Report - 5fgffgfg4g4ghfg4d.blogspot.in/

Report Overview

Visited public
2023-12-03 13:53:57
Tags
URL
5fgffgfg4g4ghfg4d.blogspot.in/
Finishing URL
5fgffgfg4g4ghfg4d.blogspot.com/
IP / ASN
172.217.21.161
#15169 GOOGLE
Title
VID_20222012_050740.mp4- MEGA

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
5fgffgfg4g4ghfg4d.blogspot.in	unknown	2020-06-24	2023-11-03 01:16:13	2023-11-03 01:43:08	496 B	683 B	172.217.21.161
5fgffgfg4g4ghfg4d.blogspot.com	unknown	2000-07-31	2023-08-11 17:32:16	2023-12-03 13:07:49	962 B	6.5 kB	172.217.21.161
www.blogger.com	8975	1999-06-22	2012-05-22 09:35:03	2023-12-03 05:17:34	934 B	67 kB	216.58.207.233
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-03 06:51:04	931 B	152 kB	142.250.74.168
dailynews1.xyz	unknown	2022-08-10	2022-08-10 04:50:22	2023-12-01 03:42:00	1.4 kB	2.4 kB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2023-12-03	medium	5fgffgfg4g4ghfg4d.blogspot.in/	Facebook, Inc.
2023-12-03	medium	5fgffgfg4g4ghfg4d.blogspot.com/	Facebook, Inc.
2023-12-03	medium	5fgffgfg4g4ghfg4d.blogspot.com/	Facebook, Inc.

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	From	Size	First Seen	Last Seen
	5fgffgfg4g4ghfg4d.blogspot.com/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 21:54 Times Seen4657705 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	5fgffgfg4g4ghfg4d.blogspot.com/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 21:54 Times Seen4657705 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	5fgffgfg4g4ghfg4d.blogspot.com/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 21:54 Times Seen4657705 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.blogger.com/static/v1/widgets/325989852-widgets.js	ScriptElement	165 kB	2023-11-23	2023-12-04
Pretty URL www.blogger.com/static/v1/widgets/325989852-widgets.js IP 216.58.207.233 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 06:43 Last Seen2023-12-04 01:06 Times Seen1747 Hash 2aaaea7286ee481cbc12cfd76e10c0cf 6e8576cb84ac125faa0bc0a5fe5508166cc4eed8 4bfa00cdbc7a40f5dad3dfc3a21dada224e61e358e78d7b262bab098bccbc580 Loading...

	5fgffgfg4g4ghfg4d.blogspot.com/js/cookienotice.js	ScriptElement	6.5 kB	2023-03-07	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/js/cookienotice.js IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-05-11 21:19 Times Seen43890 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	www.googletagmanager.com/gtag/js?id=UA-253778568-1	ScriptElement	191 kB	2023-12-03	2023-12-03
Pretty URL www.googletagmanager.com/gtag/js?id=UA-253778568-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 14:53 Last Seen2023-12-03 14:53 Times Seen1 Hash 1876f2bb18f29c08549cca05f129f3fb 808bb2b3448b0215e1a323121fba7d0794c57296 4ff1f8fcb893da4f2f87364b842ac07be76b519ff3a7ac12a5477c9670a9a01f Loading...

	5fgffgfg4g4ghfg4d.blogspot.com/sandbox%20eval%20code		147 B	2023-04-11	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 21:45 Times Seen342010 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google-analytics.com/analytics.js	ScriptElement	4.7 kB	2023-04-11	2025-05-11
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07 Last Seen2025-05-11 21:45 Times Seen341208 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c	ScriptElement	229 kB	2023-12-03	2023-12-03
Pretty URL www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 14:53 Last Seen2023-12-03 14:53 Times Seen2 Hash 3159bffba8d9a5e655df2aa9b9d2b66f d2e31a5cc573ef27be7d0944f9f99c1edb7b9c2c 13444b5af368b7af0152909044aea2e306485f5137f2f1370e42a3b19acdae60 Loading...

	5fgffgfg4g4ghfg4d.blogspot.com/	ScriptElement	0 B	0001-01-01	2025-05-11
Pretty URL 5fgffgfg4g4ghfg4d.blogspot.com/ IP 172.217.21.161 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-05-11 21:54 Times Seen4657705 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (10)

URL IP Response Size

5fgffgfg4g4ghfg4d.blogspot.in/

172.217.21.161

302 Found

183 B

URL User Request GET HTTP/2
5fgffgfg4g4ghfg4d.blogspot.in/
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
183 B (183 bytes)
Hash
3f1e86e4c1a0d7d9ee267f3c68346cab
97e53b5ff9b3ad92ade33f8841775160039f15c9
9a1983d29395bc90e829bdaea3d0fbf27317f9d7275a8ca607cf6abe5da06640

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: 5fgffgfg4g4ghfg4d.blogspot.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://5fgffgfg4g4ghfg4d.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 03 Dec 2023 13:53:39 GMT
expires: Sun, 03 Dec 2023 13:53:39 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 183
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

5fgffgfg4g4ghfg4d.blogspot.com/

172.217.21.161

200 OK

3.3 kB

URL User Request GET HTTP/2
5fgffgfg4g4ghfg4d.blogspot.com/
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4347)
Size
3.3 kB (3303 bytes)
Hash
cc3e66f3d2b0476dabb2cc9305cc2d5f
02b6dafdc3aabd83856e2de26ee398414af1fd15
c073340b4b27afa9df74161179a8a7aa460622cb98b3c3627e58d4fe63ad7b83

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET / HTTP/1.1
Host: 5fgffgfg4g4ghfg4d.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 03 Dec 2023 13:53:39 GMT
date: Sun, 03 Dec 2023 13:53:39 GMT
cache-control: private, max-age=0
last-modified: Tue, 26 Sep 2023 00:01:19 GMT
etag: W/"e04476e03093ac26099258301ef2e8fc77ad0886819b799aeeac1266a785ba4a"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 3303
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

5fgffgfg4g4ghfg4d.blogspot.com/js/cookienotice.js

172.217.21.161

200 OK

2.0 kB

URL GET HTTP/3
5fgffgfg4g4ghfg4d.blogspot.com/js/cookienotice.js
IP
172.217.21.161:443
ASN
#15169 GOOGLE

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint07:E2:99:33:66:25:16:0A:1D:C3:C7:18:D8:82:4A:F0:37:40:E1:5B
ValidityMon, 23 Oct 2023 11:23:28 GMT - Mon, 15 Jan 2024 11:23:27 GMT

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Facebook, Inc.

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: 5fgffgfg4g4ghfg4d.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 03 Dec 2023 13:53:20 GMT
expires: Sun, 10 Dec 2023 13:53:20 GMT
cache-control: public, max-age=604800
last-modified: Sun, 03 Dec 2023 06:51:12 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 19
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css

216.58.207.233

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT

File type
ASCII text, with very long lines (30596)
Size
6.6 kB (6620 bytes)
Hash
e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617

HTTP Headers

GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 11:35:32 GMT
expires: Fri, 29 Nov 2024 11:35:32 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 17:00:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 267487
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/static/v1/widgets/325989852-widgets.js

216.58.207.233

200 OK

59 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/325989852-widgets.js
IP
216.58.207.233:443
ASN
#15169 GOOGLE

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint4A:89:9B:E5:F1:54:0E:2D:0A:8E:40:A8:27:DF:2E:6B:7F:74:51:90
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT

File type
ASCII text, with very long lines (2258)
Size
59 kB (59316 bytes)
Hash
2aaaea7286ee481cbc12cfd76e10c0cf
6e8576cb84ac125faa0bc0a5fe5508166cc4eed8
4bfa00cdbc7a40f5dad3dfc3a21dada224e61e358e78d7b262bab098bccbc580

HTTP Headers

GET /static/v1/widgets/325989852-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 59316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 14:08:07 GMT
expires: Fri, 29 Nov 2024 14:08:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 29 Nov 2023 05:57:17 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 258333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-253778568-1

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-253778568-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (69126 bytes)
Hash
1876f2bb18f29c08549cca05f129f3fb
808bb2b3448b0215e1a323121fba7d0794c57296
4ff1f8fcb893da4f2f87364b842ac07be76b519ff3a7ac12a5477c9670a9a01f

HTTP Headers

GET /gtag/js?id=UA-253778568-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 13:53:40 GMT
expires: Sun, 03 Dec 2023 13:53:40 GMT
cache-control: private, max-age=900
last-modified: Sun, 03 Dec 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69126
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
81 kB (81234 bytes)
Hash
3159bffba8d9a5e655df2aa9b9d2b66f
d2e31a5cc573ef27be7d0944f9f99c1edb7b9c2c
13444b5af368b7af0152909044aea2e306485f5137f2f1370e42a3b19acdae60

HTTP Headers

GET /gtag/js?id=G-4Y7526ERN0&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 03 Dec 2023 13:53:40 GMT
expires: Sun, 03 Dec 2023 13:53:40 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81234
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

dailynews1.xyz/codenew2/sat/ic.png

188.114.97.1

404 Not Found

0 B

URL GET HTTP/3
dailynews1.xyz/codenew2/sat/ic.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB7:3B:2B:28:C2:6C:E0:15:B5:6F:E1:22:74:F8:03:A7:36:06:C7:C5
ValidityTue, 14 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /codenew2/sat/ic.png HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 03 Dec 2023 13:53:40 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PbgucRw8Lj5sExWQdzDpBbZncaD%2BokKQnMRRNJn6Yvz8aroorDhh5YttDBxhwRC%2FA%2BQhbC1Byvya9iqhW9HdQysrAPF8p1Gtz2%2Fe1prrHpOZGkqlQASk069nF29mbtUmSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82fc4c1309a270fb-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400

dailynews1.xyz/codemess/style.css

188.114.97.1

404 Not Found

0 B

URL GET HTTP/2
dailynews1.xyz/codemess/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB7:3B:2B:28:C2:6C:E0:15:B5:6F:E1:22:74:F8:03:A7:36:06:C7:C5
ValidityTue, 14 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /codemess/style.css HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
date: Sun, 03 Dec 2023 13:53:40 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 19
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=naWetLtBSn7aGbaGWUYz1GVeR0NkrKeqW52tG6EW3s1f4DwHXmgYfSwQvgPNatCvhbFbKL2WkAbEJlFXiOt58vhDufqCEizjvLm0DaUB8ef3GTJDXIdGl%2Fn97ihTLuEZ4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82fc4c10df554c81-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

dailynews1.xyz/codenew2/sat/ic.png

188.114.97.1

404 Not Found

0 B

URL GET HTTP/3
dailynews1.xyz/codenew2/sat/ic.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://5fgffgfg4g4ghfg4d.blogspot.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB7:3B:2B:28:C2:6C:E0:15:B5:6F:E1:22:74:F8:03:A7:36:06:C7:C5
ValidityTue, 14 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /codenew2/sat/ic.png HTTP/1.1
Host: dailynews1.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://5fgffgfg4g4ghfg4d.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
date: Sun, 03 Dec 2023 13:53:40 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: upgrade-insecure-requests
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 18
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OZgh7ARoByV1pWKbaCLEZTwF9JmChqWqQgh95hJ5Y9jnm%2B5XUIYMjGQsvu%2B59NSmP1sh3TEMhh7%2BNwyPIi7KXfpnMnSHq05ihj950JlBpTd26D4W2V7MdvwnyffMIYVyFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82fc4c13099f70fb-HEL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by