Report - segienim.blogspot.com/

Report Overview

Submitted URL
segienim.blogspot.com/
IP
216.58.207.193
ASN
#15169 GOOGLE
Submitted
2024-04-25 21:35:38
Access
public
Website Title
segienim
Final URL
segienim.blogspot.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
segienim.blogspot.com	unknown	2000-07-31	2015-04-14	2024-04-17	2.4 kB	31 kB	216.58.207.193
resources.blogblog.com	13274	2000-09-15	2017-01-30	2024-04-24	1.4 kB	3.1 kB	216.58.207.233
pagead2.googlesyndication.com	101	2003-01-21	2021-02-20	2024-04-25	437 B	705 B	216.58.207.226
assudah.blogspot.com	unknown	2000-07-31	2015-01-06	2024-02-21	483 B	16 kB	216.58.207.193
ziggot.blogspot.com	unknown	2000-07-31	2015-04-14	2024-02-19	482 B	14 kB	216.58.207.193
apis.google.com	105	1997-09-15	2013-05-06	2024-04-24	2.0 kB	153 kB	142.250.74.110
www.blogger.com	8975	1999-06-22	2012-05-22	2024-04-24	3.3 kB	72 kB	216.58.207.233
lh3.googleusercontent.com	66	2008-11-17	2012-05-22	2024-04-24	643 B	6.6 kB	142.250.74.97
alabik.blogspot.com	unknown	2000-07-31	2014-12-15	2024-02-19	482 B	40 kB	216.58.207.193
blanksfile.blogspot.com	unknown	2000-07-31	2015-04-13	2024-02-21	486 B	19 kB	216.58.207.193
tektekdunk.blogspot.com	unknown	2000-07-31	2015-04-14	2024-02-22	486 B	15 kB	216.58.207.193
bloggerhosting.appspot.com	unknown	2005-03-10	2012-09-30	2024-03-04	932 B	918 B	142.250.74.84
babakbingkas.blogspot.com	unknown	2000-07-31	2015-04-13	2024-02-19	488 B	14 kB	216.58.207.193

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-25	medium	segienim.blogspot.com	Sinkholed
2024-04-25	medium	segienim.blogspot.com	Sinkholed
2024-04-25	medium	segienim.blogspot.com	Sinkholed
2024-04-25	medium	babakbingkas.blogspot.com	Sinkholed
2024-04-25	medium	ziggot.blogspot.com	Sinkholed
2024-04-25	medium	tektekdunk.blogspot.com	Sinkholed
2024-04-25	medium	segienim.blogspot.com	Sinkholed
2024-04-25	medium	segienim.blogspot.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	segienim.blogspot.com/	119 B	2023-03-09	2024-04-29
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 09:16:44 Last Seen2024-04-29 09:16:09 Times Seen32 Hash 82d805ed943b85b66fdcc8d209a58f5a 7af07f7c118047a5fe3edc6c39cb62d5f9b3dd0b b42a009f92873718623455d902a660cea3c4794e9917a1c883199186fa7642c8 Loading...

	ziggot.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	81 kB	2024-04-25	2024-04-29
Pretty URL ziggot.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-29 09:16:10 Times Seen4 Hash 1837cefbb05c1805c27cd349687755cb 465ffa744a2cde893e2d6384b4136e2abfe2c364 d9571aad9ff1c51855af299418aadd8c81566cefdb6327949a5c6027dc5704fc Loading...

	blanksfile.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	104 kB	2024-04-25	2024-04-29
Pretty URL blanksfile.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-29 09:16:10 Times Seen4 Hash 26f16a725458f71534e85cce4867561a 29e96f41f71c65f02581c7debbabf6f18e8b061d a5dca59c3d4092724462cf19f8fd725619cbb6295358592347e4b328da41d697 Loading...

	segienim.blogspot.com/	1.1 kB	2023-03-09	2024-04-29
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 01:52:44 Last Seen2024-04-29 09:16:09 Times Seen67 Hash ac29aa8e5bde2f7b613c215edbd6d67b 04f865da4868f9d960334b9cef1e24905a8c2f68 4d9349cefe28219a4e8163c4231d974ed72c2df74b89cde08e60cedc53b9770c Loading...

	www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315	0 B	2023-03-07	2024-05-05
Pretty URL www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 11:29:39 Times Seen37357708 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	apis.google.com/js/platform.js	56 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/js/platform.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 06:22:45 Last Seen2024-05-05 10:47:56 Times Seen1345 Hash e66acfdb2f1dfcff8c6dba736dd4ab6d 36026360b6c8d750488ef2c739e04969f8c5bcd7 742841b3cf614dd55ce486a7335018bd1992c4d05ef74b45a0781318075a99f3 Loading...

	segienim.blogspot.com/	275 B	2023-03-07	2024-05-05
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-05 10:50:37 Times Seen58385 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	segienim.blogspot.com/	302 B	2023-03-07	2024-05-05
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-05 10:47:55 Times Seen29110 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	segienim.blogspot.com/	684 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash 36067b501717158ca6471266ccf9c2ad 4dcb9f21090c2c802c372298a3b08c7d31e2f365 548d08645e1c293de6e4e088be5e2cf5a4313be792c657ec47abdadb93ea358a Loading...

	segienim.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	81 kB	2024-04-25	2024-04-29
Pretty URL segienim.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-29 09:16:10 Times Seen4 Hash a84199a92c094edc3aa95b58557e0c3d 69bdc63ecc99cd6ce772bcb8c7e2e0e9071062f1 ffa4e4f10cdd415227b6ad20248b7573e124590a118a7aadc6cc85f91d4040aa Loading...

	segienim.blogspot.com/	269 B	2023-03-07	2024-05-05
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-05 10:47:56 Times Seen28403 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash d1c59b7d633a7a7b62bb1a078c434a6c 1340cff28728a0b4bba49a7cffd465c942ff286f 47162bc47ebab3a80dd03d8cd53bb4b68061ca4f6c4d48ca1a699d74c0c4de08 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash 9f5d7bbe25290211587a3dd482a3c24a 57f30b2920eed02ea0201040be4b4c37cd2d10bf f4b946dcc084abf92da8dc689d30c6de109eb7627edd29ce4c3af3584c93bfa9 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash 8298098614a99912ef65bfddc2de43e0 658edc00cf3cc5c72f4057a9b2b79ff637dc0379 20e65b284d0ee62c2f5f9a83b79cb88438c2bf0a55682d027d51a2d59f95a128 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash 839686e11eba0f538f306aeadd626299 a3118e3d725debcf621527e63ea2a3a59d6e2517 4cdf436bc2ad5eabfbb4e7bebec76edfc6b61b1b4e2ab70223160c88e7ba3068 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash 8f911d4166048c8daac339232418cb4c 0a92fdbf1e864f7af1a51ac9271d67e0561ff3be 1588bbc34ed9d7a97b17b33d17d1d009c845a3c2575ef4d9b6c2ab4951179a61 Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-25 23:35:39 Times Seen1 Hash b91dd7af93946d11dd9db5ece5cf20cb 6358f99a7706ed2b8279df2aaf2cb6236fbe1d6e 3502c50b6328574c260110a38c52582ebd93df3c04c5c34803c948644d740e61 Loading...

	alabik.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	185 kB	2024-04-25	2024-04-29
Pretty URL alabik.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:39 Last Seen2024-04-29 09:16:10 Times Seen4 Hash e0385298ad02414f73276b69df470199 f3ec6245661a78b77d549948fd1d5377bb2b6b8a 941d631d8619925f8137836a359a41818c857d8e78558816ff57e1696ee73d1c Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	56 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 06:22:46 Last Seen2024-05-05 10:47:56 Times Seen950 Hash 7ef4bc18139bcdbdd14c5b58b0955a67 afe44fd9a877f81a3c36f571c0fc934324c6cbd7 192bc707852c5986f930528442d88a79e5bcf4513aacc2b722a3c5e964501838 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs	137 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 06:22:46 Last Seen2024-05-05 10:47:56 Times Seen1118 Hash 4d1bd282f5a3799d4e2880cf69af9269 2ede61be138a7beaa7d6214aa278479dce258adb 5e075152b65966c0c6fcd3ee7d9f62550981a7bb4ed47611f4286c16e0d79693 Loading...

	unknown	27 B	2023-04-10	2024-05-05
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:53:31 Last Seen2024-05-05 10:50:37 Times Seen30737 Hash 7688ca9eb3ca1c878821b1e3fe2c23d7 2c41fd7e9f8312d6fed18b21e1a0589413e35553 793bae9539499e6e02187febbd2e20fd17dd40260033f5175dbfc2f294440d9a Loading...

	segienim.blogspot.com/	52 B	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:40 Last Seen2024-04-25 23:35:40 Times Seen1 Hash 0ada20813bbb9e1ea6d19951dae385cb c6b65c191b4b11b15134757030841f1f8402c6f0 9ceb6e90dc0a8ca3aed9302697e3eec7f0b33f981c12f930bfffd6b7aa779abe Loading...

	segienim.blogspot.com/	93 B	2023-03-09	2024-04-29
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-09 09:26:01 Last Seen2024-04-29 09:16:10 Times Seen9 Hash f42342cdc2df240ae37420e9bab73bb6 2a4f59174c64d92c7e72883b5668b385693591ab 7d4a7738770c9cd178637e0b3926b3a222ac5c74b8b3298a9479fe36074931a5 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs	184 kB	2024-04-23	2024-05-05
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-23 06:22:46 Last Seen2024-05-05 10:47:56 Times Seen905 Hash 575e42a695a782c950bd57d1cd413c7e 8549b65a7e35bd251ac277315a063c07ea288a2e c3f62bbfcc26082d78406d7f36866969da709db71ef269081374aee5a5b2cf21 Loading...

	www.blogger.com/static/v1/widgets/1807328581-widgets.js	144 kB	2024-04-24	2024-04-30
Pretty URL www.blogger.com/static/v1/widgets/1807328581-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 11:12:00 Last Seen2024-04-30 02:03:04 Times Seen1193 Hash 3fd63936a88c795358e97868e471a443 ca64663c1f3115e480fc373d6e47b01d1f5b03a0 d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1 Loading...

	segienim.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-05-05
Pretty URL segienim.blogspot.com/js/cookienotice.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-05-05 11:24:54 Times Seen115754 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	segienim.blogspot.com/	798 B	2024-02-05	2024-05-05
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-05 14:31:36 Last Seen2024-05-05 11:24:54 Times Seen3890 Hash f488687f23b8b2ad6f1d05c2d07b2735 9fc276898b78f841cb27d76da4f17dbe8c77aefe 9153ade8a8e5db45d8092225fe85f04f6af83889149e2f735d1815268a1003c9 Loading...

	assudah.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	83 kB	2024-04-25	2024-04-29
Pretty URL assudah.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:40 Last Seen2024-04-29 09:16:10 Times Seen4 Hash 9c49f1d8d9048b01e8a1423784db586e 8e792d7d367a6d3a31e3063851ef3e2a228f02d5 343b2600e5a442da26b45f04fc444ef5a9a2940aa3b68710e94c8a45ae67a1ee Loading...

	babakbingkas.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	72 kB	2024-04-25	2024-04-29
Pretty URL babakbingkas.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:40 Last Seen2024-04-29 09:16:10 Times Seen4 Hash 95eaa67de787f19b08328e9e0dec5261 4111d98ea244c4b1fcfbe6b766a914d4a652a2e4 8ea9828b20a7db64be1eb0f4886b3e0dfeb35910503a7a5308073edbefc60e51 Loading...

	tektekdunk.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp	81 kB	2024-04-25	2024-04-29
Pretty URL tektekdunk.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-25 23:35:40 Last Seen2024-04-29 09:16:10 Times Seen4 Hash 01eb0f52c7fd9290ffac3ea2de45d644 bd5d8e9e136f658f670eb3434dbef8fe0a11db52 34dc908a0d22a3e9120da9389f583a1631c0585d446edccbe03192f7f5bb35eb Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	47 B	2023-03-07	2024-05-05
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 216.58.207.226 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-05 10:47:56 Times Seen48746 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	segienim.blogspot.com/	5.5 kB	2024-04-25	2024-04-25
Pretty URL segienim.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-25 23:35:40 Last Seen2024-04-25 23:35:40 Times Seen1 Hash fe95b4d2e1a930b7c743b2fd8bb558aa dac41615464a9a81ec18254daef40ad85c0b1119 c5182d3274b40093646783e6a4dd521b1593b7c91022437343047581d2c93b18 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 34e023fd50bba5c11d89fce0881003f1	189 B	2023-03-08	2024-04-29
Pretty Observations First Seen2023-03-08 14:43:48 Last Seen2024-04-29 09:16:10 Times Seen58 Hash 34e023fd50bba5c11d89fce0881003f1 4a4b0278f31064c2589e74824921b4eedb9002ea 19c28ca63c852d229ffd3aa4b3e160b47a7c8d58987de33e7df7c6d77d07cfea Loading...

HTTP Transactions (27)

URL IP Response Size

segienim.blogspot.com/

216.58.207.193

200 OK

10 kB

URL User Request GET HTTP/2
segienim.blogspot.com/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
HTML document, ASCII text, with very long lines (3912), with CR, LF line terminators
Size
10 kB (10477 bytes)
Hash
d74701e4c12377600d2b27cae0ca1c01
3cdfb2782d06c9b6553e0d46b993513b24882b25
829f5fee5117677cd0dc3e1be3bbac1bd222568e4fc04f845f32797bd8429e29

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: segienim.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Thu, 25 Apr 2024 21:35:10 GMT
date: Thu, 25 Apr 2024 21:35:10 GMT
cache-control: private, max-age=0
last-modified: Wed, 13 Mar 2024 13:39:43 GMT
etag: W/"7d41d2dc84292a72e32dca8b23ef29f110dbe45bf09cd6a6c4088fcf77d28694"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 10477
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

segienim.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL GET HTTP/3
segienim.blogspot.com/js/cookienotice.js
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: segienim.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Thu, 25 Apr 2024 21:35:11 GMT
expires: Thu, 02 May 2024 21:35:11 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 19:57:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

bloggerhosting.appspot.com/serve/namelesscreator.googlepages.com/recent-post.js

142.250.74.84

404 Not Found

272 B

URL GET HTTP/2
bloggerhosting.appspot.com/serve/namelesscreator.googlepages.com/recent-post.js
IP
142.250.74.84:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.appspot.com
Fingerprint47:3B:74:7F:95:D0:93:BE:11:49:AC:92:19:0B:AA:F5:71:66:C0:78
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
HTML document, ASCII text
Size
272 B (272 bytes)
Hash
9902fb9f7cf3e9a8dd26f45a5cb94113
91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6

HTTP Headers

GET /serve/namelesscreator.googlepages.com/recent-post.js HTTP/1.1
Host: bloggerhosting.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
content-length: 272
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 21:35:11 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/js/platform.js

142.250.74.110

200 OK

21 kB

URL GET HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintE8:68:ED:59:65:88:CD:45:4F:B0:64:88:FF:F3:32:D4:8B:C7:75:F0
ValidityMon, 18 Mar 2024 20:39:12 GMT - Mon, 10 Jun 2024 20:39:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2050)
Size
21 kB (21303 bytes)
Hash
e66acfdb2f1dfcff8c6dba736dd4ab6d
36026360b6c8d750488ef2c739e04969f8c5bcd7
742841b3cf614dd55ce486a7335018bd1992c4d05ef74b45a0781318075a99f3

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21303
date: Thu, 25 Apr 2024 21:35:11 GMT
expires: Thu, 25 Apr 2024 21:35:11 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "d8cc7aca923e8ade"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/1807328581-widgets.js

216.58.207.233

200 OK

51 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/1807328581-widgets.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
JavaScript source, ASCII text, with very long lines (1941)
Size
51 kB (51394 bytes)
Hash
3fd63936a88c795358e97868e471a443
ca64663c1f3115e480fc373d6e47b01d1f5b03a0
d611421e714f0491c867715cfd4b567a8e4590161c005cbf65fe2644e38685f1

HTTP Headers

GET /static/v1/widgets/1807328581-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51394
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 01:58:46 GMT
expires: Thu, 24 Apr 2025 01:58:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 Apr 2024 23:51:06 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 156985
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

216.58.207.233

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 04:06:37 GMT
expires: Wed, 23 Apr 2025 04:06:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 07:50:57 GMT
content-type: text/css
vary: Accept-Encoding
age: 235714
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

resources.blogblog.com/img/icon18_edit_allbkg.gif

216.58.207.233

200 OK

162 B

URL GET HTTP/2
resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
GIF image data, version 89a, 18 x 18
Size
162 B (162 bytes)
Hash
c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b

HTTP Headers

GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:51:39 GMT
expires: Tue, 30 Apr 2024 01:51:39 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 Apr 2024 05:50:59 GMT
content-type: image/gif
age: 243812
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

61 kB

URL GET HTTP/2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintE8:68:ED:59:65:88:CD:45:4F:B0:64:88:FF:F3:32:D4:8B:C7:75:F0
ValidityMon, 18 Mar 2024 20:39:12 GMT - Mon, 10 Jun 2024 20:39:11 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
61 kB (61025 bytes)
Hash
575e42a695a782c950bd57d1cd413c7e
8549b65a7e35bd251ac277315a063c07ea288a2e
c3f62bbfcc26082d78406d7f36866969da709db71ef269081374aee5a5b2cf21

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61025
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:22:34 GMT
expires: Tue, 22 Apr 2025 16:22:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 277957
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

bloggerhosting.appspot.com/serve/namelesscreator.googlepages.com/recent-post.js

142.250.74.84

404 Not Found

272 B

URL GET HTTP/2
bloggerhosting.appspot.com/serve/namelesscreator.googlepages.com/recent-post.js
IP
142.250.74.84:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.appspot.com
Fingerprint47:3B:74:7F:95:D0:93:BE:11:49:AC:92:19:0B:AA:F5:71:66:C0:78
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
HTML document, ASCII text
Size
272 B (272 bytes)
Hash
9902fb9f7cf3e9a8dd26f45a5cb94113
91995c443aa89cdcf3ab52e2ea1ae3d4893624bc
6b43b396ba4708e5ffe9da06909bc2059e55b300f2434bc4181ca3a842d83bd6

HTTP Headers

GET /serve/namelesscreator.googlepages.com/recent-post.js HTTP/1.1
Host: bloggerhosting.appspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 404 Not Found
content-length: 272
content-type: text/html; charset=UTF-8
date: Thu, 25 Apr 2024 21:35:11 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t-o3saXo_VynWa4L85o1OGrc_CJuu5iUJpjTkDIYBzduJlr1nePDYHDPvOo8T7prM_cyOluZmORcG0aSDr62TDjBRNP7AADBUzJ0w6fWxRaaaKj9fDmLH2AN1qatjsCoYNQJ01owQI4RhPLNCXNOflcVpwro0lZIAD0pUwohH32FM=s0-d

142.250.74.97

200 OK

6.1 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/AEn0k_t-o3saXo_VynWa4L85o1OGrc_CJuu5iUJpjTkDIYBzduJlr1nePDYHDPvOo8T7prM_cyOluZmORcG0aSDr62TDjBRNP7AADBUzJ0w6fWxRaaaKj9fDmLH2AN1qatjsCoYNQJ01owQI4RhPLNCXNOflcVpwro0lZIAD0pUwohH32FM=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT

File type
GIF image data, version 89a, 861 x 423
Size
6.1 kB (6111 bytes)
Hash
92f84e5e5af75d45f7663c85c220c964
6607793480261df19f688112cf4631801ee2e03c
a467f71fee930f8fed2be63d85fa425adc4af69969ed65ded6907d95ccff4953

HTTP Headers

GET /blogger_img_proxy/AEn0k_t-o3saXo_VynWa4L85o1OGrc_CJuu5iUJpjTkDIYBzduJlr1nePDYHDPvOo8T7prM_cyOluZmORcG0aSDr62TDjBRNP7AADBUzJ0w6fWxRaaaKj9fDmLH2AN1qatjsCoYNQJ01owQI4RhPLNCXNOflcVpwro0lZIAD0pUwohH32FM=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Fri, 26 Apr 2024 21:35:11 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.gif"
x-content-type-options: nosniff
date: Thu, 25 Apr 2024 21:35:11 GMT
server: fife
content-length: 6111
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/pagead/js/google_top_exp.js

216.58.207.226

200 OK

42 B

URL GET HTTP/2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
216.58.207.226:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint1B:FA:17:60:E2:34:D4:FA:D1:13:08:09:6E:8F:ED:E7:A8:8C:6E:7A
ValidityMon, 18 Mar 2024 19:37:13 GMT - Mon, 10 Jun 2024 19:37:12 GMT

File type
ASCII text
Size
42 B (42 bytes)
Hash
7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Thu, 25 Apr 2024 13:37:58 GMT
expires: Thu, 09 May 2024 13:37:58 GMT
cache-control: public, max-age=1209600
age: 28633
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

segienim.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

15 kB

URL GET HTTP/3
segienim.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65464)
Size
15 kB (14833 bytes)
Hash
a84199a92c094edc3aa95b58557e0c3d
69bdc63ecc99cd6ce772bcb8c7e2e0e9071062f1
ffa4e4f10cdd415227b6ad20248b7573e124590a118a7aadc6cc85f91d4040aa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: segienim.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"c33cbdc973322a0b19e0ac45834500a0a0ca29b802f002b4415641d4f37312c2"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Wed, 13 Mar 2024 13:39:43 GMT
content-encoding: gzip
content-length: 14833
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

assudah.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

16 kB

URL GET HTTP/3
assudah.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65464)
Size
16 kB (15485 bytes)
Hash
9c49f1d8d9048b01e8a1423784db586e
8e792d7d367a6d3a31e3063851ef3e2a228f02d5
343b2600e5a442da26b45f04fc444ef5a9a2940aa3b68710e94c8a45ae67a1ee

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: assudah.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"01f1c47a5ba15e5cc94892f60e705817ad99e8ec86caf3052c406d704ece8821"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 09:55:41 GMT
content-encoding: gzip
content-length: 15485
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

babakbingkas.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

14 kB

URL GET HTTP/3
babakbingkas.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65454)
Size
14 kB (13557 bytes)
Hash
95eaa67de787f19b08328e9e0dec5261
4111d98ea244c4b1fcfbe6b766a914d4a652a2e4
8ea9828b20a7db64be1eb0f4886b3e0dfeb35910503a7a5308073edbefc60e51

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: babakbingkas.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"f524129af79a33e5dbf81ef8f3fec6de0ee22c5691410b3e6ba2d87468209eb2"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 19 Feb 2024 16:59:37 GMT
content-encoding: gzip
content-length: 13557
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

ziggot.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

14 kB

URL GET HTTP/3
ziggot.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65464)
Size
14 kB (13960 bytes)
Hash
1837cefbb05c1805c27cd349687755cb
465ffa744a2cde893e2d6384b4136e2abfe2c364
d9571aad9ff1c51855af299418aadd8c81566cefdb6327949a5c6027dc5704fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: ziggot.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"6a58bf6ab241fdca3585bf0c671574407d91d50e4a71605b2ec09254c460fb4e"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Thu, 08 Feb 2024 17:43:22 GMT
content-encoding: gzip
content-length: 13960
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/dyn-css/authorization.css?targetBlogID=6301534219515729260&zx=6daef717-0ed8-4bed-af91-e62d2dccceab

216.58.207.233

200 OK

21 B

URL GET HTTP/2
www.blogger.com/dyn-css/authorization.css?targetBlogID=6301534219515729260&zx=6daef717-0ed8-4bed-af91-e62d2dccceab
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=6301534219515729260&zx=6daef717-0ed8-4bed-af91-e62d2dccceab HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 21:35:11 GMT
last-modified: Thu, 25 Apr 2024 21:35:11 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

alabik.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

39 kB

URL GET HTTP/3
alabik.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65481)
Size
39 kB (39048 bytes)
Hash
e0385298ad02414f73276b69df470199
f3ec6245661a78b77d549948fd1d5377bb2b6b8a
941d631d8619925f8137836a359a41818c857d8e78558816ff57e1696ee73d1c

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: alabik.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"099e1431baeb6abbff988bc377125c8e1747929b6f4a4084fb18c6d185b76c6c"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Wed, 13 Mar 2024 03:45:44 GMT
content-encoding: gzip
content-length: 39048
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__

216.58.207.233

2.6 kB

URL
www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
216.58.207.233:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (3172)
Size
2.6 kB (2550 bytes)
Hash
6d391ee9c5611334425008a8449fa8db
6c5970c5b3de79c307e972b71e8f434ec547a5a4
f5ce7038f26011a64a127997d5d38d69b4f03e0563037704483d820df85ca308

HTTP Headers

GET /navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 21:35:11 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2550
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

tektekdunk.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

14 kB

URL GET HTTP/3
tektekdunk.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65464)
Size
14 kB (13988 bytes)
Hash
01eb0f52c7fd9290ffac3ea2de45d644
bd5d8e9e136f658f670eb3434dbef8fe0a11db52
34dc908a0d22a3e9120da9389f583a1631c0585d446edccbe03192f7f5bb35eb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: tektekdunk.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"e1e3909342738894976a442aaaa6abf7a82a976d0db5cf2313f743934e27dee1"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 25 Mar 2024 06:28:29 GMT
content-encoding: gzip
content-length: 13988
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

blanksfile.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp

216.58.207.193

200 OK

18 kB

URL GET HTTP/3
blanksfile.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=rp
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
Unicode text, UTF-8 text, with very long lines (65257)
Size
18 kB (18491 bytes)
Hash
26f16a725458f71534e85cce4867561a
29e96f41f71c65f02581c7debbabf6f18e8b061d
a5dca59c3d4092724462cf19f8fd725619cbb6295358592347e4b328da41d697

HTTP Headers

GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=rp HTTP/1.1
Host: blanksfile.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
etag: W/"cdff19fec026055565d4dc79598fa87de67f78c4a576a4fd14a631ac7d3bfc34"
date: Thu, 25 Apr 2024 21:35:11 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Fri, 08 Mar 2024 12:45:44 GMT
content-encoding: gzip
content-length: 18491
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

resources.blogblog.com/img/navbar/icons_orange.png

216.58.207.233

200 OK

915 B

URL GET HTTP/3
resources.blogblog.com/img/navbar/icons_orange.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
PNG image data, 46 x 20, 8-bit colormap, non-interlaced
Size
915 B (915 bytes)
Hash
87f25844d23ac1ee03604e668f5c1797
85d440947d70a78672740ff7e8062f68ce9d99a3
d70c36f2f61b735573caa3dd5a1602e19916701bb88d99ff4527cd2c89fa8b72

HTTP Headers

GET /img/navbar/icons_orange.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 915
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Apr 2024 15:44:09 GMT
expires: Thu, 02 May 2024 15:44:09 GMT
cache-control: public, max-age=604800
last-modified: Thu, 25 Apr 2024 13:55:20 GMT
content-type: image/png
age: 21063
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

resources.blogblog.com/img/navbar/arrows-blue.png

216.58.207.233

200 OK

104 B

URL GET HTTP/3
resources.blogblog.com/img/navbar/arrows-blue.png
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced
Size
104 B (104 bytes)
Hash
38c95719e05f4184a301768d8de91e09
d0ed1147d46f2cf592584239a5a101d6f2abb588
259ece79a45ad7ecbcf6fb0669de61aa6a01ebedaba47a7e88283435e0e6b1be

HTTP Headers

GET /img/navbar/arrows-blue.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 104
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 20:34:37 GMT
expires: Mon, 29 Apr 2024 20:34:37 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 Apr 2024 13:49:59 GMT
content-type: image/png
age: 262835
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/js/platform:gapi.iframes.style.common.js

142.250.74.110

200 OK

21 kB

URL GET HTTP/3
apis.google.com/js/platform:gapi.iframes.style.common.js
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2050)
Size
21 kB (21313 bytes)
Hash
7ef4bc18139bcdbdd14c5b58b0955a67
afe44fd9a877f81a3c36f571c0fc934324c6cbd7
192bc707852c5986f930528442d88a79e5bcf4513aacc2b722a3c5e964501838

HTTP Headers

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21313
date: Thu, 25 Apr 2024 21:35:12 GMT
expires: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "1df5d68c1707a051"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs

142.250.74.110

200 OK

46 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs
IP
142.250.74.110:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsegienim.blogspot.com&pfname=&rpctoken=18797315
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT

File type
JavaScript source, ASCII text, with very long lines (2124)
Size
46 kB (45677 bytes)
Hash
4d1bd282f5a3799d4e2880cf69af9269
2ede61be138a7beaa7d6214aa278479dce258adb
5e075152b65966c0c6fcd3ee7d9f62550981a7bb4ed47611f4286c16e0d79693

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.JisoxTPHVRs.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAC/rs=AHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45677
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 16:22:36 GMT
expires: Tue, 22 Apr 2025 16:22:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Apr 2024 18:15:45 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 277956
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

segienim.blogspot.com/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY4PgxgWUpHWYGmaXMTWRkAfaYRC-w%3A1714080910609

216.58.207.193

200 OK

160 B

URL GET HTTP/3
segienim.blogspot.com/?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY4PgxgWUpHWYGmaXMTWRkAfaYRC-w%3A1714080910609
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
ASCII text
Size
160 B (160 bytes)
Hash
34e023fd50bba5c11d89fce0881003f1
4a4b0278f31064c2589e74824921b4eedb9002ea
19c28ca63c852d229ffd3aa4b3e160b47a7c8d58987de33e7df7c6d77d07cfea

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?action=getFeed&widgetId=Feed1&widgetType=Feed&responseType=js&xssi_token=AOuZoY4PgxgWUpHWYGmaXMTWRkAfaYRC-w%3A1714080910609 HTTP/1.1
Host: segienim.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/javascript; charset=UTF-8
expires: Thu, 25 Apr 2024 21:35:12 GMT
date: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: private, max-age=0
last-modified: Wed, 13 Mar 2024 13:39:43 GMT
etag: "6daef717-0ed8-4bed-af91-e62d2dccceab"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 160
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

segienim.blogspot.com/favicon.ico

216.58.207.193

200 OK

412 B

URL GET HTTP/3
segienim.blogspot.com/favicon.ico
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: segienim.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Thu, 25 Apr 2024 21:35:12 GMT
date: Thu, 25 Apr 2024 21:35:12 GMT
cache-control: private, max-age=86400
last-modified: Wed, 13 Mar 2024 13:39:43 GMT
etag: W/"7d41d2dc84292a72e32dca8b23ef29f110dbe45bf09cd6a6c4088fcf77d28694"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

216.58.207.233

200 OK

6.7 kB

URL GET HTTP/2
www.blogger.com/navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://segienim.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (6854), with no line terminators
Size
6.7 kB (6667 bytes)
Hash
e8b57811efd03a16bf935ba1e89d81a1
29c2988be1bf81ecaf016b2e1e58dbdba9eadde9
21b4561fde697d9a94147124ccde4fcba9694442886a8580bc7d373ac0fe8c21

HTTP Headers

GET /navbar.g?targetBlogID=6301534219515729260&blogName=segienim&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=BLUE&layoutType=LAYOUTS&searchRoot=https://segienim.blogspot.com/search&blogLocale=in&v=2&homepageUrl=https://segienim.blogspot.com/&vt=4321226881289345679&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.JisoxTPHVRs.O%2Fam%3DAAAC%2Fd%3D1%2Frs%3DAHpOoo9VOmUKkb8FAwL65OiDUU4etqWcRg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://segienim.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 25 Apr 2024 21:35:11 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2550
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML