ocsp.pki.goog/gts1c3
471 B IP
Hash edb0c213685c28c266c093ac59c369b0
e0841c1928ee05cb6b2e1394c51ee33b51095d06
0224d0e9559dee969f319bbc8cb3def81a2d418d9f2ba72d60cd6830d1e6dee2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leeandlaurasblog.blogspot.ca/2012/
302 Found 186 B URL User Request GET HTTP/2 leeandlaurasblog.blogspot.ca/2012/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 402bfeb4323c58fe62a0ac6d76499b56
a45728198e0d21a933966d20b239dc627d83da8a
5457267ba7e5a0e9a8aa2849cb1de5e2f0db77ad99ef7ab5927e6a1a7f36513f
GET /2012/ HTTP/1.1
Host: leeandlaurasblog.blogspot.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://leeandlaurasblog.blogspot.com/2012/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Tue, 26 Sep 2023 10:01:01 GMT
expires: Tue, 26 Sep 2023 10:01:01 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 186
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash edb0c213685c28c266c093ac59c369b0
e0841c1928ee05cb6b2e1394c51ee33b51095d06
0224d0e9559dee969f319bbc8cb3def81a2d418d9f2ba72d60cd6830d1e6dee2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash edb0c213685c28c266c093ac59c369b0
e0841c1928ee05cb6b2e1394c51ee33b51095d06
0224d0e9559dee969f319bbc8cb3def81a2d418d9f2ba72d60cd6830d1e6dee2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leeandlaurasblog.blogspot.com/2012/
200 OK 22 kB URL User Request GET HTTP/2 leeandlaurasblog.blogspot.com/2012/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1061)
Hash baddc221b685b3667b3f247861eb8af6
b23e23a85e24d447b950c2ad750180e2d6b421bf
4a1bdbaf6eaf9e0297a80de0e059f34deb38b3d0f9efa93ce2eb589405db4f78
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /2012/ HTTP/1.1
Host: leeandlaurasblog.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 26 Sep 2023 10:01:01 GMT
date: Tue, 26 Sep 2023 10:01:01 GMT
cache-control: private, max-age=0
last-modified: Sun, 19 Mar 2023 16:36:50 GMT
etag: W/"f6720f4ac044b2fe149237680af4f819fbe50b7f181238a4eadb486df804f30d"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 21857
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
leeandlaurasblog.blogspot.com/js/cookienotice.js
200 OK 2.0 kB URL GET HTTP/3 leeandlaurasblog.blogspot.com/js/cookienotice.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/cookienotice.js HTTP/1.1
Host: leeandlaurasblog.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/2012/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 26 Sep 2023 10:01:02 GMT
expires: Tue, 03 Oct 2023 10:01:02 GMT
cache-control: public, max-age=604800
last-modified: Tue, 26 Sep 2023 07:53:17 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 1a531c4a6f63eec7c47b290aaea56a63
2ab462b13b2696cf0fb363d65c833b7b55e363fb
a36b9f9add0059bf3c5054b2e14d5ddcca528eff04908102701a426d2fa603a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 1a531c4a6f63eec7c47b290aaea56a63
2ab462b13b2696cf0fb363d65c833b7b55e363fb
a36b9f9add0059bf3c5054b2e14d5ddcca528eff04908102701a426d2fa603a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 476eb0019c23b3142ba7995c52c66cf2
c242c01db30356e39a19f54c092d59b7a364c509
d1b863189e6dbec342904284cfa707d557d127d8bd0d14d2648de916efc504a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
200 OK 7.8 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/3566091532-css_bundle_v2.css
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (35959)
Hash 1e32420a7b6ddbdcb7def8b3141c4d1e
a1be54d42ff1f95244c9653539f90318f5bc0580
a9ca837900b6ae007386d400f659c233120b8af7d93407fd6475c9180d9e83d2
GET /static/v1/widgets/3566091532-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7756
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 20:27:36 GMT
expires: Tue, 24 Sep 2024 20:27:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Sep 2023 11:54:51 GMT
content-type: text/css
vary: Accept-Encoding
age: 48806
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL GET HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:51:49 GMT
expires: Sat, 30 Sep 2023 13:51:49 GMT
cache-control: public, max-age=604800
last-modified: Sat, 23 Sep 2023 06:53:52 GMT
content-type: image/gif
age: 245353
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash cd6f8c3c552350293e3c86605ae8ad14
6904be42c4ee2d9a982a4ec21bb3a512f63ca324
fa9a0d3b702f2bc40bb0b6e2e13e172428128ece3cfff90b86e0882667097988
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 1a531c4a6f63eec7c47b290aaea56a63
2ab462b13b2696cf0fb363d65c833b7b55e363fb
a36b9f9add0059bf3c5054b2e14d5ddcca528eff04908102701a426d2fa603a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
200 OK 22 kB URL GET HTTP/2 apis.google.com/js/platform.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
FingerprintB1:CC:B9:00:18:09:CE:C0:F7:B1:3F:29:95:6B:4A:93:CC:9A:19:0A
ValidityMon, 04 Sep 2023 08:23:36 GMT - Mon, 27 Nov 2023 08:23:35 GMT
File type ASCII text, with very long lines (2664)
Hash ce7e88034e2b1226294f3d7e515299c9
326b37908964a9f69460d42cb646716c9f1e86e1
08280e7af6518c3230f34d50cb9534b35c82fddd96138896e2608d9a12661bbe
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21949
date: Tue, 26 Sep 2023 10:01:02 GMT
expires: Tue, 26 Sep 2023 10:01:02 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "22f179323a7dd95a"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 7.9 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/show_ads.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (3722)
Hash a25c7ebf5e465b8b7de6e9e2a8983431
f336398a3533684b2f24d8dc70a9d76b11bfe6c1
241ef0f933bd8e9d01905edec58201c1c3b1bb2f2a491fa6931cb8cf04fe7e6e
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 26 Sep 2023 10:01:03 GMT
expires: Tue, 26 Sep 2023 10:01:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10185787303200943825
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7897
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/562952797-widgets.js
200 OK 160 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/562952797-widgets.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (2215)
Size 160 kB (160393 bytes)
Hash 0804e4c7fd72aea2ce34a04d9ec9686c
9f46bef1076230a1271d151a506fd1d91ae7df93
5ea4b0b19c5f030a3b42b570c07cbea89a7899f1d824a95b53ad2c4ca18a2b5c
GET /static/v1/widgets/562952797-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 160393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 02:21:50 GMT
expires: Thu, 19 Sep 2024 02:21:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 00:55:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 545953
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-Knr8ya6D7cI/UNhlxZTxnQI/AAAAAAAAE9s/wDPpIK1W51Q/s320/IMG_1500.JPG
200 OK 46 kB URL GET HTTP/2 3.bp.blogspot.com/-Knr8ya6D7cI/UNhlxZTxnQI/AAAAAAAAE9s/wDPpIK1W51Q/s320/IMG_1500.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash b27545c129021d5a44b268d44b1fd2bd
6f5b07d30dab2a3d925f481840e10269ff2a028a
93fbd10e95e7770a403b8665d3f214f9edf1982b364987d65158571e33069f5e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Knr8ya6D7cI/UNhlxZTxnQI/AAAAAAAAE9s/wDPpIK1W51Q/s320/IMG_1500.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13db"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1500.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 45795
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-_56uKSEXDrc/UNhlz7KB0cI/AAAAAAAAE90/ChnCwel4xIY/s320/IMG_1510.JPG
200 OK 44 kB URL GET HTTP/2 2.bp.blogspot.com/-_56uKSEXDrc/UNhlz7KB0cI/AAAAAAAAE90/ChnCwel4xIY/s320/IMG_1510.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a1ba712d391602eb1ac0b96aba1d5089
c773565edc1866101dba1b3a2e96b3c6403eed16
393ae7efc367a7155bf86b38a33bd6041c6db1dbe3811f0359f5a178b7c6c0aa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-_56uKSEXDrc/UNhlz7KB0cI/AAAAAAAAE90/ChnCwel4xIY/s320/IMG_1510.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13dd"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1510.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 44408
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-SKdM_FI8KQc/UImq6dCmagI/AAAAAAAAE4o/lcNE73xaZJI/s320/IMG_1315.JPG
200 OK 46 kB URL GET HTTP/2 4.bp.blogspot.com/-SKdM_FI8KQc/UImq6dCmagI/AAAAAAAAE4o/lcNE73xaZJI/s320/IMG_1315.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 17f5fab8c2ac036694e5ea9017607e4b
202aa4e62f90acfee90c0ad1f0cec52c4f26f1eb
01698274a370e1c9e5be6ca2278407c28fbcc7b55dd84190e4a45167850b1ec5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-SKdM_FI8KQc/UImq6dCmagI/AAAAAAAAE4o/lcNE73xaZJI/s320/IMG_1315.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v138a"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1315.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 46155
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 1a531c4a6f63eec7c47b290aaea56a63
2ab462b13b2696cf0fb363d65c833b7b55e363fb
a36b9f9add0059bf3c5054b2e14d5ddcca528eff04908102701a426d2fa603a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-ILR14FoVktU/UImq4AICUPI/AAAAAAAAE4g/2Ck4Zv3HtU8/s320/IMG_1311.JPG
200 OK 32 kB URL GET HTTP/2 2.bp.blogspot.com/-ILR14FoVktU/UImq4AICUPI/AAAAAAAAE4g/2Ck4Zv3HtU8/s320/IMG_1311.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 21061d3bdb944ecd0293ccc65eb78cc5
4a682a6ed78ef7715ae9c262fae053a7e5967ec6
171ea7b70e52920c1a1169c5db8225b0b3aabe0e87edcd1ee2ebd89f57f0fa38
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ILR14FoVktU/UImq4AICUPI/AAAAAAAAE4g/2Ck4Zv3HtU8/s320/IMG_1311.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1388"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1311.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 31824
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-ho1THApke2E/UNiQLuj3DGI/AAAAAAAAE-w/brm4GJvQNzc/s320/IMG_1572.JPG
200 OK 29 kB URL GET HTTP/2 3.bp.blogspot.com/-ho1THApke2E/UNiQLuj3DGI/AAAAAAAAE-w/brm4GJvQNzc/s320/IMG_1572.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 11cc439cbe41ca26c76fa8c1cfef88ea
6b2ef13d92ab4cb98464e83dcfe0c97bc6dfd5e3
f98691561f988c5bb350d69bed8b3f547df15f0bd100f126be0efd819c25940c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ho1THApke2E/UNiQLuj3DGI/AAAAAAAAE-w/brm4GJvQNzc/s320/IMG_1572.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13ec"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1572.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 29422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-TzV_xvO8A98/UNhl6GOjUgI/AAAAAAAAE-M/vfQwRQZvGAk/s320/IMG_1516.JPG
200 OK 35 kB URL GET HTTP/2 4.bp.blogspot.com/-TzV_xvO8A98/UNhl6GOjUgI/AAAAAAAAE-M/vfQwRQZvGAk/s320/IMG_1516.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 545c65b6d348091c179333a051d4a5b1
6d8c1ed18c407c438d40570ca674ade8d4451dcc
c2b3f3bb9929996673ed7ecaf0962e6104e63605af3b4a9c9d6d1e82bb43130f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-TzV_xvO8A98/UNhl6GOjUgI/AAAAAAAAE-M/vfQwRQZvGAk/s320/IMG_1516.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13e3"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1516.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 34559
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-l2fhZEyjwlc/UNMoOoCkixI/AAAAAAAAE9A/q9-gPJr-Cwk/s320/IMG_1488.JPG
200 OK 16 kB URL GET HTTP/2 3.bp.blogspot.com/-l2fhZEyjwlc/UNMoOoCkixI/AAAAAAAAE9A/q9-gPJr-Cwk/s320/IMG_1488.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 08229c812c1dc0c460a22061f2bf971f
a50fd85c11695892727bcdb05ffd0a29f60f9036
ed3b4c1d365a588d5c6eae7b79b148e0c0d25fc46310a53d2a7d9ab987af0cd9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-l2fhZEyjwlc/UNMoOoCkixI/AAAAAAAAE9A/q9-gPJr-Cwk/s320/IMG_1488.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13d0"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1488.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 16261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-bMSFbpo03wc/UNhlwPcRhLI/AAAAAAAAE9k/-5P6BENcl40/s320/IMG_1499.JPG
200 OK 38 kB URL GET HTTP/2 2.bp.blogspot.com/-bMSFbpo03wc/UNhlwPcRhLI/AAAAAAAAE9k/-5P6BENcl40/s320/IMG_1499.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 79dc606f873d6796ebde34646c756894
8d0e4770ede1813893310379e23a3d1e737dcaa5
3591dfbeb9ce569fdc061eda2b7cf05192f84e4b19ec6ac1a32afb1213d76734
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bMSFbpo03wc/UNhlwPcRhLI/AAAAAAAAE9k/-5P6BENcl40/s320/IMG_1499.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13d9"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1499.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 37513
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-koFFfD4v_oI/UNhl3Z7ErVI/AAAAAAAAE-E/JNVrvonkuF0/s320/IMG_1520.JPG
200 OK 34 kB URL GET HTTP/2 2.bp.blogspot.com/-koFFfD4v_oI/UNhl3Z7ErVI/AAAAAAAAE-E/JNVrvonkuF0/s320/IMG_1520.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 52eeb9f142fa0727d3a854e3deea4575
06713825b2976653460fcda3c4aca38e1d624a89
8cd3a94e0bd30ed7e275d787873a012d6b13a1b37d0546015db1b6331b548f63
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-koFFfD4v_oI/UNhl3Z7ErVI/AAAAAAAAE-E/JNVrvonkuF0/s320/IMG_1520.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13e1"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1520.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 33684
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-71yQ7BfUVrA/UImqznxeInI/AAAAAAAAE4Q/JyuAc8Bxek4/s320/IMG_1304.JPG
200 OK 40 kB URL GET HTTP/2 2.bp.blogspot.com/-71yQ7BfUVrA/UImqznxeInI/AAAAAAAAE4Q/JyuAc8Bxek4/s320/IMG_1304.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash aa656516d7cf2e459c408be29194f24b
eeeac767efcbd2331efb00dee34611c481b438a1
82ef356c8da78c8647fc641a811260f172002afabd1cb87409e15b4b689683a1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-71yQ7BfUVrA/UImqznxeInI/AAAAAAAAE4Q/JyuAc8Bxek4/s320/IMG_1304.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1384"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1304.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 40310
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 1a531c4a6f63eec7c47b290aaea56a63
2ab462b13b2696cf0fb363d65c833b7b55e363fb
a36b9f9add0059bf3c5054b2e14d5ddcca528eff04908102701a426d2fa603a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-Kz5J5ke7PUA/UNMoFv_ddyI/AAAAAAAAE84/llFgakCExbw/s320/IMG_1490.JPG
200 OK 32 kB URL GET HTTP/2 4.bp.blogspot.com/-Kz5J5ke7PUA/UNMoFv_ddyI/AAAAAAAAE84/llFgakCExbw/s320/IMG_1490.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 12dd97b64354a31603cc4f8039094f53
64e8ba13d70ae1e0596718c24ff4241d8ed9b247
dacd42e9209c759f41e465152a33e092f041c75c6ad875a39a5b02a93d8188c0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Kz5J5ke7PUA/UNMoFv_ddyI/AAAAAAAAE84/llFgakCExbw/s320/IMG_1490.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13ce"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1490.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 31568
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-x2-znU0xR0E/UNhl8irfBfI/AAAAAAAAE-U/NFxp5tyeZJE/s320/IMG_1527.JPG
200 OK 31 kB URL GET HTTP/2 4.bp.blogspot.com/-x2-znU0xR0E/UNhl8irfBfI/AAAAAAAAE-U/NFxp5tyeZJE/s320/IMG_1527.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a54fdd76169eab1505595e6502112d07
48a6bf52b62c00ddb728b21bcc793c74c7b538bf
f7b0e1571d3247582ebdf2a75a88601a5bf2e5eea9ce3146334881562591bab5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-x2-znU0xR0E/UNhl8irfBfI/AAAAAAAAE-U/NFxp5tyeZJE/s320/IMG_1527.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13e5"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1527.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 30646
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-EjzDswvji5s/ULqOd8lrCNI/AAAAAAAAE7w/jlKdyIee7RY/s320/IMG_1406.JPG
200 OK 27 kB URL GET HTTP/2 3.bp.blogspot.com/-EjzDswvji5s/ULqOd8lrCNI/AAAAAAAAE7w/jlKdyIee7RY/s320/IMG_1406.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash b31d36bc8c08aa322ea9d303e4358a80
70b1994db6d9a52ba5be17a8aab069dbb4a4099e
1f5af5b7ca86ae468149de85bdc37fa0d2833644c6198808127203d4a57a0739
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-EjzDswvji5s/ULqOd8lrCNI/AAAAAAAAE7w/jlKdyIee7RY/s320/IMG_1406.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13bc"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1406.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 26855
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-C8McDp8J8n8/UOGTiScplAI/AAAAAAAAFBg/bn_kQVZkSaE/s320/IMG_1622.JPG
200 OK 31 kB URL GET HTTP/2 2.bp.blogspot.com/-C8McDp8J8n8/UOGTiScplAI/AAAAAAAAFBg/bn_kQVZkSaE/s320/IMG_1622.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash ab1b00b4c790f1e8a2c5aa4724529333
af7011cbd56d2ff9a33b44aa3a396214f03e9ce4
89e31b46839fe1b3a6cf8b51e1a9898bfc9a1db4ebab3a24da0272b2ec72afb4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-C8McDp8J8n8/UOGTiScplAI/AAAAAAAAFBg/bn_kQVZkSaE/s320/IMG_1622.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1418"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1622.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 30716
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-l5IpkxHk6zU/UNhl1LaPPxI/AAAAAAAAE98/dVijQZ-VR18/s320/IMG_1503.JPG
200 OK 55 kB URL GET HTTP/2 4.bp.blogspot.com/-l5IpkxHk6zU/UNhl1LaPPxI/AAAAAAAAE98/dVijQZ-VR18/s320/IMG_1503.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash c2ed71932853a14dd6db77b26c37911a
125816d1052e2e11adb33e6a4bda68a7210338fd
e1977433206d26ac6f82f7a99e1070663e869fd7624ef2c2ea5f4a68b80f797b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-l5IpkxHk6zU/UNhl1LaPPxI/AAAAAAAAE98/dVijQZ-VR18/s320/IMG_1503.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13df"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1503.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 55036
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-egw2-MvGv74/UMnEE2NO21I/AAAAAAAAE8Q/PP11k5kRhXY/s400/IMG_1418.JPG
200 OK 73 kB URL GET HTTP/2 1.bp.blogspot.com/-egw2-MvGv74/UMnEE2NO21I/AAAAAAAAE8Q/PP11k5kRhXY/s400/IMG_1418.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 400x300, components 3\012- data
Hash c464f61d8a658fe974bf79cd237415aa
cf50903376d3bb6aa99aa1bb469de386e66147c0
1566ba845bd2f60bea948117b3cde279ef15ec646b645924fbe5cf9221da493f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-egw2-MvGv74/UMnEE2NO21I/AAAAAAAAE8Q/PP11k5kRhXY/s400/IMG_1418.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13c4"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1418.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 72831
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash e5f9f802e548a076e6066ecff6aa5bbb
fb8dfabace38ae24e462d84eddc3d25b48b23a20
20dbe13a82e0d8f734ff3b0e89a008ef31f3523d410957da15a9578c0f68afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2.bp.blogspot.com/-x-DSrYLXCbE/UIsCihNdtxI/AAAAAAAAE6E/sYyGy2gC64o/s320/IMG_1380.JPG
200 OK 30 kB URL GET HTTP/2 2.bp.blogspot.com/-x-DSrYLXCbE/UIsCihNdtxI/AAAAAAAAE6E/sYyGy2gC64o/s320/IMG_1380.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash ad01efd2bd8ba23f817011071c9fad75
5bf20710c18cf97f42b122359be55dfb9afb987e
d9784994ebd612b2e5c4e3a7c8d2a3922920eedbf0182d63a1b14e57fb5dcca5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-x-DSrYLXCbE/UIsCihNdtxI/AAAAAAAAE6E/sYyGy2gC64o/s320/IMG_1380.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13a1"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1380.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 30004
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-CJsTfKCsM90/ULqNi2X67QI/AAAAAAAAE7Y/ceYkNo3lX6U/s320/IMG_1397.JPG
200 OK 34 kB URL GET HTTP/2 1.bp.blogspot.com/-CJsTfKCsM90/ULqNi2X67QI/AAAAAAAAE7Y/ceYkNo3lX6U/s320/IMG_1397.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 975f9453d4147eaa7dda1bf8d9dd58ae
7bf3070079383d1d0295140bba3b6c8a7b1bae20
27018dba92d7a17642014a6349074a0c97cfcc3894e19370b2d3f195bb097fe8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-CJsTfKCsM90/ULqNi2X67QI/AAAAAAAAE7Y/ceYkNo3lX6U/s320/IMG_1397.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13b6"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1397.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 33594
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-Pg_fF0Vsmfs/UNs4ulas5cI/AAAAAAAAE_w/tTg3kxllWrc/s320/IMG_1586.JPG
200 OK 25 kB URL GET HTTP/2 3.bp.blogspot.com/-Pg_fF0Vsmfs/UNs4ulas5cI/AAAAAAAAE_w/tTg3kxllWrc/s320/IMG_1586.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash fe5ae5ef6170a523d7ee8eefb8df95fc
49900ada1a995753db8d3223a1199863451dc4c4
7592ebb7dcbb8709fbcc7f82712ffff0fd40350ae77d85562b383aeae8b43848
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Pg_fF0Vsmfs/UNs4ulas5cI/AAAAAAAAE_w/tTg3kxllWrc/s320/IMG_1586.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13fc"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1586.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 25251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-dgJN6J6zwkU/UIsCfhZwiGI/AAAAAAAAE50/kt2xYBbcF2M/s320/IMG_1351.JPG
200 OK 27 kB URL GET HTTP/2 2.bp.blogspot.com/-dgJN6J6zwkU/UIsCfhZwiGI/AAAAAAAAE50/kt2xYBbcF2M/s320/IMG_1351.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 77087e2d32026a5425a7a794d544dcd5
bfe4a1fc4c67d78e39a79dba19ab7fe81544a787
738a99edc5757309556509f7d634af123c60a0caaface82188f792d1c8275b21
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-dgJN6J6zwkU/UIsCfhZwiGI/AAAAAAAAE50/kt2xYBbcF2M/s320/IMG_1351.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v139d"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1351.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 27342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-yUAgRfJCvBE/UOGTLjG4m0I/AAAAAAAAFBY/OK6BqIypXqA/s320/IMG_1621.JPG
200 OK 25 kB URL GET HTTP/2 4.bp.blogspot.com/-yUAgRfJCvBE/UOGTLjG4m0I/AAAAAAAAFBY/OK6BqIypXqA/s320/IMG_1621.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 6928fe8a1ac86f7b847462ddee8a9fb5
cbc432cf83117d4b04014b0b4778388a26f2b573
ea9d2412dbb6a7d84632d69bcb49dd3078bc6726c56f7d9ba6474f3402f1d5a5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-yUAgRfJCvBE/UOGTLjG4m0I/AAAAAAAAFBY/OK6BqIypXqA/s320/IMG_1621.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1416"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1621.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 24801
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-k9f2sBt8qlA/UNiZINAHVQI/AAAAAAAABZw/rm8iCr6f_YM/s320/photo.JPG
200 OK 31 kB URL GET HTTP/2 2.bp.blogspot.com/-k9f2sBt8qlA/UNiZINAHVQI/AAAAAAAABZw/rm8iCr6f_YM/s320/photo.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash f6ab6ff1692200bcc64f8aa135ae23aa
1168795fe770ba3a5b14e69f21ec2b2dceb66ba3
b05c7f0ba9139259489e8c84ca43f7a8ad26299c39bd8eefc42d0e1e21e645bf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-k9f2sBt8qlA/UNiZINAHVQI/AAAAAAAABZw/rm8iCr6f_YM/s320/photo.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v59c"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="photo.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 31299
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-qWVRuCM7bz0/UNs4sB2MF_I/AAAAAAAAE_o/9yPCj2SmEBY/s320/IMG_1585.JPG
200 OK 21 kB URL GET HTTP/2 3.bp.blogspot.com/-qWVRuCM7bz0/UNs4sB2MF_I/AAAAAAAAE_o/9yPCj2SmEBY/s320/IMG_1585.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 1655328598a0f865db864b1bccac8478
15b024e323d4158b7e90fbd3bb76c243aeafb0b6
36af57d694006f52597fee6be0f2d806e778c02a601d45c2ec1b49e58cecd3df
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-qWVRuCM7bz0/UNs4sB2MF_I/AAAAAAAAE_o/9yPCj2SmEBY/s320/IMG_1585.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13fa"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1585.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 20617
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-bXA59ffL2RA/UImrA6SBsGI/AAAAAAAAE5E/gC0eVkwRAPE/s320/IMG_1332.JPG
200 OK 26 kB URL GET HTTP/2 1.bp.blogspot.com/-bXA59ffL2RA/UImrA6SBsGI/AAAAAAAAE5E/gC0eVkwRAPE/s320/IMG_1332.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 1eeac582deb61ed8aae9ac33b949bd29
7e285eb0d9ad39bcc5eaee45ff6790bf1b4d1aa7
c4890a935bd462ff3d8f6d29f45703c4e4f862a3b3f1841dd3590f2d4212035e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bXA59ffL2RA/UImrA6SBsGI/AAAAAAAAE5E/gC0eVkwRAPE/s320/IMG_1332.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1391"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1332.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 26245
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-8nvQYQbzPlU/UNzIw8_WMWI/AAAAAAAAFAo/VOlhCCdLt_Q/s320/IMG_1604.JPG
200 OK 16 kB URL GET HTTP/2 4.bp.blogspot.com/-8nvQYQbzPlU/UNzIw8_WMWI/AAAAAAAAFAo/VOlhCCdLt_Q/s320/IMG_1604.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash db16dda9530a637dd892ce2b597f265c
6a97064eb22b01e7edece5ac98b6b214159e68b6
88e308f5b2383b9e9f42d4806f10fa5fc237191bb17d7034a3577cb08baf0aad
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-8nvQYQbzPlU/UNzIw8_WMWI/AAAAAAAAFAo/VOlhCCdLt_Q/s320/IMG_1604.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1828"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1604.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 16160
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-C5vlCfxrq7s/UIhzYxoP1II/AAAAAAAAE2o/KpJAOnivj84/s320/IMG_1240.JPG
200 OK 20 kB URL GET HTTP/2 1.bp.blogspot.com/-C5vlCfxrq7s/UIhzYxoP1II/AAAAAAAAE2o/KpJAOnivj84/s320/IMG_1240.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash f8cf92c782a02c629c7e51c5837c319d
e19edca0d37cba691cf639d897100077639496c9
8401bdc054c7e662c8078f3d83ca91e087da3abfd1cb6765982e70a968e387e4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-C5vlCfxrq7s/UIhzYxoP1II/AAAAAAAAE2o/KpJAOnivj84/s320/IMG_1240.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v136a"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1240.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 20294
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-Y7XMpIJQFa4/UIsCeHgVL2I/AAAAAAAAE5s/n0YpXDtSfNc/s320/IMG_1343.JPG
200 OK 42 kB URL GET HTTP/2 1.bp.blogspot.com/-Y7XMpIJQFa4/UIsCeHgVL2I/AAAAAAAAE5s/n0YpXDtSfNc/s320/IMG_1343.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash cfa9b724142889de6401ebdf08bea4a0
0b66d75aedc595f079ff44db99377321ba33a7f3
88288124e0c55fe99b323e8c3a84158e1f9626792b83feb784efcd89b153bda3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-Y7XMpIJQFa4/UIsCeHgVL2I/AAAAAAAAE5s/n0YpXDtSfNc/s320/IMG_1343.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v139b"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1343.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 42081
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-XJUhKsnIH-c/UKj0Dv61OzI/AAAAAAAAE6k/yI9fPE8aOcU/s320/IMG_1391.JPG
200 OK 24 kB URL GET HTTP/2 3.bp.blogspot.com/-XJUhKsnIH-c/UKj0Dv61OzI/AAAAAAAAE6k/yI9fPE8aOcU/s320/IMG_1391.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 320x259, components 3\012- data
Hash 040e5e715cc301b2365ea3b21819428e
cf9bdb95a345ec1c1051d360cd0ec4779b4214a0
682c32b45ee9662f3babcc9a841000b50ca4f837fa8fe26fd3e5805c7afea64d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-XJUhKsnIH-c/UKj0Dv61OzI/AAAAAAAAE6k/yI9fPE8aOcU/s320/IMG_1391.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13a9"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1391.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 23711
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/--uIFnBXhzW8/UImq1ax31mI/AAAAAAAAE4Y/mscCLWMDgww/s320/IMG_1310.JPG
200 OK 30 kB URL GET HTTP/2 2.bp.blogspot.com/--uIFnBXhzW8/UImq1ax31mI/AAAAAAAAE4Y/mscCLWMDgww/s320/IMG_1310.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash e459cbf10044e288312818f4b690b566
ce384012cc587d0c79845c0d67aa907e1452749b
b2794edc5f0b1a784ee0f70f180ac7d354ed2562a41e415f928012faaad643c8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /--uIFnBXhzW8/UImq1ax31mI/AAAAAAAAE4Y/mscCLWMDgww/s320/IMG_1310.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1386"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1310.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 29610
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-PogXY7LniH8/UIhzVnPtEfI/AAAAAAAAE2g/zTrIES4ceBU/s320/IMG_1236.JPG
200 OK 37 kB URL GET HTTP/2 1.bp.blogspot.com/-PogXY7LniH8/UIhzVnPtEfI/AAAAAAAAE2g/zTrIES4ceBU/s320/IMG_1236.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 4c5a4a48c04014714704b25c87d9da79
06e6fa3c156d1e693a6a6b3f0453ae9ac10e29db
125eca10e7a4106d4bbef8b8e8459aa877b39111906de7053d6c0eb6365638bc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-PogXY7LniH8/UIhzVnPtEfI/AAAAAAAAE2g/zTrIES4ceBU/s320/IMG_1236.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1828"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1236.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 36928
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-gtmkhDnh0r4/UIsCcdVAmjI/AAAAAAAAE5k/FFzM4xUCy-s/s320/IMG_1335.JPG
200 OK 64 kB URL GET HTTP/2 3.bp.blogspot.com/-gtmkhDnh0r4/UIsCcdVAmjI/AAAAAAAAE5k/FFzM4xUCy-s/s320/IMG_1335.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash d5258abfdf09c59ff69591a3c92092a2
05aff79310e78738d6277e019637789dbaed3b31
b7e51426307339888b62baf902c26228f68b767537c56b52b8068dd0de7b6666
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-gtmkhDnh0r4/UIsCcdVAmjI/AAAAAAAAE5k/FFzM4xUCy-s/s320/IMG_1335.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1399"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1335.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 63837
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-opdthLK1MKQ/UImq_duxbkI/AAAAAAAAE48/r5HtUlkqHaE/s320/IMG_1329.JPG
200 OK 22 kB URL GET HTTP/2 4.bp.blogspot.com/-opdthLK1MKQ/UImq_duxbkI/AAAAAAAAE48/r5HtUlkqHaE/s320/IMG_1329.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a6bf9c8db8da93da3bfd680128f5e9d9
cbc767435a20198da6b310eeb0f8f049737398aa
91f19da75b496f44425eeb184710803a1c88beb7fa22f12c672d5e574d97779a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-opdthLK1MKQ/UImq_duxbkI/AAAAAAAAE48/r5HtUlkqHaE/s320/IMG_1329.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v138f"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1329.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 22252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-lK7-JZ6gEj4/UIsChO2xtYI/AAAAAAAAE58/J86LhWhOenw/s320/IMG_1360.JPG
200 OK 33 kB URL GET HTTP/2 1.bp.blogspot.com/-lK7-JZ6gEj4/UIsChO2xtYI/AAAAAAAAE58/J86LhWhOenw/s320/IMG_1360.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a7103fdeb2ac4beb400c6337d38cc132
7d92820c675968e862750fbacbfff1f74c1f670d
2df1ac05fef7168acb474ea9cbc140df43f29d32dd59c869b5c1f06b547b3b8b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-lK7-JZ6gEj4/UIsChO2xtYI/AAAAAAAAE58/J86LhWhOenw/s320/IMG_1360.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v139f"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1360.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 33238
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-3EBQWSdZj9M/UJUcxOkEyqI/AAAAAAAABZQ/x_BUxq0xZFw/s320/IMG_5788.jpg
200 OK 30 kB URL GET HTTP/2 3.bp.blogspot.com/-3EBQWSdZj9M/UJUcxOkEyqI/AAAAAAAABZQ/x_BUxq0xZFw/s320/IMG_5788.jpg
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 213x320, components 3\012- data
Hash 92c26b040387589e01e29b4e9ed3f4a5
d923bef021eb400b5dc39ee5e3ce09d8ab6c6beb
32cfb733b8d089715da3f9fccca9c74e97dd488f8413e2f72f354e95296d435b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-3EBQWSdZj9M/UJUcxOkEyqI/AAAAAAAABZQ/x_BUxq0xZFw/s320/IMG_5788.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v594"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_5788.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 29911
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-h0j8XIma0Mk/UIhzbTUv02I/AAAAAAAAE2w/9F5kiDrvTYs/s320/IMG_1253.JPG
200 OK 30 kB URL GET HTTP/2 1.bp.blogspot.com/-h0j8XIma0Mk/UIhzbTUv02I/AAAAAAAAE2w/9F5kiDrvTYs/s320/IMG_1253.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 0013805e953aaa9ce82571e4668fcb64
1696b189e6219c0b81608c1b8799715b7d20c84c
7c98b736fa61e6f020f79c150258ed5296e5b986578d77e80fc47bebc084a689
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-h0j8XIma0Mk/UIhzbTUv02I/AAAAAAAAE2w/9F5kiDrvTYs/s320/IMG_1253.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v136c"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1253.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 29570
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-UgZ50H_KlXA/UIhzkWS3aVI/AAAAAAAAE3M/xJQdeQJwq60/s320/IMG_1276.JPG
200 OK 43 kB URL GET HTTP/2 3.bp.blogspot.com/-UgZ50H_KlXA/UIhzkWS3aVI/AAAAAAAAE3M/xJQdeQJwq60/s320/IMG_1276.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 1a519c9c79441c93f88c406579e377a7
d6bc5059a982a1ef0c1fb6327dd8e32eaabd383b
97c4df181f12ff6c4ee7f20e4f8a432830f9636882cfd86ee1570e8bf3240c62
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-UgZ50H_KlXA/UIhzkWS3aVI/AAAAAAAAE3M/xJQdeQJwq60/s320/IMG_1276.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1373"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1276.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 43340
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-bIUmqbSSR_U/UJUbrnPqrcI/AAAAAAAABY8/2tMJqX9eX4o/s320/IMG_5770.jpg
200 OK 39 kB URL GET HTTP/2 2.bp.blogspot.com/-bIUmqbSSR_U/UJUbrnPqrcI/AAAAAAAABY8/2tMJqX9eX4o/s320/IMG_5770.jpg
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 66d9ff5da4d96c79b710681c5fcaf9b3
308c019664740a3223d3d097e6ceeb3ba427a372
6eb92897caf475fb926af66b4397c4aa18a41a3e5d6535405907d1a68eb5bb4a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-bIUmqbSSR_U/UJUbrnPqrcI/AAAAAAAABY8/2tMJqX9eX4o/s320/IMG_5770.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v58f"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_5770.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 39378
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-U2t9QiIhHbM/UIhze9h7N9I/AAAAAAAAE28/A-ttu7RR0nE/s320/IMG_1271.JPG
200 OK 50 kB URL GET HTTP/2 3.bp.blogspot.com/-U2t9QiIhHbM/UIhze9h7N9I/AAAAAAAAE28/A-ttu7RR0nE/s320/IMG_1271.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 431894c4f60787911c6cac9f817cf7c6
2a250d74eb75e4eadd676d5b5028020355286606
dc8ef7f467fe1ba6810a46419a520ade39128890d2c7dc8f40292992a443a480
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-U2t9QiIhHbM/UIhze9h7N9I/AAAAAAAAE28/A-ttu7RR0nE/s320/IMG_1271.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v136f"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1271.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 49680
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/--hQx6_86Eqo/UIhzndDPEuI/AAAAAAAAE3U/-hGZnmCM6Gw/s320/IMG_1299.JPG
200 OK 45 kB URL GET HTTP/2 1.bp.blogspot.com/--hQx6_86Eqo/UIhzndDPEuI/AAAAAAAAE3U/-hGZnmCM6Gw/s320/IMG_1299.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a691d924489628f6364215f70de77a64
8a9370c1b4f245166cfab13ec6e8e87ca7f106a5
45973122f50e054a5c3730af788dba556ca184a92691753567d39c97bc83a639
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /--hQx6_86Eqo/UIhzndDPEuI/AAAAAAAAE3U/-hGZnmCM6Gw/s320/IMG_1299.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1375"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1299.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 45383
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-p9kiBu8-BhM/UNzIymDfmHI/AAAAAAAAFAw/F6THO6IvWAc/s320/IMG_1607.JPG
200 OK 16 kB URL GET HTTP/2 1.bp.blogspot.com/-p9kiBu8-BhM/UNzIymDfmHI/AAAAAAAAFAw/F6THO6IvWAc/s320/IMG_1607.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 2a5052b4afdb9ddffdb38f08fc82d8e7
246d172c5d96d700c3a2e0d002e39e1d8d7b7db2
0a4323aee6d6363a66badcebe60445ce1952211e7d31a2943c861a3f07eba7d4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-p9kiBu8-BhM/UNzIymDfmHI/AAAAAAAAFAw/F6THO6IvWAc/s320/IMG_1607.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v140c"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1607.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 16212
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-vgWnHElv-YU/UNzI04IAP_I/AAAAAAAAFA4/DMtPQs9rJhU/s320/IMG_1618.JPG
200 OK 28 kB URL GET HTTP/2 4.bp.blogspot.com/-vgWnHElv-YU/UNzI04IAP_I/AAAAAAAAFA4/DMtPQs9rJhU/s320/IMG_1618.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 1db89ad9e569b7da208ceca86e787cdf
c7ea0474087c4916f8577e6cac28f72e86632258
7959a9503935272dc4c589cc135c15450be7851e089c014c6d3a3283be5047da
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-vgWnHElv-YU/UNzI04IAP_I/AAAAAAAAFA4/DMtPQs9rJhU/s320/IMG_1618.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v140e"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1618.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 27933
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-HAepcRXtUgk/UNiQQQxJ1jI/AAAAAAAAE_A/-5zIg1-jPL4/s320/IMG_1575.JPG
200 OK 36 kB URL GET HTTP/2 1.bp.blogspot.com/-HAepcRXtUgk/UNiQQQxJ1jI/AAAAAAAAE_A/-5zIg1-jPL4/s320/IMG_1575.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 351149a80144c6d3fbdfc898b37f624d
18af184cf924eee59d2ef905fe25d521c52e1c43
320c63f0ac9bb611146678d106d5fe699f4a464644c884a66a55d252ba884e8a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-HAepcRXtUgk/UNiQQQxJ1jI/AAAAAAAAE_A/-5zIg1-jPL4/s320/IMG_1575.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13f0"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1575.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 36526
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-zsgY66EJJTg/UNs43WFzSAI/AAAAAAAAE_4/2XugatvYEz0/s320/IMG_1589.JPG
200 OK 36 kB URL GET HTTP/2 4.bp.blogspot.com/-zsgY66EJJTg/UNs43WFzSAI/AAAAAAAAE_4/2XugatvYEz0/s320/IMG_1589.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash c76359d8c87bed27ba9cc4f24ae58956
bbd24e331b26a4abbdef4f47e85c80b2bcf9ab03
8303d944f96e34fcc77e61d8e8f9127438344d84c8d1e1a705432c85b0c10f25
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-zsgY66EJJTg/UNs43WFzSAI/AAAAAAAAE_4/2XugatvYEz0/s320/IMG_1589.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13fe"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1589.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 36433
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-GeMMeeA3bBU/UNhlqeH9l0I/AAAAAAAAE9c/0up7iP-RSrE/s320/IMG_1507.JPG
200 OK 31 kB URL GET HTTP/2 1.bp.blogspot.com/-GeMMeeA3bBU/UNhlqeH9l0I/AAAAAAAAE9c/0up7iP-RSrE/s320/IMG_1507.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash c0e86814dba501486697843327ba5e5e
ae571facb8a53a05adbba322b2d496bea5a075bb
3a5e3f9fb59c40713b10e0f1cd314be09adef12c224900324dae82e436aa80e7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-GeMMeeA3bBU/UNhlqeH9l0I/AAAAAAAAE9c/0up7iP-RSrE/s320/IMG_1507.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13d7"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1507.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 31351
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-rY0xjYntIL8/UNs4-tOtzzI/AAAAAAAAFAI/JowuJapo6D8/s320/IMG_1597.JPG
200 OK 20 kB URL GET HTTP/2 2.bp.blogspot.com/-rY0xjYntIL8/UNs4-tOtzzI/AAAAAAAAFAI/JowuJapo6D8/s320/IMG_1597.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 175e711c2ee3d3c6a77395011c441e73
5eb53eba38376239f751bc5aa2a1ab4eef0be10b
e9b6f773eecbe39efcee5aec8ed588be192b6092028d4efb365daed933b694c9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-rY0xjYntIL8/UNs4-tOtzzI/AAAAAAAAFAI/JowuJapo6D8/s320/IMG_1597.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1402"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1597.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 20002
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-n8WBzScfXnk/ULqM2ulUGhI/AAAAAAAAE7A/4aSgIPNPoQA/s320/IMG_1395.JPG
200 OK 37 kB URL GET HTTP/2 2.bp.blogspot.com/-n8WBzScfXnk/ULqM2ulUGhI/AAAAAAAAE7A/4aSgIPNPoQA/s320/IMG_1395.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 698690d94612622255f69361a8a4b529
e79a914c959d78be2295a8c8f4882ebca82608fa
4fceacde2c2a1792fd6f6c805dc5c8f77fcc3d300992265fbd396f1d9a6a6b23
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-n8WBzScfXnk/ULqM2ulUGhI/AAAAAAAAE7A/4aSgIPNPoQA/s320/IMG_1395.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13b0"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1395.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 37332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-fkI_di0vtMk/UIhzh6bcGbI/AAAAAAAAE3E/CT9FGO973kg/s320/IMG_1275.JPG
200 OK 50 kB URL GET HTTP/2 4.bp.blogspot.com/-fkI_di0vtMk/UIhzh6bcGbI/AAAAAAAAE3E/CT9FGO973kg/s320/IMG_1275.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 50b282d4a76a975b60b6264c76ca7408
8e43715bf350b9f7381fdf2c4dd31b24d31133a4
a29653792d46a98e55ce852cdad9f62b6cbd841775efc36c5466ae3b3325bd96
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-fkI_di0vtMk/UIhzh6bcGbI/AAAAAAAAE3E/CT9FGO973kg/s320/IMG_1275.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1371"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1275.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 50074
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-2TsdnQZv1wM/UJUcgbjJebI/AAAAAAAABZI/3sOqhVLm-7E/s320/IMG_5787.jpg
200 OK 33 kB URL GET HTTP/2 3.bp.blogspot.com/-2TsdnQZv1wM/UJUcgbjJebI/AAAAAAAABZI/3sOqhVLm-7E/s320/IMG_5787.jpg
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x213, components 3\012- data
Hash 88bcbb8fc2bd4b438b318e282c8d91c3
9bfc116b649ecca3091b6bbb6d125a09ca6e65fb
914a7edc385562318b43f71854b4e23ad91cf77ae37433b5a745434750fb2087
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-2TsdnQZv1wM/UJUcgbjJebI/AAAAAAAABZI/3sOqhVLm-7E/s320/IMG_5787.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v592"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_5787.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 33231
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-2I7T4leyeok/UIh2fbR4b3I/AAAAAAAAE30/HY0xKh7B6x8/s320/IMG_1297.JPG
200 OK 34 kB URL GET HTTP/2 1.bp.blogspot.com/-2I7T4leyeok/UIh2fbR4b3I/AAAAAAAAE30/HY0xKh7B6x8/s320/IMG_1297.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 353a661f5b9c41b39468231a2b7bb949
8b13425876ebdb4565f14626c49484ec0335fbbf
8e4b3c9afd2fd055e50ae8fe79806ad3a0b82d9aef256d414154e17fc1e9c816
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-2I7T4leyeok/UIh2fbR4b3I/AAAAAAAAE30/HY0xKh7B6x8/s320/IMG_1297.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v137d"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1297.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 33872
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-tL-467VvWSI/UNs474guLFI/AAAAAAAAFAA/E0xrv8apddI/s320/IMG_1590.JPG
200 OK 21 kB URL GET HTTP/2 4.bp.blogspot.com/-tL-467VvWSI/UNs474guLFI/AAAAAAAAFAA/E0xrv8apddI/s320/IMG_1590.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 4670204ea1ecf211dabff4a62678c073
b6d84e07b4e064e2c30bb309336315f9dcd15060
b5ac1ce15617884261e640019b9aad2ba83e1c3ab47cea97f98d4e0f016c98a8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-tL-467VvWSI/UNs474guLFI/AAAAAAAAFAA/E0xrv8apddI/s320/IMG_1590.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1400"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1590.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 20971
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-1DrABWkSDd0/UI268FVWOnI/AAAAAAAABYs/gljikdG6E9k/s320/IMG_20121028_190049.jpg
200 OK 25 kB URL GET HTTP/2 3.bp.blogspot.com/-1DrABWkSDd0/UI268FVWOnI/AAAAAAAABYs/gljikdG6E9k/s320/IMG_20121028_190049.jpg
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x320, components 3\012- data
Hash c9f72c86f187d889c5b8cba0b0a9be2c
a815caaff8494a30442aee6dff181b74eb13a549
a058ec429a1755eb3830658433fce59da5fdd6e7ed361c338cd965bba37628fc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-1DrABWkSDd0/UI268FVWOnI/AAAAAAAABYs/gljikdG6E9k/s320/IMG_20121028_190049.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v58b"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_20121028_190049.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 24721
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-CSKiABwmKR4/UNMoBJGfcVI/AAAAAAAAE8w/7t-uPDs8gDM/s320/IMG_1458.JPG
200 OK 24 kB URL GET HTTP/2 3.bp.blogspot.com/-CSKiABwmKR4/UNMoBJGfcVI/AAAAAAAAE8w/7t-uPDs8gDM/s320/IMG_1458.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 9cd788e870661594dac952eac3a90f27
00f43a567186e4a1b7d4f86b28c3cc88dfae2c17
812a17d4e35f2ae07ca35240dcbca78f4961386e45c6f8a22de3dc6eedd9f266
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-CSKiABwmKR4/UNMoBJGfcVI/AAAAAAAAE8w/7t-uPDs8gDM/s320/IMG_1458.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13cc"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1458.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 24008
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/-7H0fiw7r8uc/UNiQSjKWGxI/AAAAAAAAE_I/rRhCpdqIgzg/s320/IMG_1576.JPG
200 OK 34 kB URL GET HTTP/2 2.bp.blogspot.com/-7H0fiw7r8uc/UNiQSjKWGxI/AAAAAAAAE_I/rRhCpdqIgzg/s320/IMG_1576.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 13e626f0b02b6dd68a5a00a177497b91
6fdbcb9e6f1655b9c7fc69442fdf62ac044ded47
6c28582d419dcf806b4ee2cff048dc0a74dd1aec7985fe6fc5ba8136b8ff1127
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-7H0fiw7r8uc/UNiQSjKWGxI/AAAAAAAAE_I/rRhCpdqIgzg/s320/IMG_1576.JPG HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13f2"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1576.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 34129
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-vnAO7KS9oHw/ULqOI0NMt_I/AAAAAAAAE7o/ORhAzeB_qaU/s320/IMG_1403.JPG
200 OK 22 kB URL GET HTTP/2 1.bp.blogspot.com/-vnAO7KS9oHw/ULqOI0NMt_I/AAAAAAAAE7o/ORhAzeB_qaU/s320/IMG_1403.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash a5dd6f3c5c45591348f1bc15d7ca9eba
bbb37f2fa0e63355873c7c8860c1a24052a8f1b5
14779f98b79054a487481d6229d35e2b07fdbc51d054456cf408edf0bd89caa3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-vnAO7KS9oHw/ULqOI0NMt_I/AAAAAAAAE7o/ORhAzeB_qaU/s320/IMG_1403.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13ba"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1403.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 22301
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-INQkiImKip0/UIhzO8VLqaI/AAAAAAAAE2Q/JWM8eAMYOEc/s320/IMG_1231.JPG
200 OK 30 kB URL GET HTTP/2 1.bp.blogspot.com/-INQkiImKip0/UIhzO8VLqaI/AAAAAAAAE2Q/JWM8eAMYOEc/s320/IMG_1231.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 77c19147080d426cc9877256d50fb948
97641a98869be62a6e3d1f02c2638808020b7525
7f6ba611d4a693a482a5a3a11f3196c50f7565fda2c6f8e0a718f37962c2806f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-INQkiImKip0/UIhzO8VLqaI/AAAAAAAAE2Q/JWM8eAMYOEc/s320/IMG_1231.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1364"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1231.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 30370
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/-ja2yi7qy-E8/ULqN3sHP6lI/AAAAAAAAE7g/tKFnnUWpsT8/s320/IMG_1401.JPG
200 OK 36 kB URL GET HTTP/2 4.bp.blogspot.com/-ja2yi7qy-E8/ULqN3sHP6lI/AAAAAAAAE7g/tKFnnUWpsT8/s320/IMG_1401.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash c94d7b2be314eb1442393f53f3457d35
df43f8583789d71d5a528c06f2b27ca245c03240
c3025504026da979c93aa60920642f1f7e35fcc5a357d44b6fcb0a72efb7f80c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-ja2yi7qy-E8/ULqN3sHP6lI/AAAAAAAAE7g/tKFnnUWpsT8/s320/IMG_1401.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13b8"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1401.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 35572
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/-J_x2vkID4l4/UIhzMpNdOKI/AAAAAAAAE2I/bTQUZgXU4XA/s320/IMG_1228.JPG
200 OK 24 kB URL GET HTTP/2 3.bp.blogspot.com/-J_x2vkID4l4/UIhzMpNdOKI/AAAAAAAAE2I/bTQUZgXU4XA/s320/IMG_1228.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash dc35397be183a0fc2ace7a83d8571583
67d64d54ea8b82a95a4d63bf4e30b439c389cc64
f129381ace0719bc736f8c61f9d9106f2829767826bb73a9c1ef46a942782ac8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-J_x2vkID4l4/UIhzMpNdOKI/AAAAAAAAE2I/bTQUZgXU4XA/s320/IMG_1228.JPG HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1362"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1228.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 24421
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-K4WGM4pJ4w8/UIhzRLFPVOI/AAAAAAAAE2Y/Oq2DxBhVq0E/s320/IMG_1232.JPG
200 OK 13 kB URL GET HTTP/2 1.bp.blogspot.com/-K4WGM4pJ4w8/UIhzRLFPVOI/AAAAAAAAE2Y/Oq2DxBhVq0E/s320/IMG_1232.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 9cc51b591ae696ce85e98c5771cd159a
f90f75d0cfb835136aa79f4828784ebbb790c7b3
b3b6fb63f8ee299ed87cf65bf86c6589d706a997f82e7a6dd5eb69d5503d210c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-K4WGM4pJ4w8/UIhzRLFPVOI/AAAAAAAAE2Y/Oq2DxBhVq0E/s320/IMG_1232.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1366"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1232.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 12816
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/-luXU7xOoaPQ/UImq81X-wAI/AAAAAAAAE40/Sza3pbse0OI/s320/IMG_1324.JPG
200 OK 40 kB URL GET HTTP/2 1.bp.blogspot.com/-luXU7xOoaPQ/UImq81X-wAI/AAAAAAAAE40/Sza3pbse0OI/s320/IMG_1324.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 9ee1a9f51f215d383f8c6bc08fe8aea5
3480d6f4f049dab53adc920b6364e2a33c20ad33
d27d563c4f17beb3264faf64ff7b3561239a12ba1dadaced71ba6fcf5180b0fa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-luXU7xOoaPQ/UImq81X-wAI/AAAAAAAAE40/Sza3pbse0OI/s320/IMG_1324.JPG HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v138d"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1324.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 40249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash cd6f8c3c552350293e3c86605ae8ad14
6904be42c4ee2d9a982a4ec21bb3a512f63ca324
fa9a0d3b702f2bc40bb0b6e2e13e172428128ece3cfff90b86e0882667097988
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-MX17LB7Dhjs/ULqNQs-DTyI/AAAAAAAAE7I/OOBNdCJrxPs/s320/IMG_1396.JPG
200 OK 33 kB URL GET HTTP/2 4.bp.blogspot.com/-MX17LB7Dhjs/ULqNQs-DTyI/AAAAAAAAE7I/OOBNdCJrxPs/s320/IMG_1396.JPG
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash 8cd95f3fb68b561375814dca9bf7fb4d
114b999768de6aee68deadf3d0b1edb6bcff43f0
bf4c85eff01788230c11bcab5a9cac16a0e1e7e3246903e1ef101339c3ae999f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-MX17LB7Dhjs/ULqNQs-DTyI/AAAAAAAAE7I/OOBNdCJrxPs/s320/IMG_1396.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v13b2"
expires: Wed, 27 Sep 2023 10:01:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_1396.JPG"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:03 GMT
server: fife
content-length: 32689
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 42 B URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Mon, 25 Sep 2023 10:15:49 GMT
expires: Mon, 09 Oct 2023 10:15:49 GMT
cache-control: public, max-age=1209600
age: 85514
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs
200 OK 61 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (1503)
Hash 76cf20f34e61bb4ebd83ecf652268483
ff6c80fb175d247f11cceb99b7eb113f043c703b
34ed5573773da6701a325bf1c4ee50adbacab764a71e26efe12843e38bd7d438
GET /_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 60820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 17:31:14 GMT
expires: Tue, 24 Sep 2024 17:31:14 GMT
cache-control: public, max-age=31536000
age: 59389
last-modified: Sat, 02 Sep 2023 15:18:27 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 86f13e0e5bd629070766ef73e2a67867
ad5b1b8ff0f711e046a0a83a2c9969e92f4eb10d
3d49564d51eb83328222af2ff2787ac9e1a91d06c37aad1ad06a9a977366093e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogblog.com/1kt/simple/paging_dot.png
200 OK 99 B URL GET HTTP/3 www.blogblog.com/1kt/simple/paging_dot.png
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 20 x 18, 8-bit gray+alpha, non-interlaced\012- data
Hash fcb8627989fa00c5341d05abce52eea9
215f7e27bcb50152a6d87444d3038746c87f1d18
1e3869a752d8d7cfad487a6f4e2def12daa851373a9cce97dcc4a96523501dba
GET /1kt/simple/paging_dot.png HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 99
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 23:42:25 GMT
expires: Tue, 26 Sep 2023 23:42:25 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 06:54:13 GMT
content-type: image/png
age: 555518
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash e5f9f802e548a076e6066ecff6aa5bbb
fb8dfabace38ae24e462d84eddc3d25b48b23a20
20dbe13a82e0d8f734ff3b0e89a008ef31f3523d410957da15a9578c0f68afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash e7134cb422275b42551f12abb2455400
8b74099ad1ead69313ef916dc21d4a5520ff1a19
45497c6514815f02fb020dd530afc1141f39d25156915345f9e942759ed52abe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 7.9 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/show_ads.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (3722)
Hash b3caa6024066a351afb0dfa79e175860
5627175ac07f6952f2bc92ea310736cc81e8bf17
fcbd364faa4a3be370125426ee336cbf1ce169724bafea72a07526949f836684
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 26 Sep 2023 10:01:03 GMT
expires: Tue, 26 Sep 2023 10:01:03 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8798057163094930464
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7897
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/img/logo-16.png
200 OK 279 B URL GET HTTP/3 www.blogger.com/img/logo-16.png
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 279
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 02:45:49 GMT
expires: Wed, 27 Sep 2023 02:45:49 GMT
cache-control: public, max-age=604800
last-modified: Tue, 19 Sep 2023 16:55:46 GMT
content-type: image/png
age: 544514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 86f13e0e5bd629070766ef73e2a67867
ad5b1b8ff0f711e046a0a83a2c9969e92f4eb10d
3d49564d51eb83328222af2ff2787ac9e1a91d06c37aad1ad06a9a977366093e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 178dd930993366d9bb01d73e2960a0c5
8b316934e079b21ca97a190c864b937c00c677a6
41a94531c3c30183ccecbebd35c18f2e201bcfd8c8184d579725bb5124971baf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMZhLw.woff2
200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMZhLw.woff2
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 12080, version 1.0\012- data
Hash 52bf3753e8445e14dd2528d102ba0ee8
a3e03d48c05ddfd00482d147f96f0afebc444757
5ad8a194ac2c5e00d5460c42ce2cb008604b2a6e8efcd75cd3616782dfdd07d4
GET /s/josefinsans/v32/Qw3PZQNVED7rKGKxtqIqX5E-AVSJrOCfjY46_N_XbMZhLw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leeandlaurasblog.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 18:06:26 GMT
expires: Sat, 21 Sep 2024 18:06:26 GMT
cache-control: public, max-age=31536000
age: 316477
last-modified: Thu, 24 Aug 2023 20:50:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=1373077522874635184&zx=2e30054a-43f5-4f41-aa64-5b84117a0629
200 OK 21 B URL GET HTTP/3 www.blogger.com/dyn-css/authorization.css?targetBlogID=1373077522874635184&zx=2e30054a-43f5-4f41-aa64-5b84117a0629
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=1373077522874635184&zx=2e30054a-43f5-4f41-aa64-5b84117a0629 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 26 Sep 2023 10:01:03 GMT
last-modified: Tue, 26 Sep 2023 10:01:03 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 178dd930993366d9bb01d73e2960a0c5
8b316934e079b21ca97a190c864b937c00c677a6
41a94531c3c30183ccecbebd35c18f2e201bcfd8c8184d579725bb5124971baf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/
1.8 kB URL www.google.com/reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 1bf481ec3d00ae270316fa6b2879ef53
63ff69a7728a3a4bd8fb9dfcb24ad40fecd90be6
fefd1eeb52ca7408d0460941a956b18f50ccb517ee34e43a10b09f3ff30304e3
GET /reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:04 GMT
content-type: text/html; charset=UTF-8
server: zfe
content-length: 1823
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__
2.6 kB URL www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3170)
Hash df4621558d422325eab11fabc2e01258
bd2d384bf3058b964cdf2cfbee445a242ff46185
1ebed28747e328a8ade017b39ba5d3cd428444e58c8b748b3d3a1edaec9702ff
GET /navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 26 Sep 2023 10:01:04 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2598
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
themes.googleusercontent.com/image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3&options=w1600
200 OK 215 kB URL GET HTTP/2 themes.googleusercontent.com/image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3&options=w1600
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Picasa], baseline, precision 8, 1600x1067, components 3\012- data
Size 215 kB (215403 bytes)
Hash 012eb26c356ae053389fd8061da6c63e
f6ff3c6ed2d3bb326cc3dce2b8e3f96d68de46bb
95deb76af90f69df4c4e87e2e962618446e17f74a5cb3897c2e75e2a63d8cea9
GET /image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Wed, 27 Sep 2023 10:01:04 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:04 GMT
server: fife
content-length: 215403
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
themes.googleusercontent.com/image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3
200 OK 253 kB URL GET HTTP/2 themes.googleusercontent.com/image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Picasa], baseline, precision 8, 1800x1200, components 3\012- data
Size 253 kB (252595 bytes)
Hash 3d9d0c6212d6d8d6dfad84dade7d1805
d2fdda6a8d2e17a90389bd9f354d75a81b1b798a
f35b5a248a510e1b5500aee5e63d4aa8a08c0bd70025ed1919ab4bd9bcc156c9
GET /image?id=1yZqVD1o4wZGvduF2nWyf3mluGokzMjgoY6HqMBQMDULSPT0gYefbf1nHCrbWvskUQua3 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Wed, 27 Sep 2023 10:01:04 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:04 GMT
server: fife
content-length: 252595
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/embed.js
200 OK 17 kB URL GET HTTP/3 www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (3391)
Hash 1e83e451c8afb1c7be7205ef56bce49d
49970c372140f84fa124d8139f3632d1e0c9c562
8469c3122d71ff9edca3bdd359a7b6b9b25511c9e4787e361002a694838336a4
GET /s/player/f130aa11/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 17268
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 07:39:08 GMT
expires: Thu, 19 Sep 2024 07:39:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:59:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 526916
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/f130aa11/www-player.css
200 OK 49 kB URL GET HTTP/3 www.youtube.com/s/player/f130aa11/www-player.css
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ee113c2fd024ac56f71eaecd779226c4
a6c0f0f28ee8924ffdaccb46516c88093459376f
184f263c8a0cf32ae43d5a71874448ee748057dae78d16b189355f20856d1571
GET /s/player/f130aa11/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48765
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 07:36:21 GMT
expires: Thu, 19 Sep 2024 07:36:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:59:24 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 527083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/f130aa11/www-embed-player.vflset/www-embed-player.js
200 OK 96 kB URL GET HTTP/3 www.youtube.com/s/player/f130aa11/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (682)
Hash 4d09681f6d976ae5a314538952ea4244
cd686bf2b748866d50a3fc8d8777e6ecda8428e9
814a083900a57d4247f0698dc4c4ebc204e44e3e24d481506fda5e82e0d05bab
GET /s/player/f130aa11/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 96189
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 07:36:21 GMT
expires: Thu, 19 Sep 2024 07:36:21 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:59:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 527083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 86f13e0e5bd629070766ef73e2a67867
ad5b1b8ff0f711e046a0a83a2c9969e92f4eb10d
3d49564d51eb83328222af2ff2787ac9e1a91d06c37aad1ad06a9a977366093e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 19 Sep 2023 23:15:14 GMT
expires: Wed, 18 Sep 2024 23:15:14 GMT
cache-control: public, max-age=31536000
age: 557150
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 16:00:01 GMT
expires: Sun, 22 Sep 2024 16:00:01 GMT
cache-control: public, max-age=31536000
age: 237663
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/base.js
200 OK 801 kB URL GET HTTP/3 www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (555)
Size 801 kB (801154 bytes)
Hash 2374f5f0487ae1d5eb7d7435dc71173c
390784b0c85a0dcbe9cd0cf8fca38c5ec21c26fc
042600f19909ce6a89dbd4809814f12ebe0784229938b7c9bb185c9feda98531
GET /s/player/f130aa11/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 801154
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 07:39:08 GMT
expires: Thu, 19 Sep 2024 07:39:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:59:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 526916
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/icons_peach.png
200 OK 907 B URL GET HTTP/3 resources.blogblog.com/img/navbar/icons_peach.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fleeandlaurasblog.blogspot.com&pfname=&rpctoken=33699082
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced\012- data
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 02:28:08 GMT
expires: Fri, 29 Sep 2023 02:28:08 GMT
cache-control: public, max-age=604800
last-modified: Thu, 21 Sep 2023 07:52:40 GMT
content-type: image/png
age: 372776
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
resources.blogblog.com/img/navbar/arrows-light.png
200 OK 117 B URL GET HTTP/3 resources.blogblog.com/img/navbar/arrows-light.png
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fleeandlaurasblog.blogspot.com&pfname=&rpctoken=33699082
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 19 x 4, 8-bit/color RGBA, non-interlaced\012- data
Hash 25c2b0cfe0ad4dcda4a0e3727d091d80
b9d16f4311e64648b7970baf00cb9841e3c3351b
bb6685107846b4c25384202730b84ec168fecee197e5f9e3fe8ffdd5bed6749d
GET /img/navbar/arrows-light.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 117
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 02:56:20 GMT
expires: Tue, 03 Oct 2023 02:56:20 GMT
cache-control: public, max-age=604800
last-modified: Mon, 25 Sep 2023 22:57:42 GMT
content-type: image/png
age: 25484
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/js/platform:gapi.iframes.style.common.js
200 OK 22 kB URL GET HTTP/3 apis.google.com/js/platform:gapi.iframes.style.common.js
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fleeandlaurasblog.blogspot.com&pfname=&rpctoken=33699082
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (2664)
Hash 5ea6889749e35d1997d3d7b45b526cbe
b2be66a88cda67c0d38638906a19d3502db702f2
f8f1efe1d0d52a96dff5f0e285975b33bc89f9093c51e50024fa4c1d3810041f
GET /js/platform:gapi.iframes.style.common.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 21959
date: Tue, 26 Sep 2023 10:01:04 GMT
expires: Tue, 26 Sep 2023 10:01:04 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "fb306044a1b24cfb"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
leeandlaurasblog.blogspot.com/favicon.ico
200 OK 412 B URL GET HTTP/3 leeandlaurasblog.blogspot.com/favicon.ico
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: leeandlaurasblog.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/2012/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Tue, 26 Sep 2023 10:01:04 GMT
date: Tue, 26 Sep 2023 10:01:04 GMT
cache-control: private, max-age=86400
last-modified: Sun, 19 Mar 2023 16:36:50 GMT
etag: W/"f6720f4ac044b2fe149237680af4f819fbe50b7f181238a4eadb486df804f30d"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs
200 OK 45 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs
IP
Requested by https://www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fleeandlaurasblog.blogspot.com&pfname=&rpctoken=33699082
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (1503)
Hash 216b38745f3cce08ced4200dd91c83a4
3f6bd3ee5da23060e704e8116b5a0961e20a80bf
a8183085f79cc939053929846561337bf0b9287aedece2d7eb154a87e572bab1
GET /_/scs/abc-static/_/js/k=gapi.lb.en.L92w_vMR5kE.O/m=gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 45424
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 17:31:16 GMT
expires: Tue, 24 Sep 2024 17:31:16 GMT
cache-control: public, max-age=31536000
age: 59388
last-modified: Sat, 02 Sep 2023 15:18:27 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash ca3afb7df10c01fb4a7514ea3f1493e1
7b234d99c8683384c389995c31d4b60b65ae8c53
d2c2bf4568670b4bce7bb07cdc36f0df66139b5eef889b07519607556dab1a53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash ca3afb7df10c01fb4a7514ea3f1493e1
7b234d99c8683384c389995c31d4b60b65ae8c53
d2c2bf4568670b4bce7bb07cdc36f0df66139b5eef889b07519607556dab1a53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 26 Sep 2023 10:01:05 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/js/th/nwcP_aRe3K2iGEG8OSbc8djJ97oB5PWz9GCqv6PbSFg.js
200 OK 15 kB URL GET HTTP/3 www.google.com/js/th/nwcP_aRe3K2iGEG8OSbc8djJ97oB5PWz9GCqv6PbSFg.js
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (37330)
Hash a606e8515f96db1e4911d214675f61e6
1933bbf1e5426f5b092b4cb74af33e5cef514454
9f070ffda45edcada21841bc3926dcf1d8c9f7ba01e4f5b3f460aabfa3db4858
GET /js/th/nwcP_aRe3K2iGEG8OSbc8djJ97oB5PWz9GCqv6PbSFg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14782
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 16:00:32 GMT
expires: Tue, 24 Sep 2024 16:00:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Sep 2023 20:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 64833
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/remote.js
200 OK 34 kB URL GET HTTP/3 www.youtube.com/s/player/f130aa11/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (539)
Hash ae10e53d2dc819cc044351c2daa97316
06098bd4b1808c15a6ac4cadadd620cb1a4b40a5
8b3a87803788cad8d50157b7b586a8e0f2ce8dd36809e3f4eb30d7dcf740823a
GET /s/player/f130aa11/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33591
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 07:39:08 GMT
expires: Thu, 19 Sep 2024 07:39:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 01:59:24 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 526917
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 40 kB URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 9e9a76fa52d05d57a94e76fbe358b28b
2e6fb2ef0f1e14450f30fc8cc42173a28b2c687b
834cefbb698ee3992d5e3193d1d33281765e2f464535a122c37bc66d33d8960c
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 26 Sep 2023 10:01:05 GMT
server: ESF
cache-control: private
content-length: 39830
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash ca3afb7df10c01fb4a7514ea3f1493e1
7b234d99c8683384c389995c31d4b60b65ae8c53
d2c2bf4568670b4bce7bb07cdc36f0df66139b5eef889b07519607556dab1a53
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 16b1c75a722cbd698f18f5c462b2fe7c
ea039709dd5a3a5cef6bc3474b09bd6fc25af8e8
a8baf82b682d08476b54c1abd15b2e8fa936493dc7a4979f0c90f28c0df379f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/6o5ke4aVYsU/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-BIAC4AOKAgwIABABGGUgTSg8MA8=&rs=AOn4CLD4At8Y2B4NOVCZyoHNOhAlZ58TaQ
200 OK 33 kB URL GET HTTP/2 i.ytimg.com/vi/6o5ke4aVYsU/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-BIAC4AOKAgwIABABGGUgTSg8MA8=&rs=AOn4CLD4At8Y2B4NOVCZyoHNOhAlZ58TaQ
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subjectedgestatic.com
Fingerprint83:6D:53:72:1E:39:D8:A0:10:4A:F9:34:A4:A7:2B:90:D7:0A:51:64
ValidityMon, 04 Sep 2023 08:16:59 GMT - Mon, 27 Nov 2023 08:16:58 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data
Hash 92cd43ee228d5f255d072aec15c552c1
72d73394c8d588ebd238c794daf6fed23e6fd9bc
4d30d151eed3a0c5619492a130aa83c9db95c7e8382566e6baf38f503e75ab50
GET /vi/6o5ke4aVYsU/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AH-BIAC4AOKAgwIABABGGUgTSg8MA8=&rs=AOn4CLD4At8Y2B4NOVCZyoHNOhAlZ58TaQ HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 32969
date: Tue, 26 Sep 2023 10:01:05 GMT
expires: Tue, 26 Sep 2023 12:01:05 GMT
cache-control: public, max-age=7200
etag: "1356367569"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 16b1c75a722cbd698f18f5c462b2fe7c
ea039709dd5a3a5cef6bc3474b09bd6fc25af8e8
a8baf82b682d08476b54c1abd15b2e8fa936493dc7a4979f0c90f28c0df379f8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 26 Sep 2023 10:01:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/generate_204?XRNKJQ
204 No Content 0 B URL GET HTTP/3 www.youtube.com/generate_204?XRNKJQ
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?XRNKJQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 26 Sep 2023 10:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
200 OK 6.5 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (35889), with no line terminators
Hash e287450e0a5c5a5625f7ba3716c1b0cf
3287eee808b2a77f7e4ea16b148f4cd173cddb66
5ee6fb081a76cfc34678b67e894a1fa91ed96857c4d94710cb1a8cea5ea1d76b
GET /static/v1/v-css/3268905543-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6501
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 26 Sep 2023 04:10:18 GMT
expires: Wed, 25 Sep 2024 04:10:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Sep 2023 06:52:50 GMT
content-type: text/css
vary: Accept-Encoding
age: 21047
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/jsbin/1030247368-lbx.js
200 OK 122 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/1030247368-lbx.js
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type HTML document, ASCII text, with very long lines (1308)
Size 122 kB (122053 bytes)
Hash 1f7b0bc460819915f809cb4bc9f8359f
c35f11126ca00abb7e643ea63ab329988b84813c
6856951c1ed15fdb5d142fc7682ffcbe2224930fa605b4a266f9736b102b796a
GET /static/v1/jsbin/1030247368-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 122053
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 25 Sep 2023 19:58:53 GMT
expires: Tue, 24 Sep 2024 19:58:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Sep 2023 19:59:10 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 50532
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 26 Sep 2023 10:01:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 110 B URL OPTIONS HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 260a9275d5c57057234a36afbe8464ae
f2ab5e77a097a44d47fdfa1f5e269fd0baa056f3
6877f7af1539b6e6b8e9ae3dcacb18a3980772381b8347209b062551df7f70c1
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1267
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 26 Sep 2023 10:01:06 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
yt3.ggpht.com/ytc/APkrFKb0vg4tYW7YOwYCS62nndalQZEpfMWMczFbdqbZQQ=s68-c-k-c0x00ffffff-no-rj
200 OK 4.7 kB URL GET HTTP/2 yt3.ggpht.com/ytc/APkrFKb0vg4tYW7YOwYCS62nndalQZEpfMWMczFbdqbZQQ=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 6649b6277769a182991c850d40de13c4
d86fec1edcfd9569fd8eeeea634ab1dda5bc6e5a
2b80b3558b98bd743929a7a22e14491b74184419fa9c1071ab93b0386fce61e7
GET /ytc/APkrFKb0vg4tYW7YOwYCS62nndalQZEpfMWMczFbdqbZQQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5a3"
expires: Wed, 27 Sep 2023 10:01:06 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:06 GMT
server: fife
content-length: 4674
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1695722467560
Content-Type: application/json
X-Goog-Visitor-Id: CgtmTzMxaDFjYzRvTSjf18qoBjIGCgJOTxIA
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230919.12.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1695722464918&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C420%2C315&vis=1&wgl=true&ca_type=image
Content-Length: 15754
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 26 Sep 2023 10:01:07 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+770; expires=Thu, 25-Sep-2025 10:01:07 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 26 Sep 2023 10:01:07 GMT
cache-control: private
www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
200 OK 31 B URL POST HTTP/3 www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8
IP
Requested by https://www.youtube.com/embed/6o5ke4aVYsU
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type JSON data\012- , ASCII text
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1695722481552
Content-Type: application/json
X-Goog-Visitor-Id: CgtmTzMxaDFjYzRvTSjf18qoBjIGCgJOTxIA
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20230919.12.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1695722464918&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C420%2C315&vis=1&wgl=true&ca_type=image
Content-Length: 1046
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/6o5ke4aVYsU
Cookie: YSC=_nyfWIczKyQ; VISITOR_INFO1_LIVE=fO31h1cc4oM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 26 Sep 2023 10:01:21 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+933; expires=Thu, 25-Sep-2025 10:01:21 GMT; path=/; domain=.youtube.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
expires: Tue, 26 Sep 2023 10:01:21 GMT
cache-control: private
www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__
200 OK 6.7 kB URL GET HTTP/3 www.blogger.com/navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6903), with no line terminators
Hash 177e6569b0778b10cf51e8eb52c181ff
b70ccb2ddf155fbfa005034b028f79da4f24bd66
2801a744989e5b44296bcd52974e81c769364d982930bad0bb4bab9e94010280
GET /navbar.g?targetBlogID=1373077522874635184&blogName=Lee+and+Laura%27s+Blog&publishMode=PUBLISH_MODE_BLOGSPOT&navbarType=LIGHT&layoutType=LAYOUTS&searchRoot=https://leeandlaurasblog.blogspot.com/search&blogLocale=en&v=2&homepageUrl=https://leeandlaurasblog.blogspot.com/&vt=-7557577133369430489&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.L92w_vMR5kE.O%2Fd%3D1%2Frs%3DAHpOoo-GjmyR8TQVDKPrbqj5UQg7cU3cCA%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 26 Sep 2023 10:01:04 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2598
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.youtube.com/embed/6o5ke4aVYsU
200 OK 91 kB URL GET HTTP/3 www.youtube.com/embed/6o5ke4aVYsU
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58292)
Hash aea485592228668ec7a2175d5ca156b7
f20e727fc25e496e95e1ccc98d7c342ac374f6f7
5ab34880646601270236174ad30a334cc6c4ad2ab5b95f8853d99e1ff144b320
GET /embed/6o5ke4aVYsU HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 26 Sep 2023 10:01:03 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: require-trusted-types-for 'script';report-uri /cspreport
origin-trial: AvC9UlR6RDk2crliDsFl66RWLnTbHrDbp+DiY6AYz/PNQ4G4tdUTjrHYr2sghbkhGQAVxb7jaPTHpEVBz0uzQwkAAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTcxOTUzMjc5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=_nyfWIczKyQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=fO31h1cc4oM; Domain=.youtube.com; Expires=Sun, 24-Mar-2024 10:01:03 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIA; Domain=.youtube.com; Expires=Sun, 24-Mar-2024 10:01:03 GMT; Path=/; Secure; HttpOnly; SameSite=lax
CONSENT=PENDING+898; expires=Thu, 25-Sep-2025 10:01:03 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/
404 Not Found 0 B URL GET HTTP/2 www.google.com/reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/
IP
Requested by https://leeandlaurasblog.blogspot.com/2012/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintD2:77:FE:08:C6:61:6A:42:5C:1F:85:13:DA:23:B2:B8:46:20:45:88
ValidityMon, 04 Sep 2023 08:23:29 GMT - Mon, 27 Nov 2023 08:23:28 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /reviews/polls/display/101365347841778765/blogger_template/run_app?txtclr=%23d9555c&lnkclr=%23d9555c&chrtclr=%23d9555c&font=normal+normal+12px+Arial,+Tahoma,+Helvetica,+FreeSans,+sans-serif&hideq=true&purl=http://leeandlaurasblog.blogspot.com/ HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://leeandlaurasblog.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
x-content-type-options: nosniff
date: Tue, 26 Sep 2023 10:01:04 GMT
content-type: text/html; charset=UTF-8
server: zfe
content-length: 1823
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
172.217.21.161
0.0.0.0