Report - www.nirsoft.net/utils/index.html

Report Overview

Visited public
2025-07-09 05:19:09
Tags
Submit Tags
URL
www.nirsoft.net/utils/index.html
Finishing URL
www.nirsoft.net/utils/index.html
IP / ASN
107.190.138.58
#33182 DIMENOC
Title
Freeware Tools and System Utilities for Windows

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.nirsoft.net	147497	2004-08-26	2012-05-21	2025-07-07	4.1 kB	187 kB	107.190.138.58
cse.google.com	2642	1997-09-15	2015-03-18	2025-07-04	882 B	148 kB	142.250.74.142
www.googletagmanager.com	75	2011-11-11	2012-10-04	2025-07-02	436 B	344 kB	142.250.178.104
www.google.com	7	1997-09-15	2015-05-10	2025-07-02	2.4 kB	350 kB	142.250.178.100
clients1.google.com	415	1997-09-15	2013-02-01	2025-07-07	441 B	182 B	142.250.74.142

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (13)

	URL	From	Size	First Seen	Last Seen
	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-07-19
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 05:20 Times Seen29932 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

	www.nirsoft.net/utils/sandbox%20eval%20code		128 B	2023-05-06	2025-07-19
Pretty URL www.nirsoft.net/utils/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 05:20 Times Seen30193 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	www.nirsoft.net/utils/index.html	ScriptElement	153 B	2023-08-31	2025-07-09
Pretty URL www.nirsoft.net/utils/index.html IP 107.190.138.58 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-31 10:09 Last Seen2025-07-09 05:19 Times Seen34 Hash a302bb070c2f26c01fe9f2af02c79349 9c5e7c8b176dd866cd63a5bcb9bf9d1556129d96 32008c06d51dd14dd30945395f18ec1fdf6971084005857f5d826bba44baeb1d Loading...

	www.nirsoft.net/utils/index.html	ScriptElement	57 B	2023-03-07	2025-07-19
Pretty URL www.nirsoft.net/utils/index.html IP 107.190.138.58 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-07-19 02:44 Times Seen11954 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	www.nirsoft.net/utils/index.html	ScriptElement	57 B	2023-03-07	2025-07-19
Pretty URL www.nirsoft.net/utils/index.html IP 107.190.138.58 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06 Last Seen2025-07-19 02:44 Times Seen11954 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	cse.google.com/cse.js?cx=partner-pub-5286073190998405:5399172980	ScriptElement	5.9 kB	2025-07-09	2025-07-09
Pretty URL cse.google.com/cse.js?cx=partner-pub-5286073190998405:5399172980 IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-09 05:19 Last Seen2025-07-09 05:19 Times Seen1 Hash fec5eaffcc171020f369b321ea473838 c68ad6c51ca22e58a11ee6e05985f9f3a37ede82 6c05a81c6537b7d63b73db7eeb88f6c857dbbef0a3c73cc19ae9417bda7622e9 Loading...

	www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D	ScriptElement	297 kB	2025-06-11	2025-07-18
Pretty URL www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D IP 142.250.178.100 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-06-11 22:38 Last Seen2025-07-18 14:21 Times Seen370 Hash 18b57f427b408e2c87b93f30bc7cf69f e1b840786160249f98d8aa4e1a95b2b865c33dfd 937019b2f2c823a521aaccc41ea6ac1d16a1ea18403fe840951da73b3d980171 Loading...

	cse.google.com/adsense/search/async-ads.js	ScriptElement	141 kB	2025-07-02	2025-07-10
Pretty URL cse.google.com/adsense/search/async-ads.js IP 142.250.74.142 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-02 17:40 Last Seen2025-07-10 20:59 Times Seen99 Hash ac4bbad262f688ed45b33b15f43f71bd c26b0014161522e67d655f8158aba3c7d63d8b70 6ce729e590b33cbf1a30b3f5b33cc681558cd6909a060a9c54cc5916e566031b Loading...

	www.nirsoft.net/utils/sandbox%20eval%20code		128 B	2023-05-06	2025-07-19
Pretty URL www.nirsoft.net/utils/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 05:20 Times Seen30193 Hash 23c336606ee3a6d444b305153fa0e2e2 473a2111970ae2a94b373e656d20c4bd4184d703 305375d5052f6a14434d2d338f852f0f4f04fb26495f88a5d62b6afde2e2cc60 Loading...

	www.nirsoft.net/utils/index.html	ScriptElement	51 B	2023-03-07	2025-07-19
Pretty URL www.nirsoft.net/utils/index.html IP 107.190.138.58 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 18:42 Last Seen2025-07-19 00:45 Times Seen103 Hash 24a817faaf600828b09a194d0ef9624c 4d0a6c4b19e96dae8e3818000880e40379edf385 bdc19609594e84e093573faf1444be84dd80b6b4036303c7b217e121b0e3f88d Loading...

	www.nirsoft.net/utils/index.html	ScriptElement	341 B	2023-08-04	2025-07-09
Pretty URL www.nirsoft.net/utils/index.html IP 107.190.138.58 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-08-04 19:46 Last Seen2025-07-09 05:19 Times Seen19 Hash 7cd1191cf76c37c5f656a9e76e2fe39d 8e3c4bf720c1418059c3c3476897a1c32c6122ae 492864ae1cfcedae69226c85098efdf3151e855480971be055500601bae2e412 Loading...

	www.googletagmanager.com/gtag/js?id=G-P2Q08WF7BK	ScriptElement	343 kB	2025-07-09	2025-07-09
Pretty URL www.googletagmanager.com/gtag/js?id=G-P2Q08WF7BK IP 142.250.178.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2025-07-09 05:19 Last Seen2025-07-09 05:19 Times Seen1 Hash 69ca4fb815d02f52abb2454503fa7e12 093e66c71abaf049fa3d23e1d5021539c7bcc940 c903b1bf0675c0bc6a62314b11b818dfb4cf83d9f7886cf0a4d8bf88f02a49bf Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	ScriptElement	1.6 kB	2023-05-06	2025-07-19
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-06 01:21 Last Seen2025-07-19 05:20 Times Seen29932 Hash 2e9e391ad98fbe1b2de0b7b4fa9ca904 21d7771223e8286a06ad878af425094a40de32b5 1468d954f25ab75355f3c0f42cd9c84efd64a67922c47d3b69bdb6d0eb399e69 Loading...

HTTP Transactions (18)

	URL	IP	Response	Size
	GET www.nirsoft.net/main.css	107.190.138.58	200 OK	7.2 kB
URL GET www.nirsoft.net/main.css IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type assembler source, ASCII text Size 7.2 kB (7188 bytes) Hash 361af9b2489990eeae53fb655d834b5e 2196a34ff149947ed34623a334fb34029d56ecd9 1fc7ceb533a021747396d0773be419b8432c309db898995af87bf5a7b0c68b0b HTTP Headers `GET /main.css HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/utils/index.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Mon, 13 Jan 2020 06:22:16 GMT Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1568 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	GET www.nirsoft.net/toptomain.gif	107.190.138.58	200 OK	805 B
URL GET www.nirsoft.net/toptomain.gif IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type GIF image data, version 89a, 1 x 6 Size 805 B (805 bytes) Hash 8740ba3ec137951fdbfa31a92df84083 bed3cb1f528a9538c12bb073e9c2f0e32eee31cf 432863150465290850edbb508d7e1e8c95320c0b34737f2f81cbf7589b6064d8 HTTP Headers `GET /toptomain.gif HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/main.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Sat, 21 Apr 2007 15:31:48 GMT Accept-Ranges: bytes Content-Length: 805 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/gif`

	GET cse.google.com/cse.js?cx=partner-pub-5286073190998405:5399172980	142.250.74.142	200 OK	5.9 kB
URL GET cse.google.com/cse.js?cx=partner-pub-5286073190998405:5399172980 IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type JavaScript source, ASCII text, with very long lines (613) Size 5.9 kB (5912 bytes) Hash fec5eaffcc171020f369b321ea473838 c68ad6c51ca22e58a11ee6e05985f9f3a37ede82 6c05a81c6537b7d63b73db7eeb88f6c857dbbef0a3c73cc19ae9417bda7622e9 HTTP Headers `GET /cse.js?cx=partner-pub-5286073190998405:5399172980 HTTP/1.1 Host: cse.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-gfoS8P8xzmRulgiPox1kSw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/gws/other cross-origin-opener-policy: same-origin-allow-popups; report-to="gws" report-to: {"group":"gws","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gws/other"}]} content-disposition: attachment; filename="f.txt" content-encoding: br date: Wed, 09 Jul 2025 05:18:47 GMT server: gws content-length: 2622 x-xss-protection: 0 x-frame-options: SAMEORIGIN alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.googletagmanager.com/gtag/js?id=G-P2Q08WF7BK	142.250.178.104	200 OK	343 kB
URL GET www.googletagmanager.com/gtag/js?id=G-P2Q08WF7BK IP 142.250.178.104:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google-analytics.com Fingerprint06:CD:2A:9C:6E:F9:40:51:AA:E0:81:4A:BB:69:6C:BA:FA:AD:AB:4D ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type JavaScript source, ASCII text, with very long lines (6004) Size 343 kB (343096 bytes) Hash 69ca4fb815d02f52abb2454503fa7e12 093e66c71abaf049fa3d23e1d5021539c7bcc940 c903b1bf0675c0bc6a62314b11b818dfb4cf83d9f7886cf0a4d8bf88f02a49bf HTTP Headers `GET /gtag/js?id=G-P2Q08WF7BK HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 09 Jul 2025 05:18:47 GMT expires: Wed, 09 Jul 2025 05:18:47 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1077:0 cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1077:0 report-to: {"group":"ascgcycc:1077:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1077:0"}],} server: Google Tag Manager content-length: 119766 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.nirsoft.net/nirsoft2.gif	107.190.138.58	200 OK	3.7 kB
URL GET www.nirsoft.net/nirsoft2.gif IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type GIF image data, version 89a, 176 x 44 Size 3.7 kB (3694 bytes) Hash 2e7f628850f2705ddfca2fb210322b00 d9fa3ebb1cbf10cfda8834d3111dc675c2040170 0c4f483b95cfce5c4e78f32946ed302502f365c272094950b254b6226c16c7f5 HTTP Headers `GET /nirsoft2.gif HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/utils/index.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Mon, 06 Sep 2004 14:43:52 GMT Accept-Ranges: bytes Content-Length: 3694 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/gif`

	GET www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css	142.250.178.100	200 OK	42 kB
URL GET www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css IP 142.250.178.100:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subjectwww.google.com FingerprintEB:D6:F8:30:DB:49:AE:9E:EF:B9:5D:FD:FA:0C:31:CB:DB:06:4E:F0 ValidityTue, 17 Jun 2025 20:03:45 GMT - Tue, 09 Sep 2025 20:03:44 GMT File type ASCII text Size 42 kB (41700 bytes) Hash baccb7180fe061b63ed061ec10c3b0c8 bfb31590ba6e758eb8f25735b564d7e4a0919025 a5402de70228d4bf5379b518225b702918f6ae277e9293f9d16334c2b1fa31e3 HTTP Headers `GET /cse/static/element/197b0e284b1b1f14/default+en.css HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-type: text/css content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="prose-team" report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]} content-length: 9068 date: Wed, 09 Jul 2025 05:18:48 GMT expires: Wed, 09 Jul 2025 05:18:48 GMT cache-control: private, max-age=31536000 last-modified: Tue, 27 May 2025 21:10:37 GMT x-content-type-options: nosniff link: <https://www.adsensecustomsearchads.com>; rel="preconnect" server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.google.com/cse/static/style/look/v4/default.css	142.250.178.100	200 OK	4.5 kB
URL GET www.google.com/cse/static/style/look/v4/default.css IP 142.250.178.100:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subjectwww.google.com FingerprintEB:D6:F8:30:DB:49:AE:9E:EF:B9:5D:FD:FA:0C:31:CB:DB:06:4E:F0 ValidityTue, 17 Jun 2025 20:03:45 GMT - Tue, 09 Sep 2025 20:03:44 GMT File type ASCII text Size 4.5 kB (4496 bytes) Hash 7208a8191a41813c0cfc0f7cf0cbe00f acfaab19c6dd5f61f2ad119e9811bbe45c826cd6 65d0105169e2157f4b207920a8aab031c4230281e4d712eed7ac2f08efa31e9e HTTP Headers `GET /cse/static/style/look/v4/default.css HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes content-encoding: br content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="prose-team" report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]} content-length: 1096 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 09 Jul 2025 04:38:32 GMT expires: Wed, 09 Jul 2025 05:28:32 GMT cache-control: public, max-age=3000 age: 2416 last-modified: Mon, 30 Jun 2025 14:30:00 GMT content-type: text/css vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	GET www.google.com/cse/static/images/1x/en/branding.png	142.250.178.100	200 OK	1.6 kB
URL GET www.google.com/cse/static/images/1x/en/branding.png IP 142.250.178.100:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type PNG image data, 123 x 15, 8-bit/color RGBA, non-interlaced Size 1.6 kB (1556 bytes) Hash 9a63187ccc27d018cedb3a932f5aa9aa 5a59b006635e93492bfd06a5c26f8b6e4181dc71 6ca8050d203fbcb8613c5b13d0bf8cfccb60e97f82334702edd7a48d09489d68 HTTP Headers `GET /cse/static/images/1x/en/branding.png HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="prose-team" report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]} content-length: 1556 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 03 Jul 2025 18:02:28 GMT expires: Fri, 03 Jul 2026 18:02:28 GMT cache-control: public, max-age=31536000 age: 472580 last-modified: Thu, 07 Dec 2023 21:00:00 GMT content-type: image/png alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.nirsoft.net/utils/index.html	107.190.138.58	200 OK	170 kB
URL User Request GET www.nirsoft.net/utils/index.html IP 107.190.138.58:443 ASN #33182 DIMENOC Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type HTML document, ASCII text, with very long lines (715) Size 170 kB (170124 bytes) Hash 865dfd8fd93e02eb1cd63329863e690e a909c073d63a557eba4da576f5ffed63f22b3dca 4f79ea0aba068b43807317aeb6797fb284c9630a4561ef9453de6335df802c7b HTTP Headers `GET /utils/index.html HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:46 GMT Server: Apache Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8`

	GET www.nirsoft.net/new.gif	107.190.138.58	200 OK	157 B
URL GET www.nirsoft.net/new.gif IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type GIF image data, version 89a, 31 x 12 Size 157 B (157 bytes) Hash 1a5a4d88941a4d2aad9d8097054ab052 afd7b2d465507cbb61ef53d538d90771ffed95b7 e089c1557fe00b5d01938d97d6c577182ee7b43a8e2f05880f157231b8943bf2 HTTP Headers `GET /new.gif HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/utils/index.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Wed, 05 Jun 2002 20:11:48 GMT Accept-Ranges: bytes Content-Length: 157 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/gif`

	GET www.nirsoft.net/menubg.png	107.190.138.58	200 OK	448 B
URL GET www.nirsoft.net/menubg.png IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type PNG image data, 160 x 1, 8-bit colormap, non-interlaced Size 448 B (448 bytes) Hash eeabd12aa8052823038826dc61fc2525 973a9cbd5c928947763efab9eca8568c27faf0cd 4ea8411870894a09ff7165d06aab69c2be05ffea87cdb1b5fb3b5594f11f6f06 HTTP Headers `GET /menubg.png HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/main.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Sun, 12 Jan 2020 19:55:26 GMT Accept-Ranges: bytes Content-Length: 448 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: image/png`

	GET cse.google.com/adsense/search/async-ads.js	142.250.74.142	200 OK	141 kB
URL GET cse.google.com/adsense/search/async-ads.js IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type JavaScript source, ASCII text, with very long lines (1888) Size 141 kB (140792 bytes) Hash ac4bbad262f688ed45b33b15f43f71bd c26b0014161522e67d655f8158aba3c7d63d8b70 6ce729e590b33cbf1a30b3f5b33cc681558cd6909a060a9c54cc5916e566031b HTTP Headers `GET /adsense/search/async-ads.js HTTP/1.1 Host: cse.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes vary: Accept-Encoding content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="ads-afs-ui" report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]} date: Wed, 09 Jul 2025 05:18:48 GMT expires: Wed, 09 Jul 2025 05:18:48 GMT cache-control: private, max-age=3600 etag: "7200681302754757675" x-content-type-options: nosniff link: <https://syndicatedsearch.goog>; rel="preconnect" content-encoding: gzip server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.google.com/cse/static/css/v2/clear.png	142.250.178.100	200 OK	1.0 kB
URL GET www.google.com/cse/static/css/v2/clear.png IP 142.250.178.100:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced Size 1.0 kB (1018 bytes) Hash 2df778bf2e22d52fe849babb330ec977 0f833f030bb43f282473bddd3a33b5f8cba7a845 329d1a750114920332eadc55c129957d9dbe5a1b25745e2f7e0ed4fad75e04cd HTTP Headers `GET /cse/static/css/v2/clear.png HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.google.com/cse/static/element/197b0e284b1b1f14/default+en.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="prose-team" report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]} content-length: 1018 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 07 Jul 2025 13:05:27 GMT expires: Tue, 07 Jul 2026 13:05:27 GMT cache-control: public, max-age=31536000 age: 144801 last-modified: Mon, 25 May 2020 08:30:00 GMT content-type: image/png alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET www.nirsoft.net/update.gif	107.190.138.58	200 OK	195 B
URL GET www.nirsoft.net/update.gif IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type GIF image data, version 89a, 50 x 12 Size 195 B (195 bytes) Hash 22a2c7e506662d3116cf80a27d1c561a 33cc644007672872c7a4c521bd77c9d1e209a2d8 2c412f0cb2d38668c389ef16f48a043f138c7c7a0e483316bf59481281a9a50f HTTP Headers `GET /update.gif HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/utils/index.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Sat, 21 Sep 1996 06:35:10 GMT Accept-Ranges: bytes Content-Length: 195 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/gif`

	GET www.nirsoft.net/menutomain.gif	107.190.138.58	200 OK	805 B
URL GET www.nirsoft.net/menutomain.gif IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type GIF image data, version 89a, 6 x 1 Size 805 B (805 bytes) Hash 4989b759b98988bd0f2606ecd041586e 31d43951d3dd4ca3bf8e63b48ab0cacaad623cb5 03fb3f62f575f7aece5107379da9667099547635980c20ee48c3a85a1ae1b7c2 HTTP Headers `GET /menutomain.gif HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/main.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:47 GMT Server: Apache Last-Modified: Sat, 21 Apr 2007 15:17:30 GMT Accept-Ranges: bytes Content-Length: 805 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: image/gif`

	GET www.nirsoft.net/favicon.ico	107.190.138.58	200 OK	1.4 kB
URL GET www.nirsoft.net/favicon.ico IP 107.190.138.58:443 ASN #33182 DIMENOC Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerLet's Encrypt Subjectmail.nirsoft.net FingerprintA6:09:C2:73:57:8F:A7:08:2A:08:B1:E4:B2:7F:1E:20:F7:D4:36:9A ValidityMon, 23 Jun 2025 12:53:59 GMT - Sun, 21 Sep 2025 12:53:58 GMT File type MS Windows icon resource - 1 icon, 16x16 Size 1.4 kB (1406 bytes) Hash 51c469d8db767149242ffb08db0e2def 612187103d1d92fbb8916f706ccfd7713ae0b27d 78e8efcbbfdbb25093bf00389bb6dedf5cc79f2dd9bc9d2e61e7ca4e88c83508 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: www.nirsoft.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/utils/index.html Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 09 Jul 2025 05:18:48 GMT Server: Apache Last-Modified: Wed, 13 Jul 2005 04:18:26 GMT Accept-Ranges: bytes Content-Length: 1406 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: image/x-icon`

	GET www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D	142.250.178.100	200 OK	297 kB
URL GET www.google.com/cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D IP 142.250.178.100:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type JavaScript source, ASCII text, with very long lines (2279) Size 297 kB (296856 bytes) Hash 18b57f427b408e2c87b93f30bc7cf69f e1b840786160249f98d8aa4e1a95b2b865c33dfd 937019b2f2c823a521aaccc41ea6ac1d16a1ea18403fe840951da73b3d980171 HTTP Headers `GET /cse/static/element/197b0e284b1b1f14/cse_element__en.js?usqp=CAM%3D HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-type: text/javascript content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="prose-team" report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]} content-length: 97217 date: Wed, 09 Jul 2025 05:18:48 GMT expires: Wed, 09 Jul 2025 05:18:48 GMT cache-control: private, max-age=31536000 last-modified: Tue, 27 May 2025 21:10:37 GMT x-content-type-options: nosniff link: <https://www.adsensecustomsearchads.com>; rel="preconnect" server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	GET clients1.google.com/generate_204	142.250.74.142	204 No Content	0 B
URL GET clients1.google.com/generate_204 IP 142.250.74.142:443 ASN #15169 GOOGLE Requested by https://www.nirsoft.net/utils/index.html Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint0E:29:D7:DB:FC:32:8C:DD:65:47:B5:CC:0F:62:04:EE:7C:AE:80:42 ValidityTue, 17 Jun 2025 20:01:48 GMT - Tue, 09 Sep 2025 20:01:47 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /generate_204 HTTP/1.1 Host: clients1.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.nirsoft.net/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/3 204 No Content content-length: 0 cross-origin-resource-policy: cross-origin date: Wed, 09 Jul 2025 05:18:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (13)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML