www.viewerdiscretionadvised.net/
172.67.211.60200 OK 59 kB URL User Request GET HTTP/1.1 www.viewerdiscretionadvised.net/
IP 172.67.211.60:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (11854)
Hash 216747962e27ba5d3ae6565f2795a483
7148e9ca7081cc40ed5c8e9554829ece70e8f145
e58c62246ee513d865e938de35257c81a5e6e399286f705be1f59557e57e8254
GET / HTTP/1.1
Host: www.viewerdiscretionadvised.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 18 Sep 2023 07:21:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 18 Sep 2023 07:21:54 GMT
Cache-Control: private, max-age=0
Last-Modified: Thu, 15 Jun 2023 06:22:12 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9%2Fzpd6qyaWnmMWWxVNzVUv5WKRDa6zZGYll9OLjPQHaRzatdSZQh1jGDincbLcVyf%2F6frK3kP0uTHrXh3Hd67UONCgUaYPgoqPTimD99Te56Wnow%2BgzMih3dRkoogUFDsBmX%2FVOizY%2FtNCzm3awAJi1W"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8087d5b18e85568a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.viewerdiscretionadvised.net/js/cookienotice.js
172.67.211.60200 OK 2.0 kB URL GET HTTP/1.1 www.viewerdiscretionadvised.net/js/cookienotice.js
IP 172.67.211.60:80
Requested by http://www.viewerdiscretionadvised.net/
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: www.viewerdiscretionadvised.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 18 Sep 2023 07:21:55 GMT
Content-Type: text/javascript
Content-Length: 2026
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Expires: Mon, 25 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=604800
Last-Modified: Sun, 17 Sep 2023 19:51:20 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
CF-Cache-Status: MISS
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 8087d5b6ab68568a-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7504c2d44665ed49beb25627b831fe8f
3471bd3b355499b5a959ac26c3c854d998f639ae
533b4f81b7e982ba16cd5ef61756d08822ea4bcab5b29b83fedfb1ab0d07b8f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash ee743e0bffa814f9ed844f6b5291fecb
eacaeab3c04bc42ce5aa2279ab0bdded99686413
77eaaa76c38a1e6f4e8369d7b9a87b0bb703b6acb8971d44709d2bc8d82230b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ff33d3de59a166777a4beda54587e4e2
a77ea03d8bf2cb71319cb8bb98ceb9c97a3cb2f8
52cac5b4492606a61a686f2f1a6bccd02af5ac3e6c1ce5986ab284eae8dd8ba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash d3e756a2865cf53347aad23fb8cf84d2
0fed1efa3ff04e64be7b628bfb793f14acce5179
9fd8952270d21c01e022a92bdf079164753bd9e66bc38848f8c727f269203456
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7504c2d44665ed49beb25627b831fe8f
3471bd3b355499b5a959ac26c3c854d998f639ae
533b4f81b7e982ba16cd5ef61756d08822ea4bcab5b29b83fedfb1ab0d07b8f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
216.58.207.233200 OK 6.6 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 216.58.207.233:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (30596)
Hash e3f09df1bc175f411d1ec3dfb5afb17b
3994ec3efe3c2447e7bbfdd97bb7e190dd1658f9
1a2eca9e492e3a21e02dd77ad44d7af45c4091d35ede79e948b7a3f23e5b3617
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 15:00:46 GMT
expires: Tue, 10 Sep 2024 15:00:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Sep 2023 03:51:10 GMT
content-type: text/css
vary: Accept-Encoding
age: 577269
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
142.250.74.170200 OK 29 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/mootools/1.3.1/mootools-yui-compressed.js
IP 142.250.74.170:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (889)
Hash db755e0f865877dd0ae47a55b6039204
fe91b37266d1cdb4b4f51297f69326e271704f35
aefc79031c1cb04fed78f296150c4c60730de2b99b4fde2f0c0682ae86f52849
GET /ajax/libs/mootools/1.3.1/mootools-yui-compressed.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 28586
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 16 Sep 2023 05:06:13 GMT
expires: Sun, 15 Sep 2024 05:06:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 180942
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-sQvMeMW5_P0/Wdbtkfb_P5I/AAAAAAAAJUE/N4P03ntPDXMts05sA36d1msGF1r3Kx4xwCLcBGAs/w72-h72-p-k-no-nu/projector1.jpg
142.250.74.161200 OK 3.4 kB URL GET HTTP/2 3.bp.blogspot.com/-sQvMeMW5_P0/Wdbtkfb_P5I/AAAAAAAAJUE/N4P03ntPDXMts05sA36d1msGF1r3Kx4xwCLcBGAs/w72-h72-p-k-no-nu/projector1.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 9a024b4fe5ed9953b5e19f6cdc419308
ca5db654078add4b096de895e7edfe1349362541
078074debcdaeb825c81bab105363194515a4b3aa7696c83adb8a9137ca3ed80
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-sQvMeMW5_P0/Wdbtkfb_P5I/AAAAAAAAJUE/N4P03ntPDXMts05sA36d1msGF1r3Kx4xwCLcBGAs/w72-h72-p-k-no-nu/projector1.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2543"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="projector1.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 3442
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint89:B3:89:45:05:60:05:42:93:21:7A:DF:C0:DE:50:38:57:4A:B1:52
ValidityMon, 14 Aug 2023 08:23:10 GMT - Mon, 06 Nov 2023 08:23:09 GMT
File type ASCII text, with very long lines (2664)
Hash bc0c02039629e33a0f670270feb69b5f
74ea07e932b0800171297bca3b64c71d7c409bf3
13499aaf026263e1df495859efe16fc7e928d087b1206a593594cc7bee4728a0
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21840
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Mon, 18 Sep 2023 07:21:55 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "6d6113196b448c31"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/Twitter-icon.png
143.204.55.106301 Moved Permanently 167 B URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/Twitter-icon.png
IP 143.204.55.106:80
Requested by http://www.viewerdiscretionadvised.net/
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/f26/SweetHenrietta/Blogger/Twitter-icon.png HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 18 Sep 2023 07:21:55 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/Twitter-icon.png
X-Cache: Redirect from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HPQ56wL4LUFEeKiwDixgYGYFPYt6yS0AywQiCCs7QHIW_zdZCETlFA==
Vary: Origin
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/icon_rss.png
143.204.55.106301 Moved Permanently 167 B URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/icon_rss.png
IP 143.204.55.106:80
Requested by http://www.viewerdiscretionadvised.net/
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/f26/SweetHenrietta/Blogger/icon_rss.png HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 18 Sep 2023 07:21:55 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/icon_rss.png
X-Cache: Redirect from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fz4c9wEHUuFmCB4obCT2UlAN7QPkwinR1sgUCnuPUPjd6WYfRea-4g==
Vary: Origin
www.blogger.com/static/v1/widgets/1465578468-widgets.js
216.58.207.233200 OK 58 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/1465578468-widgets.js
IP 216.58.207.233:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint0A:37:73:3D:BD:C2:5F:FA:38:2B:9B:AB:96:77:54:94:B6:E3:4A:EE
ValidityMon, 14 Aug 2023 08:16:07 GMT - Mon, 06 Nov 2023 08:16:06 GMT
File type ASCII text, with very long lines (2215)
Hash a1cb4046392479f1acaeeba88535eaee
65ac5b085dd4b87ef3dbfe271254bd1d742f1abb
d49c1e3a643794375db57ab0f237a97a189577f3e822d8512ed383f95941dde8
GET /static/v1/widgets/1465578468-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 57929
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 13 Sep 2023 02:08:59 GMT
expires: Thu, 12 Sep 2024 02:08:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 01:52:07 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 450776
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.imgur.com/usGFrGE.jpg
151.101.244.193200 OK 28 kB IP 151.101.244.193:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 756x426, components 3\012- data
Hash 41ff908d47ce37ff5b11d9a7e48e3b29
e859cca4465f2805e3e86e30f475675ddb25c5f7
43a9071db0f7ced55571abd7d3447322608275fd84aa880e3c5c4ec903c2966d
GET /usGFrGE.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 03 Oct 2021 17:48:16 GMT
etag: "41ff908d47ce37ff5b11d9a7e48e3b29"
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: -eDkBmmDY0_B2_paifzmbe6MoxXoVNGfPV2-1r_dWjMtaiYZC4hP4w==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 18 Sep 2023 07:21:55 GMT
age: 560074
x-served-by: cache-iad-kjyo7100071-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 8, 0
x-timer: S1695021715.083947,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 28520
X-Firefox-Spdy: h2
i.imgur.com/h7UjZHV.jpg
151.101.244.193200 OK 26 kB IP 151.101.244.193:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type JPEG image data\012- data
Hash c1d182e5f3bfefd9b2d24a821395aac7
529e9d8206decbcd2966098ff005755ac16ac48f
3281cc64e9759bf7be1df475add5728f871b65df58b24e573ea86b60ba445656
GET /h7UjZHV.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 03 Oct 2021 18:06:04 GMT
etag: "c1d182e5f3bfefd9b2d24a821395aac7"
x-amz-cf-pop: MIA3-P5
x-amz-cf-id: _q4ql4i4A-NCZ6rwzj-Tb2E-EHg1oNw3nMJKxb-3GuzARpegvjGu9A==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 18 Sep 2023 07:21:55 GMT
age: 328447
x-served-by: cache-iad-kiad7000136-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 2, 0
x-timer: S1695021715.084248,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 26307
X-Firefox-Spdy: h2
3.bp.blogspot.com/-UNBRzDGznBk/UUG_QQaCwrI/AAAAAAAACiQ/ffavE-ARSVk/s1600/banner%2Bwith%2Bborders%2B3.jpg
142.250.74.161200 OK 46 kB URL GET HTTP/2 3.bp.blogspot.com/-UNBRzDGznBk/UUG_QQaCwrI/AAAAAAAACiQ/ffavE-ARSVk/s1600/banner%2Bwith%2Bborders%2B3.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 200x200, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 892x244, components 3\012- data
Hash c27d96a20cb9130f9f1cc329000d8ea2
f4f5958e6abf5aad22ea4cc13d98bebfa0acdd14
4de95dd4dd05f18aebaaf2f78deb915892f84959192fa5dfe8e82453ed05e0e0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-UNBRzDGznBk/UUG_QQaCwrI/AAAAAAAACiQ/ffavE-ARSVk/s1600/banner%2Bwith%2Bborders%2B3.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1f65"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="banner with borders 3.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 45535
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.imgur.com/6bpekvL.jpg
151.101.244.193200 OK 55 kB IP 151.101.244.193:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type JPEG image data\012- data
Hash 9976f7b85f80ed77d452e8b45a8ae0d7
9fc4363c7cda73f2c2b2f152dc6d0b222a5ba583
5cd971b363537a5fc0fd5227e56a6be8bcf39e5a8f90c35c22e8f0ba2dd51741
GET /6bpekvL.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 03 Oct 2021 18:05:02 GMT
etag: "9976f7b85f80ed77d452e8b45a8ae0d7"
x-amz-cf-pop: ORD56-P6
x-amz-cf-id: PsZtHrpbdJ_McN-i5emwFnIiMBlqI9CmH5O2i4SIk0hszJn24mh3bA==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 18 Sep 2023 07:21:55 GMT
age: 1531781
x-served-by: cache-iad-kcgs7200025-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 7, 0
x-timer: S1695021715.084178,VS0,VE99
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 55078
X-Firefox-Spdy: h2
i.imgur.com/JnahR4Z.jpg
151.101.244.193200 OK 50 kB IP 151.101.244.193:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type JPEG image data, baseline, precision 8, 640x360, components 3\012- data
Hash 9d5a73ee76bcfd4ab94f0a57b3301e10
80032854bc0ecfe9e9dd4e7839f217df2a9d3a28
b2039b3df06e0bfb23c113f62bec702987f431f660f16385f2c0a8cb6ddb8c0f
GET /JnahR4Z.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Sun, 03 Oct 2021 18:03:00 GMT
etag: "9d5a73ee76bcfd4ab94f0a57b3301e10"
x-amz-cf-pop: IAD12-P2
x-amz-cf-id: t3u2bS6V4ZoSKmF-4LRoORBYRlb0ykoCSN4pIsQuUIt117pCO96xGA==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 18 Sep 2023 07:21:55 GMT
age: 1436814
x-served-by: cache-iad-kcgs7200171-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 3, 0
x-timer: S1695021715.105403,VS0,VE98
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 49491
X-Firefox-Spdy: h2
3.bp.blogspot.com/-0B0-vQUJ51I/Uh5KMDTSMSI/AAAAAAAAE4E/pWUPxheZ9QQ/w72-h72-p-k-no-nu/garyking.jpg
142.250.74.161200 OK 3.0 kB URL GET HTTP/2 3.bp.blogspot.com/-0B0-vQUJ51I/Uh5KMDTSMSI/AAAAAAAAE4E/pWUPxheZ9QQ/w72-h72-p-k-no-nu/garyking.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a73ea9746ffe354877ab84c0be3c6845
d7dbc7c7943950bcd0532c409a070bcf16d69f48
9b3643e2496d6f0138e912b4ca90cbef5a8c827f5750e49d38f3590225a75eaf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-0B0-vQUJ51I/Uh5KMDTSMSI/AAAAAAAAE4E/pWUPxheZ9QQ/w72-h72-p-k-no-nu/garyking.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="garyking.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3032
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1382"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-vx9_FnYLfEs/UfBOXMhQwyI/AAAAAAAAEeY/Sx6THzDH1wg/s1600/liberal%2Bdead.jpg
142.250.74.161200 OK 17 kB URL GET HTTP/2 3.bp.blogspot.com/-vx9_FnYLfEs/UfBOXMhQwyI/AAAAAAAAEeY/Sx6THzDH1wg/s1600/liberal%2Bdead.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 230x230, components 3\012- data
Hash 22eb775769e6d455b175edd6cec88b2d
369a49affc666e159859c98372f20f23850e1c92
3e4fbdef791a8aca5a807f907160fbd9f91b2d9e4da41c98e11877d94509f66a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-vx9_FnYLfEs/UfBOXMhQwyI/AAAAAAAAEeY/Sx6THzDH1wg/s1600/liberal%2Bdead.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="liberal dead.jpg"
x-content-type-options: nosniff
server: fife
content-length: 17122
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v11e7"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w72-h72-p-k-no-nu/ninja.jpg
142.250.74.161200 OK 3.4 kB URL GET HTTP/2 1.bp.blogspot.com/-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w72-h72-p-k-no-nu/ninja.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 5d65a3a91b5ccfaf3acc4acc12d15dc9
35811717865c0043eb8e1f946dc6c6d3b2958c52
8cc4c12f11770957a02e53abae9a43c23b71e70bd271d5efebc0d85162606d16
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w72-h72-p-k-no-nu/ninja.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f6a"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ninja.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 3435
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w72-h72-p-k-no-nu/wolves.png
142.250.74.161200 OK 8.9 kB URL GET HTTP/2 1.bp.blogspot.com/-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w72-h72-p-k-no-nu/wolves.png
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 72622c6ce906d6da9b0d4d652ac14191
760cba46ec68bfc88277b0f248c24a10bc79f82e
b7f3bfa2f8289597f95349d886732c1e3ae410f50f6527d8cd642bfe56932ee5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w72-h72-p-k-no-nu/wolves.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="wolves.png"
x-content-type-options: nosniff
server: fife
content-length: 8942
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v2e5e"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w72-h72-p-k-no-nu/Malignant.jpg
142.250.74.161200 OK 3.7 kB URL GET HTTP/2 1.bp.blogspot.com/-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w72-h72-p-k-no-nu/Malignant.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash a157a90f80f7f67711dbcf93e373221a
e45746a143f529311429ba8e2f6e79215e7d2e9d
2ed3c78de56737fe87e3a7a42ff469d4a4dfeffb64bcbc642babd4ed30a1a1fb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w72-h72-p-k-no-nu/Malignant.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f53"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Malignant.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 3698
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-TjSlGCsZwCU/UfCHvB2etLI/AAAAAAAAEgY/wkUz0RzjUcY/s1600/blog%2Bof%2Bterrors.jpg
142.250.74.161200 OK 28 kB URL GET HTTP/2 1.bp.blogspot.com/-TjSlGCsZwCU/UfCHvB2etLI/AAAAAAAAEgY/wkUz0RzjUcY/s1600/blog%2Bof%2Bterrors.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 255x211, components 3\012- data
Hash 7120e9b48139d128b2a749b306d17f06
0821d825fae6acb259aaec54fa61af0ba5a57085
63bb2821e17dc16d951d43cc79c16a37d8ae6bb6bb1d7e2263061d6128542c42
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-TjSlGCsZwCU/UfCHvB2etLI/AAAAAAAAEgY/wkUz0RzjUcY/s1600/blog%2Bof%2Bterrors.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="blog of terrors.jpg"
x-content-type-options: nosniff
server: fife
content-length: 27453
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1207"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-UmUdEEg9X-k/TgMz52MBN_I/AAAAAAAAAUM/V-UiMUFX8uE/w72-h72-p-k-no-nu/I_Love_80s--Frontal.jpg
142.250.74.161200 OK 4.2 kB URL GET HTTP/2 3.bp.blogspot.com/-UmUdEEg9X-k/TgMz52MBN_I/AAAAAAAAAUM/V-UiMUFX8uE/w72-h72-p-k-no-nu/I_Love_80s--Frontal.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1aeaab2184e37bdc477ae7c761921c8f
282d9d4f7dec6853163875bacd0243406b0e47b2
09750e6a2bd2e46b09ea9345c3d338bf6a4b54046ed6c19c090b8cf672c184a8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-UmUdEEg9X-k/TgMz52MBN_I/AAAAAAAAAUM/V-UiMUFX8uE/w72-h72-p-k-no-nu/I_Love_80s--Frontal.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="I_Love_80s--Frontal.jpg"
x-content-type-options: nosniff
server: fife
content-length: 4210
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "v143"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-bu9zbvY7wO4/UUcYNDwWUGI/AAAAAAAACjo/OgC3Apy6Ev8/w72-h72-p-k-no-nu/andrea.jpg
142.250.74.161200 OK 3.0 kB URL GET HTTP/2 1.bp.blogspot.com/-bu9zbvY7wO4/UUcYNDwWUGI/AAAAAAAACjo/OgC3Apy6Ev8/w72-h72-p-k-no-nu/andrea.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash adce40a9063dfb76ae540cfc2651f14c
5904c23f902752b7a4293da4299b39df3c706e31
ac8dc894c32229864d6592697b558295ddd4a33ef5ad7f91fc88fe9cceae342a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bu9zbvY7wO4/UUcYNDwWUGI/AAAAAAAACjo/OgC3Apy6Ev8/w72-h72-p-k-no-nu/andrea.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="andrea.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3039
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:21:55 GMT
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
etag: "va3b"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-K7CHy7hFkeo/YVnmx9Tr2qI/AAAAAAAAL20/DpA4bop26f40lBX3K8pLWLynyP9SpNjvwCLcBGAsYHQ/s0/4star.jpg
142.250.74.161200 OK 4.9 kB URL GET HTTP/2 1.bp.blogspot.com/-K7CHy7hFkeo/YVnmx9Tr2qI/AAAAAAAAL20/DpA4bop26f40lBX3K8pLWLynyP9SpNjvwCLcBGAsYHQ/s0/4star.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 188x46, components 3\012- data
Hash 676ccd02accf6dd51df885bcf754f52d
21e25ae1f016e16fab8168833e9cd52338805fea
0c308e595a48628ec2f3eb1f777d1a459aeebe06f6bad075571b0a9a5908407f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-K7CHy7hFkeo/YVnmx9Tr2qI/AAAAAAAAL20/DpA4bop26f40lBX3K8pLWLynyP9SpNjvwCLcBGAsYHQ/s0/4star.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f6e"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4star.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 4854
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-VXIkEG3ZToY/XYeVt7nHyrI/AAAAAAAALGQ/ulbKYH2MEygMJCCFk9EUljAzKTqciyRuACK4BGAYYCw/s1600/cropped-vault-master-logo-NEW-e1564637978292-1.jpg
142.250.74.161200 OK 25 kB URL GET HTTP/2 4.bp.blogspot.com/-VXIkEG3ZToY/XYeVt7nHyrI/AAAAAAAALGQ/ulbKYH2MEygMJCCFk9EUljAzKTqciyRuACK4BGAYYCw/s1600/cropped-vault-master-logo-NEW-e1564637978292-1.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 250x251, components 3\012- data
Hash 57e15f9d46fba5f0f0af30e677a0add1
b77891bb108a2303724a1dbe12f18ba1cad74918
775524897c70499435f26a93187043cc520db3f1ed2ee56fcb29ceba5535da00
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-VXIkEG3ZToY/XYeVt7nHyrI/AAAAAAAALGQ/ulbKYH2MEygMJCCFk9EUljAzKTqciyRuACK4BGAYYCw/s1600/cropped-vault-master-logo-NEW-e1564637978292-1.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c65"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="cropped-vault-master-logo-NEW-e1564637978292-1.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 25250
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash ee743e0bffa814f9ed844f6b5291fecb
eacaeab3c04bc42ce5aa2279ab0bdded99686413
77eaaa76c38a1e6f4e8369d7b9a87b0bb703b6acb8971d44709d2bc8d82230b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ff33d3de59a166777a4beda54587e4e2
a77ea03d8bf2cb71319cb8bb98ceb9c97a3cb2f8
52cac5b4492606a61a686f2f1a6bccd02af5ac3e6c1ce5986ab284eae8dd8ba6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-zS-AFxDTBww/Uh3gC0mCVhI/AAAAAAAAE0A/wZy41_ZZJqQ/w72-h72-p-k-no-nu/worldsendmain.jpg
142.250.74.161200 OK 3.5 kB URL GET HTTP/2 4.bp.blogspot.com/-zS-AFxDTBww/Uh3gC0mCVhI/AAAAAAAAE0A/wZy41_ZZJqQ/w72-h72-p-k-no-nu/worldsendmain.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 1f6b02cfb6f1e1801593f0321f851bcf
d5f66fe5af20f01aa35b5aadfc757c0b1c076e23
9e62e4ceb5dbc85c2e2711f598e9e668e20163085dd6d49976e6add3d5eb353a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-zS-AFxDTBww/Uh3gC0mCVhI/AAAAAAAAE0A/wZy41_ZZJqQ/w72-h72-p-k-no-nu/worldsendmain.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1341"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="worldsendmain.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 3477
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/--jSdywFD_2E/XYdF5e3Vs2I/AAAAAAAALEk/aP0ykCI4GTspw3EST3k6Y18WODuGLHSWwCLcBGAsYHQ/s400/itc2_16.jpg
142.250.74.161200 OK 21 kB URL GET HTTP/2 1.bp.blogspot.com/--jSdywFD_2E/XYdF5e3Vs2I/AAAAAAAALEk/aP0ykCI4GTspw3EST3k6Y18WODuGLHSWwCLcBGAsYHQ/s400/itc2_16.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, description=IT Chapter 2 trailer screen grab, software=Google], baseline, precision 8, 400x213, components 3\012- data
Hash 3b92381234a736219efdab7463346343
2cb58e8684066d5b9d03579ae743a56b27fcc206
69a52ec99150d9bec2612adf9b9210d9aeb711a423de5350bb8ed85f52aac1fd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /--jSdywFD_2E/XYdF5e3Vs2I/AAAAAAAALEk/aP0ykCI4GTspw3EST3k6Y18WODuGLHSWwCLcBGAsYHQ/s400/itc2_16.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c4a"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="itc2_16.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 20697
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-gIri3wDzynk/XYJrsSHM4HI/AAAAAAAALDg/g8zB5iz6FAMDwnMyeXuMbrjfJ2SJV8fPwCLcBGAsYHQ/s400/50819643_10107792910980778_3022990595028156416_n12.jpg
142.250.74.161200 OK 49 kB URL GET HTTP/2 1.bp.blogspot.com/-gIri3wDzynk/XYJrsSHM4HI/AAAAAAAALDg/g8zB5iz6FAMDwnMyeXuMbrjfJ2SJV8fPwCLcBGAsYHQ/s400/50819643_10107792910980778_3022990595028156416_n12.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x356, components 3\012- data
Hash b20712c5fda04452db60e07c94fe3ffb
c181a175c5b49e94a5d0084737226ea09a445a49
46c457d23fd7f54b2a025b7a619bd9ca17e0ae04fd9cce04e68919360afbec49
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-gIri3wDzynk/XYJrsSHM4HI/AAAAAAAALDg/g8zB5iz6FAMDwnMyeXuMbrjfJ2SJV8fPwCLcBGAsYHQ/s400/50819643_10107792910980778_3022990595028156416_n12.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c39"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="50819643_10107792910980778_3022990595028156416_n12.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 49400
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w400-h223/Malignant.jpg
142.250.74.161200 OK 21 kB URL GET HTTP/2 1.bp.blogspot.com/-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w400-h223/Malignant.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x223, components 3\012- data
Hash b3c5092d277fbb882774ee8c5faa57fc
d52c4ccb237697474a5ad57b6352f37b5b663dc5
7a84cc1eb981a3360ed07a5f430d9dfbad518ba6fd275e0b6766505b19b46f3a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-izUTL8V_kOs/YTxJwcXDb0I/AAAAAAAAL1I/92dNxk83HqkQBHinfG8m1C1d9_lQkeGNQCLcBGAsYHQ/w400-h223/Malignant.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f53"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Malignant.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 20821
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-Xv8Ra7d8y0Q/YRSlTGqr0KI/AAAAAAAALxA/BGcqgWfL1ckcZvEm2uIA6zshx3aF0OTRwCLcBGAsYHQ/s0/2star.jpg
142.250.74.161200 OK 2.9 kB URL GET HTTP/2 1.bp.blogspot.com/-Xv8Ra7d8y0Q/YRSlTGqr0KI/AAAAAAAALxA/BGcqgWfL1ckcZvEm2uIA6zshx3aF0OTRwCLcBGAsYHQ/s0/2star.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 97x45, components 3\012- data
Hash 571b114a86f2f76a4c38ceb94de4022b
2c8be6a4c2a6eea5b63df6393bca29f8a5b64657
7385cf798f3cbdf8fd6fdee1a4af751f265a967ed39ad269423574ca83f3d876
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Xv8Ra7d8y0Q/YRSlTGqr0KI/AAAAAAAALxA/BGcqgWfL1ckcZvEm2uIA6zshx3aF0OTRwCLcBGAsYHQ/s0/2star.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f11"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2star.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 2863
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-vfD2CDQtXrc/YASqu5EHeOI/AAAAAAAALdU/bv6cK4gecWU2PuZinEv2iSE6EWnWROsiACLcBGAsYHQ/w435-h303/Psycho%2BGoreman%2BMovie%2BStill%2B2.jpg
142.250.74.161200 OK 55 kB URL GET HTTP/2 1.bp.blogspot.com/-vfD2CDQtXrc/YASqu5EHeOI/AAAAAAAALdU/bv6cK4gecWU2PuZinEv2iSE6EWnWROsiACLcBGAsYHQ/w435-h303/Psycho%2BGoreman%2BMovie%2BStill%2B2.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 435x303, components 3\012- data
Hash 9bbfecd35ae7124a443d7c0360870d8b
b3bc564619f048414b0cb6b67402b0249a61a74c
22ef930e1112d2aa348d603d5b6c0e74f2b00ece3e324070a38137b015dcadc6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-vfD2CDQtXrc/YASqu5EHeOI/AAAAAAAALdU/bv6cK4gecWU2PuZinEv2iSE6EWnWROsiACLcBGAsYHQ/w435-h303/Psycho%2BGoreman%2BMovie%2BStill%2B2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2dd7"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Psycho Goreman Movie Still 2.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 55393
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-fXIK8e8KJ4c/XYdmIIV-kKI/AAAAAAAALFA/Bay3JjFu7GUUhr0JHUmpF3aQfrMTCZCaACLcBGAsYHQ/s400/bev.jpg
142.250.74.161200 OK 13 kB URL GET HTTP/2 1.bp.blogspot.com/-fXIK8e8KJ4c/XYdmIIV-kKI/AAAAAAAALFA/Bay3JjFu7GUUhr0JHUmpF3aQfrMTCZCaACLcBGAsYHQ/s400/bev.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x229, components 3\012- data
Hash aaf4d4724bf9d59ac2a4c798d6a013e2
515c82cebc9e06152705de5918e176b5f96db1d2
e12dbb0148f33d90a04af9743866f59800b26c55183bf72e6d85dc33d3b938be
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-fXIK8e8KJ4c/XYdmIIV-kKI/AAAAAAAALFA/Bay3JjFu7GUUhr0JHUmpF3aQfrMTCZCaACLcBGAsYHQ/s400/bev.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c52"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="bev.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 13068
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-2MRM6P6COU8/XYdxf35os8I/AAAAAAAALFc/wbcVBdv5fPQ9Nos_Yl2HpxZXAw94ESMogCLcBGAsYHQ/s320/Cj8agM_WsAAUAhS.jpg
142.250.74.161200 OK 24 kB URL GET HTTP/2 1.bp.blogspot.com/-2MRM6P6COU8/XYdxf35os8I/AAAAAAAALFc/wbcVBdv5fPQ9Nos_Yl2HpxZXAw94ESMogCLcBGAsYHQ/s320/Cj8agM_WsAAUAhS.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x320, components 3\012- data
Hash 6a3a25f2cbecced07a6236ce16016c92
ce58a8fdb49208b03936858498fd5c08d495cbd0
ee7bd66f29f4899827ed2d77092904d2176003bbca3c72bb40d71c04043349b9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-2MRM6P6COU8/XYdxf35os8I/AAAAAAAALFc/wbcVBdv5fPQ9Nos_Yl2HpxZXAw94ESMogCLcBGAsYHQ/s320/Cj8agM_WsAAUAhS.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c58"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Cj8agM_WsAAUAhS.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 24241
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-2XWHInQXRgI/XYJq6plIV7I/AAAAAAAALDI/-455ODnVXvYWftOgjkGjU_3naze3p08ZgCEwYBhgL/s400/51022117_10107792911369998_7562632956586491904_n.jpg
142.250.74.161200 OK 71 kB URL GET HTTP/2 1.bp.blogspot.com/-2XWHInQXRgI/XYJq6plIV7I/AAAAAAAALDI/-455ODnVXvYWftOgjkGjU_3naze3p08ZgCEwYBhgL/s400/51022117_10107792911369998_7562632956586491904_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 049176384618df6b7e4e5fd68e0324e6
670e62139eb20518c2ba781e3f8ac0e67432b1e9
27a1f1d8473fcd5bcd92b8ce486818d1b59beaecf1ee4da4575f53cca682dce5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-2XWHInQXRgI/XYJq6plIV7I/AAAAAAAALDI/-455ODnVXvYWftOgjkGjU_3naze3p08ZgCEwYBhgL/s400/51022117_10107792911369998_7562632956586491904_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c32"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="51022117_10107792911369998_7562632956586491904_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 70802
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6LO0r_KsSuQ/XYJrVyb03DI/AAAAAAAALDQ/2Xu3KcQT6usr3_Pmz8Qe9xAPtD0lQdgCgCLcBGAsYHQ/s400/50537452_10107792911050638_2724204082616074240_n.jpg
142.250.74.161200 OK 38 kB URL GET HTTP/2 1.bp.blogspot.com/-6LO0r_KsSuQ/XYJrVyb03DI/AAAAAAAALDQ/2Xu3KcQT6usr3_Pmz8Qe9xAPtD0lQdgCgCLcBGAsYHQ/s400/50537452_10107792911050638_2724204082616074240_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 9c29f0c1ebc73c9c495b1b808dadaa82
6270d83fedc0cac80d1a67e9becde493736d6690
2d36dc6345d033b4a1bb1bbced4f514452c5dc5a8a01c763617c6c78d5293804
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-6LO0r_KsSuQ/XYJrVyb03DI/AAAAAAAALDQ/2Xu3KcQT6usr3_Pmz8Qe9xAPtD0lQdgCgCLcBGAsYHQ/s400/50537452_10107792911050638_2724204082616074240_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c36"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="50537452_10107792911050638_2724204082616074240_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 37748
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-rVQzaY4IooY/XYJqazzjMpI/AAAAAAAALC4/dWcOGAuQTMw2DAV-R_QXz9ppMuQ6YyXGwCLcBGAsYHQ/s400/20190918_132831.jpg
142.250.74.161200 OK 27 kB URL GET HTTP/2 1.bp.blogspot.com/-rVQzaY4IooY/XYJqazzjMpI/AAAAAAAALC4/dWcOGAuQTMw2DAV-R_QXz9ppMuQ6YyXGwCLcBGAsYHQ/s400/20190918_132831.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x400, components 3\012- data
Hash e1b79b3ef554de14203a8dcf10308213
cd57631d44200806877ede407e87b7642a69d867
d7733a4c4ce5b15b670ace27801e1a0144aeb738d8d05558de672bd077db0892
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-rVQzaY4IooY/XYJqazzjMpI/AAAAAAAALC4/dWcOGAuQTMw2DAV-R_QXz9ppMuQ6YyXGwCLcBGAsYHQ/s400/20190918_132831.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c30"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="20190918_132831.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 27362
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-quseJ3B4M2s/XYJuTbAwNcI/AAAAAAAALDs/yBfXZnOm7BIlLRLWYUOeDSWMlULtBc67gCLcBGAsYHQ/s400/49314188_10107792911210318_2884459079185465344_n.jpg
142.250.74.161200 OK 63 kB URL GET HTTP/2 1.bp.blogspot.com/-quseJ3B4M2s/XYJuTbAwNcI/AAAAAAAALDs/yBfXZnOm7BIlLRLWYUOeDSWMlULtBc67gCLcBGAsYHQ/s400/49314188_10107792911210318_2884459079185465344_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 9435fd477c669aac9454319b9b0cc49f
c9b74bb1ec10581ba73db5d60b3306ba5d697c6a
bf4d50de20b6ea43426ada79084edb39a1d83eea78dc035da11ed344b29d7821
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-quseJ3B4M2s/XYJuTbAwNcI/AAAAAAAALDs/yBfXZnOm7BIlLRLWYUOeDSWMlULtBc67gCLcBGAsYHQ/s400/49314188_10107792911210318_2884459079185465344_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c3d"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="49314188_10107792911210318_2884459079185465344_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 63087
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-dXBCx_wVO7Q/YTzU7tfoLHI/AAAAAAAAL1Y/1jxgBl9HTYASt84R_mfTv0LE6rWhtbrqACLcBGAsYHQ/s0/4star.jpg
142.250.74.161200 OK 4.9 kB URL GET HTTP/2 1.bp.blogspot.com/-dXBCx_wVO7Q/YTzU7tfoLHI/AAAAAAAAL1Y/1jxgBl9HTYASt84R_mfTv0LE6rWhtbrqACLcBGAsYHQ/s0/4star.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 188x46, components 3\012- data
Hash 676ccd02accf6dd51df885bcf754f52d
21e25ae1f016e16fab8168833e9cd52338805fea
0c308e595a48628ec2f3eb1f777d1a459aeebe06f6bad075571b0a9a5908407f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-dXBCx_wVO7Q/YTzU7tfoLHI/AAAAAAAAL1Y/1jxgBl9HTYASt84R_mfTv0LE6rWhtbrqACLcBGAsYHQ/s0/4star.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f57"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="4star.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 4854
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-Xgtjae3mRQY/YIOh7DDHxXI/AAAAAAAALmE/AG1xve6cs6cvJtZJjiGCSAspyRbRFFCYQCLcBGAsYHQ/s0/2star.jpg
142.250.74.161200 OK 2.9 kB URL GET HTTP/2 1.bp.blogspot.com/-Xgtjae3mRQY/YIOh7DDHxXI/AAAAAAAALmE/AG1xve6cs6cvJtZJjiGCSAspyRbRFFCYQCLcBGAsYHQ/s0/2star.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 97x45, components 3\012- data
Hash 571b114a86f2f76a4c38ceb94de4022b
2c8be6a4c2a6eea5b63df6393bca29f8a5b64657
7385cf798f3cbdf8fd6fdee1a4af751f265a967ed39ad269423574ca83f3d876
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Xgtjae3mRQY/YIOh7DDHxXI/AAAAAAAALmE/AG1xve6cs6cvJtZJjiGCSAspyRbRFFCYQCLcBGAsYHQ/s0/2star.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e62"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="2star.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 2863
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/--_54CPbNv2U/YQbOQpICOwI/AAAAAAAALvY/DsAG6wO6sYcsOF0RDvIFfBmL_0vUKDlLQCLcBGAsYHQ/w400-h200/Seance-Movie.jpg
142.250.74.161200 OK 24 kB URL GET HTTP/2 1.bp.blogspot.com/--_54CPbNv2U/YQbOQpICOwI/AAAAAAAALvY/DsAG6wO6sYcsOF0RDvIFfBmL_0vUKDlLQCLcBGAsYHQ/w400-h200/Seance-Movie.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x200, components 3\012- data
Hash 73a5e2ccd22e132bceae059c4872d085
ffa4605487671b249e9902674292591b807cc473
2f41133b99cf58c5f59933a526887cf466bd54dec90507a9ceae47c4112cb279
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /--_54CPbNv2U/YQbOQpICOwI/AAAAAAAALvY/DsAG6wO6sYcsOF0RDvIFfBmL_0vUKDlLQCLcBGAsYHQ/w400-h200/Seance-Movie.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2ef7"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Seance-Movie.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 23834
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-EtWZJDco5ZI/YATCSm_vgwI/AAAAAAAALd0/0T6KK_dH_BwY4SqEWoxNml7Um6ISlC5RQCLcBGAsYHQ/s0/3-and-a-half.jpg
142.250.74.161200 OK 4.2 kB URL GET HTTP/2 1.bp.blogspot.com/-EtWZJDco5ZI/YATCSm_vgwI/AAAAAAAALd0/0T6KK_dH_BwY4SqEWoxNml7Um6ISlC5RQCLcBGAsYHQ/s0/3-and-a-half.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 165x45, components 3\012- data
Hash 5695c12e6fd78ed2309e8c3d6899345d
ced6fc2a270da3b911cf8f993b3eddb5da335f39
49db4c0659900b1435550cdbbdd240a94753288829f0530bba8d57e490bd3cab
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-EtWZJDco5ZI/YATCSm_vgwI/AAAAAAAALd0/0T6KK_dH_BwY4SqEWoxNml7Um6ISlC5RQCLcBGAsYHQ/s0/3-and-a-half.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2dde"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="3-and-a-half.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 4248
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-sXHDLGj7Sjo/YAS2ruIcUFI/AAAAAAAALdo/6ELm9k8m2pU2w82WZra07ZfebAIIY0EPwCLcBGAsYHQ/w486-h243/pg_orig.jpeg
142.250.74.161200 OK 28 kB URL GET HTTP/2 1.bp.blogspot.com/-sXHDLGj7Sjo/YAS2ruIcUFI/AAAAAAAALdo/6ELm9k8m2pU2w82WZra07ZfebAIIY0EPwCLcBGAsYHQ/w486-h243/pg_orig.jpeg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 486x243, components 3\012- data
Hash 0442c6d9bf0334e5f910169d0911c430
d62ef9430381d7e2a31788c900afc935cf08c96e
e8d1c1ac7f34081896b3bf601e29fafd7c0e83558ce21d54447971f6fb0a503a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-sXHDLGj7Sjo/YAS2ruIcUFI/AAAAAAAALdo/6ELm9k8m2pU2w82WZra07ZfebAIIY0EPwCLcBGAsYHQ/w486-h243/pg_orig.jpeg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2ddb"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pg_orig.jpeg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 27962
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-ZgPuYTg_Amc/YF5HnaRrLUI/AAAAAAAALjE/exWqjIMk5gowFaHnt3PMxDm_fC_tgeXgACLcBGAsYHQ/w506-h244/nobody-e1607616317544.jpg
142.250.74.161200 OK 22 kB URL GET HTTP/2 1.bp.blogspot.com/-ZgPuYTg_Amc/YF5HnaRrLUI/AAAAAAAALjE/exWqjIMk5gowFaHnt3PMxDm_fC_tgeXgACLcBGAsYHQ/w506-h244/nobody-e1607616317544.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 506x243, components 3\012- data
Hash a492bb4c4beb214f1d3d61a8486dd896
70a0a7a0e615e11208daf06ca093e53b541e50e5
cd27a104d52d43319d155575278caa89ca4350f0de7e4d03b965e62fe5fc3910
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ZgPuYTg_Amc/YF5HnaRrLUI/AAAAAAAALjE/exWqjIMk5gowFaHnt3PMxDm_fC_tgeXgACLcBGAsYHQ/w506-h244/nobody-e1607616317544.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e32"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="nobody-e1607616317544.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 22104
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-kXZSTlofJvo/URz1bJYSVAI/AAAAAAAAB5M/O7BttiI-L7I/w72-h72-p-k-no-nu/tdm.jpg
142.250.74.161200 OK 3.1 kB URL GET HTTP/2 1.bp.blogspot.com/-kXZSTlofJvo/URz1bJYSVAI/AAAAAAAAB5M/O7BttiI-L7I/w72-h72-p-k-no-nu/tdm.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 904adc73891bd508f44013a7c65f17bd
f3b313c9dc356920f059b72aa79c4152260cfd15
7ab63334f562bcecbecae7b14585ccd16ea4178c0de1da9b76339c46e120430b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-kXZSTlofJvo/URz1bJYSVAI/AAAAAAAAB5M/O7BttiI-L7I/w72-h72-p-k-no-nu/tdm.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v793"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="tdm.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 3085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-G_yDQM7MH-8/XYJuYao80TI/AAAAAAAALDw/6r4rt7qajrgRAijHaYpLtBcMem48NR-uACLcBGAsYHQ/s400/50976910_10107792911170398_2286767156781645824_n.jpg
142.250.74.161200 OK 47 kB URL GET HTTP/2 1.bp.blogspot.com/-G_yDQM7MH-8/XYJuYao80TI/AAAAAAAALDw/6r4rt7qajrgRAijHaYpLtBcMem48NR-uACLcBGAsYHQ/s400/50976910_10107792911170398_2286767156781645824_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x400, components 3\012- data
Hash 400c570d19f1716868408e29a132bb63
fda1459bada49b12b8778ac0a28772bb4de210d4
ed1fde54a56c5445e3e1616c6b8520c3979501ef4b81a7a696a6c649ca8367c5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-G_yDQM7MH-8/XYJuYao80TI/AAAAAAAALDw/6r4rt7qajrgRAijHaYpLtBcMem48NR-uACLcBGAsYHQ/s400/50976910_10107792911170398_2286767156781645824_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c3e"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="50976910_10107792911170398_2286767156781645824_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 47332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-FnZ6JIR9n4U/YASqzLdd1eI/AAAAAAAALdY/9dwuRU9htKUjgGbWzMt7Z2URulGs2gj6gCLcBGAsYHQ/w478-h308/pg-psycho-goreman.jpeg
142.250.74.161200 OK 51 kB URL GET HTTP/2 1.bp.blogspot.com/-FnZ6JIR9n4U/YASqzLdd1eI/AAAAAAAALdY/9dwuRU9htKUjgGbWzMt7Z2URulGs2gj6gCLcBGAsYHQ/w478-h308/pg-psycho-goreman.jpeg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 478x308, components 3\012- data
Hash 8f7170bf732328e4120c70d60e11ea28
0112da27418f43dbcf9699e971a2540573bab21d
041f07d83f6774d2a5f643f1fd3487cda826ad505fe3c5be922f7d7c92d69c36
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-FnZ6JIR9n4U/YASqzLdd1eI/AAAAAAAALdY/9dwuRU9htKUjgGbWzMt7Z2URulGs2gj6gCLcBGAsYHQ/w478-h308/pg-psycho-goreman.jpeg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2dd8"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="pg-psycho-goreman.jpeg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 51310
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-TynZQX8KNjM/U0ak2eguJpI/AAAAAAAAHW0/W5QfWZGS6f8/s1600/deaditeslayer.jpg
142.250.74.161200 OK 20 kB URL GET HTTP/2 4.bp.blogspot.com/-TynZQX8KNjM/U0ak2eguJpI/AAAAAAAAHW0/W5QfWZGS6f8/s1600/deaditeslayer.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 228x320, components 3\012- data
Hash 513e4b23d9385793c2879f8cec8da0dc
1f6988f36f59690054707267ce8015ed3138c78c
d4563b23310874fee30f9d6ad2e4954d7d956275e4cd1917dca5b97e4bd1d05d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-TynZQX8KNjM/U0ak2eguJpI/AAAAAAAAHW0/W5QfWZGS6f8/s1600/deaditeslayer.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1d6e"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="deaditeslayer.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 19593
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-6VczYo0n1Q4/YN_yS2QZeyI/AAAAAAAALsU/qQ_F1vHeFNMVHoT184oofCzfl-krPK04ACLcBGAsYHQ/w400-h200/Werewolves-Within-e1619115231479.jpg
142.250.74.161200 OK 23 kB URL GET HTTP/2 1.bp.blogspot.com/-6VczYo0n1Q4/YN_yS2QZeyI/AAAAAAAALsU/qQ_F1vHeFNMVHoT184oofCzfl-krPK04ACLcBGAsYHQ/w400-h200/Werewolves-Within-e1619115231479.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x200, components 3\012- data
Hash a2ff9b49de30fefc7438982b711ba376
d9e7f3fdb97c76bb598495a187169aa28a711047
969eb842ed1d2aeeb79f83e14f59f28295281e26c43394bee710291097b02482
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-6VczYo0n1Q4/YN_yS2QZeyI/AAAAAAAALsU/qQ_F1vHeFNMVHoT184oofCzfl-krPK04ACLcBGAsYHQ/w400-h200/Werewolves-Within-e1619115231479.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2ec7"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Werewolves-Within-e1619115231479.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 22839
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w400-h225/ninja.jpg
142.250.74.161200 OK 28 kB URL GET HTTP/2 1.bp.blogspot.com/-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w400-h225/ninja.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash ce3f1ff8023ffc48f8d586e471e3b16b
a80e6a674118e402fe3b39210af6dbf0e3733d1a
2728a255349e94d53b55cf6b4db77258b195691055964a7f5b3623badebd9556
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-3meV2jxsWBs/YVlXa9gB2YI/AAAAAAAAL2k/hQMuqXMN9SAoTXghhTyvpFKzWNUfFbE6wCLcBGAsYHQ/w400-h225/ninja.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f6a"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ninja.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 27755
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-PO-jny1wQ9Y/YF5Ia_6Gs6I/AAAAAAAALjM/xSPtGB2Rgr015-j3KvCqxa3xtpb_W2RngCLcBGAsYHQ/w400-h305/image2.jpg
142.250.74.161200 OK 23 kB URL GET HTTP/2 1.bp.blogspot.com/-PO-jny1wQ9Y/YF5Ia_6Gs6I/AAAAAAAALjM/xSPtGB2Rgr015-j3KvCqxa3xtpb_W2RngCLcBGAsYHQ/w400-h305/image2.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x305, components 3\012- data
Hash a9baa1412bafa4dd2402030f354f65a7
2d5ae916f51b0db9a9f746c3bea0c052ab1c19a0
903747d94966d1f3d2b68f1ba202c880d8888255c8cefbdb70e73431ecbdafa8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-PO-jny1wQ9Y/YF5Ia_6Gs6I/AAAAAAAALjM/xSPtGB2Rgr015-j3KvCqxa3xtpb_W2RngCLcBGAsYHQ/w400-h305/image2.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e34"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="image2.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 23275
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w511-h262/wolves.png
142.250.74.161200 OK 179 kB URL GET HTTP/2 1.bp.blogspot.com/-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w511-h262/wolves.png
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type PNG image data, 511 x 261, 8-bit/color RGB, non-interlaced\012- data
Size 179 kB (178974 bytes)
Hash bd3b812411e269166c12f3c3fbc3da0a
592936a92b90c238a1faab453f3b5dff5dc50c47
25724aafa77b2dd9637d788eaa3890160ff5b40a7df035b9abb42d1be6d1e1f3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-17Ozq2nv0WE/YIORclocc3I/AAAAAAAALl0/ySvGjPuNDG0PzniFjmYsJKdMhnVUKWPUgCLcBGAsYHQ/w511-h262/wolves.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e5e"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="wolves.png"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 178974
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 6d0836de7378bcfe6c380aa7242c582f
6832a56b6ce5feccce7175e29a381d3479e68c36
b7a6a07e3bfb203265ec8e732702ea913a5e70d7e9395c1a3652d0fff5e25af0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-R8E9w_qRdG0/YHz12dyzl8I/AAAAAAAALk8/n8kqLxhdJWkPkUUPfcPqP4K4Bu1n0oK4QCLcBGAsYHQ/w400-h225/ladyterm.jpg
142.250.74.161200 OK 16 kB URL GET HTTP/2 1.bp.blogspot.com/-R8E9w_qRdG0/YHz12dyzl8I/AAAAAAAALk8/n8kqLxhdJWkPkUUPfcPqP4K4Bu1n0oK4QCLcBGAsYHQ/w400-h225/ladyterm.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 399x225, components 3\012- data
Hash f7a2768f237f0ee707cc33886939943d
75eea5662a0aa30386d0a7d85242fcc9858fc534
e9ee3cc12c0d1d441113ea8f84d1f32945f36ea4c9a8bff107a338a0d5a71e9c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-R8E9w_qRdG0/YHz12dyzl8I/AAAAAAAALk8/n8kqLxhdJWkPkUUPfcPqP4K4Bu1n0oK4QCLcBGAsYHQ/w400-h225/ladyterm.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e50"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="ladyterm.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 15527
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-UWtiCrjokNU/XYdZr8u4YDI/AAAAAAAALEw/NCFS_XsmEi0kueUQTQKx2n0E2E0xNzk0QCLcBGAsYHQ/s400/tumblr_3453b310116baf63bc23a5db3c12c4cc_b1b4036b_400.jpg
142.250.74.161200 OK 18 kB URL GET HTTP/2 1.bp.blogspot.com/-UWtiCrjokNU/XYdZr8u4YDI/AAAAAAAALEw/NCFS_XsmEi0kueUQTQKx2n0E2E0xNzk0QCLcBGAsYHQ/s400/tumblr_3453b310116baf63bc23a5db3c12c4cc_b1b4036b_400.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x212, components 3\012- data
Hash df7edb2894e2b774cbc67effb667219b
7fe4c9c8797c8e8c26f5c89fb2a2a83e6e99e044
83dee191a41a3c8805e2df0dd3919e6feb59dc6fb0a9506e13df07facb9c01c8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-UWtiCrjokNU/XYdZr8u4YDI/AAAAAAAALEw/NCFS_XsmEi0kueUQTQKx2n0E2E0xNzk0QCLcBGAsYHQ/s400/tumblr_3453b310116baf63bc23a5db3c12c4cc_b1b4036b_400.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c4d"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="tumblr_3453b310116baf63bc23a5db3c12c4cc_b1b4036b_400.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 17976
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7504c2d44665ed49beb25627b831fe8f
3471bd3b355499b5a959ac26c3c854d998f639ae
533b4f81b7e982ba16cd5ef61756d08822ea4bcab5b29b83fedfb1ab0d07b8f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-FB6lIYsxAO8/YVne_iyFqeI/AAAAAAAAL2s/Z24PoUXfCTsuDhMpHaMiDTDcKOPk7OZEwCLcBGAsYHQ/w400-h234/Screenshot_20211003-094608_YouTube.jpg
142.250.74.161200 OK 12 kB URL GET HTTP/2 1.bp.blogspot.com/-FB6lIYsxAO8/YVne_iyFqeI/AAAAAAAAL2s/Z24PoUXfCTsuDhMpHaMiDTDcKOPk7OZEwCLcBGAsYHQ/w400-h234/Screenshot_20211003-094608_YouTube.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x234, components 3\012- data
Hash e633514dcdbf7f2bef71b5d3493c3846
5a672331ca8e949e0906ed989a2e99fa4b9e0c15
640ac7dc8121a1f42e92ade5ea344cb4d81bbe22226b3e32cc93f69174e6793e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-FB6lIYsxAO8/YVne_iyFqeI/AAAAAAAAL2s/Z24PoUXfCTsuDhMpHaMiDTDcKOPk7OZEwCLcBGAsYHQ/w400-h234/Screenshot_20211003-094608_YouTube.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f6c"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Screenshot_20211003-094608_YouTube.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 11697
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-VhlG1araZ4k/XYJwLqgUBiI/AAAAAAAALEA/gVxfGiaDHvA8mIs7eryK0mVLz2vMfjg_gCLcBGAsYHQ/s400/35132847_951190921726036_6928345438919589888_o.jpg
142.250.74.161200 OK 57 kB URL GET HTTP/2 1.bp.blogspot.com/-VhlG1araZ4k/XYJwLqgUBiI/AAAAAAAALEA/gVxfGiaDHvA8mIs7eryK0mVLz2vMfjg_gCLcBGAsYHQ/s400/35132847_951190921726036_6928345438919589888_o.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash 89e6801a89972f02eccbf3c03e17ac47
f31da47539a2637978e03f512657564f255cc0a0
c72d56cbde752ea7ac1afbad1d7bf9292e817659058d567e02a3f5d9b7fa80c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-VhlG1araZ4k/XYJwLqgUBiI/AAAAAAAALEA/gVxfGiaDHvA8mIs7eryK0mVLz2vMfjg_gCLcBGAsYHQ/s400/35132847_951190921726036_6928345438919589888_o.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c41"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="35132847_951190921726036_6928345438919589888_o.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 56558
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-LB07h74OfxQ/YTzUW-4NY_I/AAAAAAAAL1Q/4PcfrKef7XgLDYja8mWuSJXL1WSGdwcBwCLcBGAsYHQ/w400-h225/Malignant_d.jpg
142.250.74.161200 OK 21 kB URL GET HTTP/2 1.bp.blogspot.com/-LB07h74OfxQ/YTzUW-4NY_I/AAAAAAAAL1Q/4PcfrKef7XgLDYja8mWuSJXL1WSGdwcBwCLcBGAsYHQ/w400-h225/Malignant_d.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash 0fcd7eb7e44318798926f647ae66389d
4840ebace6278b1d474eba762f1b5c22d1ec2bd2
e0f2fe156246e7fe02e91fdd29d3f9dae83215a61d976b09272058d280e002a0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-LB07h74OfxQ/YTzUW-4NY_I/AAAAAAAAL1Q/4PcfrKef7XgLDYja8mWuSJXL1WSGdwcBwCLcBGAsYHQ/w400-h225/Malignant_d.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2f55"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Malignant_d.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 20688
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-YKMM4DF_CRc/XYdpgb_6AhI/AAAAAAAALFQ/DRVptdKCn4E-fc41YobsdEtJKuTOvL_PACLcBGAsYHQ/s400/70464800_378099123124962_7935727119093465088_n.jpg
142.250.74.161200 OK 28 kB URL GET HTTP/2 1.bp.blogspot.com/-YKMM4DF_CRc/XYdpgb_6AhI/AAAAAAAALFQ/DRVptdKCn4E-fc41YobsdEtJKuTOvL_PACLcBGAsYHQ/s400/70464800_378099123124962_7935727119093465088_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x243, components 3\012- data
Hash 2c388220a925ac2094dc25f65f6adf18
f1a883743a21cfc2596a801d426352232e65d612
daadc08d1e3e7407aef59f60c371ae01fb252312795e44b92bc350c43f3b60eb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-YKMM4DF_CRc/XYdpgb_6AhI/AAAAAAAALFQ/DRVptdKCn4E-fc41YobsdEtJKuTOvL_PACLcBGAsYHQ/s400/70464800_378099123124962_7935727119093465088_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c55"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="70464800_378099123124962_7935727119093465088_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 28545
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-yGUYBci9r2Y/XYdFY0fHSFI/AAAAAAAALEc/UpoIiiidCx0nTx98Bh-QCCZO50KdeezSACLcBGAsYHQ/s320/tumblr_6b21f84aa1b9c4bd61797cd9950f2448_7dc22407_540.gif
142.250.74.161200 OK 227 kB URL GET HTTP/2 1.bp.blogspot.com/-yGUYBci9r2Y/XYdFY0fHSFI/AAAAAAAALEc/UpoIiiidCx0nTx98Bh-QCCZO50KdeezSACLcBGAsYHQ/s320/tumblr_6b21f84aa1b9c4bd61797cd9950f2448_7dc22407_540.gif
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type GIF image data, version 89a, 303 x 320\012- data
Size 227 kB (227374 bytes)
Hash 7a7b71890ca3e1689bf8a1fc8a646d66
c0b659610592a9e35db2ce8167aed5bc62892f75
ca90d304376564196650381f792d589fedb60fcc9fe6e31e8acbcb39bddb339e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-yGUYBci9r2Y/XYdFY0fHSFI/AAAAAAAALEc/UpoIiiidCx0nTx98Bh-QCCZO50KdeezSACLcBGAsYHQ/s320/tumblr_6b21f84aa1b9c4bd61797cd9950f2448_7dc22407_540.gif HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c48"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="tumblr_6b21f84aa1b9c4bd61797cd9950f2448_7dc22407_540.gif"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 227374
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-K_eg2HY_wYE/XYJrTnFZYNI/AAAAAAAALDM/GK6CP5e8VqEMcT_Et2rm86i-c2ocDo2lQCLcBGAsYHQ/s400/51155571_10107792911095548_1524597748085555200_n.jpg
142.250.74.161200 OK 48 kB URL GET HTTP/2 1.bp.blogspot.com/-K_eg2HY_wYE/XYJrTnFZYNI/AAAAAAAALDM/GK6CP5e8VqEMcT_Et2rm86i-c2ocDo2lQCLcBGAsYHQ/s400/51155571_10107792911095548_1524597748085555200_n.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash c8968c98154a5710554b02d0f87fa30d
f954e491ca07e1e27aea7f70b55b88ada49b74ef
06588ca05ace49711351915bf51ccc043712b24918ac8d8f6ef676e876c98db4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-K_eg2HY_wYE/XYJrTnFZYNI/AAAAAAAALDM/GK6CP5e8VqEMcT_Et2rm86i-c2ocDo2lQCLcBGAsYHQ/s400/51155571_10107792911095548_1524597748085555200_n.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2c35"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="51155571_10107792911095548_1524597748085555200_n.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 47894
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-0jPDKsIVAJ8/WOkkM0k9UCI/AAAAAAAAJLA/Y73Lgc_GOEU1H3QAjtlOXU5U2MhQJx1ggCLcB/w72-h72-p-k-no-nu/void.jpg
142.250.74.161200 OK 2.1 kB URL GET HTTP/2 1.bp.blogspot.com/-0jPDKsIVAJ8/WOkkM0k9UCI/AAAAAAAAJLA/Y73Lgc_GOEU1H3QAjtlOXU5U2MhQJx1ggCLcB/w72-h72-p-k-no-nu/void.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash 251e3f38da5233e7c28e25aba2284886
20eaa9231d94309fc49eba350f4f932fa03f6406
3f517bace380f69fc6d730ab5b4f2183f8e664d5ad80c64ca60467710f0a72e3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-0jPDKsIVAJ8/WOkkM0k9UCI/AAAAAAAAJLA/Y73Lgc_GOEU1H3QAjtlOXU5U2MhQJx1ggCLcB/w72-h72-p-k-no-nu/void.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v24b1"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="void.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 2144
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-P3rzY6jUOmY/YIOeKTb2CvI/AAAAAAAALl8/QmPuX9q1Oi4vkxFEhne9mcmnuqztzrrwwCLcBGAsYHQ/w263-h400/unnamed.jpg
142.250.74.161200 OK 44 kB URL GET HTTP/2 1.bp.blogspot.com/-P3rzY6jUOmY/YIOeKTb2CvI/AAAAAAAALl8/QmPuX9q1Oi4vkxFEhne9mcmnuqztzrrwwCLcBGAsYHQ/w263-h400/unnamed.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 262x400, components 3\012- data
Hash 7418ce76913272cb820d23a4c5f3c4da
50dddbe239a26ec3e586624a8bc10f6127553498
96f4b7389bb7368e89bf94b65c1fd9bb9c95b20f18138143e06aebaaa0539330
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-P3rzY6jUOmY/YIOeKTb2CvI/AAAAAAAALl8/QmPuX9q1Oi4vkxFEhne9mcmnuqztzrrwwCLcBGAsYHQ/w263-h400/unnamed.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2e60"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 43735
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-mE7gzt3FB5k/YN_zeR5kfII/AAAAAAAALsk/kxTKiVvy0lwdu6bj5HCJG0b_P6YsbkldwCLcBGAsYHQ/w400-h225/Werewolves-Within.jpg
142.250.74.161200 OK 41 kB URL GET HTTP/2 1.bp.blogspot.com/-mE7gzt3FB5k/YN_zeR5kfII/AAAAAAAALsk/kxTKiVvy0lwdu6bj5HCJG0b_P6YsbkldwCLcBGAsYHQ/w400-h225/Werewolves-Within.jpg
IP 142.250.74.161:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintDB:6F:B7:F7:A1:B7:4E:4D:A1:FA:56:E5:EB:89:CB:4E:AE:97:4D:CE
ValidityMon, 14 Aug 2023 08:21:16 GMT - Mon, 06 Nov 2023 08:21:15 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, description=(Clockwise from lower right) Sam Richardson, Milana Vayntrub, Catherine Curtin, Harvey Guillen, Cheyenne Jackson, George Basil , software=Google], baseline, precision 8, 400x225, components 3\012- data
Hash 902aced465ea23e3d246b13a2eb7f662
d5150a12298f31f58632954e1a8030485cf53d1a
8f0f075d3b0dd85dbb0d6d90ab212c8a60cc93c9cd6536611b14de0b60739740
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-mE7gzt3FB5k/YN_zeR5kfII/AAAAAAAALsk/kxTKiVvy0lwdu6bj5HCJG0b_P6YsbkldwCLcBGAsYHQ/w400-h225/Werewolves-Within.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v2eca"
expires: Tue, 19 Sep 2023 07:21:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Werewolves-Within.jpg"
x-content-type-options: nosniff
date: Mon, 18 Sep 2023 07:21:55 GMT
server: fife
content-length: 41200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7504c2d44665ed49beb25627b831fe8f
3471bd3b355499b5a959ac26c3c854d998f639ae
533b4f81b7e982ba16cd5ef61756d08822ea4bcab5b29b83fedfb1ab0d07b8f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 7504c2d44665ed49beb25627b831fe8f
3471bd3b355499b5a959ac26c3c854d998f639ae
533b4f81b7e982ba16cd5ef61756d08822ea4bcab5b29b83fedfb1ab0d07b8f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 18 Sep 2023 07:21:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/NbX2WDA.jpg
151.101.244.193301 Moved Permanently 0 B IP 151.101.244.193:80
Requested by http://www.viewerdiscretionadvised.net/
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /NbX2WDA.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/NbX2WDA.jpg
Accept-Ranges: bytes
Date: Mon, 18 Sep 2023 07:21:59 GMT
X-Served-By: cache-hel1410024-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1695021719.393906,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/8i115gm.png
151.101.244.193200 OK 447 B IP 151.101.244.193:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 833 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash f74153215f2ac5ed5cf2dcbe262ebc13
600b1b9384aaf09f700cf1abb216a438d90e035c
6f4e7da82576147d99ae98afab21ad50aff7afa4f829ba5a73b440522e39930f
GET /8i115gm.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
last-modified: Sun, 22 Sep 2019 14:39:07 GMT
etag: "f74153215f2ac5ed5cf2dcbe262ebc13"
x-amz-cf-pop: IAD55-P2
x-amz-cf-id: V4nG6ashiuxppb6-u-9_rUKw8sjiqHODLKyqLskav78mApehJFEmIw==
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 18 Sep 2023 07:21:59 GMT
age: 2382773
x-served-by: cache-iad-kiad7000062-IAD, cache-hel1410022-HEL
x-cache: Miss from cloudfront, HIT, MISS
x-cache-hits: 126, 0
x-timer: S1695021719.399143,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 447
X-Firefox-Spdy: h2
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/Twitter-icon.png
143.204.55.106301 Moved Permanently 7.7 kB URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/Twitter-icon.png
IP 143.204.55.106:80
Requested by http://www.viewerdiscretionadvised.net/
File type RIFF (little-endian) data, Web/P image\012- data
Hash d176efc8f7081b9a9c74c27f50862135
2b8930ea862b96e94050258a2c48e157b679a673
e14daaecf8109c36bdcce762309d727b7d32025e7a1dc646d3948d9ae9c057c0
GET /albums/f26/SweetHenrietta/Blogger/Twitter-icon.png HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.viewerdiscretionadvised.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 7698
date: Mon, 18 Sep 2023 07:21:59 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="Twitter-icon.webp"
content-security-policy: script-src 'none'
expires: Tue, 17 Sep 2024 07:21:59 GMT
server: photobucket
x-amzn-trace-id: Root=1-6507fa97-587d54173e79ac045cee30f5
x-request-id: x9kvRR7wezzCZvqkvuq_N
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6WV2mX29OYDKLQlnfvYXypXkQWtRsD4AiKNu-guHq_WpFTyHT7IX2Q==
vary: Accept, Origin
X-Firefox-Spdy: h2
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/icon_rss.png
143.204.55.106301 Moved Permanently 16 kB URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/icon_rss.png
IP 143.204.55.106:80
Requested by http://www.viewerdiscretionadvised.net/
File type RIFF (little-endian) data, Web/P image\012- data
Hash 848556732a5c11704ed46a0e5aba5af7
3b62d0d1b5b4cecc8c7970f44b9dc13d0b5d4dce
037a24ba3fc7878c432882838d3e5daa5a15ddbe2091f7030573f2cd329d6564
GET /albums/f26/SweetHenrietta/Blogger/icon_rss.png HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.viewerdiscretionadvised.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 15926
date: Mon, 18 Sep 2023 07:21:59 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="icon_rss.webp"
content-security-policy: script-src 'none'
expires: Tue, 17 Sep 2024 07:21:59 GMT
server: photobucket
x-amzn-trace-id: Root=1-6507fa97-34aaf51f125223b34107356f
x-request-id: YwZ9BY4X5TJ63gbwp2FcO
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d5WmHNRcJuR2osLlOhP5Y5Fjdmci9YGx1ZJrx3dzKdm-e2zh_ZwU3w==
vary: Accept, Origin
X-Firefox-Spdy: h2
www.viewerdiscretionadvised.net/feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata
172.67.211.60200 OK 8.0 kB URL GET HTTP/1.1 www.viewerdiscretionadvised.net/feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata
IP 172.67.211.60:80
Requested by http://www.viewerdiscretionadvised.net/
File type ASCII text, with very long lines (25727)
Hash cdb43dda8bf2ea105b2bfd2b27d05a76
b0e44cf12487cdf6924b46c0384a55d4c3fa3463
56fc173c6285d7c41701c08606f921db761d2b9310785d88f7bb9109a038719e
GET /feeds/posts/summary?max-results=1&alt=json-in-script&callback=hitungtotaldata HTTP/1.1
Host: www.viewerdiscretionadvised.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 18 Sep 2023 07:21:59 GMT
Content-Type: text/javascript; charset=UTF-8
Content-Length: 7960
Connection: keep-alive
Cross-Origin-Resource-Policy: cross-origin
ETag: W/"26e289591260140e972acec8ac42d6cebefc35283edc61631a9da9ef639c33fc"
Expires: Mon, 18 Sep 2023 07:22:00 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Last-Modified: Thu, 15 Jun 2023 06:22:12 GMT
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=20W%2Bxt88fLGF4VudfDOqzbB%2BIe1vieeh991XJguAn%2F6Em3JbNdqc4WDivdmtJv3mQJkVWQqpWJts3EOwNqE2cx%2B69XfaFnJ9oGAg0k6me8yjIlz%2BeinS12UvvW2prgtzfIAZIIP5mzjUNMJsudo%2BnIw3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 8087d5d2cd47568a-OSL
alt-svc: h2=":443"; ma=60
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
172.217.21.174200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs
IP 172.217.21.174:443
Requested by http://www.viewerdiscretionadvised.net/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5A:48:5B:27:A7:FB:0B:D6:63:83:8E:8E:80:DB:29:B7:2C:72:A8:8E
ValidityMon, 14 Aug 2023 08:16:28 GMT - Mon, 06 Nov 2023 08:16:27 GMT
File type ASCII text, with very long lines (1368)
Hash 60cb3b69fb3e3b24891141159eb940ad
8b183b5d8df902f7919cec452bce4c7f1bd950a7
6bbd65596c2e3d24a2d396fbf8753545e8d6a3fe2a7467f9ef4e1b4c2a0494f9
GET /_/scs/abc-static/_/js/k=gapi.lb.en.IoxrLNdlTyI.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9N48n3oloz8UTxoCozKcpUKaADkg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 61126
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 11 Sep 2023 22:31:53 GMT
expires: Tue, 10 Sep 2024 22:31:53 GMT
cache-control: public, max-age=31536000
age: 550206
last-modified: Wed, 02 Aug 2023 15:23:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
viewerdiscretionadvised.disqus.com/blogger_index.js
199.232.192.134301 Moved Permanently 219 B URL GET HTTP/1.1 viewerdiscretionadvised.disqus.com/blogger_index.js
IP 199.232.192.134:80
Requested by http://www.viewerdiscretionadvised.net/
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6b22a8f71ae72ac4b781cff49386dfa9
a8e7202517458752851aeb18c9fb770e931fec34
186d5321baf20106cb6361d9ec524b818d876d773a5bd9dd5530ae5889d74be3
GET /blogger_index.js HTTP/1.1
Host: viewerdiscretionadvised.disqus.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 219
Server: Varnish
Location: https://viewerdiscretionadvised.disqus.com/blogger_index.js
Content-Type: text/html
Cache-Control: public, max-age=31536000
Date: Mon, 18 Sep 2023 07:21:59 GMT
Strict-Transport-Security: max-age=300; includeSubdomains
Cross-Origin-Resource-Policy: cross-origin
Link: <https://disqus.com>; rel=preconnect, <https://c.disquscdn.com>; rel=preconnect
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/fleche1.png
143.204.55.106301 Moved Permanently 167 B URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/fleche1.png
IP 143.204.55.106:80
Requested by http://www.viewerdiscretionadvised.net/
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/f26/SweetHenrietta/Blogger/fleche1.png HTTP/1.1
Host: i44.photobucket.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://www.viewerdiscretionadvised.net/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 18 Sep 2023 07:22:00 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/fleche1.png
X-Cache: Redirect from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KfTrZoC_b99jT3kjO4sjWmFVFfYxEU9wmcGRnqmqXF_LAOPmzOIMxg==
Vary: Origin
i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/fleche2.png
143.204.55.106301 Moved Permanently 167 B URL GET HTTP/1.1 i44.photobucket.com/albums/f26/SweetHenrietta/Blogger/fleche2.png
IP