Report - zmhlawiyeh.blogspot.com/2014/10/blog-post

Report Overview

Visited public
2023-09-17 13:52:37
Tags
Submit Tags
URL
zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Finishing URL
zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
IP / ASN
216.58.207.193
#15169 GOOGLE
Title
News To Day: النسخة المكسيكية من مسلسل هبة رجل الغراب الحلقة الثالثة مدبلج

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.google.com	7	1997-09-15	2015-05-10 13:11:19	2023-09-03 06:47:12	439 B	737 B	142.250.74.164
translate-pa.googleapis.com	1620	2005-01-25	2021-11-04 07:37:42	2023-09-16 22:32:24	539 B	2.3 kB	142.250.74.42
translate.google.com	1156	1997-09-15	2012-05-30 03:30:32	2023-09-16 18:12:39	950 B	89 kB	216.58.211.14
www.gstatic.com	unknown	2008-02-11	2016-07-26 11:37:06	2023-09-16 18:12:10	6.3 kB	329 kB	142.250.74.67
apis.google.com	105	1997-09-15	2013-05-06 22:20:21	2023-09-16 18:13:17	3.4 kB	246 kB	172.217.21.174
4.bp.blogspot.com	11215	2000-07-31	2012-05-21 15:44:19	2023-09-16 20:30:18	2.5 kB	109 kB	142.250.74.161
ajax.googleapis.com	12905	2005-01-25	2013-08-16 11:51:31	2023-09-16 22:00:45	450 B	26 kB	142.250.74.170
2.bp.blogspot.com	11071	2000-07-31	2012-05-21 15:44:19	2023-09-16 19:04:08	2.1 kB	29 kB	142.250.74.161
1.bp.blogspot.com	8403	2000-07-31	2012-05-21 15:44:19	2023-09-16 19:05:48	4.5 kB	180 kB	142.250.74.161
lh3.googleusercontent.com	66	2008-11-17	2012-05-22 09:35:05	2023-09-16 18:12:17	4.9 kB	14 kB	142.250.74.97
3.bp.blogspot.com	11048	2000-07-31	2012-05-21 18:26:21	2023-09-16 19:06:07	3.5 kB	168 kB	142.250.74.161
accounts.google.com	81	1997-09-15	2016-03-20 13:44:49	2023-09-16 21:52:37	5.5 kB	16 kB	142.250.74.109
zmhlawiyeh.blogspot.com	unknown	2000-07-31	2015-01-31 19:30:29	2023-07-17 15:39:37	2.5 kB	95 kB	216.58.207.193
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-09-16 19:42:01	462 B	4.2 kB	216.58.207.227
js-kit.com	764514	2022-03-18	2012-05-30 08:49:38	2023-09-16 17:19:27	4.0 kB	33 kB	54.230.111.129
resources.blogblog.com	13274	2000-09-15	2017-01-30 05:47:40	2023-09-16 18:20:04	1.4 kB	5.3 kB	142.250.74.169
www.blogger.com	8975	1999-06-22	2012-05-22 09:35:03	2023-09-16 18:20:03	7.3 kB	98 kB	142.250.74.169
img1.blogblog.com	65460	2000-09-15	2012-05-22 09:35:04	2023-09-17 05:10:08	939 B	3.0 kB	142.250.74.169
sites.google.com	3163	1997-09-15	2012-05-21 15:44:20	2023-09-03 08:12:28	963 B	1.9 kB	142.250.74.174
pagead2.googlesyndication.com	101	2003-01-21	2021-02-20 16:52:05	2023-09-16 22:24:35	441 B	705 B	142.250.74.162
translate.googleapis.com	1005	2005-01-25	2012-05-31 09:21:21	2023-09-16 21:25:12	2.2 kB	81 kB	142.250.74.42

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-09-17 13:52:19	high	54.37.238.86	Client IP	ET POLICY PE EXE or DLL Windows file download HTTP

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-09-17	medium	zmhlawiyeh.blogspot.com	Sinkholed
2023-09-17	medium	zmhlawiyeh.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	bp.blogspot.com	Sinkholed
2023-09-17	medium	zmhlawiyeh.blogspot.com	Sinkholed
2023-09-17	medium	zmhlawiyeh.blogspot.com	Sinkholed
2023-09-17	medium	zmhlawiyeh.blogspot.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (42)

	URL	From	Size	First Seen	Last Seen
	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	120 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 64322b089f3fb976943a49a83dc7f0fd cda66a449a2558e12266b06c118beaedbebde604 13af069fb9736a5ad8106d3b323448eea85566b2286a24ba0cefbe0e70ceee8b Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	946 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 49b110f379016821465ed59f53fabc56 57f2947cd80e4453134d33976279d5cfeb74f762 111a26fbe736ab849f59b083aff1cc950843fa5476895cf379a1caf0e261be1c Loading...

	pagead2.googlesyndication.com/pagead/js/google_top_exp.js	ScriptElement	47 B	2023-03-07	2025-07-25
Pretty URL pagead2.googlesyndication.com/pagead/js/google_top_exp.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 00:13 Times Seen16827 Hash 7f5f2be159837d73b72a4b37616bce44 c93d7f25b530b05c26440d3352213b683d03dcc3 ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js	ScriptElement	269 kB	2023-03-07	2025-07-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:54 Times Seen2287 Hash a68870343cf229117e2e937de0a4bcab d26503d7966e135023baf2bd6492c7016bf5601b 7e7e72eecf6a4fb2981627eb8d15b947d394398db4e67c7ca7705749cdb2f832 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	328 B	2023-03-07	2025-02-11
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 16:46 Last Seen2025-02-11 06:35 Times Seen30 Hash e7a207f1b84716e08870d57187116cab 3eebf21cf57462e9e58422c26b80eda249eafed6 ceee7189b46cfbc17e42bf66fd3d40c38f542f403101832978ecc359b96cc6be Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/exm=el_conf/ed=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_main	ScriptElement	221 kB	2023-09-07	2025-07-12
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/exm=el_conf/ed=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_main IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 23:01 Last Seen2025-07-12 14:05 Times Seen525 Hash a2a011d1e599db8ef632d98330bb23af 1424bdccf6af94e13cc47af4472870bf928a581e f057f2ea50996360cb788c5fc87da25674f5a3b48dc1d549440ae68817597415 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js	ScriptElement	25 kB	2023-03-07	2025-07-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:54 Times Seen2283 Hash 23c6f16903fe7d4b4c68bd9ae55b78b4 60b0d741aff75eb878e19547dc1a97ed7d891c10 9ad0d8bf9e4659eb773ec937a69b25c1e8869b17c43acd258f01e268f0194088 Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js	ScriptElement	520 kB	2023-03-07	2025-07-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:54 Times Seen2281 Hash cacca7bca63f8956b13b911c990713b7 524b727b15d66f07bb9ffebd6f2ddf3464c39bfb 0867ee1df230c80dc1601a8c56c499fabe444ab3ec173ce8b901444560c8816d Loading...

	www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js	ScriptElement	8.1 kB	2023-03-07	2025-07-24
Pretty URL www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:54 Times Seen2234 Hash 99926767e2e026e6c3cbecd1ee31ceb0 113f33d54d13eb32ef908a8f2820bd14e369b93e 30c48eef4e305a1f7e77d50dcac4b5f7baf250b0d55dfbab468db645bfb13c65 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	79 kB	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 1b92d464df07505811a6122740917262 3dc42fb43178a5c2398abc7bd29718afb9c7075b 4ef36bca90cba7881d07bb0857b849cefff46bc1eb00d67472477f4c8c2f6e39 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	1.0 kB	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 81350f7895687e2c8829530751ea1f1c 925a3cc191f9c16be4b6f6912044caff9ceb9fd0 3194f572701eb9d11c6c4871370752e7e59f497f462df3b63aac607519f88dc1 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	3.1 kB	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash bd8714a640d057401f56e72a1f690c5d 3fd7a4ae7209af5325e93afcbb37b2f26efd2d0c e770f78c5fe2ef6dded41bddfc5bd07e48d402d58022893ab62e0fde9259738e Loading...

	zmhlawiyeh.blogspot.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_conf	ScriptElement	87 kB	2023-09-17	2023-09-17
Pretty URL zmhlawiyeh.blogspot.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_conf IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-17 15:02 Last Seen2023-09-17 15:52 Times Seen6 Hash 5b374cbd5a39366ff5ca1e55adff04a6 b0dd21e70614b11b011730d5362f6d05fc984084 e144adf268a48f18ce6e7d909874a8ac81130985bb6b2a9caf7b5adf5feddcfb Loading...

	apis.google.com/js/platform.js	ScriptElement	58 kB	2023-08-29	2023-09-21
Pretty URL apis.google.com/js/platform.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 01:43 Last Seen2023-09-21 19:01 Times Seen3359 Hash bc0c02039629e33a0f670270feb69b5f 74ea07e932b0800171297bca3b64c71d7c409bf3 13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	677 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 722ab65ca4e93f1a0331cf40c6386d05 8b29075bba2defae8a3fb15a514b0f0229e118dd 52578b971874cbdd904a680f9fa012fd6105d39dfd93db56c960c729b59b3ff7 Loading...

	js-kit.com/ratings.js	ScriptElement	111 kB	2023-03-08	2025-07-21
Pretty URL js-kit.com/ratings.js IP 54.230.111.129 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 16:07 Last Seen2025-07-21 04:12 Times Seen105 Hash 6d2357aca7001634869225852af9f026 2b3ae9d8975cf0499703995c69c5ed005d071c86 61b8ac6ce4de67a0e1d67f695db4aec2241fc21522519ac73c4b084b9760f580 Loading...

	unknown	ScriptElement	29 B	2024-08-21	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 272b658c4748cc4b8be8eb4a9794dbc7 a3c3f865a60cc9f98b22205876de88e9a65113dc c8fbded2bf1b8078f3f2a4a4feee0f24f80869b419678900a59139ea22d74594 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	13 kB	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 823c86cf138cadb432bf698924157f3a c261dca03eaa712b5933540ea8a4eef487325382 6e680fe620f860d8ed1126b00652be65aae12620b4dfea3d4702a97fdd7c35dc Loading...

	www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439	ScriptElement	0 B	0001-01-01	2025-07-25
Pretty URL www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-07-25 04:00 Times Seen5529930 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs	ScriptElement	137 kB	2023-08-29	2023-11-11
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 01:43 Last Seen2023-11-11 15:32 Times Seen3102 Hash 6ad382fa50a2250514d6142072a647f4 316d68172c63ff03f82bb644b5a1ef54149ae818 6c34aa6863dc470b805525b8db49e29a2946b73cc81c1ab6b558efd49a5b2efe Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	275 B	2023-03-07	2025-07-25
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 00:13 Times Seen42193 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs	ScriptElement	184 kB	2023-08-29	2023-09-21
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 01:43 Last Seen2023-09-21 13:16 Times Seen2769 Hash 60cb3b69fb3e3b24891141159eb940ad 8b183b5d8df902f7919cec452bce4c7f1bd950a7 6bbd65596c2e3d24a2d396fbf8753545e8d6a3fe2a7467f9ef4e1b4c2a0494f9 Loading...

	zmhlawiyeh.blogspot.com/js/cookienotice.js	ScriptElement	6.5 kB	2023-03-07	2025-07-25
Pretty URL zmhlawiyeh.blogspot.com/js/cookienotice.js IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 00:13 Times Seen48798 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	264 B	2023-04-09	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-09 09:49 Last Seen2024-08-21 06:33 Times Seen5 Hash a9a1a0317a31c88c7383b4508d670a4f 4e02aca79e9f25da54fc56fc10ef867be014ecc6 2bf1558c4e3ce1daa128a0dd906a9656381630f92d90f9b69aa7fd17289938d3 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	302 B	2023-03-07	2025-07-25
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 00:13 Times Seen18020 Hash 5a9442d8fb9a2077b3ebaf7aa6f763fb 1ad7b70635d1b80ddf645acb12b5f17e0ecf0c99 0665437bacd7ab06df7300ed254eac6729ed5e062da4cfb3895416289cfc647a Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	813 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 911339ecace63968524cb1f4b0e4d98b 1bdb760d0480db609751eb6df8860c1ca16b627c b0c72eecca7abf0bdbf6911ab981383039de360037b9b0a935f5afc7a12f2f8c Loading...

	unknown	ScriptElement	29 B	2024-08-21	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash a89856b424e7a8189fbb70f12729670d a609d81c8de7cff9c1c842791fe185509837c560 9ea4471158ffb49c65a179462155351887c607c4f44d9efd8f7c3a61fa7ce559 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	269 B	2023-03-07	2025-07-25
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-07-25 00:13 Times Seen17321 Hash 6e880fa46f41c3a142b32e22ca7c06a0 cb7725608bf21d4a5fab1e9050328ab9b024d285 95df5b72788a5634d46797321652a339cd37eeba06d33166541e76a0deb42b61 Loading...

	www.gstatic.com/charts/loader.js	ScriptElement	62 kB	2023-04-05	2025-07-24
Pretty URL www.gstatic.com/charts/loader.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 02:08 Last Seen2025-07-24 14:46 Times Seen5279 Hash 32bc41d964faa1b95d9c61fc443df579 02d3f83dac14fe996babbfe332779ed182d39d1c 369ae154eab37b7ada7776b934833183bb053ebd1d0255f70ef8944f65cabb0c Loading...

	unknown	EventHandler	27 B	2023-04-10	2025-07-25
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 15:53 Last Seen2025-07-25 00:13 Times Seen28031 Hash 7688ca9eb3ca1c878821b1e3fe2c23d7 2c41fd7e9f8312d6fed18b21e1a0589413e35553 793bae9539499e6e02187febbd2e20fd17dd40260033f5175dbfc2f294440d9a Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	716 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 380b3ad97d5ed71fa0ebf647e2e754a5 0c07fd97062c456417a6b44c9e0871e348a49a0a a3c8a651219912fc66d0ad9044338ae6cbef25e1580ef21cea8559d086d0df2e Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	1.7 kB	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 553ac0fe3fe84734dd490f456fb7f2ac 289c9a056f5ebacc1ff4d892cec1fe01a739dbe8 f0c0da7c3139e15857a231edbc825b4f09e15144e6ae5507ca07670e6f0505e4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2	ScriptElement	72 kB	2023-03-07	2025-07-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2 IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07 Last Seen2025-07-24 20:24 Times Seen4080 Hash 10092eee563dec2dca82b77d2cf5a1ae 65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59 Loading...

	www.blogger.com/static/v1/widgets/1465578468-widgets.js	ScriptElement	160 kB	2023-09-15	2023-09-22
Pretty URL www.blogger.com/static/v1/widgets/1465578468-widgets.js IP 142.250.74.169 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-15 02:18 Last Seen2023-09-22 14:57 Times Seen3971 Hash a1cb4046392479f1acaeeba88535eaee 65ac5b085dd4b87ef3dbfe271254bd1d742f1abb d49c1e3a643794375db57ab0f237a97a189577f3e822d8512ed383f95941dde8 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	3.3 kB	2023-09-17	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-17 15:52 Last Seen2024-08-21 06:33 Times Seen3 Hash e9297a8ddd9423b7a5dd3d99d8219996 1fae0ae0b6796c0f3548f63ca67e3d71b143923b 6784bc3af847b15d1cec37db6de867f01b758ad402815b8d0434a5a4d1c05e77 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	232 B	2024-08-21	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 06:33 Last Seen2024-08-21 06:33 Times Seen1 Hash 16f4ae24c4c769122fa1faf60696c06e 9c1ca3f0fa0af9e54b91d4cbd64a4388067743b2 c4d0fbe4abc5811fe62da76723f3f78a35bc3e0430b60185ba130c680c1729db Loading...

	apis.google.com/js/platform:gapi.iframes.style.common.js	ScriptElement	58 kB	2023-08-29	2023-09-21
Pretty URL apis.google.com/js/platform:gapi.iframes.style.common.js IP 172.217.21.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-29 10:19 Last Seen2023-09-21 15:04 Times Seen2900 Hash 3e680d5a22266127e8a36263d1aff76d 792c1e4b9c3082d83eadb73e0a171f5af216b74b 646858dc6120e933f6d0951560063dea27b2cbf64693f5b3e45d637166266de1 Loading...

	www.gstatic.com/charts/51/loader.js	ScriptElement	49 kB	2023-03-07	2025-07-24
Pretty URL www.gstatic.com/charts/51/loader.js IP 142.250.74.67 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 12:54 Times Seen2303 Hash 0d4116dada2cae1db8727035a89248c1 cfe1a8697d0684f4872310b76523f949a3091d0a 15f9c7dcb6d3f3fd50ac55a55f8a4168652122756d7763c13c333c9d4b8a36f0 Loading...

	zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html	ScriptElement	789 B	2023-03-07	2024-08-21
Pretty URL zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html IP 216.58.207.193 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2024-08-21 09:44 Times Seen17283 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

		Size	First Seen	Last Seen
	#1 Write - 71d342a602bffe10475535ae8c0564e8	462 B	2023-07-17 22:18	2024-08-21 09:44
Pretty Observations First Seen2023-07-17 22:18 Last Seen2024-08-21 09:44 Times Seen573 Hash 71d342a602bffe10475535ae8c0564e8 87c91f764a28f683dabc40cafeb60e02cac7b849 2757d0e0bab41cc8d8e4fa0d49dbb1c2451b4215d55d4af7d1369712b9ede704 Loading...

	#2 Write - 2aa922650b5bea97e9158236221fb2ad	3.0 kB	2023-07-17 22:18	2024-08-21 09:40
Pretty Observations First Seen2023-07-17 22:18 Last Seen2024-08-21 09:40 Times Seen290 Hash 2aa922650b5bea97e9158236221fb2ad 04970914b85b49f83cfa41d1f9a0b1011cf80ee3 73f60981899011f7b6cf3131e9140807279f2305531bf25cdef59d0c3ded82a0 Loading...

	#3 Write - 3edc0d2763802bd7634576cf780630fd	24 B	2023-03-07 01:02	2025-07-24 07:29
Pretty Observations First Seen2023-03-07 01:02 Last Seen2025-07-24 07:29 Times Seen3359 Hash 3edc0d2763802bd7634576cf780630fd 598d900dcdecd9064535e606bf7a0708d4bf0ec2 a3ba8250ebf2c8e28e99b0cbcb48488777fa3f512e83a7a56930803eb5d35e05 Loading...

HTTP Transactions (100)

URL IP Response Size

GET zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html

216.58.207.193

200 OK

52 kB

URL User Request GET HTTP/2
zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (820)
Size
52 kB (52466 bytes)
Hash
91c8adda222d75cfb8c03cde3a6c3ec2
b189f07d13c979e00a3dbf6e8bea9a8f90edcfd7
e4c6e4ac6ddf1e63580e13a2b45ed8c5eb4174679c99fdbf430bef56d020d603

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2014/10/blog-post_18.html HTTP/1.1
Host: zmhlawiyeh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 17 Sep 2023 13:52:17 GMT
date: Sun, 17 Sep 2023 13:52:17 GMT
cache-control: private, max-age=0
last-modified: Tue, 22 Nov 2022 15:14:12 GMT
etag: W/"b13ef07a1eaea782ac30386bdc23b26badecca6bcf74abbe1574f8c0ff70e32c"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 52466
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.blogger.com/static/v1/widgets/466517130-widget_css_bundle_rtl.css

142.250.74.169

200 OK

6.6 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/466517130-widget_css_bundle_rtl.css
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
ASCII text, with very long lines (30626)
Size
6.6 kB (6636 bytes)
Hash
899d98bd2ce51afc4f24ba70eeb58ed4
4703bb6ccfc1422f04ea7ebef00704bad77b00c9
7128c3dd35bd13376ad01db6d1c538815e90aa93bbe9887edb129e1c31a8cd5d

HTTP Headers

GET /static/v1/widgets/466517130-widget_css_bundle_rtl.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 11:39:25 GMT
expires: Tue, 10 Sep 2024 11:39:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Sep 2023 08:53:00 GMT
content-type: text/css
vary: Accept-Encoding
age: 526372
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET zmhlawiyeh.blogspot.com/js/cookienotice.js

216.58.207.193

200 OK

2.0 kB

URL GET HTTP/3
zmhlawiyeh.blogspot.com/js/cookienotice.js
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: zmhlawiyeh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 17 Sep 2023 13:52:17 GMT
expires: Sun, 24 Sep 2023 13:52:17 GMT
cache-control: public, max-age=604800
last-modified: Sun, 17 Sep 2023 07:49:50 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/loader.js

142.250.74.67

200 OK

18 kB

URL GET HTTP/2
www.gstatic.com/charts/loader.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (2186)
Size
18 kB (18534 bytes)
Hash
32bc41d964faa1b95d9c61fc443df579
02d3f83dac14fe996babbfe332779ed182d39d1c
369ae154eab37b7ada7776b934833183bb053ebd1d0255f70ef8944f65cabb0c

HTTP Headers

GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 18534
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:22:11 GMT
expires: Sun, 17 Sep 2023 14:22:11 GMT
cache-control: public, max-age=3600
last-modified: Tue, 04 Apr 2023 17:52:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.blogger.com/static/v1/widgets/1465578468-widgets.js

142.250.74.169

200 OK

58 kB

URL GET HTTP/2
www.blogger.com/static/v1/widgets/1465578468-widgets.js
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
ASCII text, with very long lines (2215)
Size
58 kB (57929 bytes)
Hash
a1cb4046392479f1acaeeba88535eaee
65ac5b085dd4b87ef3dbfe271254bd1d742f1abb
d49c1e3a643794375db57ab0f237a97a189577f3e822d8512ed383f95941dde8

HTTP Headers

GET /static/v1/widgets/1465578468-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 13 Sep 2023 02:11:23 GMT
expires: Thu, 12 Sep 2024 02:11:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 01:52:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 387654
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET apis.google.com/js/platform.js

172.217.21.174

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/platform.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21840 bytes)
Hash
bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Sun, 17 Sep 2023 13:52:17 GMT
expires: Sun, 17 Sep 2023 13:52:17 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET img1.blogblog.com/html/buttons/blogger-simple-kahki.gif

142.250.74.169

200 OK

1.3 kB

URL GET HTTP/2
img1.blogblog.com/html/buttons/blogger-simple-kahki.gif
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
GIF image data, version 89a, 88 x 30\012- data
Size
1.3 kB (1250 bytes)
Hash
5f8d36dd092c4761b3117e8e7fa145dc
008794840cdf2f3a52f626968fb3257fa8d4e5a0
88d9c97ce4853f76b1dffd15dd77e666681b3b94482f70524107724a289bcf64

HTTP Headers

GET /html/buttons/blogger-simple-kahki.gif HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1250
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 19:38:16 GMT
expires: Mon, 18 Sep 2023 19:38:16 GMT
cache-control: public, max-age=604800
last-modified: Mon, 11 Sep 2023 18:57:30 GMT
content-type: image/gif
age: 497641
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET img1.blogblog.com/img/icon18_wrench_allbkg.png

142.250.74.169

200 OK

475 B

URL GET HTTP/2
img1.blogblog.com/img/icon18_wrench_allbkg.png
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
PNG image data, 18 x 18, 8-bit colormap, non-interlaced\012- data
Size
475 B (475 bytes)
Hash
f617effe6d96c15acfea8b2e8aae551f
6d676af11ad2e84b620cce4d5992b657cb2d8ab6
d172d750493be64a7ed84dec1dd2a0d787ba42f78bc694b0858f152c52b6620b

HTTP Headers

GET /img/icon18_wrench_allbkg.png HTTP/1.1
Host: img1.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 06:41:59 GMT
expires: Tue, 19 Sep 2023 06:41:59 GMT
cache-control: public, max-age=604800
last-modified: Mon, 11 Sep 2023 08:53:00 GMT
content-type: image/png
age: 457818
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 4.bp.blogspot.com/-fMoUU-D44fU/UXx-M91SYTI/AAAAAAAABAA/Hge4QoIf9MA/s1600/facebook.png

142.250.74.161

200 OK

5.0 kB

URL GET HTTP/2
4.bp.blogspot.com/-fMoUU-D44fU/UXx-M91SYTI/AAAAAAAABAA/Hge4QoIf9MA/s1600/facebook.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.0 kB (4986 bytes)
Hash
a646bc1a5cf2d46c25c5b6628ccbfd51
98f7ba0b805f510e073c1a87c5b7176cd6e61f05
8d3b705a712c831eec2b634eb8cb5a03416812f9be706d07ff82a64416580000

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-fMoUU-D44fU/UXx-M91SYTI/AAAAAAAABAA/Hge4QoIf9MA/s1600/facebook.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="facebook.png"
x-content-type-options: nosniff
server: fife
content-length: 4986
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v400"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 1.bp.blogspot.com/-v-weAgmXi00/UXx-OvVkajI/AAAAAAAABAY/4AMzY8YbrWs/s1600/youtube.png

142.250.74.161

200 OK

5.8 kB

URL GET HTTP/2
1.bp.blogspot.com/-v-weAgmXi00/UXx-OvVkajI/AAAAAAAABAY/4AMzY8YbrWs/s1600/youtube.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.8 kB (5766 bytes)
Hash
0dca179598133c0c0a6be94c1081f494
3b14686e1e50a5f7ba4a44b7df19d50dfbd51493
20a89d10a24b66f22e77d9ad20626c5a0b6316abd713afeb28ff0c0946e83919

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-v-weAgmXi00/UXx-OvVkajI/AAAAAAAABAY/4AMzY8YbrWs/s1600/youtube.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="youtube.png"
x-content-type-options: nosniff
server: fife
content-length: 5766
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v406"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8MybTCAMZDuCrBXHpyGbLSpo4BP-8-PS6d9RNIwelSS3mm0AN6yBM53dN2lBbsDb7DziSsg36Z7ZHc7k-DElG8OkmXBMfxydm5Sx9u5OT4niKPkNU9lwhF_k4o7w6N5kRdszb9sHtF4aFSybQb3PrdSh283WNaHwzR1JvE2Rx-AA=w72-h72-p-k-no-nu

142.250.74.97

200 OK

2.8 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MybTCAMZDuCrBXHpyGbLSpo4BP-8-PS6d9RNIwelSS3mm0AN6yBM53dN2lBbsDb7DziSsg36Z7ZHc7k-DElG8OkmXBMfxydm5Sx9u5OT4niKPkNU9lwhF_k4o7w6N5kRdszb9sHtF4aFSybQb3PrdSh283WNaHwzR1JvE2Rx-AA=w72-h72-p-k-no-nu
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 72x72, components 3\012- data
Size
2.8 kB (2806 bytes)
Hash
4d1a666d7a145f4dafd9cfbcdf92a7ed
049cc18821b79558d5c06e6e0434f4d49c804b10
3679b39a227903674dd7e117784a67359b15167cdab2493cd80647e8748ef9ad

HTTP Headers

GET /blogger_img_proxy/AAOd8MybTCAMZDuCrBXHpyGbLSpo4BP-8-PS6d9RNIwelSS3mm0AN6yBM53dN2lBbsDb7DziSsg36Z7ZHc7k-DElG8OkmXBMfxydm5Sx9u5OT4niKPkNU9lwhF_k4o7w6N5kRdszb9sHtF4aFSybQb3PrdSh283WNaHwzR1JvE2Rx-AA=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 2806
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 3.bp.blogspot.com/-WHMcE1Tn-n0/UXx-N1QcCzI/AAAAAAAABAM/PfnRhM5xNu4/s1600/twitter.png

142.250.74.161

200 OK

5.2 kB

URL GET HTTP/2
3.bp.blogspot.com/-WHMcE1Tn-n0/UXx-N1QcCzI/AAAAAAAABAM/PfnRhM5xNu4/s1600/twitter.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.2 kB (5236 bytes)
Hash
cce840c68ae4130141ce3ead51bb3cfc
9c295fba59d07f62abf63ed98446c57129ecd44f
06dfb8dd2e4c1a6e36badb4cb5569e0b2e751b125cee49c7800d50f1dfe0bb77

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-WHMcE1Tn-n0/UXx-N1QcCzI/AAAAAAAABAM/PfnRhM5xNu4/s1600/twitter.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="twitter.png"
x-content-type-options: nosniff
server: fife
content-length: 5236
x-xss-protection: 0
date: Sun, 17 Sep 2023 11:52:43 GMT
expires: Mon, 18 Sep 2023 11:52:43 GMT
cache-control: public, max-age=86400, no-transform
age: 7175
etag: "v403"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 3.bp.blogspot.com/-Yuv8C1jJ9h0/UXx-NoxvzMI/AAAAAAAABAE/2IjFbS0nZww/s1600/googleplus.png

142.250.74.161

200 OK

5.9 kB

URL GET HTTP/2
3.bp.blogspot.com/-Yuv8C1jJ9h0/UXx-NoxvzMI/AAAAAAAABAE/2IjFbS0nZww/s1600/googleplus.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.9 kB (5899 bytes)
Hash
a2bcae5c6edca402401cee8399fc00b6
6cc4504160586fa860e7e28e1f8475534c465451
b6e7b4d8877dd7a6dc43ea74262e21019949db993d9700d55400fdee5264f8a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-Yuv8C1jJ9h0/UXx-NoxvzMI/AAAAAAAABAE/2IjFbS0nZww/s1600/googleplus.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="googleplus.png"
x-content-type-options: nosniff
server: fife
content-length: 5899
x-xss-protection: 0
date: Sun, 17 Sep 2023 11:52:43 GMT
expires: Mon, 18 Sep 2023 11:52:43 GMT
cache-control: public, max-age=86400, no-transform
age: 7175
etag: "v401"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2

142.250.74.170

200 OK

25 kB

URL GET HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT

File type
ASCII text, with very long lines (820)
Size
25 kB (24715 bytes)
Hash
10092eee563dec2dca82b77d2cf5a1ae
65cbff4e9d95d47a6f31d96ab4ea361c1f538a7b
e23a2a4e2d7c2b41ebcdd8ffc0679df7140eb7f52e1eebabf827a88182643c59

HTTP Headers

GET /ajax/libs/jquery/1.4.2/jquery.min.js?ver=1.4.2 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 24715
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 03:00:20 GMT
expires: Wed, 11 Sep 2024 03:00:20 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 471118
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 1.bp.blogspot.com/-A_XjgOqh_hw/UXx-NFriOzI/AAAAAAAAA_8/DyhzO9Evb20/s1600/rss.png

142.250.74.161

200 OK

5.0 kB

URL GET HTTP/2
1.bp.blogspot.com/-A_XjgOqh_hw/UXx-NFriOzI/AAAAAAAAA_8/DyhzO9Evb20/s1600/rss.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size
5.0 kB (5026 bytes)
Hash
6dc956a02b6eb6bd84613a723bc9e9fc
9cd224b79f540025c06144bf053ce49fc13d09e1
6b6f59ba7cdf73210b9885e00d0cbe2e9b34e45c4a162104d02a9a761084dd70

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-A_XjgOqh_hw/UXx-NFriOzI/AAAAAAAAA_8/DyhzO9Evb20/s1600/rss.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="rss.png"
x-content-type-options: nosniff
server: fife
content-length: 5026
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v3ff"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8MypzV7Yy7NdIDi18y4rnw5_ZqkTnzQ_Cb97OlaJJaRg0fQKdaKSsc7mikdzNdbNlK6-9oApXJFtRoAe1nErAcbQOBuljhYMMup-wBaSqPs_deGjkiOAsvg5pJXYk1U8ZihRuoV7T8EQPrVb9XC_mulAmprDih40KT5nvi220YKAYoZfXcGxO6qOKTt1J5HXq38hXitOoFsA2DglWd6ry45m6QhMGLg-ZzsJ_xaYP7FwIrUCu1zZtyQudj81b1uFC1Y=w72-h72-p-k-no-nu

142.250.74.97

404 Not Found

1.9 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MypzV7Yy7NdIDi18y4rnw5_ZqkTnzQ_Cb97OlaJJaRg0fQKdaKSsc7mikdzNdbNlK6-9oApXJFtRoAe1nErAcbQOBuljhYMMup-wBaSqPs_deGjkiOAsvg5pJXYk1U8ZihRuoV7T8EQPrVb9XC_mulAmprDih40KT5nvi220YKAYoZfXcGxO6qOKTt1J5HXq38hXitOoFsA2DglWd6ry45m6QhMGLg-ZzsJ_xaYP7FwIrUCu1zZtyQudj81b1uFC1Y=w72-h72-p-k-no-nu
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.9 kB (1860 bytes)
Hash
909b0e1bc33c247e952ff3d302c0bbe5
903218ff1f26f7ad9fc3c753c4a1245082561d4a
1d391ebb944886bb3a2f71622e3cd9cac22b432a663351388cb94fece9dcfd66

HTTP Headers

GET /blogger_img_proxy/AAOd8MypzV7Yy7NdIDi18y4rnw5_ZqkTnzQ_Cb97OlaJJaRg0fQKdaKSsc7mikdzNdbNlK6-9oApXJFtRoAe1nErAcbQOBuljhYMMup-wBaSqPs_deGjkiOAsvg5pJXYk1U8ZihRuoV7T8EQPrVb9XC_mulAmprDih40KT5nvi220YKAYoZfXcGxO6qOKTt1J5HXq38hXitOoFsA2DglWd6ry45m6QhMGLg-ZzsJ_xaYP7FwIrUCu1zZtyQudj81b1uFC1Y=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 1860
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mx1A2t-2KO09Oy4LXPe5i3V2C9b_YGOMx35zH_i6-NKb3VfmEkvdNmlbL5pTWBQQnoljxajy15uoUTCPocI1T_D-nusLk1YFKfaSdM0ipRfepupKNLWUmc4swtSVTgj5FDJyRR3JJ63PAAk=w72-h72-p-k-no-nu

142.250.74.97

404 Not Found

1.7 kB

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mx1A2t-2KO09Oy4LXPe5i3V2C9b_YGOMx35zH_i6-NKb3VfmEkvdNmlbL5pTWBQQnoljxajy15uoUTCPocI1T_D-nusLk1YFKfaSdM0ipRfepupKNLWUmc4swtSVTgj5FDJyRR3JJ63PAAk=w72-h72-p-k-no-nu
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Size
1.7 kB (1745 bytes)
Hash
a4fa16fada262a07f9544702bc98ef60
6c69684dea2d3b9af93123288159cd6651c93ad5
d3e3431528f773442875648c8974e4012370f664fad501734de1035d3af72125

HTTP Headers

GET /blogger_img_proxy/AAOd8Mx1A2t-2KO09Oy4LXPe5i3V2C9b_YGOMx35zH_i6-NKb3VfmEkvdNmlbL5pTWBQQnoljxajy15uoUTCPocI1T_D-nusLk1YFKfaSdM0ipRfepupKNLWUmc4swtSVTgj5FDJyRR3JJ63PAAk=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 1745
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET sites.google.com/site/simoxooorg/Home/jquery.lazyload.mini.js?ver=1.5.0

142.250.74.174

302 Found

236 B

URL GET HTTP/2
sites.google.com/site/simoxooorg/Home/jquery.lazyload.mini.js?ver=1.5.0
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
236 B (236 bytes)
Hash
b08fc51ce925f2bf9de3459449a9d4c1
06712236d4694d15984d41be21b9a0dfd2a2126f
2ec5dc8d3cadfd082b18ec8419f0e7139aa149259a001b9c012a2ce057ceac4f

HTTP Headers

GET /site/simoxooorg/Home/jquery.lazyload.mini.js?ver=1.5.0 HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
location: https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Sun, 17 Sep 2023 13:52:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 236
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 1.bp.blogspot.com/-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/w72-h72-p-k-no-nu/s.jpg

142.250.74.161

200 OK

4.2 kB

URL GET HTTP/2
1.bp.blogspot.com/-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/w72-h72-p-k-no-nu/s.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
4.2 kB (4249 bytes)
Hash
e0f520453c6b0511c0afe511bb1d151a
05d4982b0017fa2971d1f89f9479818211141ae8
790d6fcaeb740de1508eb4f7b983ddc3fb288bf57fd937b1266e63b0bf49a10e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/w72-h72-p-k-no-nu/s.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1c9"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="s.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 4249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 1.bp.blogspot.com/-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/s640/s.jpg

142.250.74.161

200 OK

26 kB

URL GET HTTP/2
1.bp.blogspot.com/-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/s640/s.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 350x280, components 3\012- data
Size
26 kB (26125 bytes)
Hash
f00d9e5a30417cf9151b8f25361e17bf
98e8ecc1e11c0fdc0e4b308b21bb8595f0798ae7
d38faa6b34d14c4ed222855e6144c04657ceaae99400bed3753610738e5a4c4e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-KkIQmk6UHSE/VEA2FWVaQWI/AAAAAAAAAck/8AjIX4CT6Wc/s640/s.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1c9"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="s.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 26125
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 2.bp.blogspot.com/-oTW_Xfvkw2I/VEA2C-zmfyI/AAAAAAAAAcY/bpBQvFycQ14/w72-h72-p-k-no-nu/a.jpg

142.250.74.161

200 OK

3.8 kB

URL GET HTTP/2
2.bp.blogspot.com/-oTW_Xfvkw2I/VEA2C-zmfyI/AAAAAAAAAcY/bpBQvFycQ14/w72-h72-p-k-no-nu/a.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.8 kB (3781 bytes)
Hash
8ea521fb4095a9d1bcba5fe0318b36ed
cb57ac230dc50e460f913d8ee4d37d1806a9c3c0
109fb8671c354bf0ac8665d00a0e64e719f2eeab40936f07fb33f6e7e570d458

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-oTW_Xfvkw2I/VEA2C-zmfyI/AAAAAAAAAcY/bpBQvFycQ14/w72-h72-p-k-no-nu/a.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1c7"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="a.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 3781
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 2.bp.blogspot.com/-Cdy23uZuR0M/UzCQq6j8j7I/AAAAAAAAANs/Q47VdOhHVRk/w72-h72-p-k-no-nu/%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B.jpg

142.250.74.161

200 OK

3.2 kB

URL GET HTTP/2
2.bp.blogspot.com/-Cdy23uZuR0M/UzCQq6j8j7I/AAAAAAAAANs/Q47VdOhHVRk/w72-h72-p-k-no-nu/%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.2 kB (3210 bytes)
Hash
953e6f4c0db0c6038c88bf1049f13eff
6dfaf43e374f1ece210299f9f410cb56b68049c7
1f9d0a6d3ed015d1c29dafcc11a66bd802d03035a897669b8a6068255269c9e9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-Cdy23uZuR0M/UzCQq6j8j7I/AAAAAAAAANs/Q47VdOhHVRk/w72-h72-p-k-no-nu/%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B%255B.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vdb"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="[[[[[[[[[[[[.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 3210
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 3.bp.blogspot.com/-9nMAVQfCaDU/U--egF2C-lI/AAAAAAAADWo/LEGDLNmPiio/w72-h72-p-k-no-nu/NA1bKCR.jpg

142.250.74.161

200 OK

3.4 kB

URL GET HTTP/2
3.bp.blogspot.com/-9nMAVQfCaDU/U--egF2C-lI/AAAAAAAADWo/LEGDLNmPiio/w72-h72-p-k-no-nu/NA1bKCR.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.4 kB (3355 bytes)
Hash
ae111b7650cf0ecaad5aeda6fbb72c7d
f2c7f034d49a7d6d2aaba683e7ab8bff18a8cc20
5ccfd815f0fb0a840928efb9a243c80fc1f3183abdd076c666607d0ec30be44a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-9nMAVQfCaDU/U--egF2C-lI/AAAAAAAADWo/LEGDLNmPiio/w72-h72-p-k-no-nu/NA1bKCR.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd6b"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="NA1bKCR.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 3355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 1.bp.blogspot.com/-gy6zPXaQdrE/U_DuS6GCrkI/AAAAAAAADXI/-5pRZTDN78Q/w72-h72-p-k-no-nu/53f0e42a94d4f.jpg

142.250.74.161

200 OK

3.8 kB

URL GET HTTP/2
1.bp.blogspot.com/-gy6zPXaQdrE/U_DuS6GCrkI/AAAAAAAADXI/-5pRZTDN78Q/w72-h72-p-k-no-nu/53f0e42a94d4f.jpg
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Size
3.8 kB (3826 bytes)
Hash
dca53b7dc43b5dbc1491ffcd3021d482
f4f831b260521581333fd70d425c3b7f48ce5144
6d22720185a54aee32f37663d5f358a02f4ad9aa85d966096a14f0c926309fe8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-gy6zPXaQdrE/U_DuS6GCrkI/AAAAAAAADXI/-5pRZTDN78Q/w72-h72-p-k-no-nu/53f0e42a94d4f.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "vd73"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="53f0e42a94d4f.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 3826
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET 3.bp.blogspot.com/-uABsjubV9c0/TfGXYzCILtI/AAAAAAAAAGo/lWCTmkWVYCc/s1600/body.png

142.250.74.161

200 OK

212 B

URL GET HTTP/3
3.bp.blogspot.com/-uABsjubV9c0/TfGXYzCILtI/AAAAAAAAAGo/lWCTmkWVYCc/s1600/body.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 4 x 4, 8-bit/color RGB, non-interlaced\012- data
Size
212 B (212 bytes)
Hash
a1c8ee56c1b58139d8227d5f8549b5fb
8f74faceba08afd12b4f31232d0982844fb8e63d
459fb3c8b2ae09c8ebb26ec24aa691c25759775454f9439506f6126cb52ece9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-uABsjubV9c0/TfGXYzCILtI/AAAAAAAAAGo/lWCTmkWVYCc/s1600/body.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="body.png"
x-content-type-options: nosniff
server: fife
content-length: 212
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v6a"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 4.bp.blogspot.com/-RiKNKo_Xas0/TfGXwFREySI/AAAAAAAAAGw/nu_fpaO9oHQ/s1600/masthead.png

142.250.74.161

200 OK

32 kB

URL GET HTTP/3
4.bp.blogspot.com/-RiKNKo_Xas0/TfGXwFREySI/AAAAAAAAAGw/nu_fpaO9oHQ/s1600/masthead.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 199 x 180, 8-bit/color RGB, non-interlaced\012- data
Size
32 kB (31549 bytes)
Hash
28b5680862047afdf4284e69d8d92d41
ae84769b10b4461a5215af59f31ca6889f60aa28
c889f9b9c6ef32c8c6bcc81cc69006f55ea7b113d390d7c072e13e4ae340f529

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-RiKNKo_Xas0/TfGXwFREySI/AAAAAAAAAGw/nu_fpaO9oHQ/s1600/masthead.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v6c"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="masthead.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 31549
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 4.bp.blogspot.com/-a6IT9HuGo5Q/TfGYPCIIQrI/AAAAAAAAAHA/qETj1uLLgMY/s1600/sback.png

142.250.74.161

200 OK

18 kB

URL GET HTTP/3
4.bp.blogspot.com/-a6IT9HuGo5Q/TfGYPCIIQrI/AAAAAAAAAHA/qETj1uLLgMY/s1600/sback.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 272 x 60, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (17995 bytes)
Hash
dd271c4799e490320999a521a457e3c2
95c54ad3ad5613b4187c468826fd19f3c2cb4354
fb6e93b6b978f12e419148594636c6028e1a3f0c4de9e7b6fc303f5d2e3229ee

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-a6IT9HuGo5Q/TfGYPCIIQrI/AAAAAAAAAHA/qETj1uLLgMY/s1600/sback.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v70"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="sback.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 17995
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 2.bp.blogspot.com/-gIgr3Vc2GOo/TfGYWTQ5i2I/AAAAAAAAAHI/z2WaL9RYygw/s1600/sbg.png

142.250.74.161

200 OK

1.8 kB

URL GET HTTP/3
2.bp.blogspot.com/-gIgr3Vc2GOo/TfGYWTQ5i2I/AAAAAAAAAHI/z2WaL9RYygw/s1600/sbg.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 30 x 30, 8-bit/color RGB, non-interlaced\012- data
Size
1.8 kB (1845 bytes)
Hash
e2ec4fd3f239d75a3f214f808bd7872b
ab8e30c01a2b7c423026effe0c153b8b79141666
6f3978ae5bd3208eb9925c01c39ff108e1f0b2cdaa6333e3dc65f6f943bd7ce8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-gIgr3Vc2GOo/TfGYWTQ5i2I/AAAAAAAAAHI/z2WaL9RYygw/s1600/sbg.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v72"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="sbg.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 1845
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 2.bp.blogspot.com/-_cj0NJA879Y/TfGYpWWlwVI/AAAAAAAAAHY/moBaKfceE20/s1600/catmenu.png

142.250.74.161

200 OK

18 kB

URL GET HTTP/3
2.bp.blogspot.com/-_cj0NJA879Y/TfGYpWWlwVI/AAAAAAAAAHY/moBaKfceE20/s1600/catmenu.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 900 x 61, 8-bit/color RGB, non-interlaced\012- data
Size
18 kB (17950 bytes)
Hash
f4ba6feeeb2f55ef949ee7c6428f6b63
784e14528f5ced08100131afabc0403ed85b9de0
755febfc716239f2298f20da713539b88bf677cc70dfd956dc025fcd2e77d5ba

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-_cj0NJA879Y/TfGYpWWlwVI/AAAAAAAAAHY/moBaKfceE20/s1600/catmenu.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v76"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="catmenu.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 17950
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 3.bp.blogspot.com/-VLKSKkWWXww/TfGYD_pUU9I/AAAAAAAAAG4/N-Gh_yuK11M/s1600/top.png

142.250.74.161

200 OK

149 kB

URL GET HTTP/3
3.bp.blogspot.com/-VLKSKkWWXww/TfGYD_pUU9I/AAAAAAAAAG4/N-Gh_yuK11M/s1600/top.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 900 x 118, 8-bit/color RGB, non-interlaced\012- data
Size
149 kB (149213 bytes)
Hash
c58a04701e804cd8eba851ed8c100883
1de94c2c219791bed8af3f7775f6ce90f8406e26
db8e1c676adb14a03490e6efd903c559c441e7777fc03b620327ec968552d9a8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-VLKSKkWWXww/TfGYD_pUU9I/AAAAAAAAAG4/N-Gh_yuK11M/s1600/top.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="top.png"
x-content-type-options: nosniff
server: fife
content-length: 149213
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v6e"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css

142.250.74.67

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 20:35:52 GMT
expires: Wed, 11 Sep 2024 20:35:52 GMT
cache-control: public, max-age=31536000
age: 407786
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 1.bp.blogspot.com/-krjl2EGLL6w/TfGZMQkE9BI/AAAAAAAAAH4/LIfYVyomZJA/s1600/postmeta.png

142.250.74.161

200 OK

463 B

URL GET HTTP/3
1.bp.blogspot.com/-krjl2EGLL6w/TfGZMQkE9BI/AAAAAAAAAH4/LIfYVyomZJA/s1600/postmeta.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 8 x 42, 8-bit/color RGB, non-interlaced\012- data
Size
463 B (463 bytes)
Hash
2c860f1eb6e4eced87ad2199f96f7e9f
6fa2eada4e12415677f51aeaa109d827d1d90ed7
277485e3d8ff117746a7f5957073456ed30edcce89abe4e24bfccdd728d336b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-krjl2EGLL6w/TfGZMQkE9BI/AAAAAAAAAH4/LIfYVyomZJA/s1600/postmeta.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="postmeta.png"
x-content-type-options: nosniff
server: fife
content-length: 463
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v7e"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 3.bp.blogspot.com/-GCA1Q0rcs78/TfGZxo3ltkI/AAAAAAAAAIg/XHH5b2br0mU/s1600/balloon.png

142.250.74.161

200 OK

678 B

URL GET HTTP/3
3.bp.blogspot.com/-GCA1Q0rcs78/TfGZxo3ltkI/AAAAAAAAAIg/XHH5b2br0mU/s1600/balloon.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
678 B (678 bytes)
Hash
9180a0c36c2f4baec86da1839faf5ec3
32cbc467940df990a86b82e3273803f46958937d
e94756a854a048b54f5d6f0d482de1c6ecf901b584bfb0a84586b5ac1ba44327

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-GCA1Q0rcs78/TfGZxo3ltkI/AAAAAAAAAIg/XHH5b2br0mU/s1600/balloon.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v88"
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="balloon.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:18 GMT
server: fife
content-length: 678
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET apis.google.com/js/platform.js

172.217.21.174

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/platform.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21840 bytes)
Hash
bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Sun, 17 Sep 2023 13:52:18 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

61 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (1368)
Size
61 kB (61126 bytes)
Hash
60cb3b69fb3e3b24891141159eb940ad
8b183b5d8df902f7919cec452bce4c7f1bd950a7
6bbd65596c2e3d24a2d396fbf8753545e8d6a3fe2a7467f9ef4e1b4c2a0494f9

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61126
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 22:31:53 GMT
expires: Tue, 10 Sep 2024 22:31:53 GMT
cache-control: public, max-age=31536000
age: 487225
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 1.bp.blogspot.com/-FlsW04old1c/TeY1yq-a1jI/AAAAAAAAFV0/QYj3ZKTXktA/s1600/stripe.png

142.250.74.161

200 OK

220 B

URL GET HTTP/3
1.bp.blogspot.com/-FlsW04old1c/TeY1yq-a1jI/AAAAAAAAFV0/QYj3ZKTXktA/s1600/stripe.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 3 x 3, 8-bit/color RGB, non-interlaced\012- data
Size
220 B (220 bytes)
Hash
f7c186b29ceb0cec9780ee8871e37776
b08d039ad9c433beb8966d5e65bb550d4d47acfb
cbcd45f0da7e68a7537e841778ec10d2c6ecc8a79e1e2606958bfc8660877119

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-FlsW04old1c/TeY1yq-a1jI/AAAAAAAAFV0/QYj3ZKTXktA/s1600/stripe.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="stripe.png"
x-content-type-options: nosniff
server: fife
content-length: 220
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Mon, 18 Sep 2023 13:52:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v155d"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.blogger.com/dyn-css/authorization.css?targetBlogID=994903351828167321&zx=4ae5130b-a59f-4efe-b675-8d212868be0d

142.250.74.169

200 OK

21 B

URL GET HTTP/3
www.blogger.com/dyn-css/authorization.css?targetBlogID=994903351828167321&zx=4ae5130b-a59f-4efe-b675-8d212868be0d
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
very short file (no magic)
Size
21 B (21 bytes)
Hash
68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b

HTTP Headers

GET /dyn-css/authorization.css?targetBlogID=994903351828167321&zx=4ae5130b-a59f-4efe-b675-8d212868be0d HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:18 GMT
last-modified: Sun, 17 Sep 2023 13:52:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET pagead2.googlesyndication.com/pagead/js/google_top_exp.js

142.250.74.162

200 OK

42 B

URL GET HTTP/2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
142.250.74.162:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
FingerprintEB:E5:2C:45:AC:61:4B:69:97:3F:60:1A:0C:91:22:90:68:B6:95:01
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text
Size
42 B (42 bytes)
Hash
7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2

HTTP Headers

GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Sat, 16 Sep 2023 14:42:46 GMT
expires: Sat, 30 Sep 2023 14:42:46 GMT
cache-control: public, max-age=1209600
age: 83372
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/exm=el_conf/ed=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_main

142.250.74.42

200 OK

78 kB

URL GET HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/exm=el_conf/ed=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_main
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT

File type
ASCII text, with very long lines (2009)
Size
78 kB (77700 bytes)
Hash
a2a011d1e599db8ef632d98330bb23af
1424bdccf6af94e13cc47af4472870bf928a581e
f057f2ea50996360cb788c5fc87da25674f5a3b48dc1d549440ae68817597415

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.VhLMa5Goqys.O/d=1/exm=el_conf/ed=1/rs=AN8SPfp6Bt2OEGTMzKB1bcJzO6dB0ssCsA/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 77700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 14 Sep 2023 18:44:46 GMT
expires: Fri, 13 Sep 2024 18:44:46 GMT
cache-control: public, max-age=31536000
age: 241652
last-modified: Wed, 06 Sep 2023 15:12:32 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js

142.250.74.174

302 Found

301 B

URL GET HTTP/3
sites.google.com/site/sites/system/errors/WebspaceNotFound?path=%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js
IP
142.250.74.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (375)
Size
301 B (301 bytes)
Hash
fdb4cadec6412b284d07445c3f373c04
4fc8438d006ed4e0c70c6b562ca1cb9eccdd12ef
e84663addfd2d78f7c1a35bcccf7887d146690e643909c5b67ac06be129cf6d7

HTTP Headers

GET /site/sites/system/errors/WebspaceNotFound?path=%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
last-modified: Wed, 06 Sep 2023 21:51:40 GMT
etag: "1694037100000|#public|0|en|||0|995824666|563217833"
location: https://accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:18 GMT
expires: Sun, 17 Sep 2023 13:52:18 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 301
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8MzrjqnAp2r5pl4F3ZYPg1y4j94p2lhNyh59S-F1oQEn0fg9UmucCPTv7gRbgGhAwMAFfjeCjiwMfpOvY1BHDe1kli5GRUSWXFjwoMZXha2jtWaHSQ=s0-d

142.250.74.97

200 OK

964 B

URL GET HTTP/3
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MzrjqnAp2r5pl4F3ZYPg1y4j94p2lhNyh59S-F1oQEn0fg9UmucCPTv7gRbgGhAwMAFfjeCjiwMfpOvY1BHDe1kli5GRUSWXFjwoMZXha2jtWaHSQ=s0-d
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
964 B (964 bytes)
Hash
5140d918d5b6820289d4fc50f6f2b46b
a9969e6b48f27f34559e93f386bde21777ee4beb
219124f36a6d0bfd11557d87d31fa2090c9e33662ce753ef3a15bb7c2c27900d

HTTP Headers

GET /blogger_img_proxy/AAOd8MzrjqnAp2r5pl4F3ZYPg1y4j94p2lhNyh59S-F1oQEn0fg9UmucCPTv7gRbgGhAwMAFfjeCjiwMfpOvY1BHDe1kli5GRUSWXFjwoMZXha2jtWaHSQ=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: attachment;filename="unnamed.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:19 GMT
server: fife
content-length: 964
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 4.bp.blogspot.com/-rXwlk1AQCdI/TfGafBrcDPI/AAAAAAAAAI4/_RGfAle80rE/s1600/foot.png

142.250.74.161

200 OK

16 kB

URL GET HTTP/3
4.bp.blogspot.com/-rXwlk1AQCdI/TfGafBrcDPI/AAAAAAAAAI4/_RGfAle80rE/s1600/foot.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 127 x 127, 8-bit/color RGB, non-interlaced\012- data
Size
16 kB (16484 bytes)
Hash
864b6ceef4779875663311fdc203b72f
5bfc1b7dd6b3c4c05367a3998019814abf7869a0
02702ab1b74c4365654dbf4834b17e02b5973ee6028b700395d99a3ef8075279

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-rXwlk1AQCdI/TfGafBrcDPI/AAAAAAAAAI4/_RGfAle80rE/s1600/foot.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v8e"
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="foot.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:19 GMT
server: fife
content-length: 16484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 1.bp.blogspot.com/-BMA6GCqBCFo/TfGaWM7dImI/AAAAAAAAAIw/pc98aWeUzuE/s1600/bottom.png

142.250.74.161

200 OK

128 kB

URL GET HTTP/3
1.bp.blogspot.com/-BMA6GCqBCFo/TfGaWM7dImI/AAAAAAAAAIw/pc98aWeUzuE/s1600/bottom.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 900 x 90, 8-bit/color RGB, non-interlaced\012- data
Size
128 kB (127665 bytes)
Hash
23d2be1d83ca70454817ed31ac519c6d
4683e3ef4373ec295204aec295bd45530c81323a
a97cbf24361423a0515f98a8d7ab70628c3acab67745091bc93b59c2a95c6e2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-BMA6GCqBCFo/TfGaWM7dImI/AAAAAAAAAIw/pc98aWeUzuE/s1600/bottom.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bottom.png"
x-content-type-options: nosniff
server: fife
content-length: 127665
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v8c"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 4.bp.blogspot.com/-AGP045WOI50/UL0FYngD33I/AAAAAAAACUo/iNK8yxqGSqY/s1600/bg.png

142.250.74.161

200 OK

35 kB

URL GET HTTP/3
4.bp.blogspot.com/-AGP045WOI50/UL0FYngD33I/AAAAAAAACUo/iNK8yxqGSqY/s1600/bg.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 304 x 130, 8-bit/color RGB, non-interlaced\012- data
Size
35 kB (35131 bytes)
Hash
aad4e978dbc867ade9f1ee4ea294e8f5
ed0a78f1070bd68a565b294e130ad1967f3cae89
b1afb14d87dadba9cc59c3b21fabdd1a4411e33aec2af33a8cee2d66757bf8fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-AGP045WOI50/UL0FYngD33I/AAAAAAAACUo/iNK8yxqGSqY/s1600/bg.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="bg.png"
x-content-type-options: nosniff
server: fife
content-length: 35131
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v94a"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 1.bp.blogspot.com/-hk-n1Ljbk-o/UL0FZCKf2QI/AAAAAAAACUw/-U9-AXyxdKU/s1600/send.png

142.250.74.161

200 OK

2.6 kB

URL GET HTTP/3
1.bp.blogspot.com/-hk-n1Ljbk-o/UL0FZCKf2QI/AAAAAAAACUw/-U9-AXyxdKU/s1600/send.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 104 x 33, 8-bit/color RGB, non-interlaced\012- data
Size
2.6 kB (2585 bytes)
Hash
f38ccd215c3683ec1dc5d92ef998f325
4d868f330efe0b58f2453edb7f932344c3b7242f
601e9989cdd89f3af7a95830b7ae8b44cbd4ef53b7422b99d5382034f1442dec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-hk-n1Ljbk-o/UL0FZCKf2QI/AAAAAAAACUw/-U9-AXyxdKU/s1600/send.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v94c"
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="send.png"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:19 GMT
server: fife
content-length: 2585
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET 3.bp.blogspot.com/-LQTghAq-Me4/TfGaDZTSTmI/AAAAAAAAAIo/mYazxvYVibM/s1600/body.png

142.250.74.161

200 OK

212 B

URL GET HTTP/3
3.bp.blogspot.com/-LQTghAq-Me4/TfGaDZTSTmI/AAAAAAAAAIo/mYazxvYVibM/s1600/body.png
IP
142.250.74.161:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
PNG image data, 4 x 4, 8-bit/color RGB, non-interlaced\012- data
Size
212 B (212 bytes)
Hash
a1c8ee56c1b58139d8227d5f8549b5fb
8f74faceba08afd12b4f31232d0982844fb8e63d
459fb3c8b2ae09c8ebb26ec24aa691c25759775454f9439506f6126cb52ece9d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /-LQTghAq-Me4/TfGaDZTSTmI/AAAAAAAAAIo/mYazxvYVibM/s1600/body.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="body.png"
x-content-type-options: nosniff
server: fife
content-length: 212
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Mon, 18 Sep 2023 13:52:19 GMT
cache-control: public, max-age=86400, no-transform
etag: "v8a"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__

142.250.74.169

530 B

URL
www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
142.250.74.169:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1080)
Size
530 B (530 bytes)
Hash
46d836c11dc87400c2ab7b72702f99ea
56b458b81c35d9a45d1ebd61a3d8a4540b6ac20f
2f7637a220af8155822b0efd16844527247e76eba7d929731cff812173eec0ef

HTTP Headers

GET /followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Sun, 17 Sep 2023 13:52:19 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 530
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js

142.250.74.109

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint75:5C:17:06:78:FB:DD:37:D1:56:96:14:FC:26:4B:66:26:5F:D9:9D
ValidityMon, 14 Aug 2023 08:23:05 GMT - Mon, 06 Nov 2023 08:23:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?service=jotspot&passive=1209600&continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:RQRLQDv1J0fGKoCN8uXSLfWADK-2Iw:U0PPnzjLikXyVe2G; Expires=Tue, 16-Sep-2025 13:52:19 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&passive=1209600&service=jotspot&ifkv=AYZoVhcyV6K0RclrJ9XPkuIZkNiFF3QkacQ2R7LRVApZ9Ys3JMbgAi7IOLG-qGzJQMdfBLFepMoh
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-jQRUNuit0G4IpAbjyvW3sQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true

142.250.74.109

0 B

URL
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true
IP
142.250.74.109:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint75:5C:17:06:78:FB:DD:37:D1:56:96:14:FC:26:4B:66:26:5F:D9:9D
ValidityMon, 14 Aug 2023 08:23:05 GMT - Mon, 06 Nov 2023 08:23:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Az9uFtmeWsC_TJzWk558R3-cuTYkKA:gw5jTPUCKuQHXq6r; Expires=Tue, 16-Sep-2025 13:52:19 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
location: https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-1ZUTGZmvoTdYVabMiuOZpA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&passive=1209600&service=jotspot&ifkv=AYZoVhcyV6K0RclrJ9XPkuIZkNiFF3QkacQ2R7LRVApZ9Ys3JMbgAi7IOLG-qGzJQMdfBLFepMoh

142.250.74.109

302 Found

464 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&passive=1209600&service=jotspot&ifkv=AYZoVhcyV6K0RclrJ9XPkuIZkNiFF3QkacQ2R7LRVApZ9Ys3JMbgAi7IOLG-qGzJQMdfBLFepMoh
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint75:5C:17:06:78:FB:DD:37:D1:56:96:14:FC:26:4B:66:26:5F:D9:9D
ValidityMon, 14 Aug 2023 08:23:05 GMT - Mon, 06 Nov 2023 08:23:04 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (626)
Size
464 B (464 bytes)
Hash
db08a9e94b9ed5644af21d73067a5725
aded0f3df6d83b3198eb565a995edf03f1c6279e
dfccbc5efccb998a163c8cf9d63928031e93728e6215338f5c235884d2b348b7

HTTP Headers

GET /InteractiveLogin?continue=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&followup=https://sites.google.com/site/sites/system/errors/WebspaceNotFound?path%3D/simoxooorg/Home/jquery.lazyload.mini.js&passive=1209600&service=jotspot&ifkv=AYZoVhcyV6K0RclrJ9XPkuIZkNiFF3QkacQ2R7LRVApZ9Ys3JMbgAi7IOLG-qGzJQMdfBLFepMoh HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:N8im7JfvmzNX55eMPLbeeEUplgCK3w:a9Ke4zzgEd7aFdTM;Path=/;Expires=Tue, 16-Sep-2025 13:52:19 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&ifkv=AYZoVheb-lC0kGKlFT0Igfrs7zRqiY3W6gxtNCkeDoq7kBz1GXwZ0sb04UCOW7N_RuYTpnfJ2OSW&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1677394511%3A1694958739260391&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-gSOZCPdLKv8H2xKvi2BeCg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 464
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__

142.250.74.169

2.6 kB

URL
www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
142.250.74.169:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Size
2.6 kB (2632 bytes)
Hash
b3c8f1f13d2c7b9b43ee322daee9c8e3
97db2598441ef1a5500d65b615c2e0a1bdf8df2f
1496776b6709b655238abb6004e9786869dd7844e2bce7a439c929f4df8c1500

HTTP Headers

GET /navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2632
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET resources.blogblog.com/img/navbar/icons_peach.png

142.250.74.169

200 OK

907 B

URL GET HTTP/3
resources.blogblog.com/img/navbar/icons_peach.png
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=23499712
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Size
907 B (907 bytes)
Hash
3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865

HTTP Headers

GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 10:18:33 GMT
expires: Mon, 18 Sep 2023 10:18:33 GMT
cache-control: public, max-age=604800
last-modified: Mon, 11 Sep 2023 08:53:00 GMT
content-type: image/png
age: 531226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET resources.blogblog.com/img/navbar/arrows-light.png

142.250.74.169

200 OK

117 B

URL GET HTTP/3
resources.blogblog.com/img/navbar/arrows-light.png
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=23499712
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Size
117 B (117 bytes)
Hash
25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d

HTTP Headers

GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 21:11:33 GMT
expires: Mon, 18 Sep 2023 21:11:33 GMT
cache-control: public, max-age=604800
last-modified: Mon, 11 Sep 2023 08:53:00 GMT
content-type: image/png
age: 492046
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET apis.google.com/js/platform:gapi.iframes.style.common.js

172.217.21.174

200 OK

22 kB

URL GET HTTP/3
apis.google.com/js/platform:gapi.iframes.style.common.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=23499712
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21850 bytes)
Hash
3e680d5a22266127e8a36263d1aff76d
792c1e4b9c3082d83eadb73e0a171f5af216b74b
646858dc6120e933f6d0951560063dea27b2cbf64693f5b3e45d637166266de1

HTTP Headers

GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21850
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Sun, 17 Sep 2023 13:52:19 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3da185580d4f9ca7"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

46 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=23499712
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (1368)
Size
46 kB (45681 bytes)
Hash
6ad382fa50a2250514d6142072a647f4
316d68172c63ff03f82bb644b5a1ef54149ae818
6c34aa6863dc470b805525b8db49e29a2946b73cc81c1ab6b558efd49a5b2efe

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45681
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 22:31:53 GMT
expires: Tue, 10 Sep 2024 22:31:53 GMT
cache-control: public, max-age=31536000
age: 487226
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET zmhlawiyeh.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmC3i5T1VcU0RJO8RRzDw-mx7VgP4Lmj0t8V76A5T2VfZgFThQo9zBEHYO7TMdehYolp6NKH8KMe0pLo3VMtkmpAujaSoA

216.58.207.193

200 OK

234 B

URL GET HTTP/3
zmhlawiyeh.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmC3i5T1VcU0RJO8RRzDw-mx7VgP4Lmj0t8V76A5T2VfZgFThQo9zBEHYO7TMdehYolp6NKH8KMe0pLo3VMtkmpAujaSoA
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
JSON data\012- , ASCII text, with very long lines (387), with no line terminators
Size
234 B (234 bytes)
Hash
b8286a6a1be9c57ad0fa5592beb44cf6
f1c41422d5ec1a45f9078872373613c3b4b0c625
87a0839e9644309b70bb1b21b380c771eaf774caff0ccb10b9c9b08eac770cb3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmC3i5T1VcU0RJO8RRzDw-mx7VgP4Lmj0t8V76A5T2VfZgFThQo9zBEHYO7TMdehYolp6NKH8KMe0pLo3VMtkmpAujaSoA HTTP/1.1
Host: zmhlawiyeh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Sun, 17 Sep 2023 13:52:19 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 234
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.67

200 OK

1.8 kB

URL GET HTTP/3
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 15 Sep 2023 09:24:11 GMT
expires: Sat, 14 Sep 2024 09:24:11 GMT
cache-control: public, max-age=31536000
age: 188888
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css

142.250.74.67

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 20:35:52 GMT
expires: Wed, 11 Sep 2024 20:35:52 GMT
cache-control: public, max-age=31536000
age: 407787
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg

216.58.207.227

200 OK

3.3 kB

URL GET HTTP/2
fonts.gstatic.com/s/i/productlogos/translate/v14/24px.svg
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6225), with no line terminators
Size
3.3 kB (3340 bytes)
Hash
2bd5c073a88b83ed74db88282a56ddfb
d0ebfc376f8c6a44a8d4cd216817dcd7d0c33650
ab5c23a05e39deed14d9d8262b0dce9f024f86105a27196cad37d14a3f516e09

HTTP Headers

GET /s/i/productlogos/translate/v14/24px.svg HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 3340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 20:35:50 GMT
expires: Wed, 11 Sep 2024 20:35:50 GMT
cache-control: public, max-age=31536000
age: 407789
last-modified: Wed, 20 Apr 2022 14:24:23 GMT
content-type: image/svg+xml
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.google.com/images/cleardot.gif

142.250.74.164

200 OK

43 B

URL GET HTTP/2
www.google.com/images/cleardot.gif
IP
142.250.74.164:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint46:10:6A:3E:F0:E9:34:E0:79:83:32:6E:2E:D8:2A:57:15:BD:AC:4C
ValidityMon, 14 Aug 2023 08:23:03 GMT - Mon, 06 Nov 2023 08:23:02 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363

HTTP Headers

GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Sun, 17 Sep 2023 13:52:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1

142.250.74.169

1.9 kB

URL
www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1
IP
142.250.74.169:0
ASN
#15169 GOOGLE

Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1100)
Size
1.9 kB (1850 bytes)
Hash
a44fd42aa3970904ec9eb2f1cfa52c35
89edd44b6737d10638d14171ab556e363e80bdb5
e0378103c018afb4bdcae9e3491b7e9b4003e5f738b9c227077dc98f671b76e6

HTTP Headers

GET /followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1850
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback

142.250.74.42

1.4 kB

URL
translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
Unicode text, UTF-8 text
Size
1.4 kB (1392 bytes)
Hash
a3eefe14b1b4698460d992bd1673a26b
a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4
87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067

HTTP Headers

GET /v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback HTTP/1.1
Host: translate-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:19 GMT
server: ESF
cache-control: private
content-length: 1392
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: NID=511=b2kK0pWywGmDGtyq796wzzKfBT_4Qo-NEpPXKDiEXezAa8OXLWZ7htowz7aoXtjjsO5dPZYaE_3ZFdwasmwOpq2VipA6ejOmLKuc63i5USvqCjrhnDrW6diDvdV_PEM9I1syawg4ukh7V1n5rdgH1uBSAREKPgbB3I77JCwbwnE; expires=Mon, 18-Mar-2024 13:52:19 GMT; path=/; domain=.translate-pa.googleapis.com; HttpOnly
CONSENT=PENDING+029; expires=Tue, 16-Sep-2025 13:52:19 GMT; path=/; domain=.googleapis.com; Secure
expires: Sun, 17 Sep 2023 13:52:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/loader.js

142.250.74.67

200 OK

16 kB

URL GET HTTP/3
www.gstatic.com/charts/51/loader.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (1877)
Size
16 kB (15900 bytes)
Hash
0d4116dada2cae1db8727035a89248c1
cfe1a8697d0684f4872310b76523f949a3091d0a
15f9c7dcb6d3f3fd50ac55a55f8a4168652122756d7763c13c333c9d4b8a36f0

HTTP Headers

GET /charts/51/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 15900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:39:22 GMT
expires: Sun, 17 Sep 2023 14:39:22 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:04:22 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 777
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET apis.google.com/js/platform.js

172.217.21.174

200 OK

22 kB

URL GET HTTP/2
apis.google.com/js/platform.js
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT

File type
ASCII text, with very long lines (2664)
Size
22 kB (21840 bytes)
Hash
bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Sun, 17 Sep 2023 13:52:19 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css

142.250.74.67

200 OK

4.0 kB

URL GET HTTP/3
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (20367), with no line terminators
Size
4.0 kB (3960 bytes)
Hash
72d3a735ccca1027f6b3afba2c93e3a7
67f8eff8d17334c59c28fc1753bf451527c7490d
c8c845f55e2346b89894ce0df8185ee182359e096bf29987d5cf1f8a7391bef1

HTTP Headers

GET /_/translate_http/_/ss/k=translate_http.tr.TpYxICw8iG4.L.F4.O/d=0/rs=AN8SPfrtPftKEg7PtUwWauRCo_c976LPSg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3960
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 20:35:52 GMT
expires: Wed, 11 Sep 2024 20:35:52 GMT
cache-control: public, max-age=31536000
age: 407787
last-modified: Sat, 15 Jul 2023 01:09:03 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET translate.google.com/gen204?sl=ar&nca=te_ap&client=te&logld=vTE_20230906

216.58.211.14

204 No Content

0 B

URL GET HTTP/3
translate.google.com/gen204?sl=ar&nca=te_ap&client=te&logld=vTE_20230906
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /gen204?sl=ar&nca=te_ap&client=te&logld=vTE_20230906 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
content-type: image/gif; charset=us-ascii
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
content-security-policy: script-src 'nonce-MJjTzwOc4fz2FEXriWCvkA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self', require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: __Secure-ENID=14.SE=A6VsNZMspIf5JKAzq17SZ2n6Dn0MzC6r2FBC_NEiT1qEe1RCbskQIxUsY2wYj79TTSL7NsWwkiNb-dqd0ThWvvWkIvLPkf_6OlC27uQ_YdpolbXpL57fMvugMVBv0HuHZ3TSEi2DzWGq9Alz494qzFD4zH1SRg9wOkROCqmw-aE; expires=Thu, 17-Oct-2024 06:10:37 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=lax
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png

142.250.74.67

200 OK

1.6 kB

URL GET HTTP/3
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 kB (1597 bytes)
Hash
c4a931d597decd2553aac6634b766cf2
6ec84fb4a2745b4b71520241be77db1fd1013830
f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 14 Sep 2023 05:06:53 GMT
expires: Fri, 13 Sep 2024 05:06:53 GMT
cache-control: public, max-age=31536000
age: 290726
last-modified: Fri, 30 Jun 2023 18:58:00 GMT
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET js-kit.com/ratings.js

54.230.111.129

200 OK

24 kB

URL GET HTTP/2
js-kit.com/ratings.js
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
ASCII text
Size
24 kB (24445 bytes)
Hash
6d2357aca7001634869225852af9f026
2b3ae9d8975cf0499703995c69c5ed005d071c86
61b8ac6ce4de67a0e1d67f695db4aec2241fc21522519ac73c4b084b9760f580

HTTP Headers

GET /ratings.js HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 06 Apr 2022 16:13:41 GMT
x-amz-version-id: jpJVPLM2scc98VIza3fS53kMUkOeXCse
server: AmazonS3
content-encoding: br
date: Sun, 17 Sep 2023 04:19:52 GMT
etag: W/"6d2357aca7001634869225852af9f026"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8XPEjjTqwt1VJu6sbaTY8nrmG5XXHzGgl58hVyKN9C-1Jgzq6g_Fww==
age: 34347
X-Firefox-Spdy: h2

GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs

172.217.21.174

200 OK

46 kB

URL GET HTTP/3
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP
172.217.21.174:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (1368)
Size
46 kB (45681 bytes)
Hash
6ad382fa50a2250514d6142072a647f4
316d68172c63ff03f82bb644b5a1ef54149ae818
6c34aa6863dc470b805525b8db49e29a2946b73cc81c1ab6b558efd49a5b2efe

HTTP Headers

GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45681
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 22:30:51 GMT
expires: Tue, 10 Sep 2024 22:30:51 GMT
cache-control: public, max-age=31536000
age: 487288
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET resources.blogblog.com/img/anon45.png

142.250.74.169

200 OK

2.4 kB

URL GET HTTP/3
resources.blogblog.com/img/anon45.png
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
PNG image data, 45 x 45, 8-bit/color RGB, non-interlaced\012- data
Size
2.4 kB (2393 bytes)
Hash
34e595e04c3d5d6432467ad3adeda00c
13892c07f37ad1412a6bf4f8882e6abda3ecf8f5
bb9edcb764776694061a58275d9ddc53f2374f523f4705d6cdd2d62a684d424b

HTTP Headers

GET /img/anon45.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 01:33:44 GMT
expires: Tue, 19 Sep 2023 01:33:44 GMT
cache-control: public, max-age=604800
last-modified: Mon, 11 Sep 2023 16:55:23 GMT
content-type: image/png
age: 476315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/css/core/tooltip.css

142.250.74.67

200 OK

533 B

URL GET HTTP/3
www.gstatic.com/charts/51/css/core/tooltip.css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text
Size
533 B (533 bytes)
Hash
c0d9257463706e7243af302ef6e287ba
d81ce8030056dccc08fbf46c9c54e5d3d5033493
2cb6d99c8ba2262a4d0c6d0333a35b67be6d4db6c5a7d2c4a9cff74e5970e4f6

HTTP Headers

GET /charts/51/css/core/tooltip.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:20:04 GMT
expires: Sun, 17 Sep 2023 14:20:04 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:22:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 1935
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/css/util/util.css

142.250.74.67

200 OK

3.2 kB

URL GET HTTP/3
www.gstatic.com/charts/51/css/util/util.css
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text
Size
3.2 kB (3203 bytes)
Hash
c5934a97cd2e7a2ce012214d66ab8515
e5553d827c725b9cb6619d019363a71cf18b7c69
e9c9244f08810a7573b16fd89288d4587f617de4c005b3e4d74ee034b6dbf280

HTTP Headers

GET /charts/51/css/util/util.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 3203
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:20:04 GMT
expires: Sun, 17 Sep 2023 14:20:04 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:22:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 1935
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js

142.250.74.67

200 OK

8.0 kB

URL GET HTTP/3
www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (1629)
Size
8.0 kB (7953 bytes)
Hash
23c6f16903fe7d4b4c68bd9ae55b78b4
60b0d741aff75eb878e19547dc1a97ed7d891c10
9ad0d8bf9e4659eb773ec937a69b25c1e8869b17c43acd258f01e268f0194088

HTTP Headers

GET /charts/51/js/jsapi_compiled_graphics_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 7953
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 12:54:21 GMT
expires: Sun, 17 Sep 2023 13:54:21 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 3478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js

142.250.74.67

200 OK

1.4 kB

URL GET HTTP/3
www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (514)
Size
1.4 kB (1354 bytes)
Hash
99926767e2e026e6c3cbecd1ee31ceb0
113f33d54d13eb32ef908a8f2820bd14e369b93e
30c48eef4e305a1f7e77d50dcac4b5f7baf250b0d55dfbab468db645bfb13c65

HTTP Headers

GET /charts/51/js/jsapi_compiled_corechart_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 1354
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:25:06 GMT
expires: Sun, 17 Sep 2023 14:25:06 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1633
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js

142.250.74.67

200 OK

84 kB

URL GET HTTP/3
www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
ASCII text, with very long lines (2329)
Size
84 kB (84496 bytes)
Hash
a68870343cf229117e2e937de0a4bcab
d26503d7966e135023baf2bd6492c7016bf5601b
7e7e72eecf6a4fb2981627eb8d15b947d394398db4e67c7ca7705749cdb2f832

HTTP Headers

GET /charts/51/js/jsapi_compiled_default_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 84496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:15:37 GMT
expires: Sun, 17 Sep 2023 14:15:37 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 2202
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js

142.250.74.67

200 OK

171 kB

URL GET HTTP/3
www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js
IP
142.250.74.67:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT

File type
HTML document, ASCII text, with very long lines (541)
Size
171 kB (171024 bytes)
Hash
cacca7bca63f8956b13b911c990713b7
524b727b15d66f07bb9ffebd6f2ddf3464c39bfb
0867ee1df230c80dc1601a8c56c499fabe444ab3ec173ce8b901444560c8816d

HTTP Headers

GET /charts/51/js/jsapi_compiled_ui_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 171024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 17 Sep 2023 13:24:45 GMT
expires: Sun, 17 Sep 2023 14:24:45 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1654
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8MwLmYItT3LWbpj3nQ2pGTuY2-hs5GPY6bOK7DStsuLZr-elctruPVlq-a6G9XqJ0xFWq6qQ_6Mkra5lbfHlpebly1RvgdLD-zJiOV3EgdxYmGuImU2pbdp2YLTLivSIY5Jp_9zNh39lR7F7VlD-nXS-n_wlzUJM9f0immuvECI=w72-h72-p-k-no-nu

142.250.74.97

404 Not Found

43 B

URL GET HTTP/2
lh3.googleusercontent.com/blogger_img_proxy/AAOd8MwLmYItT3LWbpj3nQ2pGTuY2-hs5GPY6bOK7DStsuLZr-elctruPVlq-a6G9XqJ0xFWq6qQ_6Mkra5lbfHlpebly1RvgdLD-zJiOV3EgdxYmGuImU2pbdp2YLTLivSIY5Jp_9zNh39lR7F7VlD-nXS-n_wlzUJM9f0immuvECI=w72-h72-p-k-no-nu
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
ebd4c7248ac9be0c41d02060e3430a5d
eabc59bee6a7ff007a1dfc3da3b5493143c0d087
e1da5cd02d74bb5ba944e3ce44037860ac9f42392eec6c99b9543910e1a3a5fe

HTTP Headers

GET /blogger_img_proxy/AAOd8MwLmYItT3LWbpj3nQ2pGTuY2-hs5GPY6bOK7DStsuLZr-elctruPVlq-a6G9XqJ0xFWq6qQ_6Mkra5lbfHlpebly1RvgdLD-zJiOV3EgdxYmGuImU2pbdp2YLTLivSIY5Jp_9zNh39lR7F7VlD-nXS-n_wlzUJM9f0immuvECI=w72-h72-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:19 GMT
server: fife
content-length: 43
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/ruby.png

54.230.111.129

200 OK

777 B

URL GET HTTP/2
js-kit.com/images/stars/ruby.png
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
PNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
777 B (777 bytes)
Hash
0c90760ac654ae85e589cc92085bb41c
f157b054d5e42f9086a5130ad23f71f3e3fef3b0
a2384b612d28fd8e99cf89ce785d2aef4034760826d1da97f7f3d62bbceac0b7

HTTP Headers

GET /images/stars/ruby.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 777
last-modified: Wed, 06 Apr 2022 16:19:19 GMT
x-amz-version-id: 4MNA4yBThCx09Oi8x2OcuggKzNY8zE7W
accept-ranges: bytes
server: AmazonS3
date: Sun, 17 Sep 2023 13:47:47 GMT
etag: "0c90760ac654ae85e589cc92085bb41c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QmxMRtncJ1HaymgTMAG94g0XazcP39rmJ4guB6Xlzhjb0a78QqelVQ==
age: 18387
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/ruby-half.png

54.230.111.129

200 OK

779 B

URL GET HTTP/2
js-kit.com/images/stars/ruby-half.png
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
PNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
779 B (779 bytes)
Hash
8b892da740b3af828cca8b273742d911
c0923417913dd45c3fded19e1234de6878bc1b8d
b1512c5abd9536292049c2d5272dba43ea6578d4b53fef1ab3d5b23d4974e2bc

HTTP Headers

GET /images/stars/ruby-half.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 779
last-modified: Wed, 06 Apr 2022 16:19:14 GMT
x-amz-version-id: qMU7o7k2TTr8VoRWenln5UmdYDYMmNKK
accept-ranges: bytes
server: AmazonS3
date: Sun, 17 Sep 2023 13:47:47 GMT
etag: "8b892da740b3af828cca8b273742d911"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LQafPePCl0Yf0_mzp24K6sfFpsSKX3Sqp84clm4vKz504av8rpyeKw==
age: 18387
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/gray.png

54.230.111.129

200 OK

450 B

URL GET HTTP/2
js-kit.com/images/stars/gray.png
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
PNG image data, 16 x 15, 8-bit gray+alpha, non-interlaced\012- data
Size
450 B (450 bytes)
Hash
017c6af05f592838aa99797284e288d6
d5bbf29c0185b5f4d96d26f9c4f9d8724e168c04
84e799948ea5ffff9b3216ab9709e3768975e45fe23850bf481dd2e93536fb43

HTTP Headers

GET /images/stars/gray.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 450
last-modified: Wed, 06 Apr 2022 16:18:52 GMT
x-amz-version-id: feaHU0KMHETPRKgn01o3uKaKUEf_l3nw
accept-ranges: bytes
server: AmazonS3
date: Sun, 17 Sep 2023 13:47:47 GMT
etag: "017c6af05f592838aa99797284e288d6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LMncz7KWfjymsI_ntgnxB2G-es9ecFH7I4fYKmApDiAa8Z6jP7moeA==
age: 16467
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/gold.png

54.230.111.129

200 OK

767 B

URL GET HTTP/2
js-kit.com/images/stars/gold.png
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
PNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
767 B (767 bytes)
Hash
808065c8e0d9623368c3f4ed4367e9cd
8d2512cfffe0ac831f62828ee4dacf8bf46fa820
ec62cc8deab9b2cad6c1ff8d69915922751f27274bb290b921e6ba9ce26a2425

HTTP Headers

GET /images/stars/gold.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 767
last-modified: Wed, 06 Apr 2022 16:18:41 GMT
x-amz-version-id: H5KF_oMq8Zmmk7euEQNj5c22nmynrXCl
accept-ranges: bytes
server: AmazonS3
date: Sun, 17 Sep 2023 13:47:47 GMT
etag: "808065c8e0d9623368c3f4ed4367e9cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Rqoa18bT3XAQKnwzgLJADGHFdTDHRnorycaHt_60MNZu58OCGGeb4w==
age: 18387
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/gold-half.png

54.230.111.129

200 OK

769 B

URL GET HTTP/2
js-kit.com/images/stars/gold-half.png
IP
54.230.111.129:443
ASN
#16509 AMAZON-02

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type
PNG image data, 16 x 15, 8-bit/color RGBA, non-interlaced\012- data
Size
769 B (769 bytes)
Hash
fc5e3597ca7eec578eebeefd1e52f8c9
3e7a339f268c48e88cf14799af63cf30263cd337
d8b9902199989c47b29545669e068e54766730978214d4aaca356c78c8619626

HTTP Headers

GET /images/stars/gold-half.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 769
last-modified: Wed, 06 Apr 2022 16:18:41 GMT
x-amz-version-id: f8ETA2COOUrfeT3IqI3XViI8Ve9lxZrV
accept-ranges: bytes
server: AmazonS3
date: Sun, 17 Sep 2023 13:47:47 GMT
etag: "fc5e3597ca7eec578eebeefd1e52f8c9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GQseMTh6_x3JgUWVcc5ArlsxtSbjRMeNFM4HvpgKEyZy5_OhTfXjgw==
age: 25554
X-Firefox-Spdy: h2

GET zmhlawiyeh.blogspot.com/favicon.ico

216.58.207.193

200 OK

412 B

URL GET HTTP/3
zmhlawiyeh.blogspot.com/favicon.ico
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type
MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Size
412 B (412 bytes)
Hash
59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: zmhlawiyeh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-to blogspot; report-uri https://www.blogger.com/cspreport
report-to: {"group":"blogspot","max_age":2592000,"endpoints":[{"url":"https://www.blogger.com/cspreport"}]}
content-type: image/x-icon; charset=UTF-8
expires: Sun, 17 Sep 2023 13:52:20 GMT
date: Sun, 17 Sep 2023 13:52:20 GMT
cache-control: private, max-age=86400
last-modified: Tue, 22 Nov 2022 15:14:12 GMT
etag: W/"b13ef07a1eaea782ac30386bdc23b26badecca6bcf74abbe1574f8c0ff70e32c"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET lh3.googleusercontent.com/a-/ALV-UjV5lMJ6VFDQBVoGzUIWlwnHvS5nSfvWiTtleSwR8BTzMA=s45-c

142.250.74.97

200 OK

1.8 kB

URL GET HTTP/3
lh3.googleusercontent.com/a-/ALV-UjV5lMJ6VFDQBVoGzUIWlwnHvS5nSfvWiTtleSwR8BTzMA=s45-c
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size
1.8 kB (1768 bytes)
Hash
7a072a3421b88a35a52857895d21183a
f82596e71bab938cae7a80705b5a2b331ed8c64e
885da2315427bbcac57c968055c809569733f720c4586ab3f987e55e04fa3936

HTTP Headers

GET /a-/ALV-UjV5lMJ6VFDQBVoGzUIWlwnHvS5nSfvWiTtleSwR8BTzMA=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v14"
expires: Mon, 18 Sep 2023 13:52:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:20 GMT
server: fife
content-length: 1768
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET lh3.googleusercontent.com/a-/ALV-UjVdqQHErcFl0G0YpIy2OQT_3WvjY8BFOb6G3jFaW6kK3Q=s45-c

142.250.74.97

200 OK

1.8 kB

URL GET HTTP/3
lh3.googleusercontent.com/a-/ALV-UjVdqQHErcFl0G0YpIy2OQT_3WvjY8BFOb6G3jFaW6kK3Q=s45-c
IP
142.250.74.97:443
ASN
#15169 GOOGLE

Requested by
https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1#id=I0_1694958739132&_gfid=I0_1694958739132&parent=https%3A%2F%2Fzmhlawiyeh.blogspot.com&pfname=&rpctoken=12064439
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 45x45, components 3\012- data
Size
1.8 kB (1817 bytes)
Hash
f73d2aed6378703bcdfdfe511fd7a2ff
465649b78d262f2b2ccb95ded57abccfba7ad71a
8afd45b95a885b10b3f718b0df6042c3a5d82958ecb1100ab0e3de87e412e134

HTTP Headers

GET /a-/ALV-UjVdqQHErcFl0G0YpIy2OQT_3WvjY8BFOb6G3jFaW6kK3Q=s45-c HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v10"
expires: Mon, 18 Sep 2023 13:52:20 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Sun, 17 Sep 2023 13:52:20 GMT
server: fife
content-length: 1817
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

POST translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.42

200 OK

0 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-encoding,content-type,x-goog-authuser
Referer: https://zmhlawiyeh.blogspot.com/
Origin: https://zmhlawiyeh.blogspot.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://zmhlawiyeh.blogspot.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,content-encoding,content-type,x-goog-authuser,origin
content-type: text/plain; charset=UTF-8
date: Sun, 17 Sep 2023 13:52:29 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+606; expires=Tue, 16-Sep-2025 13:52:29 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 17 Sep 2023 13:52:29 GMT
cache-control: private

POST translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0

142.250.74.42

200 OK

131 B

URL POST HTTP/3
translate.googleapis.com/element/log?format=json&hasfast=true&authuser=0
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
131 B (131 bytes)
Hash
ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358

HTTP Headers

POST /element/log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Encoding: gzip
Content-Type: application/binary
Content-Length: 319
Origin: https://zmhlawiyeh.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
access-control-allow-origin: https://zmhlawiyeh.blogspot.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:29 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+099; expires=Tue, 16-Sep-2025 13:52:29 GMT; path=/; domain=.googleapis.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Sun, 17 Sep 2023 13:52:29 GMT

GET translate.googleapis.com/translate_static/img/loading.gif

142.250.74.42

200 OK

0 B

URL GET HTTP/3
translate.googleapis.com/translate_static/img/loading.gif
IP
142.250.74.42:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /translate_static/img/loading.gif HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 702
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 14 Sep 2023 04:59:51 GMT
expires: Fri, 13 Sep 2024 04:59:51 GMT
cache-control: public, max-age=31536000
age: 291148
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET js-kit.com/images/stars/ruby-tiny.png

0.0.0.0

0 B

URL GET
js-kit.com/images/stars/ruby-tiny.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/stars/ruby-tiny.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 06 Apr 2022 18:49:18 GMT
x-amz-version-id: M6cPEN5CsTB4bJoW4J2I8EGcOM07KSfW
server: AmazonS3
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:20 GMT
etag: W/"84069cc97e7aa8331e58722ae8a9a8d1"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QTPXDUh4M2oFUi_czTw4djdE4m58TBmCMTMaNukOnez7oM--KVc33w==
age: 26218
X-Firefox-Spdy: h2

GET translate.google.com/translate_a/element.js?cb=googleTranslateElementInit

216.58.211.14

200 OK

87 kB

URL GET HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
216.58.211.14:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type
ASCII text, with very long lines (2450)
Size
87 kB (86849 bytes)
Hash
5b374cbd5a39366ff5ca1e55adff04a6
b0dd21e70614b11b011730d5362f6d05fc984084
e144adf268a48f18ce6e7d909874a8ac81130985bb6b2a9caf7b5adf5feddcfb

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:18 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+079; expires=Tue, 16-Sep-2025 13:52:18 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__

142.250.74.169

302 Found

5.7 kB

URL GET HTTP/3
www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type

Size
5.7 kB (5744 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
location: https://accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:19 GMT
expires: Sun, 17 Sep 2023 13:52:19 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 530
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__

142.250.74.169

200 OK

6.7 kB

URL GET HTTP/3
www.blogger.com/navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6923), with no line terminators
Size
6.7 kB (6736 bytes)
Hash
a7ad99feda4d966b57590d7910298dad
a4c05bdc42ee796d6fd4cf9a3230d078aaa6f9c4
fb8cf80e1ef03c9ad4883222394fdbce852d389f83a0ffbdf8679a800db24c8d

HTTP Headers

GET /navbar.g?targetBlogID=994903351828167321&blogName=News+To+Day&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://zmhlawiyeh.blogspot.com/search&blogLocale=ar&v=2&homepageUrl=https://zmhlawiyeh.blogspot.com/&targetPostID=4222431476321743483&blogPostOrPageUrl=https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html&vt=-6336747825220532519&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.IoxrLNdlTyI.O%2Fd%3D1%2Frs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2632
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1

142.250.74.169

200 OK

5.7 kB

URL GET HTTP/3
www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1
IP
142.250.74.169:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5976), with no line terminators
Size
5.7 kB (5744 bytes)
Hash
6ec0e834b504ea47dd2f71e8ce06e367
94627a632f67297f17a2dc0f0ec8cb54a2a59973
adb6717fc1d6e725238e33f996d0588d4c20b60acc2ea3d67ffdb45afc81eb2e

HTTP Headers

GET /followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src   'self' *.google.com *.google-analytics.com 'unsafe-inline'   'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com   *.googleapis.com uds.googleusercontent.com https://s.ytimg.com   https://i18n-cloud.appspot.com   https://www.youtube.com   www-onepick-opensocial.googleusercontent.com   www-bloggervideo-opensocial.googleusercontent.com   www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1850
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET js-kit.com/images/i-wg.png

0.0.0.0

0 B

URL GET
js-kit.com/images/i-wg.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/i-wg.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 06 Apr 2022 18:49:18 GMT
x-amz-version-id: M6cPEN5CsTB4bJoW4J2I8EGcOM07KSfW
server: AmazonS3
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:20 GMT
etag: W/"84069cc97e7aa8331e58722ae8a9a8d1"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bL_pgZsexYcd28gCqJ5RpZ1vyDPIrgAgxR4gi3UdE4DrpfRlI8c5lA==
age: 26218
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/gray-tiny.png

0.0.0.0

0 B

URL GET
js-kit.com/images/stars/gray-tiny.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/stars/gray-tiny.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 06 Apr 2022 18:49:18 GMT
x-amz-version-id: M6cPEN5CsTB4bJoW4J2I8EGcOM07KSfW
server: AmazonS3
content-encoding: gzip
date: Sun, 17 Sep 2023 06:35:23 GMT
etag: W/"84069cc97e7aa8331e58722ae8a9a8d1"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fOdoyYT0WdtQSeKwllE6punmZ5V47WMV_dxc35aHy3x5IZbFzKX3vA==
age: 26218
X-Firefox-Spdy: h2

GET lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mz41xVCf-He_W56wHxtQVSM-hrDNluLxpmBMO1K5u1QCZYpoV0p81q4AViUz-o9wTQuV5eV5sIc2_V56hTacZz9-EQEvblEE-Zaaa22CoV5vijrDyzvRhcCFORrOPk=s0-d

0.0.0.0

0 B

URL GET
lh3.googleusercontent.com/blogger_img_proxy/AAOd8Mz41xVCf-He_W56wHxtQVSM-hrDNluLxpmBMO1K5u1QCZYpoV0p81q4AViUz-o9wTQuV5eV5sIc2_V56hTacZz9-EQEvblEE-Zaaa22CoV5vijrDyzvRhcCFORrOPk=s0-d
IP
0.0.0.0:0
ASN
#0

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
FingerprintB5:F6:4B:DC:96:53:57:F2:9C:41:9E:96:E6:9A:00:DF:E1:A9:C9:76
ValidityMon, 14 Aug 2023 08:21:40 GMT - Mon, 06 Nov 2023 08:21:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /blogger_img_proxy/AAOd8Mz41xVCf-He_W56wHxtQVSM-hrDNluLxpmBMO1K5u1QCZYpoV0p81q4AViUz-o9wTQuV5eV5sIc2_V56hTacZz9-EQEvblEE-Zaaa22CoV5vijrDyzvRhcCFORrOPk=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

GET zmhlawiyeh.blogspot.com/2014/10/images/casing.png

216.58.207.193

404 Not Found

37 kB

URL GET HTTP/3
zmhlawiyeh.blogspot.com/2014/10/images/casing.png
IP
216.58.207.193:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT

File type

Size
37 kB (36966 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /2014/10/images/casing.png HTTP/1.1
Host: zmhlawiyeh.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:18 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 50742
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&ifkv=AYZoVheb-lC0kGKlFT0Igfrs7zRqiY3W6gxtNCkeDoq7kBz1GXwZ0sb04UCOW7N_RuYTpnfJ2OSW&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1677394511%3A1694958739260391&theme=glif

142.250.74.109

403 Forbidden

0 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&ifkv=AYZoVheb-lC0kGKlFT0Igfrs7zRqiY3W6gxtNCkeDoq7kBz1GXwZ0sb04UCOW7N_RuYTpnfJ2OSW&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1677394511%3A1694958739260391&theme=glif
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&followup=https%3A%2F%2Fsites.google.com%2Fsite%2Fsites%2Fsystem%2Ferrors%2FWebspaceNotFound%3Fpath%3D%2Fsimoxooorg%2FHome%2Fjquery.lazyload.mini.js&ifkv=AYZoVheb-lC0kGKlFT0Igfrs7zRqiY3W6gxtNCkeDoq7kBz1GXwZ0sb04UCOW7N_RuYTpnfJ2OSW&passive=1209600&service=jotspot&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1677394511%3A1694958739260391&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-TsigK4U-CVfAwhdyI-SCeA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

GET accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true

142.250.74.109

302 Found

5.7 kB

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true
IP
142.250.74.109:443
ASN
#15169 GOOGLE

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint75:5C:17:06:78:FB:DD:37:D1:56:96:14:FC:26:4B:66:26:5F:D9:9D
ValidityMon, 14 Aug 2023 08:23:05 GMT - Mon, 06 Nov 2023 08:23:04 GMT

File type

Size
5.7 kB (5744 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&followup=https://www.blogger.com/followers.g?blogID%3D994903351828167321%26colors%3DCgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50%26pageSize%3D21%26postID%3D4222431476321743483%26origin%3Dhttps://zmhlawiyeh.blogspot.com/%26usegapi%3D1%26jsh%3Dm;/_/scs/abc-static/_/js/k%253Dgapi.lb.en.IoxrLNdlTyI.O/d%253D1/rs%253DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%253D__features__%26bpli%3D1&go=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zmhlawiyeh.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:Az9uFtmeWsC_TJzWk558R3-cuTYkKA:gw5jTPUCKuQHXq6r; Expires=Tue, 16-Sep-2025 13:52:19 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 17 Sep 2023 13:52:19 GMT
location: https://www.blogger.com/followers.g?blogID=994903351828167321&colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByMwMDAwMDAiByMwMDAwMDAqByNGRkZGRkYyByMwMDAwMDA6ByMwMDAwMDBCByMwMDAwMDBKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&postID=4222431476321743483&origin=https://zmhlawiyeh.blogspot.com/&usegapi=1&jsh=m;/_/scs/abc-static/_/js/k%3Dgapi.lb.en.IoxrLNdlTyI.O/d%3D1/rs%3DAHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/m%3D__features__&bpli=1
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-1ZUTGZmvoTdYVabMiuOZpA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

GET js-kit.com/images/stars/gold-tiny.png

0.0.0.0

0 B

URL GET
js-kit.com/images/stars/gold-tiny.png
IP
0.0.0.0:0
ASN
#0

Requested by
https://zmhlawiyeh.blogspot.com/2014/10/blog-post_18.html
Certificate
IssuerAmazon
Subjectjs-kit.com
Fingerprint9F:31:B8:33:05:07:C0:7E:85:A2:41:8E:1A:BC:C9:58:C7:AB:07:62
ValidityTue, 07 Mar 2023 00:00:00 GMT - Fri, 05 Apr 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images/stars/gold-tiny.png HTTP/1.1
Host: js-kit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
last-modified: Wed, 06 Apr 2022 18:49:18 GMT
x-amz-version-id: M6cPEN5CsTB4bJoW4J2I8EGcOM07KSfW
server: AmazonS3
content-encoding: gzip
date: Sun, 17 Sep 2023 13:52:20 GMT
etag: W/"84069cc97e7aa8331e58722ae8a9a8d1"
vary: Accept-Encoding
x-cache: Error from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZfDdcEIHkp-6-rh3Jd3zGJ6na57kwFhUXrDym2GBpPvG1jeLZ9FJAw==
age: 26218
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by