a540a5c383ae9077418a2eec881276401
b548d77510f1c042b37f41cadf51ee18210e36001ed3152e3a7c10a0464a6c6a

HTTP Headers

GET /-jJbKnnBfTPg/VQDzZfvIcDI/AAAAAAAACdY/bKkgpFKnNJ8/s1600/10003894_692592114113406_1674348945_n.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/

HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v9d7"
Expires: Mon, 03 Oct 2022 16:12:20 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="10003894_692592114113406_1674348945_n.png"
Content-Type: image/png
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:12:20 GMT
Server: fife
Content-Length: 76396
X-XSS-Protection: 0

themes.googleusercontent.com/image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm

142.250.74.33

200 OK

57 kB

URL HTTP/2
themes.googleusercontent.com/image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type
PNG image data, 1515 x 971, 8-bit colormap, non-interlaced\012- data
Size
57 kB (57409 bytes)
Hash
eabab87f6d659ddbdd8e01d8a0d516a6
ffbf3a51b58337649b3557fe676c25150a3f8e8d
b3d5b6340eedf9eac1658e4c122c704940d652fdf5f7194b22452676f8d1465f

HTTP Headers

GET /image?id=0BwVBOzw_-hbMNjViMzQ0ZDEtMWU1NS00ZTBkLWFjY2EtZjM5YmU4OTA2MjBm HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chiemnghiemmoingay.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Mon, 03 Oct 2022 16:12:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 02 Oct 2022 16:12:20 GMT
server: fife
content-length: 57409
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

images.headlines.pw/topnews-2017/imgs/fa/0b/fa0b07d21510b390a22c259e0b740054.jpg

104.21.57.97

200 OK

27 kB

URL HTTP/2
images.headlines.pw/topnews-2017/imgs/fa/0b/fa0b07d21510b390a22c259e0b740054.jpg
IP
104.21.57.97:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 583x720, components 3\012- data
Size
27 kB (26853 bytes)
Hash
fa0b07d21510b390a22c259e0b740054
4f50d29ebff1da9e6b38ead7074af2219184969e
9579667006e1deb56b59cc506a733e3b82e108ff27dba1ac4135f81a1d3e3a4d

HTTP Headers

GET /topnews-2017/imgs/fa/0b/fa0b07d21510b390a22c259e0b740054.jpg HTTP/1.1
Host: images.headlines.pw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 02 Oct 2022 16:12:21 GMT
content-type: application/octet-stream
content-length: 26853
x-amz-id-2: XFEHVZMlFo4xSQl4Do+KNLcOAh4YkrMaZlkHCZfNcHbn8Wk/G9XRyDCneVCY0zgRsCuLHpdJ3Pg=
x-amz-request-id: HCCNZ2XWNDKBKKY5
cache-control: max-age=432000
last-modified: Sat, 10 Nov 2018 04:43:25 GMT
etag: "fa0b07d21510b390a22c259e0b740054"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XiWjhnhke8W3YOMfhD0ID%2B9TYAsrmXKqUC8c8P%2BzTryvJYaspBChpxuT8Pjd6tltmdtz2ZH%2Bak%2BUGhbeISmg4nqZlYold1kh9Ui6vxwhVIxevoMAOvwnD4gwEqH7hJbIVZAJYx7Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753eb8132ef50b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c57a62fb230234e53b81a5603d3dce29
b6646ed0fd7416598a3b4137a17af8380428d277
e411e0959fc27b02f074b3bd685a9cb507dceb7295258b05577f481b03d3d36c

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:12:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=http://chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__

216.58.207.201

200 OK

2.6 kB

URL HTTP/2
www.blogger.com/navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=http://chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3204)
Size
2.6 kB (2624 bytes)
Hash
f989a5edca4f2cd0c47bc803021e73db
f1bae1812523f918a5ac9002ae41573898d6f1f6
ddb3e0f4cb928364c4e6b657e8f96332dfa88c008771d6c46e9535595de2b2a0

HTTP Headers

GET /navbar.g?targetBlogID=384225832234109112&blogName=Chi%C3%AAm+nghi%E1%BB%87m+m%E1%BB%97i+ng%C3%A0y&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://chiemnghiemmoingay.blogspot.com/search&blogLocale=vi&v=2&homepageUrl=http://chiemnghiemmoingay.blogspot.com/&vt=-4689839840389609074&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 02 Oct 2022 16:12:20 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2624
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

images.headlines.pw/topnews-2017/imgs/1c/38/1c38be4ca6fb0a7dfac6c2ff09fee0e4.jpg

104.21.57.97

200 OK

73 kB

URL HTTP/2
images.headlines.pw/topnews-2017/imgs/1c/38/1c38be4ca6fb0a7dfac6c2ff09fee0e4.jpg
IP
104.21.57.97:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x640, components 3\012- data
Size
73 kB (72752 bytes)
Hash
1c38be4ca6fb0a7dfac6c2ff09fee0e4
531a79b0682568c2c5d6c25de7306c80a60e90e1
907852f46a30df55f8af3c7eb26625fe9df919748ec2000d5bab2e8359a6ee19

HTTP Headers

GET /topnews-2017/imgs/1c/38/1c38be4ca6fb0a7dfac6c2ff09fee0e4.jpg HTTP/1.1
Host: images.headlines.pw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 02 Oct 2022 16:12:21 GMT
content-type: application/octet-stream
content-length: 72752
x-amz-id-2: PkMuWthcwWrdoSquKwnTXiLrrGXgLRfwIf07K36NiMqCPOpnXlEoKR8oo0YI1KH/LYKwVOqIv5Q=
x-amz-request-id: HCCKQ1065TEH6Y5M
cache-control: max-age=432000
last-modified: Sat, 10 Nov 2018 04:42:29 GMT
etag: "1c38be4ca6fb0a7dfac6c2ff09fee0e4"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zw8L8%2BBYrl3u1WGxg0xwBs1nZYD3L4Ho7PlvSEe0OH4q6YSYl%2BFU2z%2FVKwcOrHkHbgEP3wntcOOjc9sbfOrPncfSU2AXsep%2BWLUtnxKMXuNInYdCUljr1E7E9ah2mZMkQpiKhlUS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753eb8132ef40b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

images.headlines.pw/topnews-2017/imgs/b9/13/b913e237233c0302d77a69f03ad28659.jpg

104.21.57.97

200 OK

86 kB

URL HTTP/2
images.headlines.pw/topnews-2017/imgs/b9/13/b913e237233c0302d77a69f03ad28659.jpg
IP
104.21.57.97:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x960, components 3\012- data
Size
86 kB (86181 bytes)
Hash
b913e237233c0302d77a69f03ad28659
01d34d5e6b0fc85b2672c51ce48a31116b95f4d3
cc03df1f0c853757aeb99ea0eb90a14b6b91cf37e999dea92539324a50adf4be

HTTP Headers

GET /topnews-2017/imgs/b9/13/b913e237233c0302d77a69f03ad28659.jpg HTTP/1.1
Host: images.headlines.pw
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 02 Oct 2022 16:12:21 GMT
content-type: application/octet-stream
content-length: 86181
x-amz-id-2: TWQzsANahdPxop77Zgt95QYQVNsCrw+psMG4NynbNASEbKx35cvfJB4H32rycwXQcuEjj1XXxoY=
x-amz-request-id: HCCZXJXABFSYKD69
cache-control: max-age=432000
last-modified: Sat, 10 Nov 2018 04:41:46 GMT
etag: "b913e237233c0302d77a69f03ad28659"
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vpRrsVMS1QiNP%2BMz5%2BOGqxNSJG4YP957NoHnlgJg5reErc%2FOH%2BPSs0NGWZcyFSWmH8Xy4u3pzvM7oxe%2BlNMb2DTSqPtsgKZoKJVR61cgH5mSdo6%2FPtDJihNCWwD10A2xvC5B6%2FYG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 753eb8132ef20b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.blogger.com/static/v1/v-css/3523451998-lightbox_bundle.css

216.58.207.201

200 OK

6.5 kB

URL HTTP/2
www.blogger.com/static/v1/v-css/3523451998-lightbox_bundle.css
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (35979), with no line terminators
Size
6.5 kB (6523 bytes)
Hash
41de2f8758a635d24761a574774ae97d
592b8377aeec80a21ef2fc7393490ed678e6f0cf
8af8ffde8896afedd6c40e1fee317cc44b41f28fa7da5cf39e8832d2167e1a9a

HTTP Headers

GET /static/v1/v-css/3523451998-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6523
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 03:24:01 GMT
expires: Sun, 01 Oct 2023 03:24:01 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 30 Sep 2022 17:53:19 GMT
content-type: text/css
age: 132500
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.blogger.com/static/v1/jsbin/651750337-lbx__vi.js

216.58.207.201

200 OK

121 kB

URL HTTP/2
www.blogger.com/static/v1/jsbin/651750337-lbx__vi.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
HTML document, ASCII text, with very long lines (1762)
Size
121 kB (121204 bytes)
Hash
4e45d6a1f4a5475dff54fb6dc62135d0
7541ccbac675c53d3c948742cae73bb9331eed47
09dcff9f8423adce97064fd2ce2a3988c7d1fcd68300f39e52319e6e0d01ba14

HTTP Headers

GET /static/v1/jsbin/651750337-lbx__vi.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 121204
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 04:19:21 GMT
expires: Fri, 29 Sep 2023 04:19:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 Sep 2022 23:52:33 GMT
content-type: text/javascript
age: 301980
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

chiemnghiemmoingay.blogspot.com/favicon.ico

142.250.74.161

200 OK

412 B

URL HTTP/1.1
chiemnghiemmoingay.blogspot.com/favicon.ico
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
501c61a70f5c41181aa050d9110909ca
5b985d5671a7caf686fdfb1df13488c4407f6c9f
c4aaf001607ee331f6871b4dbbf45942b1e197726714fd106e46d70cc10ee97e

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: chiemnghiemmoingay.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://chiemnghiemmoingay.blogspot.com/
Cookie: faceLike=liked

HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sun, 02 Oct 2022 16:12:21 GMT
Date: Sun, 02 Oct 2022 16:12:21 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sat, 11 Dec 2021 07:14:19 GMT
ETag: W/"4164d5d70a196c99bcd995547b34a892c5df91450d0a12c872cb2378a769f957"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 412
Server: GSE

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6024
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:12:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6024
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:12:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6024
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:12:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6024
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:12:21 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4987 bytes)
Hash
463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:45 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 65856
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 41442
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.1 kB (9073 bytes)
Hash
91c43e8f8caa27091b10fc006c309e96
377251ce16059a304e1ada7e7bdade2eee86bfdb
81d98f635686a13e149a86149db28f794097b35fc0b7af82beb0199edfc82a38

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9073
x-amzn-requestid: 6337e85e-904c-4346-b11d-1cf213eba1a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8EyIIAMF_Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-05c231ba25850508201eda0d;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2WCasBR9fFvqGZ61uURK1W4vhzCBO81FTvpSCs6eKH8HBClVUFybpQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:37 GMT
age: 65924
etag: "377251ce16059a304e1ada7e7bdade2eee86bfdb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fcf832b-84d6-4938-a540-280bf3205df1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9012 bytes)
Hash
b11c8ecfed53e302ab48fa5f757513a4
b3cb36455b3cb0a160c705958add6c422a0a48a2
fb66239038dddd134d3c5c7a656c91c57737bc784fabefe15a5ef2981e68e2b0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fcf832b-84d6-4938-a540-280bf3205df1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9012
x-amzn-requestid: 4ea2bfb1-fc99-4777-aa98-0605d4a704ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDpmEBlIAMFj2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b30a-039358f5691f895941f485fd;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -zAvZvugUNsIscx7YT34xPY-AiaxduJGMkM23GqxSvfl0EmqWOmysA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:52:38 GMT
age: 65983
etag: "b3cb36455b3cb0a160c705958add6c422a0a48a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11083 bytes)
Hash
edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 65926
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6871 bytes)
Hash
9dddb9d84a16a3004821d89836b83dc3
087521979efd5936416fd7f030779fa5725f0a8f
a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6871
x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIOGp2IAMFxSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
age: 65926
etag: "087521979efd5936416fd7f030779fa5725f0a8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e251a53-c5b8-4c0a-b486-8ef8a6fd4d77.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5503 bytes)
Hash
6299d2938a1195b694844a0556a569b3
82123a6c3e74a7ff90b5db0cb8a333a64cefe71c
b65f713b3c94586b0d09a04b6873004d8cdfe6a13d364863fc1a6cd2d1ceac83

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e251a53-c5b8-4c0a-b486-8ef8a6fd4d77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 5503
x-amzn-requestid: e5e2b912-6deb-4736-b455-c9e37e1701ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDgdHE-oAMFq3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cf-12a1f95320eadd1105daba75;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:15 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: zHzIjHe7MqjqSn1ejlTA-tD_gJBAizq91U3sI_prwcx7Vx4ai4B0DQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:52:27 GMT
age: 66001
etag: "82123a6c3e74a7ff90b5db0cb8a333a64cefe71c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /plugins/likebox.php?href=https://www.facebook.com/ngan.thu.336&width=250&colorscheme=light&show_faces=true&connections=9&stream=false&header=false&height=200 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://chiemnghiemmoingay.blogspot.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: LR6UVG/F/g3MdM2AgXZhK8TiZhZMdpcZDskmviUkIyQonsX2F3xeSkXb39v0LGD0MG6Xk0qgjWqm2DaqgHoFcA==
date: Sun, 02 Oct 2022 16:12:20 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (39)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations