| 5gjtjgwff2f2f22f.blogspot.pe/ | 216.58.207.225 | 302 Found | 204 B |
URL User Request GET HTTP/25gjtjgwff2f2f22f.blogspot.pe/ IP216.58.207.225:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, ASCII text Hashda7689500dea672c0c64267ebfdf94e3 d972ad77269c3f3e2c3b7fe4812a07bc8880c26f 4b7f98b004bf71dbe6fcf0447e8c27dbc4e26a5ade409828f02ff01098489b3a
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. |
GET / HTTP/1.1
Host: 5gjtjgwff2f2f22f.blogspot.pe
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://5gjtjgwff2f2f22f.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Fri, 26 Apr 2024 04:53:34 GMT
expires: Fri, 26 Apr 2024 04:53:34 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 204
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5gjtjgwff2f2f22f.blogspot.com/ | 216.58.207.193 | 200 OK | 5.0 kB |
URL User Request GET HTTP/25gjtjgwff2f2f22f.blogspot.com/ IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4107) Hash11be8c4b68b81d5a7862c801002051a9 38cb1673ced8e1e06c1c8679fc370f603b0fdda4 aa03007772762b29d45957bb207d68ba1becc90719bf5da486be649c60b45cf0
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 5gjtjgwff2f2f22f.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-to blogspot; report-uri https://www.blogger.com/cspreport
report-to: {"group":"blogspot","max_age":2592000,"endpoints":[{"url":"https://www.blogger.com/cspreport"}]}
content-type: text/html; charset=UTF-8
expires: Fri, 26 Apr 2024 04:53:34 GMT
date: Fri, 26 Apr 2024 04:53:34 GMT
cache-control: private, max-age=0
last-modified: Sun, 17 Mar 2024 23:57:51 GMT
etag: W/"337cb865d126ccff15ce87396e4fdd04c7548bc48607c2e43f11351de82812ad"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 5022
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| 5gjtjgwff2f2f22f.blogspot.com/js/cookienotice.js | 216.58.207.193 | 200 OK | 2.0 kB |
URL GET HTTP/35gjtjgwff2f2f22f.blogspot.com/js/cookienotice.js IP216.58.207.193:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.blogspot.com FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer | Verdict | Alert | OpenPhish | phishing | Facebook, Inc. | Quad9 DNS | malicious | Sinkholed |
GET /js/cookienotice.js HTTP/1.1
Host: 5gjtjgwff2f2f22f.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 03:42:28 GMT
expires: Fri, 03 May 2024 03:42:28 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 4267
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js | 216.58.207.234 | 200 OK | 30 kB |
URL GET HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js IP216.58.207.234:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 09:52:46 GMT
expires: Fri, 25 Apr 2025 09:52:46 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 68449
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-253778568-1 | 142.250.74.40 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-253778568-1 IP142.250.74.40:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash2f84e83d468364971f37fad7a0ff3d89 26fb6679baedebca436734618bf3d05ae7aacf32 755c385aefa859d688d186569ac181289fefb2825c157025e896df5e5e04be7a
GET /gtag/js?id=UA-253778568-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 04:53:35 GMT
expires: Fri, 26 Apr 2024 04:53:35 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73285
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css | 216.58.207.233 | 200 OK | 6.6 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css IP216.58.207.233:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeASCII text, with very long lines (30596) Hashe3f09df1bc175f411d1ec3dfb5afb17b 3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9 1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:06:37 GMT
expires: Wed, 23 Apr 2025 04:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 07:50:57 GMT
content-type: text/css
vary: Accept-Encoding
age: 262018
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/1807328581-widgets.js | 216.58.207.233 | 200 OK | 51 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/1807328581-widgets.js IP216.58.207.233:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.blogger.com Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60 ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1941) Hash3fd63936a88c795358e97868e471a443 ca64663c1f3115e480fc373d6e47b01d1f5b03a0 d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1
GET /static/v1/widgets/1807328581-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 01:58:46 GMT
expires: Thu, 24 Apr 2025 01:58:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 23:51:06 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 183289
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5gjtjgwff2f2f22f.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:53:35 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a3f852bfff568a-OSL
X-Firefox-Spdy: h2
|
|
| api.ipify.org/?format=json | 172.67.74.152 | 200 OK | 21 B |
URL GET HTTP/2api.ipify.org/?format=json IP172.67.74.152:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subjectipify.org FingerprintC8:1A:05:47:C5:73:C6:CE:DF:1D:A6:DE:00:11:A9:9A:8C:DB:EF:A7 ValidityThu, 21 Mar 2024 19:56:02 GMT - Wed, 19 Jun 2024 19:56:01 GMT
Hash7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://5gjtjgwff2f2f22f.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 04:53:35 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: *
vary: Origin
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87a3f852bffd568a-OSL
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c | 142.250.74.40 | 200 OK | 89 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c IP142.250.74.40:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash94d955468a7ea21ec2feabe18764fce7 4a213aa7ec372dbc8b404a1ac68da9af16ae456c 2957cd434632d2068c79d11287856e90f6e600f5c5dbcf606f29b2c1894c55ec
GET /gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 04:53:35 GMT
expires: Fri, 26 Apr 2024 04:53:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88733
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
origin-agent-cluster: ?0
content-type: text/html; charset="utf-8"
x-fb-debug: D2vUKlXgjLF1Y+jhEAOr+hWDVtCBsMe+b42xJvnKf2AgIV2UaoqEG/n1wRFR4NM/K3YpB/O/GW2oXZhQx+vROw==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcI-2jTNIN6kX9P8XBS8E1whaXcDwRJNMnKHwFqv2XS-BO823kQ_9IC21parIg"; e_clientaddr="AcI4thdyIGefh_bcJBaJLEpndozh3KycWjiECZ3cLUQKQwbOv7XRKLYKs_GLmiEOdqgS7tTc9OdNviswxpUYTatCegWAAV184P__GWn5YYXftfZAbg"; e_fb_vipport="AcIJNAGdSQAiZt8_73qnbS4aHBB2DuZ3lYXyVDyIrJ6Kw8GvorG-nb_dSveZ"; e_upip="AcIQKjN0zKyYuS5mYSp4Bj_XJQrRcW6Ti9aDEfd03WvExgPMDMxCky3A3fj2STzIrMf6J31obsnwGST0OoppYROLJru2yaxs8ZA"; e_fb_requestsequencenumber="AcKUYkE5FYk7EWzIPxtt9rWtp_V07CGqMLAX9ICDXMvJsTgV25Q0kJtdeo0"; e_fb_hostheader="AcKRzZmHmSZ57rBeO2qxP6J-YLi47j781PgvbfbTYQvdFUQdWl7qyBK6AZ9MIpegkcor64y954TpwfLJCw"; e_fb_vipaddr="AcJxTUwYjBBKLQXEC41bPyhPlFTeeSVtfOYC5zqfXgHh9A6srlf_Ipnq665nRuvW_JcxojL5mCPcMN-19oYw7PTEmG9Fhg0Icw"; e_fb_requesthandler="AcJCZmTEstwHdaanHoBEyN-UfclpJfMF1U-d2Mxl9zUSYXXP2ZciQtkiXwXam7SeHkHuOqvZO2Q"; e_fb_requesttime="AcKHzlfosKGluox7vGJMo93-b8nEOkBCe3hkHpFkLwm3mvlHB9zS2ghjZ--slaKPAA5ydIoOHw"; e_fb_builduser="AcJr0yWjJgkvvEEQlmDPxzfNsrpcvaYo0PMChKfSzUtGkfYCXpikra49RLoALMXm_A0"; e_fb_httpversion="AcIt88uLbyknRknHb8CQs-Rn4IjPKy8YVzM-u1ivkz1tMG9WNkLoAKMiTlLS"; e_fb_binaryversion="AcJ1czNI9qNGhMY8c7-gR6uknkB0GQTNHsvi8djHSqVAOLZKb-Uyefls0hoRsXXthSB5UMCflYHVFF6t0WFoiiqWThcYZfMqgpQ"; e_proxy="AcIlKBKmT1ZKUZ48GMSIFfMt0svDcQ4iSQsIQq3yiZczfGv751gldnMbuwcdoxXfVFj5DtXnImHyH4IoGz4T", http_request_error; e_fb_configversion="AcJx-VLzVaRibauYS6ACCGf3yHfqJLoLY1apPSmGhVQeDn1EX-z7tF9c4nt8xQ"; e_clientaddr="AcKSvN3P4khjgjSJczmY4xI1z1bMOOIyyDkLzqXH7vtmuV3G6591M5G_6DuWu2jUBJibAUsCu0kTVmYK"; e_fb_vipport="AcLETbFRg_iU0bFxpjY_qfYh54cBrMVt_24EoznjW6cB6_mPcqreSIAFGBvT"; e_fb_requestsequencenumber="AcKx6IJd-Ucf6X4D_KITNI2E5imqc4C-Ovj1jhYbeSBHqS5ZZi_H7PGd7g"; e_fb_hostheader="AcIzScL9BOJ7mWqfbJG3AzQWvDYjcysYmVyh301Q8QbbPp31kjHjB8IjBe4CCHjajeyARhuoszeU2wMNDw"; e_fb_vipaddr="AcL4fE1ojaq1K4dBl_eCcLd4jJaCRRIbq3b1At9DiJqQf1fS3uKweY8hkB2mJJOU5c-pqfg"; e_fb_requesthandler="AcL1BZStVlfiDOj0w9KWnlz94XFj7UI2VJD8vBOE0dPYF6Pwj4DMuTrYk0a1EMPHX0KsiicSHBsFlQ"; e_fb_requesttime="AcJTSA0F91JSx8YH2aXRAoUAN2jp5DYJAbe1H6t6tehc2ZNW5O23-5HXCmI7Fy54Y2x4-y8KUg"; e_fb_builduser="AcIO2F__ovUVoWgW9OijeqtrH6rjJWGgILw8RBYj2g6BAti73ZkwwlUXxywxG6Mp3EQ"; e_fb_httpversion="AcJ19GjF7oBGVEdKvHeN6K-6R19IZt-5gF7uhz2cYybEdGkqWP_ynVF9Ek-d"; e_fb_binaryversion="AcIrOERjsfFbrAjnlWv1d3Z2qv9aPQPD47D845LcCzmWJJPH4CY3PoXp4peakyoZaXXdIXWJdZN8wNq6FjXjMBju_0s2UoM7OsE"; e_proxy="AcLblZU2OLukoN7sucrhnu-NDURZcnvDBlTXGOl9BdMtLX6h5BpZNmg8AdYoYaYNqN85Lm4LedKkcM0N"
date: Fri, 26 Apr 2024 04:53:36 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=13, mss=1380, tbw=3464, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico | 31.13.72.12 | 404 Not Found | 0 B |
URL GET HTTP/2static.xx.fbcdn.net/rsrc.php/yD/r/d4ZIVX-5C-b.ico IP31.13.72.12:443
Requested byhttps://5gjtjgwff2f2f22f.blogspot.com/ CertificateIssuerDigiCert Inc Subject*.facebook.com FingerprintC8:9A:27:4D:8D:2C:D5:41:71:12:7F:26:7E:A5:CA:C2:60:03:24:54 ValiditySat, 03 Feb 2024 00:00:00 GMT - Fri, 03 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/yD/r/d4ZIVX-5C-b.ico HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5gjtjgwff2f2f22f.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-fatal-request: static.xx.fbcdn.net
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
timing-allow-origin: *
reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/"
report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"}
content-security-policy-report-only: default-src data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self';script-src *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src *.fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), usb=(), window-management=(), xr-spatial-tracking=();report-to="permissions_policy"
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-xss-protection: 0
origin-agent-cluster: ?0
content-type: text/html; charset="utf-8"
x-fb-debug: D2vUKlXgjLF1Y+jhEAOr+hWDVtCBsMe+b42xJvnKf2AgIV2UaoqEG/n1wRFR4NM/K3YpB/O/GW2oXZhQx+vROw==
content-length: 0
proxy-status: http_request_error; e_fb_configversion="AcI-2jTNIN6kX9P8XBS8E1whaXcDwRJNMnKHwFqv2XS-BO823kQ_9IC21parIg"; e_clientaddr="AcI4thdyIGefh_bcJBaJLEpndozh3KycWjiECZ3cLUQKQwbOv7XRKLYKs_GLmiEOdqgS7tTc9OdNviswxpUYTatCegWAAV184P__GWn5YYXftfZAbg"; e_fb_vipport="AcIJNAGdSQAiZt8_73qnbS4aHBB2DuZ3lYXyVDyIrJ6Kw8GvorG-nb_dSveZ"; e_upip="AcIQKjN0zKyYuS5mYSp4Bj_XJQrRcW6Ti9aDEfd03WvExgPMDMxCky3A3fj2STzIrMf6J31obsnwGST0OoppYROLJru2yaxs8ZA"; e_fb_requestsequencenumber="AcKUYkE5FYk7EWzIPxtt9rWtp_V07CGqMLAX9ICDXMvJsTgV25Q0kJtdeo0"; e_fb_hostheader="AcKRzZmHmSZ57rBeO2qxP6J-YLi47j781PgvbfbTYQvdFUQdWl7qyBK6AZ9MIpegkcor64y954TpwfLJCw"; e_fb_vipaddr="AcJxTUwYjBBKLQXEC41bPyhPlFTeeSVtfOYC5zqfXgHh9A6srlf_Ipnq665nRuvW_JcxojL5mCPcMN-19oYw7PTEmG9Fhg0Icw"; e_fb_requesthandler="AcJCZmTEstwHdaanHoBEyN-UfclpJfMF1U-d2Mxl9zUSYXXP2ZciQtkiXwXam7SeHkHuOqvZO2Q"; e_fb_requesttime="AcKHzlfosKGluox7vGJMo93-b8nEOkBCe3hkHpFkLwm3mvlHB9zS2ghjZ--slaKPAA5ydIoOHw"; e_fb_builduser="AcJr0yWjJgkvvEEQlmDPxzfNsrpcvaYo0PMChKfSzUtGkfYCXpikra49RLoALMXm_A0"; e_fb_httpversion="AcIt88uLbyknRknHb8CQs-Rn4IjPKy8YVzM-u1ivkz1tMG9WNkLoAKMiTlLS"; e_fb_binaryversion="AcJ1czNI9qNGhMY8c7-gR6uknkB0GQTNHsvi8djHSqVAOLZKb-Uyefls0hoRsXXthSB5UMCflYHVFF6t0WFoiiqWThcYZfMqgpQ"; e_proxy="AcIlKBKmT1ZKUZ48GMSIFfMt0svDcQ4iSQsIQq3yiZczfGv751gldnMbuwcdoxXfVFj5DtXnImHyH4IoGz4T", http_request_error; e_fb_configversion="AcI5KmXLApkJKYCr4UYYUcovSIwercFWYhcCFRn2wPZRB3CG2FKy6nsdT1tgMA"; e_clientaddr="AcKz4NVJQjWxu24VNd6KgXDvo9h4SIkcBC7goXkj61DBYjWLZM_bp_eTpVuNMaSpRZUVDvQtYlJcPshw"; e_fb_vipport="AcKV6WJkJdqt1nzMUAipjgcy3VlRMG9rsqMGVhCjVW0Oj8oDvgBBRJOz-usp"; e_fb_requestsequencenumber="AcJfhRjVJgK37SnF9ornbCABkLZuglmIbbnKBHmU6Xp9E4I7MMUElybo5Q"; e_fb_hostheader="AcJv5cyABctaILc0LCYt0qsCErO2aIh8NYwds2FGd27pA2NHjdsjdg7sl2bsSFgFFeDEJ6qb59ibK8ovnQ"; e_fb_vipaddr="AcIDMFtldlxV44u1O0c9nPyciO6r3G3ud6iybedWmdiA6JgaZqzvnQUX3K4AOfSZm9gB5Yc"; e_fb_requesthandler="AcK3cj__xFoig182X2pBhLw3yesoaOW3cnk-8Oy_6tzdnJPEYulNgmeOK7zaazL_xQj-XwkTVIRjdA"; e_fb_requesttime="AcLvVQ62q8JUFp2DvbUS4XUE3Om33qt9-gdGsCXWxGEkxeTcFrK8xhVU0eydFQWLOX9J9GO6zA"; e_fb_builduser="AcIuWxXSlefHzBAoswb0ZQrMmG_0P48Z_5xxhgfZN5JHceulp3IsocLGjPYCFM44Xac"; e_fb_httpversion="AcIRKUWU7sZp3kxbBe7ZOB4-tekKCQCmR8urTWaSEZyEu5Zx2-NnqThNECet"; e_fb_binaryversion="AcLCFwFgAPbd5Vce24rCVygk4M9Dlmk6X-4lujxSU9kAPeFKNOzevlP1CKdTFbGmn2y6koItfYHxFpW-6W2IQ_U1-tiDiiES7Lw"; e_proxy="AcK0gHeR_QiosrypLAfZCsnk0pA6aCO4qQwCFKC53q7_tT5Y0kzWkomM_1Fo9fUF82k_jj4Mxklzwrbf"
date: Fri, 26 Apr 2024 04:53:36 GMT
x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=13, mss=1380, tbw=7212, tp=-1, tpl=-1, uplat=0, ullat=-1
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|