Report - djqahkjwd.blogspot.com/

Report Overview

Submitted URL
djqahkjwd.blogspot.com/
IP
216.58.207.193
ASN
#15169 GOOGLE
Submitted
2024-03-29 06:02:31
Access
public
Website Title
Facebook.com
Final URL
djqahkjwd.blogspot.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
6

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-03-28	429 B	95 kB	142.250.74.72
code.jquery.com	634	2005-12-10	2012-05-21	2024-03-28	416 B	32 kB	151.101.66.137
ajax.googleapis.com	12905	2005-01-25	2013-08-16	2024-03-29	436 B	7.5 kB	216.58.207.202
www.blogger.com	8975	1999-06-22	2012-05-22	2024-03-28	895 B	60 kB	142.250.74.73
1.bp.blogspot.com	8403	2000-07-31	2012-05-21	2024-03-27	550 B	35 kB	142.250.74.161
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-03-28	458 B	146 kB	104.18.10.207
sg.7uq.org	unknown	2021-01-23	2021-06-09	2024-03-24	489 B	1.2 kB	188.114.96.1
djqahkjwd.blogspot.com	unknown	unknown	No data	No data	1.5 kB	9.1 kB	216.58.207.193
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-03-28	1.5 kB	96 kB	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2024-03-28	medium	djqahkjwd.blogspot.com/	Facebook, Inc.
2024-03-28	medium	djqahkjwd.blogspot.com/	Facebook, Inc.
2024-03-28	medium	djqahkjwd.blogspot.com/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	djqahkjwd.blogspot.com/	275 B	2023-03-07	2024-04-29
Pretty URL djqahkjwd.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-29 01:27:21 Times Seen57780 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	djqahkjwd.blogspot.com/	798 B	2024-02-05	2024-04-29
Pretty URL djqahkjwd.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-02-05 14:31:36 Last Seen2024-04-29 01:27:21 Times Seen3312 Hash f488687f23b8b2ad6f1d05c2d07b2735 9fc276898b78f841cb27d76da4f17dbe8c77aefe 9153ade8a8e5db45d8092225fe85f04f6af83889149e2f735d1815268a1003c9 Loading...

	djqahkjwd.blogspot.com/	4.6 kB	2024-03-29	2024-03-29
Pretty URL djqahkjwd.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-03-29 07:02:38 Last Seen2024-03-29 07:02:38 Times Seen1 Hash 29b02d68f9831c25f29beac9dac77386 65681f7876e85e51fbcb990863609fec066d8aa3 f8284ae7fbb5c523dceedd69d799df7a1cc2d8b3c1ec0610fbbcb38dd6641e75 Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-29
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.66.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-29 02:57:41 Times Seen140057 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	www.blogger.com/static/v1/widgets/1380559502-widgets.js	145 kB	2024-03-27	2024-04-07
Pretty URL www.blogger.com/static/v1/widgets/1380559502-widgets.js IP 142.250.74.73 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-27 05:48:40 Last Seen2024-04-07 23:03:59 Times Seen618 Hash baadbe005a81e05b72ff9f13b41ca2db e0a0da83e1907d1b174397729cb8b743e83d41ba 0016acef19c1c4fed5f13ac338c5f3b2738b6873bceb66bc824c821623fa7bac Loading...

	djqahkjwd.blogspot.com/	256 B	2023-06-02	2024-04-28
Pretty URL djqahkjwd.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-02 13:02:41 Last Seen2024-04-28 17:54:51 Times Seen76 Hash 526e017af51a348a8ed939e91034d7db 7feba2a8a171a06f381250cc8a15a90b65a5e759 66ccc78ffb1c679f77c30d8878d835507e15977ddc1898191640dd8123e303c4 Loading...

	djqahkjwd.blogspot.com/	153 B	2023-03-26	2024-04-28
Pretty URL djqahkjwd.blogspot.com/ IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:56:19 Last Seen2024-04-28 17:54:51 Times Seen1256 Hash eb3bedd50a50ee11a1d057c4ecfe357d 07329c58869fc0346aa1db4f57afca0b5f02e0c4 ab109e9718e13f07d5fe62b4c59922817c0b4288808105941d122dcc317100af Loading...

	djqahkjwd.blogspot.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-29
Pretty URL djqahkjwd.blogspot.com/js/cookienotice.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-29 01:27:22 Times Seen114453 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js	17 kB	2023-03-07	2024-04-28
Pretty URL ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-28 17:54:51 Times Seen10221 Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 Loading...

	www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5	270 kB	2024-03-29	2024-03-29
Pretty URL www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 07:02:38 Last Seen2024-03-29 07:02:38 Times Seen2 Hash 195e312cf35878c27dcb0cba8bdd017b 49d1846f4589623071b581ce34dc09bd55cf50e2 c53604ac706c53e6243eac0546f0bb6c1df2e2d2562ed2d24dcc48d96b639d9e Loading...

HTTP Transactions (14)

URL IP Response Size

djqahkjwd.blogspot.com/

216.58.207.193

200 OK

5.1 kB

URL User Request GET HTTP/2
djqahkjwd.blogspot.com/
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
JavaScript source, ASCII text, with very long lines (4257)
Size
5.1 kB (5056 bytes)
Hash
f3e6ff4e178c63097f9d91916ae6e83e
30a205d51361eb27e33005d3f55eef7620f75615
3ab939451714b46ce6f8e65cbc3ca9dc141f14457b68aaf5f6f785f094941547

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: djqahkjwd.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 29 Mar 2024 06:02:05 GMT
date: Fri, 29 Mar 2024 06:02:05 GMT
cache-control: private, max-age=0
last-modified: Tue, 05 Mar 2024 13:09:14 GMT
etag: W/"299669bbbf14e6a0ff2e1a2dfaef244d9e583c4b6def90908e96a8f12725c038"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 5056
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

djqahkjwd.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL GET HTTP/3
djqahkjwd.blogspot.com/js/cookienotice.js
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
JavaScript source, ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: djqahkjwd.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Fri, 29 Mar 2024 06:02:06 GMT
expires: Fri, 05 Apr 2024 06:02:06 GMT
cache-control: public, max-age=604800
last-modified: Thu, 28 Mar 2024 21:55:35 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.1/css/all.min.css

104.17.24.14

200 OK

10 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.1/css/all.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (59158)
Size
10 kB (10491 bytes)
Hash
b227b1617a1763c8bc056772f05482b4
c508528feb9fd540454f838653cd4863b290df2e
af1e6edc875a382b338bb25bd7c5c3f474a7f1b36212002a5896dd06f2186325

HTTP Headers

GET /ajax/libs/font-awesome/5.15.1/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:02:06 GMT
content-type: text/css; charset=utf-8
content-length: 10491
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f7b5b5f-e7d0"
last-modified: Mon, 05 Oct 2020 17:43:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 626494
expires: Wed, 19 Mar 2025 06:02:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kvAZtAgzV1Z1wHq5EpmN6QL70uEDO32WZ8iFjK8VbYuX10JH5gRhkGmR3hbglwGwhafUswpoYCecdkbyeQSagF9q7h8FrDuCWlMweqIHkXeQUOnNZu8uIM2l8z1kPxZ1FFf%2FxdXT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bda62d5a8f569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.24.14

200 OK

5.6 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:02:06 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 554687
expires: Wed, 19 Mar 2025 06:02:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VxVRvVaY0Jma05Z4SVchCuVOBX8yECTYDMAieddm26i08yJ7M0mPt9EjdPElpZKwijqQ1DZHytVjiSasVEa4e3Tl070cwlFVmkgECsFy3wdhg7RJH3jQiLlbthexH%2BW2JfOgGAzR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bda62d6a9a569a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.5.1.min.js

151.101.66.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.66.137:443
ASN
#54113 FASTLY

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 29 Mar 2024 06:02:06 GMT
age: 1648968
x-served-by: cache-lga21981-LGA, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 36, 757889
x-timer: S1711692126.345356,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js

216.58.207.202

200 OK

6.5 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/webfont/1.5.18/webfont.js
IP
216.58.207.202:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B
ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT

File type
JavaScript source, ASCII text, with very long lines (1190)
Size
6.5 kB (6490 bytes)
Hash
593e60ad549e46f8ca9a60755336c7df
9c030800712c832f2a15040cf02f546884a99808
ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4

HTTP Headers

GET /ajax/libs/webfont/1.5.18/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 6490
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:41:33 GMT
expires: Fri, 28 Mar 2025 02:41:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 98433
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/1380559502-widgets.js

142.250.74.73

200 OK

52 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/1380559502-widgets.js
IP
142.250.74.73:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C
ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT

File type
JavaScript source, ASCII text, with very long lines (1941)
Size
52 kB (51645 bytes)
Hash
baadbe005a81e05b72ff9f13b41ca2db
e0a0da83e1907d1b174397729cb8b743e83d41ba
0016acef19c1c4fed5f13ac338c5f3b2738b6873bceb66bc824c821623fa7bac

HTTP Headers

GET /static/v1/widgets/1380559502-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51645
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:29:47 GMT
expires: Fri, 28 Mar 2025 17:29:47 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Mar 2024 23:23:21 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 45139
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

142.250.74.73

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
142.250.74.73:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint16:C2:A7:07:D7:C2:E2:6D:46:53:95:DE:12:32:1F:2E:3D:23:98:8C
ValidityMon, 26 Feb 2024 08:02:55 GMT - Mon, 20 May 2024 08:02:54 GMT

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:42:54 GMT
expires: Fri, 28 Mar 2025 17:42:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 07:59:39 GMT
content-type: text/css
vary: Accept-Encoding
age: 44352
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5

142.250.74.72

200 OK

94 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-GMPGBDMPN5
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintDE:42:E4:CC:E5:66:70:09:F3:E6:6E:57:B7:5E:22:0A:A3:03:C2:7C
ValidityMon, 26 Feb 2024 08:03:40 GMT - Mon, 20 May 2024 08:03:39 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
94 kB (94251 bytes)
Hash
195e312cf35878c27dcb0cba8bdd017b
49d1846f4589623071b581ce34dc09bd55cf50e2
c53604ac706c53e6243eac0546f0bb6c1df2e2d2562ed2d24dcc48d96b639d9e

HTTP Headers

GET /gtag/js?id=G-GMPGBDMPN5 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 29 Mar 2024 06:02:06 GMT
expires: Fri, 29 Mar 2024 06:02:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

1.bp.blogspot.com/-n8C-NsF2L9k/YKzfFId6-HI/AAAAAAAAAOo/sBPqxhxlPpEgGTFvxhMo1aC_4akrKyirwCLcBGAsYHQ/s1041/photo_2021-04-02_23-35-48.jpg

142.250.74.161

200 OK

35 kB

URL GET HTTP/2
1.bp.blogspot.com/-n8C-NsF2L9k/YKzfFId6-HI/AAAAAAAAAOo/sBPqxhxlPpEgGTFvxhMo1aC_4akrKyirwCLcBGAsYHQ/s1041/photo_2021-04-02_23-35-48.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], progressive, precision 8, 468x1041, components 3
Size
35 kB (34752 bytes)
Hash
7cd89c8fcb9c4c1246a42047bce0297e
42f25454622defbc3d7fc27ff9da474ebe789e90
1049d0db60e97a8467e322dba350cc3afa143e946936e43760a8174cbeffa31b

HTTP Headers

GET /-n8C-NsF2L9k/YKzfFId6-HI/AAAAAAAAAOo/sBPqxhxlPpEgGTFvxhMo1aC_4akrKyirwCLcBGAsYHQ/s1041/photo_2021-04-02_23-35-48.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "veb"
expires: Sat, 30 Mar 2024 06:02:06 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="photo_2021-04-02_23-35-48.jpg"
x-content-type-options: nosniff
date: Fri, 29 Mar 2024 06:02:06 GMT
server: fife
content-length: 34752
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.24.14

200 OK

77 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://djqahkjwd.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 29 Mar 2024 06:02:06 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2551342
expires: Wed, 19 Mar 2025 06:02:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iElPG7eoHG8qjU%2FxdWY00shFLZbdEeALJzXY7996pVFtGFxCKZqo%2Bbi3IDl%2FuKU94oZc0dYMfxKF3kfYeupi5nJO8p6xhnSSRwYqMh84bapyz0U0E9049al7FREvACWLT2WY2TkC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 86bda62f9a880b45-OSL
alt-svc: h3=":443"; ma=86400

djqahkjwd.blogspot.com/favicon.ico

216.58.207.193

200 OK

412 B

URL GET HTTP/3
djqahkjwd.blogspot.com/favicon.ico
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint49:AD:78:68:0E:85:A7:93:17:D0:6A:19:52:28:0D:25:22:98:D5:18
ValidityMon, 26 Feb 2024 08:15:40 GMT - Mon, 20 May 2024 08:15:39 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: djqahkjwd.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Cookie: _ga_GMPGBDMPN5=GS1.1.1711692126.1.0.1711692126.0.0.0; _ga=GA1.1.500610294.1711692127
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Fri, 29 Mar 2024 06:02:07 GMT
date: Fri, 29 Mar 2024 06:02:07 GMT
cache-control: private, max-age=86400
last-modified: Tue, 05 Mar 2024 13:09:14 GMT
etag: W/"299669bbbf14e6a0ff2e1a2dfaef244d9e583c4b6def90908e96a8f12725c038"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css

104.18.10.207

200 OK

145 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP
104.18.10.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (65325)
Size
145 kB (144877 bytes)
Hash
450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d

HTTP Headers

GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:02:06 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 10/31/2023 18:48:44
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6f2d14e9436097e66447b103aa0360de
cdn-cache: HIT
cf-cache-status: HIT
age: 10802449
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86bda62d581656b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sg.7uq.org/?key=MjI4MHwxNzF8NjI2Mw&url=https://djqahkjwd.blogspot.com/

188.114.96.1

200 OK

615 B

URL GET HTTP/2
sg.7uq.org/?key=MjI4MHwxNzF8NjI2Mw&url=https://djqahkjwd.blogspot.com/
IP
188.114.96.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://djqahkjwd.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject7uq.org
Fingerprint3D:9F:57:54:01:89:CB:E5:A9:8A:45:C0:EB:F8:62:23:4B:66:69:B3
ValidityFri, 23 Feb 2024 01:37:08 GMT - Thu, 23 May 2024 01:37:07 GMT

File type
HTML document, ASCII text, with very long lines (642), with no line terminators
Size
615 B (615 bytes)
Hash
a6e0bffd45a81ef4c5154d168e6ffb65
0f671768522abc18c76353e4e9f3a6118c1c3804
788a60d587faf8aa1aeda9d7fa01b303d4941d97c5bdddc6218ce94fa1456b7f

HTTP Headers

GET /?key=MjI4MHwxNzF8NjI2Mw&url=https://djqahkjwd.blogspot.com/ HTTP/1.1
Host: sg.7uq.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://djqahkjwd.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://djqahkjwd.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 29 Mar 2024 06:02:06 GMT
content-type: text/html
last-modified: Fri, 14 Jan 2022 07:23:06 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uURs7OPjdTILI0cJFxykUWj9ZvuPsyQzZplh4UZYOJ7aY7wHkm6UFK7odBNom9uWocrvrdN3kybe%2Fcu6OEohWQIhUyrwxraFamA9vBVWOkoZhXVfEuaGugfcCrPF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bda62fee845691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML