ocsp.pki.goog/gts1c3
471 B IP
Hash d01fcdf9d07d46c2f636f5d4761b4216
b0b5d955d4da1ad20192a71164d982626c4e723a
77273f261fedd69a83c6bd35f063e592e1aba013c76665a376d2e82a4793e052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
idrawgirls.blogspot.com/2009/03/
200 OK 33 kB URL User Request GET HTTP/2 idrawgirls.blogspot.com/2009/03/
IP
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (11814)
Hash dd257d6110fc63408279085940d9be12
9eb180bc271f871e68aa6c661b1d5819988055de
a773b0f6fe61d6da6230f8cc5c5f300b995ff0dc05476f0951a14a5b665e94ea
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /2009/03/ HTTP/1.1
Host: idrawgirls.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-to blogspot; report-uri https://www.blogger.com/cspreport
report-to: {"group":"blogspot","max_age":2592000,"endpoints":[{"url":"https://www.blogger.com/cspreport"}]}
content-type: text/html; charset=UTF-8
expires: Sat, 23 Sep 2023 13:44:09 GMT
date: Sat, 23 Sep 2023 13:44:09 GMT
cache-control: private, max-age=0
last-modified: Fri, 15 Sep 2023 09:31:16 GMT
etag: W/"827fcc7dc23e29cbe85c61dd5dd0a698ec72cabe08cbd6a811fb8dc480ffdfab"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 32909
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash d01fcdf9d07d46c2f636f5d4761b4216
b0b5d955d4da1ad20192a71164d982626c4e723a
77273f261fedd69a83c6bd35f063e592e1aba013c76665a376d2e82a4793e052
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
idrawgirls.blogspot.com/js/cookienotice.js
200 OK 6.5 kB URL GET HTTP/3 idrawgirls.blogspot.com/js/cookienotice.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /js/cookienotice.js HTTP/1.1
Host: idrawgirls.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/2009/03/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6513
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 08:25:36 GMT
expires: Sat, 30 Sep 2023 08:25:36 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Sep 2023 17:57:52 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 19113
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
idrawgirls.blogspot.com/responsive/sprite_v1_6.css.svg
200 OK 2.2 kB URL GET HTTP/3 idrawgirls.blogspot.com/responsive/sprite_v1_6.css.svg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7657)
Hash d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: idrawgirls.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/2009/03/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 08:25:36 GMT
expires: Sat, 30 Sep 2023 08:25:36 GMT
cache-control: public, max-age=604800
last-modified: Fri, 22 Sep 2023 21:54:44 GMT
content-type: image/svg+xml
vary: Accept-Encoding
age: 19113
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash 2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
4.bp.blogspot.com/-2DP3ZPOZ4-0/WNhXqScw50I/AAAAAAAAV48/tZTYfLkxIi4TN6aMuv4BYZtt7K4uaLpkwCK4B/w800/theartclasses-logo-2017blogspot.png
200 OK 8.8 kB URL GET HTTP/2 4.bp.blogspot.com/-2DP3ZPOZ4-0/WNhXqScw50I/AAAAAAAAV48/tZTYfLkxIi4TN6aMuv4BYZtt7K4uaLpkwCK4B/w800/theartclasses-logo-2017blogspot.png
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type PNG image data, 800 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 93d22f61140d95f928a0d3c40cd37fef
9dc6b8e142260e98ed97f65c12a1eeddd7e4644e
265902074ffbeb38997a4fde69505394c857e8c872f53a2b4e574ec2d4c2ba53
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /-2DP3ZPOZ4-0/WNhXqScw50I/AAAAAAAAV48/tZTYfLkxIi4TN6aMuv4BYZtt7K4uaLpkwCK4B/w800/theartclasses-logo-2017blogspot.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="theartclasses-logo-2017blogspot.png"
x-content-type-options: nosniff
server: fife
content-length: 8796
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:44:09 GMT
expires: Sun, 24 Sep 2023 13:44:09 GMT
cache-control: public, max-age=86400, no-transform
etag: "v5790"
content-type: image/png
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
200 OK 3.5 kB URL GET HTTP/2 www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Unicode text, UTF-8 text, with very long lines (10473)
Hash 158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 13:44:10 GMT
expires: Sat, 23 Sep 2023 13:44:10 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 5deab2863cc64ff54664df9e40738c24
7e731c4f0a6c9cbc80490586ddb39a82dcfbb5ae
fc49292164496bd63fb16adb3f5b6fc10d0c5f397c19007a858848257ea4a302
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 34852, version 1.0\012- data
Hash 0e8eefb4549a2edf26c560cb9845952e
8d0b1718aacad934fd0043c87cbc54aa091396bf
7f653b3ce9d3277457fc6da4edb246ae2f6c913f088c42dcb8cd2e96267aa21a
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKfw72.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 14:54:30 GMT
expires: Fri, 20 Sep 2024 14:54:30 GMT
cache-control: public, max-age=31536000
age: 168580
last-modified: Wed, 27 Apr 2022 16:31:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2
200 OK 20 kB URL GET HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 19816, version 1.0\012- data
Hash 290160ea1f23d0178902ab8a62635b0a
5614266d1f6bf5f0d7601fff4a2bc0924830d983
f6b9eebb05461840790fc804b4590323ef12a57fe5af7fcdeed2d798e572844b
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52_wFZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:09:53 GMT
expires: Fri, 20 Sep 2024 15:09:53 GMT
cache-control: public, max-age=31536000
age: 167657
last-modified: Tue, 26 Apr 2022 16:08:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2
200 OK 20 kB URL GET HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 19720, version 1.0\012- data
Hash 08476bf46dff0e875683be6002075581
a289f83a7bc00cd332175ffa4ad96034acfd3116
75ca7c01eaa8136d970bde6ea6ae0896d2fe30febf82e7679257df6e1f8a7496
GET /s/merriweather/v30/u-4l0qyriQwlOrhSvowK_l5-eR7lXff4jvw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19720
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 08:00:40 GMT
expires: Sun, 22 Sep 2024 08:00:40 GMT
cache-control: public, max-age=31536000
age: 20610
last-modified: Tue, 26 Apr 2022 15:47:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
200 OK 20 kB URL GET HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:16:09 GMT
expires: Fri, 20 Sep 2024 15:16:09 GMT
cache-control: public, max-age=31536000
age: 167281
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
200 OK 20 kB URL GET HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 19780, version 1.0\012- data
Hash 03717344e4dbb2de44988b281bb7430b
0cd3f7724bd0a5bf2460e1a85e35ccfbd5e85c05
499ec54eb2afd103ec37505e23c6570fc7d89a0d728dde19d87a092e4a3261b4
GET /s/merriweather/v30/u-4m0qyriQwlOrhSvowK_l5-eRZOf-I.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 14:55:30 GMT
expires: Fri, 20 Sep 2024 14:55:30 GMT
cache-control: public, max-age=31536000
age: 168520
last-modified: Tue, 26 Apr 2022 15:48:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
200 OK 30 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 30480, version 1.0\012- data
Hash 0e7e5f9d3a8ef121149827180b790b5c
0e9f9333078e5df9245630ff6f68ba1d9da3c403
e8e147e15907f25cad69b2bcf060213efad4ed04e0d36374715cbca17b2afc1c
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCjC3jsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30480
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:25:48 GMT
expires: Sat, 21 Sep 2024 10:25:48 GMT
cache-control: public, max-age=31536000
age: 98302
last-modified: Wed, 27 Apr 2022 16:04:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
200 OK 30 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 29752, version 1.0\012- data
Hash ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa
GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 07:57:45 GMT
expires: Sun, 22 Sep 2024 07:57:45 GMT
cache-control: public, max-age=31536000
age: 20785
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
200 OK 20 kB URL GET HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 19740, version 1.0\012- data
Hash 101cf2a65d64322878605fa8472bb025
6dffc15e38c321e4bb567b4bd8107a2e8d97c61d
273c8613cdd2852dd5318f224d804ae6d2fc717c48d3f1dab587b6d396fb4fc8
GET /s/merriweather/v30/u-4n0qyriQwlOrhSvowK_l52xwNZWMf6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 22 Sep 2023 10:16:11 GMT
expires: Sat, 21 Sep 2024 10:16:11 GMT
cache-control: public, max-age=31536000
age: 98879
last-modified: Tue, 26 Apr 2022 15:48:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 5deab2863cc64ff54664df9e40738c24
7e731c4f0a6c9cbc80490586ddb39a82dcfbb5ae
fc49292164496bd63fb16adb3f5b6fc10d0c5f397c19007a858848257ea4a302
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/562952797-widgets.js
200 OK 160 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/562952797-widgets.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (2215)
Size 160 kB (160393 bytes)
Hash 0804e4c7fd72aea2ce34a04d9ec9686c
9f46bef1076230a1271d151a506fd1d91ae7df93
5ea4b0b19c5f030a3b42b570c07cbea89a7899f1d824a95b53ad2c4ca18a2b5c
GET /static/v1/widgets/562952797-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 160393
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 02:21:50 GMT
expires: Thu, 19 Sep 2024 02:21:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 20 Sep 2023 00:55:53 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 300140
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1usdD8jJjmaN6yZeOM-Tk_hIYOVLkemAFkP_wdSrDtUq_0YzlZb92OkbQgp3xbNmijGEoVqRiFyRtGf5VMbq-p5hJd0tau8nfv1bdhGqE1MC1TihT14NQZ7XaodSdrxOq0ZwAxA4KZAmT3-G_fF3w=w385-h184-p-k-no-nu
404 Not Found 1.8 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1usdD8jJjmaN6yZeOM-Tk_hIYOVLkemAFkP_wdSrDtUq_0YzlZb92OkbQgp3xbNmijGEoVqRiFyRtGf5VMbq-p5hJd0tau8nfv1bdhGqE1MC1TihT14NQZ7XaodSdrxOq0ZwAxA4KZAmT3-G_fF3w=w385-h184-p-k-no-nu
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 34d548f41add156c543ff045e9447d5d
f996931afe2c0fa5f7124efb17fedc8657b83cd9
acffd0ab7164ab40904020826cf59a4f71171a4e3be722da536c1944168e81d9
GET /blogger_img_proxy/ALY8t1usdD8jJjmaN6yZeOM-Tk_hIYOVLkemAFkP_wdSrDtUq_0YzlZb92OkbQgp3xbNmijGEoVqRiFyRtGf5VMbq-p5hJd0tau8nfv1bdhGqE1MC1TihT14NQZ7XaodSdrxOq0ZwAxA4KZAmT3-G_fF3w=w385-h184-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1753
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v4U30EeISxbyqgGk4zfwovjL_JyD61RvUQ0jC9a1OC4J-xxCXlYCotFOcqAYgtbeCCHwxefFtMYYwlu3GEBB5zkR3omfePspc3Ofm6Ew9Bqwk7_Nxc3Y7znlVBBs_HMHvC3rJtbaXTQ71ObJk=s0-d
404 Not Found 1.7 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v4U30EeISxbyqgGk4zfwovjL_JyD61RvUQ0jC9a1OC4J-xxCXlYCotFOcqAYgtbeCCHwxefFtMYYwlu3GEBB5zkR3omfePspc3Ofm6Ew9Bqwk7_Nxc3Y7znlVBBs_HMHvC3rJtbaXTQ71ObJk=s0-d
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 3636857caaf38a1a88981eb6442b315a
a1cf24a162d3e93b84f53da1e015c65ea62b8327
09d5ee15edbbb0f0811e3576d1fdb902e1972a665b7bdac0c0e37b3397a51597
GET /blogger_img_proxy/ALY8t1v4U30EeISxbyqgGk4zfwovjL_JyD61RvUQ0jC9a1OC4J-xxCXlYCotFOcqAYgtbeCCHwxefFtMYYwlu3GEBB5zkR3omfePspc3Ofm6Ew9Bqwk7_Nxc3Y7znlVBBs_HMHvC3rJtbaXTQ71ObJk=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1735
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1s0tNFYwG9MsIHAnWW3tx6zU5gxhqPKle5njACceN1u_qWao_W1HZ-8lJlUYT8RH2uW--AdWhKOdbkqpPeR-EdvH3CYxDEibMXFV6mS9D9sZSPH5SY97oc8vQv3art-BEo=s0-d
404 Not Found 1.7 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1s0tNFYwG9MsIHAnWW3tx6zU5gxhqPKle5njACceN1u_qWao_W1HZ-8lJlUYT8RH2uW--AdWhKOdbkqpPeR-EdvH3CYxDEibMXFV6mS9D9sZSPH5SY97oc8vQv3art-BEo=s0-d
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash bec09516df1acb2971def6b590272738
be62836e104234989883cf4e292fc51bb08a6804
0bc4742608045b83cec1e35c6eea8049899df7fef6742b8d924cceab32c5ef78
GET /blogger_img_proxy/ALY8t1s0tNFYwG9MsIHAnWW3tx6zU5gxhqPKle5njACceN1u_qWao_W1HZ-8lJlUYT8RH2uW--AdWhKOdbkqpPeR-EdvH3CYxDEibMXFV6mS9D9sZSPH5SY97oc8vQv3art-BEo=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1719
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1sK4koAWvO-3z1Z8gh5o6ojb8BZRhCLV8QNj9TcGzbrEX2ooM7IS-xF4srJKhtSVjXTVeHdxmQBiyNTEMhFdNtOXzob8IQcOqRC9zkTXOoXl3eFZg=s0-d
404 Not Found 1.7 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1sK4koAWvO-3z1Z8gh5o6ojb8BZRhCLV8QNj9TcGzbrEX2ooM7IS-xF4srJKhtSVjXTVeHdxmQBiyNTEMhFdNtOXzob8IQcOqRC9zkTXOoXl3eFZg=s0-d
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 9efa2c0af7d1c77fda71bece06fe0e72
146e74c6f646fa260331d7b3b563ac9456bcdc86
e75adec6d8edf1c58ac5caf97f98d5ee61eeb4030ed421ea69ecb64ac5e2fe03
GET /blogger_img_proxy/ALY8t1sK4koAWvO-3z1Z8gh5o6ojb8BZRhCLV8QNj9TcGzbrEX2ooM7IS-xF4srJKhtSVjXTVeHdxmQBiyNTEMhFdNtOXzob8IQcOqRC9zkTXOoXl3eFZg=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1702
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v_V6S9Gnc5SA_jKaDNCMEeXPHlrSBshG3xhTkpUVG2F-okPeM9sBCacMYGWc88Z9YzYhxYfP5g9zCKFFUAzBnBeic5EeWQntwRDpoafEsCjka_pSjotZcYxjMHOWp4dh_xXimEpV-y2xmUHZietPk=w385-h184-p-k-no-nu
404 Not Found 1.8 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1v_V6S9Gnc5SA_jKaDNCMEeXPHlrSBshG3xhTkpUVG2F-okPeM9sBCacMYGWc88Z9YzYhxYfP5g9zCKFFUAzBnBeic5EeWQntwRDpoafEsCjka_pSjotZcYxjMHOWp4dh_xXimEpV-y2xmUHZietPk=w385-h184-p-k-no-nu
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 9fcb4e3890e7138dd5578da84cf50e26
530bc79953d59d3d9d16d16d02c0077080489bcf
e9a226dd0a2d87a439f6cce70efcdcbd2df912da963ab73daf334db3b612ddb8
GET /blogger_img_proxy/ALY8t1v_V6S9Gnc5SA_jKaDNCMEeXPHlrSBshG3xhTkpUVG2F-okPeM9sBCacMYGWc88Z9YzYhxYfP5g9zCKFFUAzBnBeic5EeWQntwRDpoafEsCjka_pSjotZcYxjMHOWp4dh_xXimEpV-y2xmUHZietPk=w385-h184-p-k-no-nu HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1754
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/blogger_img_proxy/ALY8t1sTg5sDA0ukZoPL2wlFcAnj78vdqFP1DZgLOTkM0GTc1cic3p2IjYkWj2K_Ixcy-feVb3tpu2o2F6b44O1RXj-DKfFzHQDPIPK-fcHQDpl2PZQ8V0WcnzJhdA=s0-d
404 Not Found 1.7 kB URL GET HTTP/2 lh3.googleusercontent.com/blogger_img_proxy/ALY8t1sTg5sDA0ukZoPL2wlFcAnj78vdqFP1DZgLOTkM0GTc1cic3p2IjYkWj2K_Ixcy-feVb3tpu2o2F6b44O1RXj-DKfFzHQDPIPK-fcHQDpl2PZQ8V0WcnzJhdA=s0-d
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash ccc2d68a0333c0cf70c11167b12418d8
5f7338aaf68089c66d1ea95adbdb058e3e2a7a33
7ba836323dc79811588964df5a0b8d5fbef942aa275765dbbb379705c931cab4
GET /blogger_img_proxy/ALY8t1sTg5sDA0ukZoPL2wlFcAnj78vdqFP1DZgLOTkM0GTc1cic3p2IjYkWj2K_Ixcy-feVb3tpu2o2F6b44O1RXj-DKfFzHQDPIPK-fcHQDpl2PZQ8V0WcnzJhdA=s0-d HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 1710
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2
200 OK 47 kB URL GET HTTP/2 fonts.gstatic.com/s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 46796, version 1.0\012- data
Hash 328da9d0efdf3626073910bfd379b2ff
e55f0b86555b18495045db12654779186c94f0a5
d9086c8c2ed7c9f988d63847cd89e81318c1e4ade2112969af26e5744a3bc7d7
GET /s/ubuntu/v20/4iCs6KVjbNBYlgoKcQ72j00.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 15:07:48 GMT
expires: Fri, 20 Sep 2024 15:07:48 GMT
cache-control: public, max-age=31536000
age: 167782
last-modified: Wed, 27 Apr 2022 16:31:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/_YPFDDjQ_y_Y/SbmD9vIovyI/AAAAAAAADN0/IWUGsSAbRqA/w385-h184-p-k-no-nu/how-to-draw-wolverine.jpg
200 OK 12 kB URL GET HTTP/2 2.bp.blogspot.com/_YPFDDjQ_y_Y/SbmD9vIovyI/AAAAAAAADN0/IWUGsSAbRqA/w385-h184-p-k-no-nu/how-to-draw-wolverine.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash b1a8f6e7c62f836acc43e66658138fea
1d7f6d9c0a5961a2051f5ab4ac5b7f1aec213efc
56a27a350e4549df376453d26d2a3ee9345968937d3bba1f9b8a20014754c758
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/SbmD9vIovyI/AAAAAAAADN0/IWUGsSAbRqA/w385-h184-p-k-no-nu/how-to-draw-wolverine.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="how-to-draw-wolverine.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 11799
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.bp.blogspot.com/_YPFDDjQ_y_Y/SdJflUe24MI/AAAAAAAADPk/-9L53ngMZH8/w385-h184-p-k-no-nu/drawing-forest-deep-landscape-manga.jpg
200 OK 20 kB URL GET HTTP/2 4.bp.blogspot.com/_YPFDDjQ_y_Y/SdJflUe24MI/AAAAAAAADPk/-9L53ngMZH8/w385-h184-p-k-no-nu/drawing-forest-deep-landscape-manga.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash 28556abb66f276388f5c3bb9fe69be05
e0807ba5a1ec1d76b56e1da3d1932916989c7d80
89ecd3fd0260dcf09c3d37be7a22fc98d147e99744bfcf4c03c6e3e51e21e896
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/SdJflUe24MI/AAAAAAAADPk/-9L53ngMZH8/w385-h184-p-k-no-nu/drawing-forest-deep-landscape-manga.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="drawing-forest-deep-landscape-manga.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 19671
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
2.bp.blogspot.com/_YPFDDjQ_y_Y/Sckl1Vm1-II/AAAAAAAADO0/5WP1cJpaXnY/w385-h184-p-k-no-nu/vuzix-wrap-920av.jpg
200 OK 14 kB URL GET HTTP/2 2.bp.blogspot.com/_YPFDDjQ_y_Y/Sckl1Vm1-II/AAAAAAAADO0/5WP1cJpaXnY/w385-h184-p-k-no-nu/vuzix-wrap-920av.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash 212ce30bde2a5ad3a8dda6471e757d3d
d7029a40d945b88b31c04c91c0947896456a7ee4
2ab9bad7e218143de9104e4d817ec60c542bad1c7ea0f6c70c572660840b58dc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/Sckl1Vm1-II/AAAAAAAADO0/5WP1cJpaXnY/w385-h184-p-k-no-nu/vuzix-wrap-920av.jpg HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5796"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="vuzix-wrap-920av.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 14096
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/_YPFDDjQ_y_Y/Scp9hGB8rlI/AAAAAAAADPE/yjanI8osbVg/w385-h184-p-k-no-nu/concept-art-beach-warlock.jpg
200 OK 11 kB URL GET HTTP/2 1.bp.blogspot.com/_YPFDDjQ_y_Y/Scp9hGB8rlI/AAAAAAAADPE/yjanI8osbVg/w385-h184-p-k-no-nu/concept-art-beach-warlock.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash 2409758d468ba3b454bf1613badff71d
9af43b3e30e153b2bc227e027cf3d79a731d8523
6df4167f5fb46c0d3b08f5acd2b034692dceff53e43c6fe4b6bb60b2b70daf77
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/Scp9hGB8rlI/AAAAAAAADPE/yjanI8osbVg/w385-h184-p-k-no-nu/concept-art-beach-warlock.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="concept-art-beach-warlock.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 10660
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/_YPFDDjQ_y_Y/SbfaZUROooI/AAAAAAAADNU/bVXdDtzMj8M/w385-h184-p-k-no-nu/Mass-Drawing-01.jpg
200 OK 5.8 kB URL GET HTTP/2 1.bp.blogspot.com/_YPFDDjQ_y_Y/SbfaZUROooI/AAAAAAAADNU/bVXdDtzMj8M/w385-h184-p-k-no-nu/Mass-Drawing-01.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 149x71, components 3\012- data
Hash 84d6e66a4f06ba20ee5642929814ab98
f85cf108e2a8bef2b38f65b1016bf022fd5042bd
379d1b25b9a069be46f89093b177f1634c1fc267ff7833a6fb7cc4a6dff2019a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/SbfaZUROooI/AAAAAAAADNU/bVXdDtzMj8M/w385-h184-p-k-no-nu/Mass-Drawing-01.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Mass-Drawing-01.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 5752
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.bp.blogspot.com/_YPFDDjQ_y_Y/ScAuQVOzhdI/AAAAAAAADOs/2QF6_Ju8dUU/w385-h184-p-k-no-nu/colors-vs-Values.jpg
200 OK 34 kB URL GET HTTP/2 3.bp.blogspot.com/_YPFDDjQ_y_Y/ScAuQVOzhdI/AAAAAAAADOs/2QF6_Ju8dUU/w385-h184-p-k-no-nu/colors-vs-Values.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash baf94abcbd6e894bb84343eaf356b28b
e9a532cc2979dc873ebb14f8039025624298fd71
f084504d4c6a86d4b4d74ace05b4894691c0a245a511ec72b4f5bef6a89f8bfd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/ScAuQVOzhdI/AAAAAAAADOs/2QF6_Ju8dUU/w385-h184-p-k-no-nu/colors-vs-Values.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="colors-vs-Values.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 33476
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
1.bp.blogspot.com/_YPFDDjQ_y_Y/Sa_7Sm91pAI/AAAAAAAADMM/RStJt1bLJ_4/w385-h184-p-k-no-nu/John+Singer+Sargent+-+Portrait_of_Edouard_and_Marie-Loise_Pailleron.jpg
200 OK 20 kB URL GET HTTP/2 1.bp.blogspot.com/_YPFDDjQ_y_Y/Sa_7Sm91pAI/AAAAAAAADMM/RStJt1bLJ_4/w385-h184-p-k-no-nu/John+Singer+Sargent+-+Portrait_of_Edouard_and_Marie-Loise_Pailleron.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 385x184, components 3\012- data
Hash bcdfd50d8045acb86f2d30c186aa939c
2b37c9fbd0e90cf63f33ec2844c858750e8c6a1e
f76ccb4039f2cef17674d32389f95a305ed170ae57128fee20dd5b48e746eb60
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_YPFDDjQ_y_Y/Sa_7Sm91pAI/AAAAAAAADMM/RStJt1bLJ_4/w385-h184-p-k-no-nu/John+Singer+Sargent+-+Portrait_of_Edouard_and_Marie-Loise_Pailleron.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v5794"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="John Singer Sargent - Portrait_of_Edouard_and_Marie-Loise_Pailleron.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 19632
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/2591169437-vegeclub_compiled.js
200 OK 47 kB URL GET HTTP/2 resources.blogblog.com/blogblog/data/res/2591169437-vegeclub_compiled.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type ASCII text, with very long lines (1733)
Hash bbea0d422fc5814476ff4f4bc3d4ac23
efab5199dcd0246363db178d0fdb1ae8cb0205d2
f8109ae3bcfd5a6ddf76332fe722b7b2ef77169b6be729e7f92e87d1ab2f7b81
GET /blogblog/data/res/2591169437-vegeclub_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 46996
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 02:47:39 GMT
expires: Mon, 25 Sep 2023 02:47:39 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 01:51:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 471391
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash aeafca61929af48f5ce5cc58fdaaed3c
f9c7530a7c334f9199f83a568fea5392ad41c8b9
a9b7cb4305b51e6964e793e0d5fb329c39c5cb8a1f7dafcc25b0074687abe954
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg7YNreCHnxtx6O65gJP5lzxtG3aaNr5tu7tqnlL64ICaXRaLiXKUYBxW0BB2E3LI5ZJaopStQSKVZxRPe53KKR5r5XDDBxxjgeDn-xA48g3lXMX6GInF0A3c1JtWS15w/s92/avatar92.jpg
200 OK 3.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg7YNreCHnxtx6O65gJP5lzxtG3aaNr5tu7tqnlL64ICaXRaLiXKUYBxW0BB2E3LI5ZJaopStQSKVZxRPe53KKR5r5XDDBxxjgeDn-xA48g3lXMX6GInF0A3c1JtWS15w/s92/avatar92.jpg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint25:24:05:0B:D2:5F:DF:ED:3B:BE:B8:47:80:C5:AE:2B:51:94:69:F5
ValidityMon, 04 Sep 2023 08:23:19 GMT - Mon, 27 Nov 2023 08:23:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 92x92, components 3\012- data
Hash cde9108cedfd624d007826798c8641ed
b647d88cc9a0e27dfa04a41fde32e1674396661f
16b418961b7920f2e526cf58bec1efde37385a8a37cd4a74cc3791db245d9836
GET /img/b/R29vZ2xl/AVvXsEg7YNreCHnxtx6O65gJP5lzxtG3aaNr5tu7tqnlL64ICaXRaLiXKUYBxW0BB2E3LI5ZJaopStQSKVZxRPe53KKR5r5XDDBxxjgeDn-xA48g3lXMX6GInF0A3c1JtWS15w/s92/avatar92.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v14d0"
expires: Sun, 24 Sep 2023 13:44:10 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="avatar92.jpg"
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:10 GMT
server: fife
content-length: 3733
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 5deab2863cc64ff54664df9e40738c24
7e731c4f0a6c9cbc80490586ddb39a82dcfbb5ae
fc49292164496bd63fb16adb3f5b6fc10d0c5f397c19007a858848257ea4a302
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 51 kB URL GET HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (3920)
Hash ce27cd0ae507a1d12e282db065217a68
6dc6cec371c83f0b6450acda4319c00ccc5b7748
9f2dbbfc1e9b616e7fea81f578da71e780a308ca481103668a3a8e3b3a186b4c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 23 Sep 2023 13:44:11 GMT
expires: Sat, 23 Sep 2023 13:44:11 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8476858652691498986
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50826
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 5deab2863cc64ff54664df9e40738c24
7e731c4f0a6c9cbc80490586ddb39a82dcfbb5ae
fc49292164496bd63fb16adb3f5b6fc10d0c5f397c19007a858848257ea4a302
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 04c3317215dbb6290c22b51fb76ba3fd
4f6dd945ef1d6d3ff6863608e7f26b1ba0b00134
47ca7e2430599f81f776f12dfad83f9a89ac22c636adfdfbb7b001e3b9167c16
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash aeafca61929af48f5ce5cc58fdaaed3c
f9c7530a7c334f9199f83a568fea5392ad41c8b9
a9b7cb4305b51e6964e793e0d5fb329c39c5cb8a1f7dafcc25b0074687abe954
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL GET HTTP/3 www.blogger.com/img/blogger_logo_round_35.png
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 07:32:02 GMT
expires: Mon, 25 Sep 2023 07:32:02 GMT
cache-control: public, max-age=604800
last-modified: Mon, 18 Sep 2023 05:51:50 GMT
content-type: image/png
age: 454329
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
idrawgirls.blogspot.com/favicon.ico
200 OK 767 B URL GET HTTP/3 idrawgirls.blogspot.com/favicon.ico
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
Fingerprint37:39:0F:F8:47:2E:23:CF:70:6A:2D:5A:34:A0:98:7E:C9:0F:5A:84
ValidityMon, 04 Sep 2023 08:22:52 GMT - Mon, 27 Nov 2023 08:22:51 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 44fa936b0d64bb7f7e02c20fa53d1c8d
dcff448ba6ae9663a98e213fc839acbbb143d955
afcad9df2587d290bd3cfba22e01384f8305140764b804c2cc1f4bc12871b118
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: idrawgirls.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/2009/03/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sat, 23 Sep 2023 13:44:11 GMT
date: Sat, 23 Sep 2023 13:44:11 GMT
cache-control: private, max-age=86400
last-modified: Fri, 15 Sep 2023 09:31:16 GMT
etag: W/"827fcc7dc23e29cbe85c61dd5dd0a698ec72cabe08cbd6a811fb8dc480ffdfab"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 767
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5201553812868036&plah=idrawgirls.blogspot.com
200 OK 132 kB URL GET HTTP/3 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5201553812868036&plah=idrawgirls.blogspot.com
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (2079)
Size 132 kB (131563 bytes)
Hash 53f517a4688dce8ae4243efb05715418
07688ed71a612099c6c01a7eba10681badc467b3
d50e47a6fed771fbd16729607414b3fbbf1a6bb5a718bc79f6c1a64e8e02a6af
GET /pagead/managed/js/adsense/m202309140101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5201553812868036&plah=idrawgirls.blogspot.com HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 23 Sep 2023 13:44:11 GMT
expires: Sat, 23 Sep 2023 13:44:11 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 8819486619865722454
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 131563
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
472 B IP
Hash 8bd82cc167dcfca92222c771cc727ea4
5412299d9da7fc26af5eb6ab0bb0adcbed11fe19
eaf1c14f5129b21a7ac323e2cb8a7d73b5258af575b971b7f8a507fd7f98577a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=idrawgirls.blogspot.com&callback=_gfp_s_&client=ca-pub-5201553812868036
200 OK 253 B URL GET HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=idrawgirls.blogspot.com&callback=_gfp_s_&client=ca-pub-5201553812868036
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.googleadservices.com
FingerprintEB:BF:81:86:29:44:29:54:16:A0:12:6C:6C:7F:D1:8D:ED:9E:97:1A
ValidityMon, 04 Sep 2023 08:21:47 GMT - Mon, 27 Nov 2023 08:21:46 GMT
File type ASCII text, with very long lines (391), with no line terminators
Hash 31f263c05c23bf8e4e5bd808e7c838b8
ea5e41c68029ff82eeb8b8d8a8df68d829c23f7c
c9f90991529217e93039e8990f174eddc24eb1ee89e9859ecc215f87beac653c
GET /gampad/cookie.js?domain=idrawgirls.blogspot.com&callback=_gfp_s_&client=ca-pub-5201553812868036 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 23 Sep 2023 13:44:12 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 8bd82cc167dcfca92222c771cc727ea4
5412299d9da7fc26af5eb6ab0bb0adcbed11fe19
eaf1c14f5129b21a7ac323e2cb8a7d73b5258af575b971b7f8a507fd7f98577a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=954.4
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=954.4
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=954.4 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 23 Sep 2023 13:44:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env
200 OK 12 kB URL GET HTTP/3 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type JSON data\012- , ASCII text, with very long lines (15906), with no line terminators
Hash 9b5ceb62f36b681ebcc02d1b19108621
bddc6bfe1dd47b4ee7f77dd0e84d40ac33acedea
0bc6cbeafe4592058fea1c2cfa749acf52f083f8017c093f1e1e21434f7d74aa
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230920&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://idrawgirls.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sat, 23 Sep 2023 13:44:12 GMT
server: cafe
content-length: 11997
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/cspreport
0 B URL www.blogger.com/cspreport
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cspreport HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 373
Origin: https://idrawgirls.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
date: Sat, 23 Sep 2023 13:44:12 GMT
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/cspreport
0 B URL www.blogger.com/cspreport
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cspreport HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 373
Origin: https://idrawgirls.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
date: Sat, 23 Sep 2023 13:44:12 GMT
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 5f51b90d588da5830fe2f42925d6bced
27e4e2138921def351cd58994edaf1bbeb26b60a
448968bd0ef2587926e2ffc64e36cbfa8590fa30880e143dabfba31ea5f98199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL GET HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint51:2A:C5:84:C9:49:F8:BA:3F:D9:82:0E:BA:01:C7:D5:36:C2:BA:64
ValidityMon, 04 Sep 2023 08:22:41 GMT - Mon, 27 Nov 2023 08:22:40 GMT
File type ASCII text, with very long lines (1321)
Hash 2cc87e9764aebcbbf36ff2061e6a2793
b4f2ffdf4c695aa79f0e63651c18a88729c2407b
61c32059a5e94075a7ecff678b33907966fc9cfa384daa01aa057f872da14dbb
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 23 Sep 2023 13:44:12 GMT
expires: Sat, 23 Sep 2023 13:44:12 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL GET HTTP/3 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash 1d3d22df067f5219073f9c0fabb74fdd
d5c226022639323d93946df3571404116041e588
55a119c0394f901a8a297e109c17b5e5402689708b999ab10691c16179f32a4a
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 23 Sep 2023 10:32:29 GMT
expires: Sun, 22 Sep 2024 10:32:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 11503
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
471 B IP
Hash ec7e4fa5141f5c291141f904d913eb18
a1d02556789afef84c5c74b80eb45cd1604c3c70
9d7147857b1d24f497c88bbb8edb50fa9e27d8abbf81a4156bb5f97cfaf977aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
472 B IP
Hash 8e0560c46747530b07f20c3704aecf0c
30e8a5e5b62c28ed29ef6408f9044f2d8a911db5
e5b8c6bd88bfb832b0b14cf3e17048b546cbf82d7de8d539f8fdad12794b3cb8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 13:44:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/cspreport
0 B URL www.blogger.com/cspreport
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cspreport HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 373
Origin: https://idrawgirls.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
date: Sat, 23 Sep 2023 13:44:12 GMT
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/cspreport
0 B URL www.blogger.com/cspreport
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
FingerprintCB:2E:4E:04:8F:48:B1:A1:1A:F4:F6:E1:8A:18:2F:F9:B5:A6:DD:60
ValidityMon, 04 Sep 2023 08:16:44 GMT - Mon, 27 Nov 2023 08:16:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cspreport HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/csp-report
Content-Length: 373
Origin: https://idrawgirls.blogspot.com
Connection: keep-alive
Sec-Fetch-Dest: report
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
date: Sat, 23 Sep 2023 13:44:12 GMT
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js
15 kB URL pagead2.googlesyndication.com/bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
File type ASCII text, with very long lines (37385)
Hash a325f5c00749f9340329610f4d80371b
41126a232c6859b49eab99a0a269fcb56a3f01ef
b467032f1667c5c6639deaba6537cc84b48a99545a34070120a1f120a1b47c87
GET /bg/tGcDLxZnxcZjneq6ZTfMhLSKmVRaNAcBIKHxIKG0fIc.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14772
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 20 Sep 2023 18:54:58 GMT
expires: Thu, 19 Sep 2024 18:54:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Sep 2023 15:38:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 240554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=294938973596053&rc=
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=294938973596053&rc=
IP
Requested by https://www.google.com/recaptcha/api2/aframe
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20230920&jk=294938973596053&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:13 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tpc.googlesyndication.com/generate_204?iHCCfg
0 B URL tpc.googlesyndication.com/generate_204?iHCCfg
IP
Certificate IssuerGoogle Trust Services LLC
Subjecttpc.googlesyndication.com
Fingerprint51:2A:C5:84:C9:49:F8:BA:3F:D9:82:0E:BA:01:C7:D5:36:C2:BA:64
ValidityMon, 04 Sep 2023 08:22:41 GMT - Mon, 27 Nov 2023 08:22:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?iHCCfg HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/sodar/sodar2/225/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sat, 23 Sep 2023 13:44:13 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=294938973596053&bg=!pqWlperNAAYrDsWMCw47ADQBe5WfOCo23EFclCiuMFuHMZzh23YCNOuFsN4lTtNbWUzayvoGE_EVStlHWL0wVz_lq7SuAgAAAWtSAAAAEWgBBwoAaKEegX88LkV_deEnFC-qB6_xN9PV2ClL-shTi1c3cEi7EndxlAWdnDEnZFbJO4TH6_zu2h4uCnH4WIg8_fAyhSHT8sxbZojcShv5rvbB5gZFD0DGoyZnFTmaNbAzYr6sAdUnHj45KbUZmQKPqke4orV4moZ_LNQlWao8at4ey3xbPNi0_wkTGDEKiNkMnigs4aCy0stfbWfvU4V7lJjgjq12TtWQ5Q_n22l4_HATp0vE6zkKlHGJz4wC7gemzNPhZzSIl7a3u9u96MTKIQonw3OYaI5VJ2YTCNSWbtDcYmZ9EkMCeQJDQwtrG_yYKpfiiL5xtpvUW3fctDAxJAc1CS5zlw-2KzIxmSaq9IcMbFnnfECGenZI83K_D7bNlvFjtKwxGxxHxPVPYieu5J8GH6y_h-KX5OHJtpljPhyF2KZwDAh4SaxUn8356wAaGbuVcziS6uhNMsQ8PnJbZWBRHEZtEYIZFOX6ORRAXzxg9MHgY2XOawmV2c6aCUq7BRF0kefshJcusLkejE1BfLMRaLOCsluTYS5HDeOYqUh9ew07UF7mNx3iJUgdZJ_4POv7pO6ev9tZ6uCHbu3VqU6JMlQMhAlEsRMACmkXj3NIJKUdxaYVFC8koXXwlDtSO8x06ABAxQ-fNcPJl6YKg5kQY3dZIl223aUG0BTntlcpUpFTXu4aucAunVDe9LYwvY8FZkFEsJZFDcXeADmKmo436-xJC-F9nRvfJ_b0CZkI57ymSqVZXbF93H2Y1cgIdZrQLUiYPNMDcnda61FYSF7dUrt4yMsO-mkaezaR_4ySDKKZsv2HosMDvoUrvoI9x2_ZM0bb4GUWi78rqZQTiL2-Cd7tPLgQ2-t7of1m1GWbNIv0SXs5AEmlr7eTSVebjOipg6SQ5iE6NV8VB819l0tAC53Ubs9fQ4FMCtFf3_NAYqwXagFXv47ie8IZwVsPoT41of5mb6juJdeE9dnPu7kMj-fRmLNyLp6NrXYlFmKo4ZYtwgty4jCPtur2Gg
204 No Content 0 B URL GET HTTP/3 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=294938973596053&bg=!pqWlperNAAYrDsWMCw47ADQBe5WfOCo23EFclCiuMFuHMZzh23YCNOuFsN4lTtNbWUzayvoGE_EVStlHWL0wVz_lq7SuAgAAAWtSAAAAEWgBBwoAaKEegX88LkV_deEnFC-qB6_xN9PV2ClL-shTi1c3cEi7EndxlAWdnDEnZFbJO4TH6_zu2h4uCnH4WIg8_fAyhSHT8sxbZojcShv5rvbB5gZFD0DGoyZnFTmaNbAzYr6sAdUnHj45KbUZmQKPqke4orV4moZ_LNQlWao8at4ey3xbPNi0_wkTGDEKiNkMnigs4aCy0stfbWfvU4V7lJjgjq12TtWQ5Q_n22l4_HATp0vE6zkKlHGJz4wC7gemzNPhZzSIl7a3u9u96MTKIQonw3OYaI5VJ2YTCNSWbtDcYmZ9EkMCeQJDQwtrG_yYKpfiiL5xtpvUW3fctDAxJAc1CS5zlw-2KzIxmSaq9IcMbFnnfECGenZI83K_D7bNlvFjtKwxGxxHxPVPYieu5J8GH6y_h-KX5OHJtpljPhyF2KZwDAh4SaxUn8356wAaGbuVcziS6uhNMsQ8PnJbZWBRHEZtEYIZFOX6ORRAXzxg9MHgY2XOawmV2c6aCUq7BRF0kefshJcusLkejE1BfLMRaLOCsluTYS5HDeOYqUh9ew07UF7mNx3iJUgdZJ_4POv7pO6ev9tZ6uCHbu3VqU6JMlQMhAlEsRMACmkXj3NIJKUdxaYVFC8koXXwlDtSO8x06ABAxQ-fNcPJl6YKg5kQY3dZIl223aUG0BTntlcpUpFTXu4aucAunVDe9LYwvY8FZkFEsJZFDcXeADmKmo436-xJC-F9nRvfJ_b0CZkI57ymSqVZXbF93H2Y1cgIdZrQLUiYPNMDcnda61FYSF7dUrt4yMsO-mkaezaR_4ySDKKZsv2HosMDvoUrvoI9x2_ZM0bb4GUWi78rqZQTiL2-Cd7tPLgQ2-t7of1m1GWbNIv0SXs5AEmlr7eTSVebjOipg6SQ5iE6NV8VB819l0tAC53Ubs9fQ4FMCtFf3_NAYqwXagFXv47ie8IZwVsPoT41of5mb6juJdeE9dnPu7kMj-fRmLNyLp6NrXYlFmKo4ZYtwgty4jCPtur2Gg
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subject*.g.doubleclick.net
Fingerprint67:E1:F2:5D:6B:29:01:55:36:48:B9:44:27:87:2A:0A:C4:DD:B7:B7
ValidityMon, 04 Sep 2023 08:17:04 GMT - Mon, 27 Nov 2023 08:17:03 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230920&jk=294938973596053&bg=!pqWlperNAAYrDsWMCw47ADQBe5WfOCo23EFclCiuMFuHMZzh23YCNOuFsN4lTtNbWUzayvoGE_EVStlHWL0wVz_lq7SuAgAAAWtSAAAAEWgBBwoAaKEegX88LkV_deEnFC-qB6_xN9PV2ClL-shTi1c3cEi7EndxlAWdnDEnZFbJO4TH6_zu2h4uCnH4WIg8_fAyhSHT8sxbZojcShv5rvbB5gZFD0DGoyZnFTmaNbAzYr6sAdUnHj45KbUZmQKPqke4orV4moZ_LNQlWao8at4ey3xbPNi0_wkTGDEKiNkMnigs4aCy0stfbWfvU4V7lJjgjq12TtWQ5Q_n22l4_HATp0vE6zkKlHGJz4wC7gemzNPhZzSIl7a3u9u96MTKIQonw3OYaI5VJ2YTCNSWbtDcYmZ9EkMCeQJDQwtrG_yYKpfiiL5xtpvUW3fctDAxJAc1CS5zlw-2KzIxmSaq9IcMbFnnfECGenZI83K_D7bNlvFjtKwxGxxHxPVPYieu5J8GH6y_h-KX5OHJtpljPhyF2KZwDAh4SaxUn8356wAaGbuVcziS6uhNMsQ8PnJbZWBRHEZtEYIZFOX6ORRAXzxg9MHgY2XOawmV2c6aCUq7BRF0kefshJcusLkejE1BfLMRaLOCsluTYS5HDeOYqUh9ew07UF7mNx3iJUgdZJ_4POv7pO6ev9tZ6uCHbu3VqU6JMlQMhAlEsRMACmkXj3NIJKUdxaYVFC8koXXwlDtSO8x06ABAxQ-fNcPJl6YKg5kQY3dZIl223aUG0BTntlcpUpFTXu4aucAunVDe9LYwvY8FZkFEsJZFDcXeADmKmo436-xJC-F9nRvfJ_b0CZkI57ymSqVZXbF93H2Y1cgIdZrQLUiYPNMDcnda61FYSF7dUrt4yMsO-mkaezaR_4ySDKKZsv2HosMDvoUrvoI9x2_ZM0bb4GUWi78rqZQTiL2-Cd7tPLgQ2-t7of1m1GWbNIv0SXs5AEmlr7eTSVebjOipg6SQ5iE6NV8VB819l0tAC53Ubs9fQ4FMCtFf3_NAYqwXagFXv47ie8IZwVsPoT41of5mb6juJdeE9dnPu7kMj-fRmLNyLp6NrXYlFmKo4ZYtwgty4jCPtur2Gg HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 23 Sep 2023 13:44:13 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/aframe
200 OK 829 B URL GET HTTP/2 www.google.com/recaptcha/api2/aframe
IP
Requested by https://idrawgirls.blogspot.com/2009/03/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintD2:77:FE:08:C6:61:6A:42:5C:1F:85:13:DA:23:B2:B8:46:20:45:88
ValidityMon, 04 Sep 2023 08:23:29 GMT - Mon, 27 Nov 2023 08:23:28 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (853), with no line terminators
Hash a43fa6a88e6a272f79491a690a1463af
b618c42113762455d598a340d4a4413678f62d36
58dc61283d322e262b99209bb8940280c96caf831ecae204bc14a65a5f3f60a9
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://idrawgirls.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sat, 23 Sep 2023 13:44:12 GMT
date: Sat, 23 Sep 2023 13:44:12 GMT
cache-control: private, max-age=300
content-security-policy: script-src 'nonce-AMrordxPIukKuM6dagyhoA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
216.58.207.193
0.0.0.0