GET static.surfe.pro/js/net.js
200 OK 4.6 kB URL GET static.surfe.pro/js/net.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectsurfe.pro
Fingerprint51:81:6D:F1:A1:41:C8:34:C7:54:76:19:DE:32:26:63:52:B0:E1:6E
ValidityMon, 12 May 2025 02:30:01 GMT - Sun, 10 Aug 2025 03:27:25 GMT
File type JavaScript source, ASCII text, with very long lines (4614)
Hash 73fbb63ba6038858cde62021a456ceeb
b6f92d924204479130e91b1f7574acd69aeceff5
d4440e72c2c1e11a92577da7f30ae8587d51135d063dc39bbff5ff1bd05a45a8
GET /js/net.js HTTP/1.1
Host: static.surfe.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:54 GMT
content-type: application/javascript
server: cloudflare
last-modified: Thu, 15 Aug 2024 12:00:39 GMT
vary: Accept-Encoding
etag: "66bdede7-1207"
cache-control: public, max-age=86400
content-encoding: gzip
age: 85023
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=wpqKeXAFNsIT%2BylS4FV2JByH39jqOiI7abskS9DPWblDJWA%2BxNqCzuZA0Lf6QusPlZRXgx69v3YkVe4dzFTfI7MQJdZCYT5u6d65A%2FQQ"}]}
cf-ray: 94e3144e0c0456b9-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/si/d8/b1/09/d8b109165fc0ec08002c14fd9e81f6ece67b955e786b918b73abb33e5be5188f.png
200 OK 57 kB URL GET cdn.storageimagedisplay.com/si/d8/b1/09/d8b109165fc0ec08002c14fd9e81f6ece67b955e786b918b73abb33e5be5188f.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Hash 423a240fbfb182d7805dad3bb9e822bb
6a853689b2cc95a6c36b98e6938e598bf2a28d52
da19475c70c6669a83473eb52dec1feb61e629e374fdd426dd02024080d0b1a6
GET /si/d8/b1/09/d8b109165fc0ec08002c14fd9e81f6ece67b955e786b918b73abb33e5be5188f.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/png
content-length: 57237
server: nginx/1.21.6
last-modified: Sun, 11 May 2025 14:02:30 GMT
etag: "6820adf6-df95"
expires: Fri, 13 Jun 2025 18:12:56 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ad.a-ads.com/2370867?size=300x250
200 OK 16 kB URL GET ad.a-ads.com/2370867?size=300x250
IP
ASN #24940 Hetzner Online GmbH
Requested by https://ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint29:38:CF:C5:B7:11:ED:58:BF:D9:11:7B:D8:5E:88:8A:48:33:9A:23
ValiditySun, 05 Jan 2025 00:00:00 GMT - Tue, 09 Dec 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (7346)
Hash 6e00a5ff64bb066ac875ecdc46cefb3c
10232d24708d1ef2dda7edf76788c7bb735957b9
e57c913c9b48ffbbe8211c9a2565c2768344beb63b0ab6a3f16df36749ab6bb9
GET /2370867?size=300x250 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad2bitcoin.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 18:12:57 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://ad2bitcoin.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
GET ad2bitcoin.com/adqlt.php?ref=sofiahalbof&keycode=7646
200 OK 0 B URL GET ad2bitcoin.com/adqlt.php?ref=sofiahalbof&keycode=7646
IP
Requested by https://ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
Certificate IssuerLet's Encrypt
Subjectwww.ad2bitcoin.com.traffic2bitcoin.com
Fingerprint31:44:7E:F3:60:17:57:E2:AC:2B:DF:74:42:A9:0A:18:8A:09:73:4F
ValidityTue, 22 Apr 2025 00:58:38 GMT - Mon, 21 Jul 2025 00:58:37 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adqlt.php?ref=sofiahalbof&keycode=7646 HTTP/1.1
Host: ad2bitcoin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 11 Jun 2025 18:12:56 GMT
Server: Apache
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET sofiahalbofanimeworld.blogspot.com/favicon.ico
200 OK 3.6 kB URL GET sofiahalbofanimeworld.blogspot.com/favicon.ico
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint60:6C:4A:90:50:55:17:7B:EA:21:63:7A:95:AD:B6:F4:3C:5C:F8:91
ValidityMon, 12 May 2025 08:43:42 GMT - Mon, 04 Aug 2025 08:43:41 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: sofiahalbofanimeworld.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=3b447429-4569-48b8-9cf5-bdb671b59f36%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=writingfreedomdecember.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Wed, 11 Jun 2025 18:12:57 GMT
date: Wed, 11 Jun 2025 18:12:57 GMT
cache-control: private, max-age=86400
last-modified: Wed, 11 Jun 2025 18:11:53 GMT
etag: W/"bf0e19754322bdbcbfd2c000904752bb7bc4608cc5b908501eaa8936c07a7aa9"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
200 OK 3.4 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (956)
Hash 234f63d3bc0f6d38a655f46ff6746844
50546cecd128427d872d90c666d7bd654fdbfc4c
1ab5288e7ce4e1073438eae2b9dc1526939d229f0b1c65662d41b784ba317c96
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:52 GMT
expires: Tue, 09 Jun 2026 03:05:52 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227227
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9NV9_Ac1CFIkLN7XzB-lUd1f_lFkEYxwdHGfGJDJgVq_qvep5dnW98r366emFGRyQLFtQMK7enJ7JaAyiOzeC9IgiASG1m0Vm49KlIC5cSM00tF6oe--5pwrOPbc-2stOiIuMHm-8JcciiujFdt2xn98UMZOFttdu2A2n7lyyN0XccS_Zoyqp_OVGy607L9iv82AgLzadhuM0nIa9LBQP5ejiKQuR3Pcadc-pu816o-1ipP6LdWZBUwssPyFPQbDyid_CmxDBDPHwm6tcD1KZvPTaMItoKhVydvhOPIhlEWO4aENlIYwP529D6pKQz5Yg48P5BpD5frUBfFGSpQuP4MeHc5nw84MzpX4EHsNn51HkM_BoBkFnCOQuBHtIgIBhbR3x8O6aVAXdPmNpxZak9ucfEEVJao-eRjz8-kokRvZ1GWWpkLHGKDQQoxlEf4YkO0I6XoIojhCkH0KwX4nzzHnEw3tvyFwM7JyrAQQzpx6IcIaIT0C1hax6hIUstJAlFobs2Hadnhs0aKsTeizoOi51XcZ9x-s1HYd6QRdZUAmcIE0mCKIJArWDRO1gID4uifXYBajsB-gtA80s6LQk1ts7yJlBwQkKTVBQgkIQFClBkZsDFummNndZpDO_Ma_NeW2ZqUz7e_RApn0eE1A1gWJmXyTv610E6f-m41CzqawS9VMzpT4ze8kJebIy0bo1yzDgx3ZIvW6v67Eg7DndjuPRnhP6Pdpibd7mvBtCCwOhl05dGYuSXN38DokoyTm6D58eQUdHCMQF0KwBWhjQLYNxbMCkQZLWkG5be9EJefb0dKu938GDB2QeCJRBogzeEz8S9KPb02uyIPvXZKHJt-tJKoZiTKuzXk9pys_de5NvF1Kxlat68uUrQUVU7f0bXKerNGYi7mvy1RXBGFfLUgWcfL-iN7m_kemtK5mKs2R149XllWGiuNZCxjNQ8XD9LwSiJP__-9PTH_bFWz9BqBlUZjDMFkqFnCFIdqCTxUxLAhUtsJ_UUGRmqpr-YhgJgogvMPUN9L-wv-inilZfU2H29G30VQ003UU8NMiVQR4Z0GgCnT0-TRP14PIvd6r4HH5Um_qRqu37kYo-Kcm7X1wuyc07SyVZFR-cea7Fsd1u-q1Or9fhYYeFLdZqtpjXdrjnUq_jem4bqS63Vn5-7p8AAAD__7a6oNyhBAAA
200 OK 0 B URL GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9NV9_Ac1CFIkLN7XzB-lUd1f_lFkEYxwdHGfGJDJgVq_qvep5dnW98r366emFGRyQLFtQMK7enJ7JaAyiOzeC9IgiASG1m0Vm49KlIC5cSM00tF6oe--5pwrOPbc-2stOiIuMHm-8JcciiujFdt2xn98UMZOFttdu2A2n7lyyN0XccS_Zoyqp_OVGy607L9iv82AgLzadhuM0nIa9LBQP5ejiKQuR3Pcadc-pu816o-1ipP6LdWZBUwssPyFPQbDyid_CmxDBDPHwm6tcD1KZvPTaMItoKhVydvhOPIhlEWO4aENlIYwP529D6pKQz5Yg48P5BpD5frUBfFGSpQuP4MeHc5nw84MzpX4EHsNn51HkM_BoBkFnCOQuBHtIgIBhbR3x8O6aVAXdPmNpxZak9ucfEEVJao-eRjz8-kokRvZ1GWWpkLHGKDQQoxlEf4YkO0I6XoIojhCkH0KwX4nzzHnEw3tvyFwM7JyrAQQzpx6IcIaIT0C1hax6hIUstJAlFobs2Hadnhs0aKsTeizoOi51XcZ9x-s1HYd6QRdZUAmcIE0mCKIJArWDRO1gID4uifXYBajsB-gtA80s6LQk1ts7yJlBwQkKTVBQgkIQFClBkZsDFummNndZpDO_Ma_NeW2ZqUz7e_RApn0eE1A1gWJmXyTv610E6f-m41CzqawS9VMzpT4ze8kJebIy0bo1yzDgx3ZIvW6v67Eg7DndjuPRnhP6Pdpibd7mvBtCCwOhl05dGYuSXN38DokoyTm6D58eQUdHCMQF0KwBWhjQLYNxbMCkQZLWkG5be9EJefb0dKu938GDB2QeCJRBogzeEz8S9KPb02uyIPvXZKHJt-tJKoZiTKuzXk9pys_de5NvF1Kxlat68uUrQUVU7f0bXKerNGYi7mvy1RXBGFfLUgWcfL-iN7m_kemtK5mKs2R149XllWGiuNZCxjNQ8XD9LwSiJP__-9PTH_bFWz9BqBlUZjDMFkqFnCFIdqCTxUxLAhUtsJ_UUGRmqpr-YhgJgogvMPUN9L-wv-inilZfU2H29G30VQ003UU8NMiVQR4Z0GgCnT0-TRP14PIvd6r4HH5Um_qRqu37kYo-Kcm7X1wuyc07SyVZFR-cea7Fsd1u-q1Or9fhYYeFLdZqtpjXdrjnUq_jem4bqS63Vn5-7p8AAAD__7a6oNyhBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9NV9_Ac1CFIkLN7XzB-lUd1f_lFkEYxwdHGfGJDJgVq_qvep5dnW98r366emFGRyQLFtQMK7enJ7JaAyiOzeC9IgiASG1m0Vm49KlIC5cSM00tF6oe--5pwrOPbc-2stOiIuMHm-8JcciiujFdt2xn98UMZOFttdu2A2n7lyyN0XccS_Zoyqp_OVGy607L9iv82AgLzadhuM0nIa9LBQP5ejiKQuR3Pcadc-pu816o-1ipP6LdWZBUwssPyFPQbDyid_CmxDBDPHwm6tcD1KZvPTaMItoKhVydvhOPIhlEWO4aENlIYwP529D6pKQz5Yg48P5BpD5frUBfFGSpQuP4MeHc5nw84MzpX4EHsNn51HkM_BoBkFnCOQuBHtIgIBhbR3x8O6aVAXdPmNpxZak9ucfEEVJao-eRjz8-kokRvZ1GWWpkLHGKDQQoxlEf4YkO0I6XoIojhCkH0KwX4nzzHnEw3tvyFwM7JyrAQQzpx6IcIaIT0C1hax6hIUstJAlFobs2Hadnhs0aKsTeizoOi51XcZ9x-s1HYd6QRdZUAmcIE0mCKIJArWDRO1gID4uifXYBajsB-gtA80s6LQk1ts7yJlBwQkKTVBQgkIQFClBkZsDFummNndZpDO_Ma_NeW2ZqUz7e_RApn0eE1A1gWJmXyTv610E6f-m41CzqawS9VMzpT4ze8kJebIy0bo1yzDgx3ZIvW6v67Eg7DndjuPRnhP6Pdpibd7mvBtCCwOhl05dGYuSXN38DokoyTm6D58eQUdHCMQF0KwBWhjQLYNxbMCkQZLWkG5be9EJefb0dKu938GDB2QeCJRBogzeEz8S9KPb02uyIPvXZKHJt-tJKoZiTKuzXk9pys_de5NvF1Kxlat68uUrQUVU7f0bXKerNGYi7mvy1RXBGFfLUgWcfL-iN7m_kemtK5mKs2R149XllWGiuNZCxjNQ8XD9LwSiJP__-9PTH_bFWz9BqBlUZjDMFkqFnCFIdqCTxUxLAhUtsJ_UUGRmqpr-YhgJgogvMPUN9L-wv-inilZfU2H29G30VQ003UU8NMiVQR4Z0GgCnT0-TRP14PIvd6r4HH5Um_qRqu37kYo-Kcm7X1wuyc07SyVZFR-cea7Fsd1u-q1Or9fhYYeFLdZqtpjXdrjnUq_jem4bqS63Vn5-7p8AAAD__7a6oNyhBAAA HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl25150069=1; nlecfa97879dcf807609a80fb8a3d5e5ee7f=[5941311,6002946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 11 Jun 2025 18:12:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9c2f7388ca33fbed760cb0635d14cede
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
POST play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL POST play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 581
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 11 Jun 2025 18:12:57 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://ad.a-ads.com/2370867?size=300x250
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48532, version 1.0
Hash 225835e6e0496c54dc2aca9f3d533892
942ef5298bbe74bfe44e445def5f2bfc94027fa8
acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ad.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:39:16 GMT
expires: Wed, 10 Jun 2026 02:39:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 142422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/html/r20250610/r20190131/zrt_lookup_fy2021.html
200 OK 8.5 kB URL GET pagead2.googlesyndication.com/pagead/html/r20250610/r20190131/zrt_lookup_fy2021.html
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File type HTML document, ASCII text, with very long lines (2981)
Hash 7a9bdcae66cdee34e3fb9bea7d5ea9b3
7e6a876763c1d5dd8bad3e8d045e6d596503c068
adb20dfcb3586b802e692ef1365bac860fd8670b85a67f0286677ac4268b6bd4
GET /pagead/html/r20250610/r20190131/zrt_lookup_fy2021.html HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 3856
x-xss-protection: 0
date: Wed, 11 Jun 2025 15:47:01 GMT
expires: Wed, 25 Jun 2025 15:47:01 GMT
cache-control: public, max-age=1209600
etag: 7658452531946828944
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
age: 8753
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.google.com/recaptcha/api2/webworker.js?hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye
200 OK 102 B URL GET www.google.com/recaptcha/api2/webworker.js?hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
File type ASCII text, with no line terminators
Hash 9576fff5e5595ffdc4940e1c093f6a90
392afda79662449f2c738c62f514c9b9cde87d6f
32f2d7633d2ff889c3823144cbc81ecd024fac22db8494cd0eab426b572b9376
GET /recaptcha/api2/webworker.js?hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
expires: Wed, 11 Jun 2025 18:12:58 GMT
date: Wed, 11 Jun 2025 18:12:58 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: same-site
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET 4.bp.blogspot.com/-3dtLoTEiEng/ZL2Kv4Wp5ZI/AAAAAAABV3E/kYEcmDIMY1AEZprbAHdYD2vbFzr_Q2l9wCK4BGAYYCw/s35/401576_104778249658503_100003789847581_16554_1991487789_n.jpg
200 OK 1.4 kB URL GET 4.bp.blogspot.com/-3dtLoTEiEng/ZL2Kv4Wp5ZI/AAAAAAABV3E/kYEcmDIMY1AEZprbAHdYD2vbFzr_Q2l9wCK4BGAYYCw/s35/401576_104778249658503_100003789847581_16554_1991487789_n.jpg
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint60:6C:4A:90:50:55:17:7B:EA:21:63:7A:95:AD:B6:F4:3C:5C:F8:91
ValidityMon, 12 May 2025 08:43:42 GMT - Mon, 04 Aug 2025 08:43:41 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 35x35, components 3
Hash b4de74217e89f1eab2cd656533624d22
208f0c84d9436c7255244a3e63c8b818457b1218
4fd8eda9fa4f6ace2fe9270198af1dbbacdf0115088f1d4d608ea7002f40d93d
GET /-3dtLoTEiEng/ZL2Kv4Wp5ZI/AAAAAAABV3E/kYEcmDIMY1AEZprbAHdYD2vbFzr_Q2l9wCK4BGAYYCw/s35/401576_104778249658503_100003789847581_16554_1991487789_n.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v15773"
expires: Thu, 12 Jun 2025 18:12:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="401576_104778249658503_100003789847581_16554_1991487789_n.jpg"
x-content-type-options: nosniff
date: Wed, 11 Jun 2025 18:12:54 GMT
server: fife
content-length: 1442
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:51:46 GMT
expires: Wed, 10 Jun 2026 02:51:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 141672
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET ep2.adtrafficquality.google/sodar/sodar2/237/runner.html
200 OK 13 kB URL GET ep2.adtrafficquality.google/sodar/sodar2/237/runner.html
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectadtrafficquality.google
Fingerprint03:0D:65:6B:86:BE:3E:3C:4F:30:92:DE:A3:9E:24:2C:B8:77:95:7E
ValidityMon, 12 May 2025 08:45:54 GMT - Mon, 04 Aug 2025 08:45:53 GMT
File type HTML document, ASCII text, with very long lines (2024)
Hash 0120a1d624ff8fc3ec792d93a7133947
1e3bd23df78ff2c60b187b40a0c6505be9ab889f
14b660a511e14a9a481c6fe43c576f36c61b656cfd379728c54f1128e1855966
GET /sodar/sodar2/237/runner.html HTTP/1.1
Host: ep2.adtrafficquality.google
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jun 2025 17:50:13 GMT
expires: Wed, 11 Jun 2025 18:40:13 GMT
cache-control: public, max-age=3000
age: 1366
last-modified: Tue, 13 May 2025 23:17:50 GMT
content-type: text/html
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22%3A%22rgb(102%2C%20102%2C%20102)%22%2C%22backgroundColor%22%3A%22rgb(61%2C%20133%2C%20198)%22%2C%22unvisitedLinkColor%22%3A%22rgb(61%2C%20116%2C%20165)%22%2C%22fontFamily%22%3A%22Arial%2C%20Tahoma%2C%20Helvetica%2C%20FreeSans%2C%20sans-serif%22%7D
0 B URL GET www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22%3A%22rgb(102%2C%20102%2C%20102)%22%2C%22backgroundColor%22%3A%22rgb(61%2C%20133%2C%20198)%22%2C%22unvisitedLinkColor%22%3A%22rgb(61%2C%20116%2C%20165)%22%2C%22fontFamily%22%3A%22Arial%2C%20Tahoma%2C%20Helvetica%2C%20FreeSans%2C%20sans-serif%22%7D
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
GET resources.blogblog.com/img/icon18_email.gif
200 OK 164 B URL GET resources.blogblog.com/img/icon18_email.gif
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type GIF image data, version 89a, 18 x 13
Hash 36b9f993db1b953f3b9b08040aaf9af4
18248661b307586dc291fd2dff4bb59cf7579475
1258cbe1e2900ec3df11a83a6bb6008d7a833f783a6df80b0d5d45a052ac1466
GET /img/icon18_email.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 18:17:21 GMT
expires: Thu, 12 Jun 2025 18:17:21 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jun 2025 03:55:08 GMT
content-type: image/gif
age: 518133
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/static/v1/jsbin/1167892209-comment_from_post_iframe.js
200 OK 17 kB URL GET www.blogger.com/static/v1/jsbin/1167892209-comment_from_post_iframe.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (1414)
Hash 191ab653e35ea9e3b07be25e351ebaf7
9039eb83a9694f82a779f5790ff5c79c8c5c9df0
0c79a9b51c65a05ae2a06f1e7a9f8b0ef21327c275ccd58bc94ac5e5780de355
GET /static/v1/jsbin/1167892209-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 02:04:59 GMT
expires: Tue, 09 Jun 2026 02:04:59 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Jun 2025 00:50:16 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 230875
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/cti/9f/c2/29/9fc229244e806e6e9315aa46a08c38ba/1708077818.png
200 OK 165 kB URL GET cdn.storageimagedisplay.com/cti/9f/c2/29/9fc229244e806e6e9315aa46a08c38ba/1708077818.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
File type PNG image data, 320 x 240, 8-bit/color RGB, non-interlaced
Size 165 kB (164909 bytes)
Hash 72cb128eef95d9b46ca96991a1deb86e
1e6da01fbbf8cd1d73e8919b4069e2393aec43b8
df90c8372354d13f97b35ad0f2c2679b67f3188ff0ddb15b0db15ee2d2ca11fd
GET /cti/9f/c2/29/9fc229244e806e6e9315aa46a08c38ba/1708077818.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/png
content-length: 164909
server: nginx/1.21.6
last-modified: Fri, 16 Feb 2024 10:03:46 GMT
etag: "65cf3302-2842d"
expires: Fri, 13 Jun 2025 18:12:56 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET tr189.surfe.pro/track/413169?ts=15&u=0&e=1&v=1
200 OK 0 B URL GET tr189.surfe.pro/track/413169?ts=15&u=0&e=1&v=1
IP
ASN #24940 Hetzner Online GmbH
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subject*.surfe.pro
Fingerprint94:1E:6D:AA:5A:3F:F7:85:44:3A:80:9F:FB:D9:D5:80:96:DB:02:58
ValidityThu, 17 Apr 2025 11:43:08 GMT - Wed, 16 Jul 2025 11:43:07 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track/413169?ts=15&u=0&e=1&v=1 HTTP/1.1
Host: tr189.surfe.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0
date: Wed, 11 Jun 2025 18:13:08 GMT
content-type: application/octet-stream
content-length: 118
cache-control: no-cache
track: catched
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://acceptable.a-ads.com/2394350
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48532, version 1.0
Hash 225835e6e0496c54dc2aca9f3d533892
942ef5298bbe74bfe44e445def5f2bfc94027fa8
acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:39:16 GMT
expires: Wed, 10 Jun 2026 02:39:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 142420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/managed/js/adsense/m202506090101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5387507473582359&plah=sofiahalbofanimeworld.blogspot.com&bust=31092935
200 OK 476 kB URL GET pagead2.googlesyndication.com/pagead/managed/js/adsense/m202506090101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5387507473582359&plah=sofiahalbofanimeworld.blogspot.com&bust=31092935
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File type JavaScript source, ASCII text, with very long lines (2792)
Size 476 kB (475976 bytes)
Hash e3def9b588be33495a60531e5eb53ac2
7be857dcfd79e4b7278819fad7b4d2134519f301
fa10a5c09a8e4d5480deefca8ca13aa181401f71be3becb505e59d1ef2700d12
GET /pagead/managed/js/adsense/m202506090101/show_ads_impl_with_ama_fy2021.js?client=ca-pub-5387507473582359&plah=sofiahalbofanimeworld.blogspot.com&bust=31092935 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 11 Jun 2025 18:12:54 GMT
expires: Wed, 11 Jun 2025 18:12:54 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 8117077390022484111
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 159314
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/dyn-css/authorization.css?targetBlogID=3405693820859981231&zx=e18f4bc5-bf86-4f25-bec8-cf37caae86d1
200 OK 1 B URL GET www.blogger.com/dyn-css/authorization.css?targetBlogID=3405693820859981231&zx=e18f4bc5-bf86-4f25-bec8-cf37caae86d1
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=3405693820859981231&zx=e18f4bc5-bf86-4f25-bec8-cf37caae86d1 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 18:12:54 GMT
last-modified: Wed, 11 Jun 2025 18:12:54 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.nJpyt-fjzo8.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg/cb=gapi.loaded_0?le=scs
200 OK 179 kB URL GET apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.nJpyt-fjzo8.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg/cb=gapi.loaded_0?le=scs
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
File type JavaScript source, ASCII text, with very long lines (1617)
Size 179 kB (179342 bytes)
Hash 7c408fe20b6b36e4f9066aaf1f03ca92
bf008e9136198b58e56bf313c73f5e1a1501a95a
550fec546c4d3c385eebb73c4315b691248a4283d70571c3d4a4afc74d044849
GET /_/scs/abc-static/_/js/k=gapi.lb.en.nJpyt-fjzo8.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 58905
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 04 Jun 2025 19:31:41 GMT
expires: Thu, 04 Jun 2026 19:31:41 GMT
cache-control: public, max-age=31536000
age: 600073
last-modified: Tue, 06 May 2025 22:02:56 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhseTpUxkcdHqsidRBkMaLVFAmLGSBygwPxwJ6s7vr7go-Ee9TkilI213RIDQBF618qFHscAZc0z3EMww7XjSsTn5PgqholxWnHEhw9e48EJR23kEu8Nt4EZJ3X3uA_8XhpO5DnzJhDFKU/w635-h640-rw/original+%25284%2529.jpg
200 OK 24 kB URL GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhseTpUxkcdHqsidRBkMaLVFAmLGSBygwPxwJ6s7vr7go-Ee9TkilI213RIDQBF618qFHscAZc0z3EMww7XjSsTn5PgqholxWnHEhw9e48EJR23kEu8Nt4EZJ3X3uA_8XhpO5DnzJhDFKU/w635-h640-rw/original+%25284%2529.jpg
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint27:E5:A6:4D:A7:35:A0:F7:7B:EA:CD:2E:47:1A:64:DB:8B:2C:E6:06
ValidityMon, 12 May 2025 08:43:56 GMT - Mon, 04 Aug 2025 08:43:55 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0486a0e5405a90fc0528d411f15bacfb
f9bfa4be241b5dcb1d08521f2e450e6b5d60c267
047cafbd80a22fe50f919e0be95c387e2bfb3dab555eeeb1b0b3c59157b61687
GET /img/b/R29vZ2xl/AVvXsEhseTpUxkcdHqsidRBkMaLVFAmLGSBygwPxwJ6s7vr7go-Ee9TkilI213RIDQBF618qFHscAZc0z3EMww7XjSsTn5PgqholxWnHEhw9e48EJR23kEu8Nt4EZJ3X3uA_8XhpO5DnzJhDFKU/w635-h640-rw/original+%25284%2529.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
vary: Origin
access-control-expose-headers: Content-Length
etag: "v51c"
expires: Thu, 12 Jun 2025 18:12:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="original (4).webp"
x-content-type-options: nosniff
date: Wed, 11 Jun 2025 18:12:55 GMT
server: fife
content-length: 23620
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0
204 No Content 0 B URL GET pagead2.googlesyndication.com/pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/gen_204?id=ach_evt&tn=DIV&id=cookieChoiceInfo&cls=cookie-choices-info%20singleton-element&ign=false&pw=1280&ph=1024&x=0&y=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 11 Jun 2025 18:12:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET webtrafbit.ru/img/logo.png
200 OK 430 B URL GET webtrafbit.ru/img/logo.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwebtrafbit.ru
FingerprintC8:57:12:98:4D:19:A9:9B:3B:8B:81:C0:D0:25:49:69:5B:70:22:DB
ValidityTue, 06 May 2025 23:47:45 GMT - Mon, 04 Aug 2025 23:47:44 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 384ec5459a1d2d1c8ad7fb7238c6d3a4
285bc1f66827e0bada4af2cd0e12abdd64be135b
7be71bcfc259d0a7f63b1debbc56306ec2a652533a3fbcef37867969b07bd116
GET /img/logo.png HTTP/1.1
Host: webtrafbit.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jun 2025 18:12:55 GMT
Content-Type: image/png
Content-Length: 430
Last-Modified: Mon, 10 Mar 2025 12:07:57 GMT
Connection: keep-alive
ETag: "67ced61d-1ae"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9Nekv8JmFKBIXbgo3_iCd6u7qnzKLYIzRwTEzJiMDZvWq3queZ1fXK9-rn55e6OCAZNmCiHH15vRMRmMQ3bkRpEcQCQip3SwyG5cuBclSqtPQeqHuveeeKjj33Pp0PzslLjJ6svGOHIsoohfadcd-cUvETBbavrZpN5y6c9HeEnHHvWiPqqTyVxstt-68ZL_Jg4G80HQajtNwGvZVoXgoRxfmLERyz2vUPafuNuuNtouR-i_WmQVNLbD8lDwNwcon_whvQgQzxMPvr3A9SGXyyhvDLKKpVMjZ0XvxIJZFjOGyDZWFMD5avA2pS0K-XIGMjxYbQOYH1QbwRUlWzj-EHx8tZMLPDx8r9SPwGD47hyKfgUczCDpDIPcg2AMCBAzX1hEP71yTqqA7j1lasSWp_f0XRFGS2sNnEA-_uxyJkX1DRlkqZKwxCg3EaAbRnyHJjpGOVyCKYwTpJxDsd-I8ew7x8O5bMhcDO-dqAMHM3AMRzhDxCai2kFWPsJCFFrLEwpCd2K7Tc4MGbXVCjwVdx6Wuy7jveL2m41Av6CILKoETpMkEQTRBoHaRqF0MxGclsf5_Hir7GXrbQDMLOi2J9e4ucmZQcIJCExSUoBAERUpQ5OaQRbqpzR0W6cxvLGpzUVtmKtP-Pj2UaZ_HBFRNoJg5EMmHeg9BemY6DjWbyipRPzVT6jOzn5ySpyoTrY9nGQb8xA6p1-11PRaEPafbcTzac0K_R1uszducd0NoYSD0ytyVsSjJla0fkYiSnKUH8OkxdHSMQJwHzRqghQHdNhjHBkwaJGkN6Y61H52S5-anWxMfgQf3ySIQKINEGXwgfiHoR7em12VBDq7LQpMf1pNUDMWYVme9kdKUn737Nt8ppGKrV_Tkm9eCiqjae5tcp2s0ZiLua_LtZcEYV1elCjj5aVVvcX8j09uXMxVnydrG61dXh4niWgsZz0DFg_VHCERJ_vfo-fkP-_IXmxBqBpUZDLOlUiFnCJJd6GQ505JARUvsJ2dQZGaqmv5yGAmCiC8x9Q30v7C_7KeKVl9TYfb1LfRVDTTdQzw0yJVBHhnQaAKdPTFNE3X_0m-3q_gKflSb-pGqHfiRij4vyftfXyrJzdsrc7tLstb7E1qc2O2m3-r0eh0edljYYq1mi3lth3su9Tqu57aR6nJ79dcX_gkAAP__zUd5caEEAAA=
200 OK 0 B URL GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9Nekv8JmFKBIXbgo3_iCd6u7qnzKLYIzRwTEzJiMDZvWq3queZ1fXK9-rn55e6OCAZNmCiHH15vRMRmMQ3bkRpEcQCQip3SwyG5cuBclSqtPQeqHuveeeKjj33Pp0PzslLjJ6svGOHIsoohfadcd-cUvETBbavrZpN5y6c9HeEnHHvWiPqqTyVxstt-68ZL_Jg4G80HQajtNwGvZVoXgoRxfmLERyz2vUPafuNuuNtouR-i_WmQVNLbD8lDwNwcon_whvQgQzxMPvr3A9SGXyyhvDLKKpVMjZ0XvxIJZFjOGyDZWFMD5avA2pS0K-XIGMjxYbQOYH1QbwRUlWzj-EHx8tZMLPDx8r9SPwGD47hyKfgUczCDpDIPcg2AMCBAzX1hEP71yTqqA7j1lasSWp_f0XRFGS2sNnEA-_uxyJkX1DRlkqZKwxCg3EaAbRnyHJjpGOVyCKYwTpJxDsd-I8ew7x8O5bMhcDO-dqAMHM3AMRzhDxCai2kFWPsJCFFrLEwpCd2K7Tc4MGbXVCjwVdx6Wuy7jveL2m41Av6CILKoETpMkEQTRBoHaRqF0MxGclsf5_Hir7GXrbQDMLOi2J9e4ucmZQcIJCExSUoBAERUpQ5OaQRbqpzR0W6cxvLGpzUVtmKtP-Pj2UaZ_HBFRNoJg5EMmHeg9BemY6DjWbyipRPzVT6jOzn5ySpyoTrY9nGQb8xA6p1-11PRaEPafbcTzac0K_R1uszducd0NoYSD0ytyVsSjJla0fkYiSnKUH8OkxdHSMQJwHzRqghQHdNhjHBkwaJGkN6Y61H52S5-anWxMfgQf3ySIQKINEGXwgfiHoR7em12VBDq7LQpMf1pNUDMWYVme9kdKUn737Nt8ppGKrV_Tkm9eCiqjae5tcp2s0ZiLua_LtZcEYV1elCjj5aVVvcX8j09uXMxVnydrG61dXh4niWgsZz0DFg_VHCERJ_vfo-fkP-_IXmxBqBpUZDLOlUiFnCJJd6GQ505JARUvsJ2dQZGaqmv5yGAmCiC8x9Q30v7C_7KeKVl9TYfb1LfRVDTTdQzw0yJVBHhnQaAKdPTFNE3X_0m-3q_gKflSb-pGqHfiRij4vyftfXyrJzdsrc7tLstb7E1qc2O2m3-r0eh0edljYYq1mi3lth3su9Tqu57aR6nJ79dcX_gkAAP__zUd5caEEAAA=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC_1RSTYgcVRd9Nekv8JmFKBIXbgo3_iCd6u7qnzKLYIzRwTEzJiMDZvWq3queZ1fXK9-rn55e6OCAZNmCiHH15vRMRmMQ3bkRpEcQCQip3SwyG5cuBclSqtPQeqHuveeeKjj33Pp0PzslLjJ6svGOHIsoohfadcd-cUvETBbavrZpN5y6c9HeEnHHvWiPqqTyVxstt-68ZL_Jg4G80HQajtNwGvZVoXgoRxfmLERyz2vUPafuNuuNtouR-i_WmQVNLbD8lDwNwcon_whvQgQzxMPvr3A9SGXyyhvDLKKpVMjZ0XvxIJZFjOGyDZWFMD5avA2pS0K-XIGMjxYbQOYH1QbwRUlWzj-EHx8tZMLPDx8r9SPwGD47hyKfgUczCDpDIPcg2AMCBAzX1hEP71yTqqA7j1lasSWp_f0XRFGS2sNnEA-_uxyJkX1DRlkqZKwxCg3EaAbRnyHJjpGOVyCKYwTpJxDsd-I8ew7x8O5bMhcDO-dqAMHM3AMRzhDxCai2kFWPsJCFFrLEwpCd2K7Tc4MGbXVCjwVdx6Wuy7jveL2m41Av6CILKoETpMkEQTRBoHaRqF0MxGclsf5_Hir7GXrbQDMLOi2J9e4ucmZQcIJCExSUoBAERUpQ5OaQRbqpzR0W6cxvLGpzUVtmKtP-Pj2UaZ_HBFRNoJg5EMmHeg9BemY6DjWbyipRPzVT6jOzn5ySpyoTrY9nGQb8xA6p1-11PRaEPafbcTzac0K_R1uszducd0NoYSD0ytyVsSjJla0fkYiSnKUH8OkxdHSMQJwHzRqghQHdNhjHBkwaJGkN6Y61H52S5-anWxMfgQf3ySIQKINEGXwgfiHoR7em12VBDq7LQpMf1pNUDMWYVme9kdKUn737Nt8ppGKrV_Tkm9eCiqjae5tcp2s0ZiLua_LtZcEYV1elCjj5aVVvcX8j09uXMxVnydrG61dXh4niWgsZz0DFg_VHCERJ_vfo-fkP-_IXmxBqBpUZDLOlUiFnCJJd6GQ505JARUvsJ2dQZGaqmv5yGAmCiC8x9Q30v7C_7KeKVl9TYfb1LfRVDTTdQzw0yJVBHhnQaAKdPTFNE3X_0m-3q_gKflSb-pGqHfiRij4vyftfXyrJzdsrc7tLstb7E1qc2O2m3-r0eh0edljYYq1mi3lth3su9Tqu57aR6nJ79dcX_gkAAP__zUd5caEEAAA= HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl25150069=1; nlecfa97879dcf807609a80fb8a3d5e5ee7f=[5941311,6002946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 11 Jun 2025 18:12:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c987ac6c5abdec2fc835baa951b810ed
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://acceptable.a-ads.com/2394350
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48532, version 1.0
Hash 225835e6e0496c54dc2aca9f3d533892
942ef5298bbe74bfe44e445def5f2bfc94027fa8
acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://acceptable.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:39:16 GMT
expires: Wed, 10 Jun 2026 02:39:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 142420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ep2.adtrafficquality.google/sodar/sodar2.js
200 OK 20 kB URL GET ep2.adtrafficquality.google/sodar/sodar2.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectadtrafficquality.google
Fingerprint03:0D:65:6B:86:BE:3E:3C:4F:30:92:DE:A3:9E:24:2C:B8:77:95:7E
ValidityMon, 12 May 2025 08:45:54 GMT - Mon, 04 Aug 2025 08:45:53 GMT
File type JavaScript source, ASCII text, with very long lines (1398)
Hash a8fe3ea2f81e289e6b14222e898086c5
0e9a1227955675736e02c596906bee72bc33d7d6
a7f65c0446b6cac3175458f6388304d0c23e70d11fa0db20920a619f1bc18623
GET /sodar/sodar2.js HTTP/1.1
Host: ep2.adtrafficquality.google
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 7188
date: Wed, 11 Jun 2025 18:12:59 GMT
expires: Wed, 11 Jun 2025 18:12:59 GMT
cache-control: private, max-age=3000
etag: "1747411493688989"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET writingfreedomdecember.com/ntv.json?key=fa97879dcf807609a80fb8a3d5e5ee7f&vstc=4&rb=
200 OK 16 kB URL GET writingfreedomdecember.com/ntv.json?key=fa97879dcf807609a80fb8a3d5e5ee7f&vstc=4&rb=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash 8d5c480d65eb0021add2575d7383f2ee
9dbe6e68107d97614ac99d1d41f2e72727167d11
a8a5d09160d9fa3400bc26f27757f45e61f0911124940157bd7ca79a142e2f04
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ntv.json?key=fa97879dcf807609a80fb8a3d5e5ee7f&vstc=4&rb= HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 11 Jun 2025 18:12:55 GMT
Content-Type: application/json
Content-Length: 16296
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://sofiahalbofanimeworld.blogspot.com
Access-Control-Allow-Origin: https://sofiahalbofanimeworld.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: pdhtkv=true; expires=Thu, 12 Jun 2025 18:12:55 GMT; path=/; secure; SameSite=None
uncs=1; expires=Thu, 12 Jun 2025 18:12:55 GMT; path=/; secure; SameSite=None
pdhtkv49=true; expires=Thu, 12 Jun 2025 18:12:55 GMT; path=/; secure; SameSite=None
uncs49=1; expires=Thu, 12 Jun 2025 18:12:55 GMT; path=/; secure; SameSite=None
u_pl25150069=1; expires=Thu, 12 Jun 2025 18:12:55 GMT; path=/; secure; SameSite=None
nlecfa97879dcf807609a80fb8a3d5e5ee7f=[5941311,6002946]; expires=Wed, 11 Jun 2025 18:13:00 GMT; path=/; secure; SameSite=None
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4006f9c23d7b9c4ff3c280eb2e0132e3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/styles__ltr.css
200 OK 78 kB URL GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/styles__ltr.css
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ca1ece8856297c9cc80eca9a0d980eec
99fd8c066cc0711c5f9f42b749abd22c8da9071e
97b37c30d82f5128e601f88b8d8b87838dc645dd006bb0d09a42859ee1bed8c6
GET /recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 41949
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jun 2025 08:52:19 GMT
expires: Thu, 11 Jun 2026 08:52:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 May 2025 16:43:37 GMT
content-type: text/css
vary: Accept-Encoding
age: 33639
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
200 OK 569 kB URL GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type JavaScript source, ASCII text, with very long lines (552)
Size 569 kB (568942 bytes)
Hash 77533ec9585d46c3d6f0190d5150f169
21a5a0c7c432d43242dc38cd78ecae56cecc8812
e26714bbd1908c0b0028789de4bc5a01105b8f2756f3e4eac5f885959c4ab444
GET /recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 224457
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jun 2025 08:55:32 GMT
expires: Thu, 11 Jun 2026 08:55:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 May 2025 16:43:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 33446
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/static/v1/widgets/2838643729-widgets.js
200 OK 147 kB URL GET www.blogger.com/static/v1/widgets/2838643729-widgets.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (4176)
Size 147 kB (147088 bytes)
Hash 1094b84814254412994ed9e3528bac5e
56926c7a851b2981a2982874d798163bad2579e8
466352abefe787a74dd41443c6dc4ad94c63565dfdda9904d510c32e1e505139
GET /static/v1/widgets/2838643729-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51935
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jun 2025 02:04:59 GMT
expires: Sat, 06 Jun 2026 02:04:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 05 Jun 2025 23:55:46 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 490075
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=hkrsAe
200 OK 627 B URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=hkrsAe
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (380)
Hash baf1aa96275faac11c8c47336ce86f16
44100a6e382bad77ce650af9f01e4593f0dd6471
30c4749525c6c9fa13acef9c47be6ef89b51c101c5ec0a7e057d46e8bcf59166
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=hkrsAe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:04 GMT
expires: Tue, 09 Jun 2026 03:09:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227032
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
200 OK 10 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
IP
Requested by https://ad.a-ads.com/2370867?size=300x250
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
Hash eea55531c78093c1f80ece9ef6485401
406db5cf6ad96dd0b4f7b40dab664c24605e63be
b984ffbaf076dc36a9c279697c9eed1539c031769c94aba15ea9b0c4782ddb1a
GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jun 2025 18:12:57 GMT
date: Wed, 11 Jun 2025 18:12:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gstatic.com/recaptcha/api2/logo_48.png
200 OK 2.2 kB URL GET www.gstatic.com/recaptcha/api2/logo_48.png
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 10:27:36 GMT
expires: Thu, 12 Jun 2025 10:27:36 GMT
cache-control: public, max-age=604800
age: 546322
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET static1.freebitco.in/banners/728x90-3.png
200 OK 44 kB URL GET static1.freebitco.in/banners/728x90-3.png
IP
Requested by https://traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
Certificate IssuerLet's Encrypt
Subjectfreebitco.in
Fingerprint5C:03:53:62:94:09:64:BD:B9:B9:17:26:4D:D7:4C:38:F7:0E:60:8B
ValidityWed, 23 Apr 2025 19:32:53 GMT - Tue, 22 Jul 2025 19:32:52 GMT
File type RIFF (little-endian) data, Web/P image
Hash 2b3356c4e6170940ce2bf538c7b55a26
782268c3c692056f005a041b2f95a6675f276799
b83b40d396539bb0eea0cd3fc9d496c4847a6242b95e11748d0b4eeb24745064
GET /banners/728x90-3.png HTTP/1.1
Host: static1.freebitco.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://traffic2bitcoin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/webp
content-length: 43968
cf-ray: 94e3145bbe75569f-OSL
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=60358
content-disposition: inline; filename="728x90-3.webp"
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept
last-modified: Tue, 10 Jun 2025 06:33:08 GMT
cf-cache-status: HIT
age: 57485
accept-ranges: bytes
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:36:02 GMT
expires: Wed, 10 Jun 2026 02:36:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 142616
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST rt58.surfe.pro/net/teaser?sid=413169&w=580&seed=8959794495236927&doc_ref=&href=aHR0cHM6Ly9zb2ZpYWhhbGJvZmFuaW1ld29ybGQuYmxvZ3Nwb3QuY29tLzIwMjEvMDcvYmxvZy1wb3N0Lmh0bWw=
200 OK 20 kB URL POST rt58.surfe.pro/net/teaser?sid=413169&w=580&seed=8959794495236927&doc_ref=&href=aHR0cHM6Ly9zb2ZpYWhhbGJvZmFuaW1ld29ybGQuYmxvZ3Nwb3QuY29tLzIwMjEvMDcvYmxvZy1wb3N0Lmh0bWw=
IP
ASN #24940 Hetzner Online GmbH
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subject*.surfe.pro
Fingerprint94:1E:6D:AA:5A:3F:F7:85:44:3A:80:9F:FB:D9:D5:80:96:DB:02:58
ValidityThu, 17 Apr 2025 11:43:08 GMT - Wed, 16 Jul 2025 11:43:07 GMT
File type HTML document, ASCII text, with very long lines (623), with CRLF, LF line terminators
Hash 939e7d6112177dff39bd52bd488af5b3
1003345e6a5e534ccad1ee5ba2cb568d02bd49b1
fba1483ee9739e08687437f929e7f10448cbbb7f0d7d65cbeb0fc9ac7b7767c7
POST /net/teaser?sid=413169&w=580&seed=8959794495236927&doc_ref=&href=aHR0cHM6Ly9zb2ZpYWhhbGJvZmFuaW1ld29ybGQuYmxvZ3Nwb3QuY29tLzIwMjEvMDcvYmxvZy1wb3N0Lmh0bWw= HTTP/1.1
Host: rt58.surfe.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 0
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 18:12:55 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.3.29
speed-02: preload - 0.0034201145172119
speed-03: site-inited-view - 0.0072340965270996
speed-04: tpl-wcnt 1 - 0.0072579383850098
speed-05: main-tid 4 - 0.0072638988494873
speed-06: b-found at 23 - 0.013583898544312
speed-07: PH-all 750 checked - 0.013696908950806
speed-08: main-t-old 1 - 0.013706922531128
remote-addr: 91.90.42.154
the-rule: net-teaser
access-control-allow-origin: https://sofiahalbofanimeworld.blogspot.com
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.blogger.com/img/logo-16.png
200 OK 279 B URL GET www.blogger.com/img/logo-16.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 5ffecab6c722bb0adc3fce8d83b27993
0e59b05d3da526e82bb4f5d47c5d94e2a318dafb
cca664ca16fde285160e80eae6ba4501c27b1dd1ce09aec1e84caa74b5baff53
GET /img/logo-16.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 279
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 09:57:40 GMT
expires: Thu, 12 Jun 2025 09:57:40 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jun 2025 05:52:26 GMT
content-type: image/png
age: 548114
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
200 OK 10 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
IP
Requested by https://acceptable.a-ads.com/2394350
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint1C:09:46:89:AD:F3:B6:3E:B4:89:F7:49:AC:15:E7:4E:A6:D2:AA:73
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
Hash eea55531c78093c1f80ece9ef6485401
406db5cf6ad96dd0b4f7b40dab664c24605e63be
b984ffbaf076dc36a9c279697c9eed1539c031769c94aba15ea9b0c4782ddb1a
GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://acceptable.a-ads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 11 Jun 2025 18:12:56 GMT
date: Wed, 11 Jun 2025 18:12:56 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
200 OK 3.4 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (956)
Hash c9ac98fb364e7cf36fc3d508f27fb511
e571aec1b0d7647361f4be645eb6fb818fcb28c5
2386a15715c57f056f148358e44268dbb237cef49be78932d36b56db104357c4
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,P6sQOc,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1583
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:04 GMT
expires: Tue, 09 Jun 2026 03:09:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227033
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Requested by https://ad.a-ads.com/2370867?size=300x250
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 48532, version 1.0
Hash 225835e6e0496c54dc2aca9f3d533892
942ef5298bbe74bfe44e445def5f2bfc94027fa8
acc60d454f46f2ba233c516aa3299aa60e1f49ffd0f06b8392a7c772a5694087
GET /s/inter/v19/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ad.a-ads.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:39:16 GMT
expires: Wed, 10 Jun 2026 02:39:16 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 18:51:44 GMT
content-type: font/woff2
age: 142422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/static/v1/widgets/573632073-css_bundle_v2.css
200 OK 36 kB URL GET www.blogger.com/static/v1/widgets/573632073-css_bundle_v2.css
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type ASCII text, with very long lines (36442)
Hash a05e0b6b371f3ed481c6d92e2d90a7bb
36af46666da7ca0686b41e3da1004890db2101f5
e7b6395edbcbff92842574c158600f49b04fecdd86dc8f0a6b4817b79d55de25
GET /static/v1/widgets/573632073-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7877
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 02:16:19 GMT
expires: Tue, 09 Jun 2026 02:16:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 09 Jun 2025 00:50:16 GMT
content-type: text/css
vary: Accept-Encoding
age: 230195
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET apis.google.com/js/platform.js
200 OK 64 kB URL GET apis.google.com/js/platform.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.apis.google.com
Fingerprint1E:DF:B5:E3:AF:0E:EC:EA:40:7C:7A:6B:A1:D6:8D:94:43:47:D7:67
ValidityMon, 12 May 2025 08:44:50 GMT - Mon, 04 Aug 2025 08:44:49 GMT
File type JavaScript source, ASCII text, with very long lines (1863)
Hash f8e84bec838a8817e53b9456ac38e7b0
0ab03eb28fc64fde1b748e21df2091ae4db70594
c291c8dc57e9dc0875e61025b84b13b3becdad321e4b35fed9c716357a18c639
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 24166
date: Wed, 11 Jun 2025 18:12:54 GMT
expires: Wed, 11 Jun 2025 18:12:54 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "663060b026349ad6"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
200 OK 2.5 kB URL GET ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwww.ad2bitcoin.com.traffic2bitcoin.com
Fingerprint31:44:7E:F3:60:17:57:E2:AC:2B:DF:74:42:A9:0A:18:8A:09:73:4F
ValidityTue, 22 Apr 2025 00:58:38 GMT - Mon, 21 Jul 2025 00:58:37 GMT
File type JavaScript source, ASCII text, with very long lines (1162)
Hash e1bce27d5b3ec7828accacd933bfdc6a
dcf8b94035cd5c79c082b01450b20857ce31c0c6
9e7d7e0c41fcfe395abcd54997a51f5dafa0368e6458b244803616fcfd1c1c27
GET /ad.php?ref=sofiahalbof&width=300 HTTP/1.1
Host: ad2bitcoin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 11 Jun 2025 18:12:55 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1575
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/am=AAADWwAQ/d=1/excm=_b,_tp,navbarview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0YJjoz2TuOANjTFYVX6FiyC4_G-w/m=_b,_tp
200 OK 196 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/am=AAADWwAQ/d=1/excm=_b,_tp,navbarview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0YJjoz2TuOANjTFYVX6FiyC4_G-w/m=_b,_tp
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (569)
Size 196 kB (196362 bytes)
Hash ed5a11ba67ae8eb209f3595467e9da5e
2ea1966ca3bc7ce1cb5cfa7f9afc70d34409b772
aaf0ba19bcac42df10cf26d48b905dbb20e8ca75fb61e1798edb51b41d4cf1c0
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/am=AAADWwAQ/d=1/excm=_b,_tp,navbarview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0YJjoz2TuOANjTFYVX6FiyC4_G-w/m=_b,_tp HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 69169
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:03 GMT
expires: Tue, 09 Jun 2026 03:09:03 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Sat, 07 Jun 2025 09:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227033
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/img/blogger_logo_round_35.png
200 OK 2.5 kB URL GET www.blogger.com/img/blogger_logo_round_35.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 05:19:37 GMT
expires: Thu, 12 Jun 2025 05:19:37 GMT
cache-control: public, max-age=604800
last-modified: Wed, 04 Jun 2025 22:10:46 GMT
content-type: image/png
age: 564797
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/img/share_buttons_20_3.png
200 OK 5.1 kB URL GET www.blogger.com/img/share_buttons_20_3.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 120 x 60, 8-bit/color RGBA, non-interlaced
Hash ad9999106d5f550920b586e8e1704e5a
93fd02c51166402a41f96509cd0ca3fb917877dd
3829a5b2ade7cfc416c80b8f3df71e49e68672875f025d525223978f5cee3fd3
GET /img/share_buttons_20_3.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.blogger.com/static/v1/widgets/573632073-css_bundle_v2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 5080
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 17:36:31 GMT
expires: Thu, 12 Jun 2025 17:36:31 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jun 2025 00:54:43 GMT
content-type: image/png
age: 520583
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
200 OK 62 kB URL GET www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (41313)
Hash d8722630402638dc99f74b3bcf4928f8
6d7b056f1fc14a2e886f1af19f1745ab913b9f01
1f1bf853b148bf99e36ce377c4fbeaabba42820febb326317abc911c591a6c47
GET /comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 18:12:54 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport, script-src 'nonce-VPsKjK8LDtc3cS0XWDGVIw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/ https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: same-site
reporting-endpoints: default="/_/BloggerCommentUi/web-reports?context=eJzjCtHikmLw1pBiqHXfyVR6ZSeT06ubTDK9t5geT7nF1HrzHOt0IDZUuMTqDMQSIldYpYG4SOIKawsQf6q6wSpSfYM1if0mawkQr9l4i3UrEAvxcCzrW36ITeDG4eZdzEpKSfmF8Uk5-enpqUWlmcWpRWWpRfFGBkamBmYGlnoGBvEFBgCipDKh"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=524=B3H6gZQJSG_IVNgIk5C9_CZpakild2O_zNSauOKtkSBKD4IPlWPLrTQQHGMY0ZTHn_G3XpvZAuH2Ey8pexqQVqZgMLQN8a4uYyeJXiC11Alzh7Ngln08focfjCWr0YF1h2NPlkp-7aAIQl9YPVsABKcCY8rSXLd8_mfmxhLhvCUO5KfaG9Vv5aNKjZM9hUOfWzcCt26nqQwnp8pDVH79Zy05wnI; expires=Thu, 11-Dec-2025 18:12:54 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/am=BgAYMAMAAg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0ljJIzYfgKZ1dNx10gUvzc75GNsQ/m=_b,_tp
200 OK 206 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/am=BgAYMAMAAg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0ljJIzYfgKZ1dNx10gUvzc75GNsQ/m=_b,_tp
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (571)
Size 206 kB (205532 bytes)
Hash f1c1e958aef12e3c3318fdeb50985475
26e5dca9aee51e0c36d1a4d4256160a0ee081d58
bdcab0d14895769a581659afbe20459fab01bc82578ba12bd8acaac2522fb033
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/am=BgAYMAMAAg/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP0ljJIzYfgKZ1dNx10gUvzc75GNsQ/m=_b,_tp HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 72270
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:50 GMT
expires: Tue, 09 Jun 2026 03:05:50 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Sat, 07 Jun 2025 09:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 10 Jun 2025 02:51:46 GMT
expires: Wed, 10 Jun 2026 02:51:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 141670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc
200 OK 1.3 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (664)
Hash b0dea23c96a9f0511e03a4a12d0f899a
65f304f86f84f1a0deb2013539f35907832503b0
5e0cda42f311002d907ec73d90620de493146fbdec6f19db9e0938f6a80dab92
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,p3hmRc,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 692
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:04 GMT
expires: Tue, 09 Jun 2026 03:09:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227033
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
200 OK 2.3 kB URL GET traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjecttraffic2bitcoin.com
FingerprintED:85:A5:CA:DD:50:E6:78:AE:AD:AD:87:51:F3:A4:8C:1D:E2:FD:85
ValidityFri, 23 May 2025 09:58:56 GMT - Thu, 21 Aug 2025 09:58:55 GMT
File type HTML document, ASCII text
Hash 38d95c189e14ea32b5abfa028ea1ff9f
96730ec6bb2b561e9eaccb4f8aa97d72d605d1cf
635cf8892b7c4b238df1cf221a1c772d0913662aeeebf960aebc1bb6583fc2bb
GET /ptp.php?ref=sofiahalbof&sitetype=1 HTTP/1.1
Host: traffic2bitcoin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 11 Jun 2025 18:12:55 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 955
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET resources.blogblog.com/img/anon36.png
200 OK 1.7 kB URL GET resources.blogblog.com/img/anon36.png
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 36 x 36, 8-bit/color RGB, non-interlaced
Hash 106b75877485647b4b5618523f541732
c19e26c01d2972a4c895c3688c735158785620c7
19a794aab8d93c3cafd1efa4ae19579369f92ed5f1bb114d05aa0d7c7d1b3c22
GET /img/anon36.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 1654
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 05:49:36 GMT
expires: Thu, 12 Jun 2025 05:49:36 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jun 2025 01:53:33 GMT
content-type: image/png
age: 562999
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET i114.fastpic.org/big/2021/0119/cf/151c46b9f5b88e5edffd1f3f31eb66cf.gif
200 OK 198 kB URL GET i114.fastpic.org/big/2021/0119/cf/151c46b9f5b88e5edffd1f3f31eb66cf.gif
IP
Requested by https://ad2bitcoin.com/ad.php?ref=sofiahalbof&width=300
Certificate IssuerLet's Encrypt
Subjectfastpic.org
FingerprintD9:09:9B:A1:16:7F:B0:EF:79:DA:87:D8:3D:2C:4A:06:2B:E5:C5:C7
ValidityThu, 08 May 2025 20:46:19 GMT - Wed, 06 Aug 2025 20:46:18 GMT
File type GIF image data, version 89a, 300 x 250
Size 198 kB (198415 bytes)
Hash a07482dca671d190f0af75b42549b044
2b216d05c4323a1f6b5ee90737fc262775c4c074
ff46619042d8b6a1f29179b1dbce3391159a018539d568f4c9c1e66166e448fb
GET /big/2021/0119/cf/151c46b9f5b88e5edffd1f3f31eb66cf.gif HTTP/1.1
Host: i114.fastpic.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ad2bitcoin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/gif
content-length: 198415
last-modified: Tue, 19 Jan 2021 09:10:21 GMT
etag: "6006a1fd-3070f"
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-origin: https://fastpic.org
accept-ranges: bytes
X-Firefox-Spdy: h2
GET ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20250610&st=env
200 OK 17 kB URL GET ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20250610&st=env
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectadtrafficquality.google
Fingerprint03:0D:65:6B:86:BE:3E:3C:4F:30:92:DE:A3:9E:24:2C:B8:77:95:7E
ValidityMon, 12 May 2025 08:45:54 GMT - Mon, 04 Aug 2025 08:45:53 GMT
Hash 7a7e555751dd474592f4ca22f7910e73
86d8869daee5034226b16860c478dfaabad0cca6
f3c5650c422a925a3c0aa7a359cab10eddc424e6fc9cba8b3c8c10bee3321614
GET /getconfig/sodar?sv=200&tid=gda&tv=r20250610&st=env HTTP/1.1
Host: ep1.adtrafficquality.google
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Wed, 11 Jun 2025 18:12:59 GMT
server: cafe
content-length: 12963
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/si/f6/22/90/f6229071ba25cabd1cff5bf4afbd8091/1749574935.png
200 OK 147 kB URL GET cdn.storageimagedisplay.com/si/f6/22/90/f6229071ba25cabd1cff5bf4afbd8091/1749574935.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced
Size 147 kB (147183 bytes)
Hash eff0c894d35365772bb086d971fc8178
0bfff655db00c854255e5d82d9e3c02dd2bdfc7d
7fd4c66c29d0b7653dbd04da78c3c6a97eb71086caccb41f5550e0ceeda07ee2
GET /si/f6/22/90/f6229071ba25cabd1cff5bf4afbd8091/1749574935.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/png
content-length: 147183
server: nginx/1.21.6
last-modified: Tue, 10 Jun 2025 17:02:19 GMT
etag: "6848651b-23eef"
expires: Fri, 13 Jun 2025 18:12:56 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,lazG7b,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,mdR7q,wmnU7d,xQtZb,JNoxi,MI6k7c,kjKdXe,BVgquf,QIhFr,hKSk3e,hc6Ubd,SpsfSb,Z5uLle,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe
200 OK 387 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,lazG7b,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,mdR7q,wmnU7d,xQtZb,JNoxi,MI6k7c,kjKdXe,BVgquf,QIhFr,hKSk3e,hc6Ubd,SpsfSb,Z5uLle,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (2479)
Size 387 kB (387132 bytes)
Hash fecf05ab5e409652ea7d741193764aba
c0f9edd8a228fdb39263b0e285238f9d69f4fd99
2f443e5ba049156ecd903ff44745e5ce6e1f2256b715d640a4f822252d508a6c
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,lazG7b,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,mdR7q,wmnU7d,xQtZb,JNoxi,MI6k7c,kjKdXe,BVgquf,QIhFr,hKSk3e,hc6Ubd,SpsfSb,Z5uLle,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 134777
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:51 GMT
expires: Tue, 09 Jun 2026 03:05:51 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc
200 OK 1.3 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (664)
Hash d7ab5dd9a759bc726231c787074b1435
316df75cc6736decb762827118831c766df36448
a49208a7013bbf47047d239aae4d0c2f7f71f4a0083fc4b054bc0f0e33772310
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,LvGhrf,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RqjULd,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,p3hmRc,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=P6sQOc HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:51 GMT
expires: Tue, 09 Jun 2026 03:05:51 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET webtrafbit.ru/banner.php?user=186&ident=137&h=d81bdff0182022d130e4f72f07876b84
200 OK 3 B URL GET webtrafbit.ru/banner.php?user=186&ident=137&h=d81bdff0182022d130e4f72f07876b84
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwebtrafbit.ru
FingerprintC8:57:12:98:4D:19:A9:9B:3B:8B:81:C0:D0:25:49:69:5B:70:22:DB
ValidityTue, 06 May 2025 23:47:45 GMT - Mon, 04 Aug 2025 23:47:44 GMT
File type ASCII text, with no line terminators
Hash 7469a286259799e5b37e5db9296f00b3
8fff039853f5c2bbb8a28d056b579c7dcb7d137f
f9171164593756e56fb197327b529a4955590566560dbe62d586bff41be9d297
GET /banner.php?user=186&ident=137&h=d81bdff0182022d130e4f72f07876b84 HTTP/1.1
Host: webtrafbit.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jun 2025 18:13:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Set-Cookie: PHPSESSID=42f126cd33104b0068857dec8740eed6; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Strict-Transport-Security: max-age=31536000;
Content-Encoding: gzip
GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcRRSungyK5iBqiAdB-qaCTHpmen7aCItrTFxck5hEFsypuqt6tpyerraqfyYj6GJAchzBg_FU-81u1sQQ9OZFkFlBZEGwwcMesiAePQqepScDqw_q_dT3Cr73vfpsOzsiLjJ6ePkdORFRRM90Go790oaImSy0ffGa3XQazll7Q8Rd96w9rpzKX2223Ybzsn2BB0N5puU0HafpNO3zQvFQjs8sUIjkvtdseE7DbTWaHRdj9f9aZxY0tcDyI_IMBCuf-jO8DhHMEY--Pcf1MJXJK2-OsoimUiFne-_Fw1gWMUbHaagshPHeshtSl4R8WYOM95YTQOY71QTwRUlqpx_Cj_eWNOHnu4-Y-hF4DJ-dRJHPwaM5BJ0jkDch2G8ECBguXkI8unNRqoLeeITSCi1J_Z-_IYqS1B-eQjx6sBqJsX1VRlkqZKwxDg3EeA4xmCPJ9pFOahDFPoL0Uwj2K3GeO4l4dO8tmYuhnXM1hGBmoYEI54j4FFRbyKojLGShhSyxMGKHtuv03aBJ293QY0HPcanrMu47Xr_lONQLesiCiuAUaTJFEE0RqC0kagtD8XlJrCdOQ2U_Qm8aaGZBpyWx3t1CzgwKTlBogoISFIKgSAmK3OyySLe0ucMinfnNZWwtY9vMZDrYprsyHfCYgKopFDM7IvlQ30SQnphNQs1msnLUT82M-sxsJ0fk6UpE65N5hiE_tEPq9fo9jwVh3-l1HY_2ndDv0zbr8A7nvRBaGAhdW6gyESU5t_E9ElGSx-gOfLoPHe0jEKdBsyZoYUA3DSaxAZMGSVpHesPajo7I84vVXb9dAw8OVu7eruwrBMogUQYfiJ8IBtGt2RVZkJ0rstDku0tJKkZiQqu1Xk1pyk_ce5vfKKRia-f09O7rQQVU6f1rXKfrNGYiHmjyzapgjKvzUgWc_LCmN7h_OdObq5mKs2T98hvn10aJ4loLGc9BRUkef20VgSjJsy8cLb5s-_c6hJpDZQaj7IAsDULuI0i2oJODlXTyx4UHpz6ClgQqOu7xkxqKzMxUyz--jARBxI9r6hvo_9T-cT5TtHpNhdnWtzBQddD0JuKRQa4M8siARlPo7MlZmqiDlV-WMvpRfeZHqr7jRyr6oiTvf72y0Lok6-Ljkqz3_4IWh3an5be7_X6Xh10Wtlm71WZex-GeS72u67kdpLrcXPv5xX8DAAD__8hU0cSjBAAA
200 OK 0 B URL GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RSTYgcRRSungyK5iBqiAdB-qaCTHpmen7aCItrTFxck5hEFsypuqt6tpyerraqfyYj6GJAchzBg_FU-81u1sQQ9OZFkFlBZEGwwcMesiAePQqepScDqw_q_dT3Cr73vfpsOzsiLjJ6ePkdORFRRM90Go790oaImSy0ffGa3XQazll7Q8Rd96w9rpzKX2223Ybzsn2BB0N5puU0HafpNO3zQvFQjs8sUIjkvtdseE7DbTWaHRdj9f9aZxY0tcDyI_IMBCuf-jO8DhHMEY--Pcf1MJXJK2-OsoimUiFne-_Fw1gWMUbHaagshPHeshtSl4R8WYOM95YTQOY71QTwRUlqpx_Cj_eWNOHnu4-Y-hF4DJ-dRJHPwaM5BJ0jkDch2G8ECBguXkI8unNRqoLeeITSCi1J_Z-_IYqS1B-eQjx6sBqJsX1VRlkqZKwxDg3EeA4xmCPJ9pFOahDFPoL0Uwj2K3GeO4l4dO8tmYuhnXM1hGBmoYEI54j4FFRbyKojLGShhSyxMGKHtuv03aBJ293QY0HPcanrMu47Xr_lONQLesiCiuAUaTJFEE0RqC0kagtD8XlJrCdOQ2U_Qm8aaGZBpyWx3t1CzgwKTlBogoISFIKgSAmK3OyySLe0ucMinfnNZWwtY9vMZDrYprsyHfCYgKopFDM7IvlQ30SQnphNQs1msnLUT82M-sxsJ0fk6UpE65N5hiE_tEPq9fo9jwVh3-l1HY_2ndDv0zbr8A7nvRBaGAhdW6gyESU5t_E9ElGSx-gOfLoPHe0jEKdBsyZoYUA3DSaxAZMGSVpHesPajo7I84vVXb9dAw8OVu7eruwrBMogUQYfiJ8IBtGt2RVZkJ0rstDku0tJKkZiQqu1Xk1pyk_ce5vfKKRia-f09O7rQQVU6f1rXKfrNGYiHmjyzapgjKvzUgWc_LCmN7h_OdObq5mKs2T98hvn10aJ4loLGc9BRUkef20VgSjJsy8cLb5s-_c6hJpDZQaj7IAsDULuI0i2oJODlXTyx4UHpz6ClgQqOu7xkxqKzMxUyz--jARBxI9r6hvo_9T-cT5TtHpNhdnWtzBQddD0JuKRQa4M8siARlPo7MlZmqiDlV-WMvpRfeZHqr7jRyr6oiTvf72y0Lok6-Ljkqz3_4IWh3an5be7_X6Xh10Wtlm71WZex-GeS72u67kdpLrcXPv5xX8DAAD__8hU0cSjBAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC_1RSTYgcRRSungyK5iBqiAdB-qaCTHpmen7aCItrTFxck5hEFsypuqt6tpyerraqfyYj6GJAchzBg_FU-81u1sQQ9OZFkFlBZEGwwcMesiAePQqepScDqw_q_dT3Cr73vfpsOzsiLjJ6ePkdORFRRM90Go790oaImSy0ffGa3XQazll7Q8Rd96w9rpzKX2223Ybzsn2BB0N5puU0HafpNO3zQvFQjs8sUIjkvtdseE7DbTWaHRdj9f9aZxY0tcDyI_IMBCuf-jO8DhHMEY--Pcf1MJXJK2-OsoimUiFne-_Fw1gWMUbHaagshPHeshtSl4R8WYOM95YTQOY71QTwRUlqpx_Cj_eWNOHnu4-Y-hF4DJ-dRJHPwaM5BJ0jkDch2G8ECBguXkI8unNRqoLeeITSCi1J_Z-_IYqS1B-eQjx6sBqJsX1VRlkqZKwxDg3EeA4xmCPJ9pFOahDFPoL0Uwj2K3GeO4l4dO8tmYuhnXM1hGBmoYEI54j4FFRbyKojLGShhSyxMGKHtuv03aBJ293QY0HPcanrMu47Xr_lONQLesiCiuAUaTJFEE0RqC0kagtD8XlJrCdOQ2U_Qm8aaGZBpyWx3t1CzgwKTlBogoISFIKgSAmK3OyySLe0ucMinfnNZWwtY9vMZDrYprsyHfCYgKopFDM7IvlQ30SQnphNQs1msnLUT82M-sxsJ0fk6UpE65N5hiE_tEPq9fo9jwVh3-l1HY_2ndDv0zbr8A7nvRBaGAhdW6gyESU5t_E9ElGSx-gOfLoPHe0jEKdBsyZoYUA3DSaxAZMGSVpHesPajo7I84vVXb9dAw8OVu7eruwrBMogUQYfiJ8IBtGt2RVZkJ0rstDku0tJKkZiQqu1Xk1pyk_ce5vfKKRia-f09O7rQQVU6f1rXKfrNGYiHmjyzapgjKvzUgWc_LCmN7h_OdObq5mKs2T98hvn10aJ4loLGc9BRUkef20VgSjJsy8cLb5s-_c6hJpDZQaj7IAsDULuI0i2oJODlXTyx4UHpz6ClgQqOu7xkxqKzMxUyz--jARBxI9r6hvo_9T-cT5TtHpNhdnWtzBQddD0JuKRQa4M8siARlPo7MlZmqiDlV-WMvpRfeZHqr7jRyr6oiTvf72y0Lok6-Ljkqz3_4IWh3an5be7_X6Xh10Wtlm71WZex-GeS72u67kdpLrcXPv5xX8DAAD__8hU0cSjBAAA HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl25150069=1; nlecfa97879dcf807609a80fb8a3d5e5ee7f=[5941311,6002946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 11 Jun 2025 18:12:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a6a08af74b2e967a34335bc7803db98d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET themes.googleusercontent.com/image?id=0BwVBOzw_-hbMMDZjM2Q4YjctMTY2OC00ZGU2LWJjZDYtODVjOGRiOThlMGQ3
200 OK 43 kB URL GET themes.googleusercontent.com/image?id=0BwVBOzw_-hbMMDZjM2Q4YjctMTY2OC00ZGU2LWJjZDYtODVjOGRiOThlMGQ3
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint27:E5:A6:4D:A7:35:A0:F7:7B:EA:CD:2E:47:1A:64:DB:8B:2C:E6:06
ValidityMon, 12 May 2025 08:43:56 GMT - Mon, 04 Aug 2025 08:43:55 GMT
File type PNG image data, 1515 x 971, 8-bit/color RGBA, non-interlaced
Hash 05d2738b4dc90530c7cfab2ec6a780bd
f156f3f4d6b41803bcb8704a01e38623098f09af
919e34ec42b0b8a6f9754b9e33f9faba1c20a79bc151cc03009fc0e2bb17a922
GET /image?id=0BwVBOzw_-hbMMDZjM2Q4YjctMTY2OC00ZGU2LWJjZDYtODVjOGRiOThlMGQ3 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Thu, 12 Jun 2025 18:12:54 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
date: Wed, 11 Jun 2025 18:12:54 GMT
server: fife
content-length: 42869
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET experttrafficcounter.com/stats
200 OK 40 B URL GET experttrafficcounter.com/stats
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerAmazon
Subjectexperttrafficcounter.com
FingerprintCE:93:F6:82:20:C2:20:51:6E:53:85:EC:03:9C:48:F0:13:0B:67:D7
ValidityTue, 29 Apr 2025 00:00:00 GMT - Thu, 28 May 2026 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4c7a6bcfec5d9a64da74a267826aeb75
4b2b9410985f4dd5875b8520924529a167294e11
de1b2cd02e7f97a6d8157a0019962c901d62e8e91cd9f8d82a5a4e006b547b3c
GET /stats HTTP/1.1
Host: experttrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:55 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://sofiahalbofanimeworld.blogspot.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=3b447429-4569-48b8-9cf5-bdb671b59f36:2:1; expires=Sat, 09 Jun 2035 18:12:55 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
200 OK 29 kB URL GET www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type HTML document, ASCII text, with very long lines (7042)
Hash 7677d8894c8e726232c8e3bb67a81363
13dc561607ae9a7a72ef43c1aba5b9b4b57db89d
07341114d6f284b9f78c8a67932ceaa831f911c7979ea736d98a4cb46451d947
GET /navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__ HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 18:12:55 GMT
content-security-policy: frame-ancestors https://sofiahalbofanimeworld.blogspot.com, script-src 'nonce-hdZCtkA4JKOmiaCjYyZvug' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerNavbarUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.google.com/tools/feedback/ https://www.gstatic.com/feedback/js/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.gstatic.com/uservoice/feedback/client/web/live/ https://www.gstatic.com/uservoice/surveys/resources/prod/js/survey/ https://support.google.com/inapp/;report-uri /_/BloggerNavbarUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerNavbarUi/cspreport
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/BloggerNavbarUi/web-reports?context=eJzjCtHikmJw05BiqHXfyVR6ZSeT06ubTDK9t5geT7nF1HrzHOt0IDZUuMTqDMQSIldYpYG4SOIKawsQf6q6wSpSfYM1if0mawkQ79p4i_UwEAtxcyzvW36ITeBB70F-JaWk_ML4pJz89PTUotLM4tSistSieCMDI1MDMwNLPQOD-AIDAGhXMho"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=524=OtlW7e25OjJOJUOqC1v_AgJ7HCjD67_9mb9QKZMwiIl9JpX8SmJ9zqTJykvlTJVpOjBTP8u4xTu_ZJFL7D6ACVjCs34JEl-h8yeYu0Iip7-0BAM76Ix9xfd8-gyVK93dQlT4yq9qZPbmiiHUHH2PJ1cryXR8zEXvHIHDeNodLUo_GPt8lpzrI1qlhrpB2m5O3dUGgV7pBX1Ep4lIuuG12j79FA; expires=Thu, 11-Dec-2025 18:12:55 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cryptocoinsad.com/banner/ads_banner/26808.png
200 OK 96 kB URL GET cryptocoinsad.com/banner/ads_banner/26808.png
IP
Requested by https://traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
Certificate IssuerGoogle Trust Services
Subjectcryptocoinsad.com
FingerprintF9:A5:1E:40:66:44:45:C9:8B:28:21:E9:93:97:EF:57:7E:0C:D4:FC
ValiditySun, 13 Apr 2025 18:23:17 GMT - Sat, 12 Jul 2025 19:21:00 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Hash cd5574f378c32c035a610175f21167a3
8010950ce0d3efe9326de4d3cf7f3694f366a118
114ce79e036b95d2e5554e584a7eae34bb536052f58fb4f384c5cf98096a1874
GET /banner/ads_banner/26808.png HTTP/1.1
Host: cryptocoinsad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://traffic2bitcoin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/png
content-length: 95524
server: cloudflare
last-modified: Thu, 31 Aug 2023 15:30:24 GMT
etag: "64f0b210-17524"
accept-ranges: bytes
age: 3645
cache-control: max-age=10800
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=a51vBmHEzTZpFX7tN0gJADVvQDcTXaQWdT%2FRkcn9ADTYPaUtDOhSiIsdC8fyyVzfapsuSqkADgIXjaYio65oBttjHtY%2B7Y2nJBrSNS6R%2Fg%3D%3D"}]}
cf-ray: 94e3145bb94c569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=_b,_tp/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,WO9ee,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,xQtZb,JNoxi,BVgquf,QIhFr,hc6Ubd,SpsfSb,Z5uLle,BBI74,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe
200 OK 244 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=_b,_tp/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,WO9ee,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,xQtZb,JNoxi,BVgquf,QIhFr,hc6Ubd,SpsfSb,Z5uLle,BBI74,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (2571)
Size 244 kB (244388 bytes)
Hash d8ff4e2d300bcd2636082bb22245ae87
1d141cc88ec461feb8a989bb08a754a6a9963313
73e68725b6c6846a51fed9368ab2809f4068d6674cbbb0ad3a03124994623818
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=_b,_tp/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,aW3pY,GkRiKb,e5qFLc,IZT63,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,ZDZcre,OTA3Ae,ZwDk9d,RyvaUb,WO9ee,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,V3dDOb,XVMNvd,KUM7Z,qTnoBf,lwddkf,gychg,w9hDv,RMhBfe,SdcwHb,pw70Gc,EFQ78c,Ulmmrd,A7fCU,xQtZb,JNoxi,BVgquf,QIhFr,hc6Ubd,SpsfSb,Z5uLle,BBI74,MdUzUe,zbML3c,zr1jrb,Uas9Hd,pjICDe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 85698
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:04 GMT
expires: Tue, 09 Jun 2026 03:09:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227032
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd
200 OK 41 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (2679)
Hash b18849f032460a55d3506c016f8619b6
1e2d9323b9301d1048b00e8ad6d8da0d7ac04e2e
4a3b6d230c3dba4684e5b19ede5e7ba9e90dacad69cbe136f0f6a131ebfd9f6c
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerNavbarUi.en_US.RqiQJBu0uYY.es5.O/ck=boq-blogger.BloggerNavbarUi.b-szsQoxqmg.L.F4.O/am=AAADWwAQ/d=1/exm=A7fCU,BBI74,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,gychg,hc6Ubd,hkrsAe,lsjVmc,lwddkf,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,navbarview/ed=1/wt=2/ujg=1/rs=AEy-KP1orynl425fH0wav-shFuOGunI2vw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 14904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:09:04 GMT
expires: Tue, 09 Jun 2026 03:09:04 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227033
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=237&t=2&li=gda_r20250610&jk=7331139824472038&bg=!KimlKWbNAAYA59AtIOc7ADQBe5WfOKffyEpiu5kNVhXBWwb-aGS2y75_bb-QhHh6fNGnfpLrkXFHDp-1gv3CHbZsRWeCAgAAAg5SAAAAGWgBB34ANXIENyWwsVXh-hufrKY7jt0cBre5Jgk-ROa4Zq4USbD9vOuAvYNIpC0FWs7x0qYSmKL1uvibmQIa3DekwHubOUP10oNiQXsWTDKUeJ3wfrvR1aneEVU9EWnqRnI42_MnEvnTIIJ3M_GUF12_szMbSEDSfSbCDf9M8NwBYHIVlg6IJ5_VobPh89OzrjvfLeESoO4b8akkTWFr7loTIuPEiC1RONu9n0MM5M4nZnoomJ7hdzclZ21eO1qgj1Y13XTmsE2LkNfzjKF4eQ2RUHNvvs2ZNO8g4ondM_BTV4YiXFf-WkBJZ9YT6_SlhRrQWcbZAWnpe-jCc5qAtQsgQNUbEV326K-ROLvVxisvNziHaonfwpFTIgLUr1VKrvxzigK0QqczkD_WbQd0tTJvuWFUSUvXkg_--T5rypKih2MNgMeJSGn7EfYxQF6pO-oPe-izPrlbZ1lGhPepHq0xCCr83VljX0WtnJwMGWx8mZYjFUHJqbcwjP0m_quaufueI2VW_NM04VtW1CKrlqvaSa1zMTRiIr02mdM3KjbFJd6gj6iuEWrdNvdQ2dRbPIPz63LnxzE12brhBBhx90m7x-OBWQysxnEjZjDr51hHOqYwLoGBnEv9D4Rmf-wIRy7gZlKROcwi9bm7gDtoois84dF3OturL6a7OJNSmjzCSVs8Iyigj7DP2qOcUxJiHmuWkBem8rjuuAxAoQgXCuYMdF1EHo5ezQ9pHJA5Q3GNkM7LnMBwuJuaRo4eiS-TsvusecAaAZCOJwgx76IEEnKj0tVsFdjLwQ
204 No Content 0 B URL GET ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=237&t=2&li=gda_r20250610&jk=7331139824472038&bg=!KimlKWbNAAYA59AtIOc7ADQBe5WfOKffyEpiu5kNVhXBWwb-aGS2y75_bb-QhHh6fNGnfpLrkXFHDp-1gv3CHbZsRWeCAgAAAg5SAAAAGWgBB34ANXIENyWwsVXh-hufrKY7jt0cBre5Jgk-ROa4Zq4USbD9vOuAvYNIpC0FWs7x0qYSmKL1uvibmQIa3DekwHubOUP10oNiQXsWTDKUeJ3wfrvR1aneEVU9EWnqRnI42_MnEvnTIIJ3M_GUF12_szMbSEDSfSbCDf9M8NwBYHIVlg6IJ5_VobPh89OzrjvfLeESoO4b8akkTWFr7loTIuPEiC1RONu9n0MM5M4nZnoomJ7hdzclZ21eO1qgj1Y13XTmsE2LkNfzjKF4eQ2RUHNvvs2ZNO8g4ondM_BTV4YiXFf-WkBJZ9YT6_SlhRrQWcbZAWnpe-jCc5qAtQsgQNUbEV326K-ROLvVxisvNziHaonfwpFTIgLUr1VKrvxzigK0QqczkD_WbQd0tTJvuWFUSUvXkg_--T5rypKih2MNgMeJSGn7EfYxQF6pO-oPe-izPrlbZ1lGhPepHq0xCCr83VljX0WtnJwMGWx8mZYjFUHJqbcwjP0m_quaufueI2VW_NM04VtW1CKrlqvaSa1zMTRiIr02mdM3KjbFJd6gj6iuEWrdNvdQ2dRbPIPz63LnxzE12brhBBhx90m7x-OBWQysxnEjZjDr51hHOqYwLoGBnEv9D4Rmf-wIRy7gZlKROcwi9bm7gDtoois84dF3OturL6a7OJNSmjzCSVs8Iyigj7DP2qOcUxJiHmuWkBem8rjuuAxAoQgXCuYMdF1EHo5ezQ9pHJA5Q3GNkM7LnMBwuJuaRo4eiS-TsvusecAaAZCOJwgx76IEEnKj0tVsFdjLwQ
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectadtrafficquality.google
Fingerprint03:0D:65:6B:86:BE:3E:3C:4F:30:92:DE:A3:9E:24:2C:B8:77:95:7E
ValidityMon, 12 May 2025 08:45:54 GMT - Mon, 04 Aug 2025 08:45:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=237&t=2&li=gda_r20250610&jk=7331139824472038&bg=!KimlKWbNAAYA59AtIOc7ADQBe5WfOKffyEpiu5kNVhXBWwb-aGS2y75_bb-QhHh6fNGnfpLrkXFHDp-1gv3CHbZsRWeCAgAAAg5SAAAAGWgBB34ANXIENyWwsVXh-hufrKY7jt0cBre5Jgk-ROa4Zq4USbD9vOuAvYNIpC0FWs7x0qYSmKL1uvibmQIa3DekwHubOUP10oNiQXsWTDKUeJ3wfrvR1aneEVU9EWnqRnI42_MnEvnTIIJ3M_GUF12_szMbSEDSfSbCDf9M8NwBYHIVlg6IJ5_VobPh89OzrjvfLeESoO4b8akkTWFr7loTIuPEiC1RONu9n0MM5M4nZnoomJ7hdzclZ21eO1qgj1Y13XTmsE2LkNfzjKF4eQ2RUHNvvs2ZNO8g4ondM_BTV4YiXFf-WkBJZ9YT6_SlhRrQWcbZAWnpe-jCc5qAtQsgQNUbEV326K-ROLvVxisvNziHaonfwpFTIgLUr1VKrvxzigK0QqczkD_WbQd0tTJvuWFUSUvXkg_--T5rypKih2MNgMeJSGn7EfYxQF6pO-oPe-izPrlbZ1lGhPepHq0xCCr83VljX0WtnJwMGWx8mZYjFUHJqbcwjP0m_quaufueI2VW_NM04VtW1CKrlqvaSa1zMTRiIr02mdM3KjbFJd6gj6iuEWrdNvdQ2dRbPIPz63LnxzE12brhBBhx90m7x-OBWQysxnEjZjDr51hHOqYwLoGBnEv9D4Rmf-wIRy7gZlKROcwi9bm7gDtoois84dF3OturL6a7OJNSmjzCSVs8Iyigj7DP2qOcUxJiHmuWkBem8rjuuAxAoQgXCuYMdF1EHo5ezQ9pHJA5Q3GNkM7LnMBwuJuaRo4eiS-TsvusecAaAZCOJwgx76IEEnKj0tVsFdjLwQ HTTP/1.1
Host: ep1.adtrafficquality.google
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: image/
x-content-type-options: nosniff
date: Wed, 11 Jun 2025 18:13:00 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET resources.blogblog.com/blogblog/data/1kt/ethereal/white-fade.png
200 OK 144 B URL GET resources.blogblog.com/blogblog/data/1kt/ethereal/white-fade.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 1 x 590, 8-bit/color RGBA, non-interlaced
Hash 4ba06844286b94adfc8ad7bc8a8fde94
9e1fa0c37abf7c05300b90f8938dd2458409a35e
909a47a95386ffd0420ff44c0f1278a3259b918b1bc8213afa97ad6a4bb5bb58
GET /blogblog/data/1kt/ethereal/white-fade.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 20:42:44 GMT
expires: Thu, 12 Jun 2025 20:42:44 GMT
cache-control: public, max-age=604800
last-modified: Wed, 04 Jun 2025 21:36:17 GMT
content-type: image/png
age: 509410
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET webtrafbit.ru/banners/7345c36652d4b6a045ff8a76d4404901.gif
200 OK 78 kB URL GET webtrafbit.ru/banners/7345c36652d4b6a045ff8a76d4404901.gif
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwebtrafbit.ru
FingerprintC8:57:12:98:4D:19:A9:9B:3B:8B:81:C0:D0:25:49:69:5B:70:22:DB
ValidityTue, 06 May 2025 23:47:45 GMT - Mon, 04 Aug 2025 23:47:44 GMT
File type GIF image data, version 89a, 480 x 60
Hash 76424f3f6b6dbda93133573756e30fd0
58358d233957be5cf016f36ef2074e59b1151d02
038fed8929589e7fe9e51c6968f1dffc1c4b37b91d8c53bdadb2c09f1d29bde2
GET /banners/7345c36652d4b6a045ff8a76d4404901.gif HTTP/1.1
Host: webtrafbit.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jun 2025 18:12:55 GMT
Content-Type: image/gif
Content-Length: 77677
Last-Modified: Mon, 19 May 2025 15:14:28 GMT
Connection: keep-alive
ETag: "682b4ad4-12f6d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Strict-Transport-Security: max-age=31536000;
Accept-Ranges: bytes
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x
200 OK 203 B URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text
Hash 0212f84f9b3c279098932d83a43b6448
22ef0e934187e4a4bb70bce5a59e7eed3e45e82b
9dffee8e9e10ba5883b18f8f0803e06bcdd3751909cd3a2ad48195a33a4132c9
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 154
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:51 GMT
expires: Tue, 09 Jun 2026 03:05:51 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227225
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET traffic2bitcoin.com/qlt.php?ref=sofiahalbof&keycode=7646&type=
200 OK 0 B URL GET traffic2bitcoin.com/qlt.php?ref=sofiahalbof&keycode=7646&type=
IP
Requested by https://traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
Certificate IssuerLet's Encrypt
Subjecttraffic2bitcoin.com
FingerprintED:85:A5:CA:DD:50:E6:78:AE:AD:AD:87:51:F3:A4:8C:1D:E2:FD:85
ValidityFri, 23 May 2025 09:58:56 GMT - Thu, 21 Aug 2025 09:58:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /qlt.php?ref=sofiahalbof&keycode=7646&type= HTTP/1.1
Host: traffic2bitcoin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 11 Jun 2025 18:12:56 GMT
Server: Apache
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd
200 OK 24 kB URL GET www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type JavaScript source, ASCII text, with very long lines (2679)
Hash 0bd62ce8fc2b442a086b015f4078857c
24b7226dcd9284d941e5d904cccd358a4b22a631
42dca6c191a4cfc53bce56f04328e3b569ea5264c5d49a83d387a28d782bc33a
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.fFMmlToLQlA.es5.O/ck=boq-blogger.BloggerCommentUi.4G1WOp8fRr4.L.F4.O/am=BgAYMAMAAg/d=1/exm=A7fCU,BVgquf,EFQ78c,GkRiKb,IZT63,JNoxi,KUM7Z,LEikZe,MI6k7c,MdUzUe,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,PrPYRd,QIhFr,RMhBfe,RyvaUb,SdcwHb,SpsfSb,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZDZcre,ZwDk9d,_b,_tp,aW3pY,byfTOb,e5qFLc,eD1YLc,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,pjICDe,pw70Gc,pxq3x,qTnoBf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3iSK8A6riMq7nwWYqDk9slV6YUMw/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NJ1rfe:qTnoBf;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;tbg2ob:nMC03e;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=p3hmRc,LvGhrf,RqjULd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 8312
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 03:05:51 GMT
expires: Tue, 09 Jun 2026 03:05:51 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Fri, 06 Jun 2025 23:19:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 227226
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
200 OK 73 kB URL GET www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
File type HTML document, ASCII text, with very long lines (56645)
Hash 69a79277c5c50a32450f9e709cf19841
d315e86d836aa41736417faa41316274d0cf4de2
51c9d037f0ba9e3c2b4161cdc7929aebd6076c693a0a24d3018954caa2d80802
GET /recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye&size=invisible&cb=f3g885cteds3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}, {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 11 Jun 2025 18:12:58 GMT
content-security-policy: script-src 'nonce-05a76asGOIMOwBBUHMF4xQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
200 OK 569 kB URL GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
IP
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=GUGrl5YkSwpBsxsF3eY665Ye
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type JavaScript source, ASCII text, with very long lines (552)
Size 569 kB (568942 bytes)
Hash 77533ec9585d46c3d6f0190d5150f169
21a5a0c7c432d43242dc38cd78ecae56cecc8812
e26714bbd1908c0b0028789de4bc5a01105b8f2756f3e4eac5f885959c4ab444
GET /recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 224457
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jun 2025 08:55:32 GMT
expires: Thu, 11 Jun 2026 08:55:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 May 2025 16:43:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 33446
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET webtrafbit.ru/banner.php?user=186
200 OK 3.7 kB URL GET webtrafbit.ru/banner.php?user=186
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwebtrafbit.ru
FingerprintC8:57:12:98:4D:19:A9:9B:3B:8B:81:C0:D0:25:49:69:5B:70:22:DB
ValidityTue, 06 May 2025 23:47:45 GMT - Mon, 04 Aug 2025 23:47:44 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (3629), with no line terminators
Hash 53ed103021f1512662a9c6ee7a6e6d1a
dde100eefba0180da7db9376b611e805c1cc5687
ec9378a1817cec5374708a867b7fb7648b402ffdd37883bee8b75a4a016a1099
GET /banner.php?user=186 HTTP/1.1
Host: webtrafbit.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 11 Jun 2025 18:13:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Set-Cookie: PHPSESSID=28ce7813fdb5bbfa2f9b38fcdae61563; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000;
GET resources.blogblog.com/img/icon18_edit_allbkg.gif
200 OK 162 B URL GET resources.blogblog.com/img/icon18_edit_allbkg.gif
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type GIF image data, version 89a, 18 x 18
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 18:20:03 GMT
expires: Thu, 12 Jun 2025 18:20:03 GMT
cache-control: public, max-age=604800
last-modified: Thu, 05 Jun 2025 04:55:40 GMT
content-type: image/gif
age: 517971
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RST4gcxReu3gw_-CUHMYR48NI3FWTSM9Pzp80hGGPi4prEJLJgTtVd1bPl9HS1Vf1ndgRdXJAcR_BgPNV-s5vVNQS9eRHCrCCyINgX2UMWxKNHQTxKTwZGH9R773tfFbz3vfpkJzshLjJ6fPMtORZRRC-064794rqImSy0ff2O3XDqzkV7XcQd96I9qpzKX2m03Lrzkn2NBwN5oek0HKfhNOyrQvFQji7MWYjkodeoe07dbdYbbRcj9V-sMwuaWmD5CTkLwcpnfg_vQgQzxMNvrnA9SGXy8uvDLKKpVMjZ_jvxIJZFjOEyDZWFMN5f3IbUJSGfr0DG-4sJIPPdagL4oiQr55_Aj_cXbcLP95526kfgMXx2BkU-A49mEHSGQG5DsF8IEDBcv4F4-OC6VAXdfMrSii1J7a8_IYqS1J6cQzx8dDkSI_u2jLJUyFhjFBqI0QyiP0OSHSIdr0AUhwjSjyHYz8R57gzi4cEbMhcDO-dqAMHMXAMRzhDxCai2kFVHWMhCC1liYciObdfpuUGDtjqhx4Ku41LXZdx3vF7TcagXdJEFVYMTpMkEQTRBoLaQqC0MxKclsf5_Hip7DL1hoJkFnZbEensLOTMoOEGhCQpKUAiCIiUocrPHIt3U5gGLdOY3FrG5iC0zlWl_h-7JtM9jAqomUMzsiuR9vY0gPTUdh5pNZeWon5op9ZnZSU7Is5WI1kezDAN-bIfU6_a6HgvCntPtOB7tOaHfoy3W5m3OuyG0MBB6Za7KWJTkyvp3SERJ_kd34dND6OgQgTgPmjVACwO6YTCODZg0SNIa0k1rJzohz89X9-6Xl8CDo0vp-Ldrj859gEAZJMrgPfEDQT-6N70lC7J7SxaafHsjScVQjGm11tspTfmpgzf5ZiEVW72iJ1-9GlRElT68w3W6RmMm4r4mX18WjHF1VaqAk-9X9Tr3b2Z643Km4ixZu_na1dVhorjWQsYzUFGS048PEIiSnP11e_5lW9f-hlAzqMxgmB2RhUHIQwTJFnSyrGlJoKIl9hMLRWamqukvi5EgiPgSU99A_wv7y3yqaPWaCrOj76GvaqDpNuKhQa4M8siARhPo7PQ0TdTRpZ_uV_YF_Kg29SNV2_UjFX02l7kkd--vlGRNfFiStd4f0OLYbjf9VqfX6_Cww8IWazVbzGs73HOp13E9t41UlxurP77wTwAAAP__s8qAP6MEAAA=
200 OK 0 B URL GET writingfreedomdecember.com/ren.gif?sid=H4sIAAAAAAAC_1RST4gcxReu3gw_-CUHMYR48NI3FWTSM9Pzp80hGGPi4prEJLJgTtVd1bPl9HS1Vf1ndgRdXJAcR_BgPNV-s5vVNQS9eRHCrCCyINgX2UMWxKNHQTxKTwZGH9R773tfFbz3vfpkJzshLjJ6fPMtORZRRC-064794rqImSy0ff2O3XDqzkV7XcQd96I9qpzKX2m03Lrzkn2NBwN5oek0HKfhNOyrQvFQji7MWYjkodeoe07dbdYbbRcj9V-sMwuaWmD5CTkLwcpnfg_vQgQzxMNvrnA9SGXy8uvDLKKpVMjZ_jvxIJZFjOEyDZWFMN5f3IbUJSGfr0DG-4sJIPPdagL4oiQr55_Aj_cXbcLP95526kfgMXx2BkU-A49mEHSGQG5DsF8IEDBcv4F4-OC6VAXdfMrSii1J7a8_IYqS1J6cQzx8dDkSI_u2jLJUyFhjFBqI0QyiP0OSHSIdr0AUhwjSjyHYz8R57gzi4cEbMhcDO-dqAMHMXAMRzhDxCai2kFVHWMhCC1liYciObdfpuUGDtjqhx4Ku41LXZdx3vF7TcagXdJEFVYMTpMkEQTRBoLaQqC0MxKclsf5_Hip7DL1hoJkFnZbEensLOTMoOEGhCQpKUAiCIiUocrPHIt3U5gGLdOY3FrG5iC0zlWl_h-7JtM9jAqomUMzsiuR9vY0gPTUdh5pNZeWon5op9ZnZSU7Is5WI1kezDAN-bIfU6_a6HgvCntPtOB7tOaHfoy3W5m3OuyG0MBB6Za7KWJTkyvp3SERJ_kd34dND6OgQgTgPmjVACwO6YTCODZg0SNIa0k1rJzohz89X9-6Xl8CDo0vp-Ldrj859gEAZJMrgPfEDQT-6N70lC7J7SxaafHsjScVQjGm11tspTfmpgzf5ZiEVW72iJ1-9GlRElT68w3W6RmMm4r4mX18WjHF1VaqAk-9X9Tr3b2Z643Km4ixZu_na1dVhorjWQsYzUFGS048PEIiSnP11e_5lW9f-hlAzqMxgmB2RhUHIQwTJFnSyrGlJoKIl9hMLRWamqukvi5EgiPgSU99A_wv7y3yqaPWaCrOj76GvaqDpNuKhQa4M8siARhPo7PQ0TdTRpZ_uV_YF_Kg29SNV2_UjFX02l7kkd--vlGRNfFiStd4f0OLYbjf9VqfX6_Cww8IWazVbzGs73HOp13E9t41UlxurP77wTwAAAP__s8qAP6MEAAA=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC_1RST4gcxReu3gw_-CUHMYR48NI3FWTSM9Pzp80hGGPi4prEJLJgTtVd1bPl9HS1Vf1ndgRdXJAcR_BgPNV-s5vVNQS9eRHCrCCyINgX2UMWxKNHQTxKTwZGH9R773tfFbz3vfpkJzshLjJ6fPMtORZRRC-064794rqImSy0ff2O3XDqzkV7XcQd96I9qpzKX2m03Lrzkn2NBwN5oek0HKfhNOyrQvFQji7MWYjkodeoe07dbdYbbRcj9V-sMwuaWmD5CTkLwcpnfg_vQgQzxMNvrnA9SGXy8uvDLKKpVMjZ_jvxIJZFjOEyDZWFMN5f3IbUJSGfr0DG-4sJIPPdagL4oiQr55_Aj_cXbcLP95526kfgMXx2BkU-A49mEHSGQG5DsF8IEDBcv4F4-OC6VAXdfMrSii1J7a8_IYqS1J6cQzx8dDkSI_u2jLJUyFhjFBqI0QyiP0OSHSIdr0AUhwjSjyHYz8R57gzi4cEbMhcDO-dqAMHMXAMRzhDxCai2kFVHWMhCC1liYciObdfpuUGDtjqhx4Ku41LXZdx3vF7TcagXdJEFVYMTpMkEQTRBoLaQqC0MxKclsf5_Hip7DL1hoJkFnZbEensLOTMoOEGhCQpKUAiCIiUocrPHIt3U5gGLdOY3FrG5iC0zlWl_h-7JtM9jAqomUMzsiuR9vY0gPTUdh5pNZeWon5op9ZnZSU7Is5WI1kezDAN-bIfU6_a6HgvCntPtOB7tOaHfoy3W5m3OuyG0MBB6Za7KWJTkyvp3SERJ_kd34dND6OgQgTgPmjVACwO6YTCODZg0SNIa0k1rJzohz89X9-6Xl8CDo0vp-Ldrj859gEAZJMrgPfEDQT-6N70lC7J7SxaafHsjScVQjGm11tspTfmpgzf5ZiEVW72iJ1-9GlRElT68w3W6RmMm4r4mX18WjHF1VaqAk-9X9Tr3b2Z643Km4ixZu_na1dVhorjWQsYzUFGS048PEIiSnP11e_5lW9f-hlAzqMxgmB2RhUHIQwTJFnSyrGlJoKIl9hMLRWamqukvi5EgiPgSU99A_wv7y3yqaPWaCrOj76GvaqDpNuKhQa4M8siARhPo7PQ0TdTRpZ_uV_YF_Kg29SNV2_UjFX02l7kkd--vlGRNfFiStd4f0OLYbjf9VqfX6_Cww8IWazVbzGs73HOp13E9t41UlxurP77wTwAAAP__s8qAP6MEAAA= HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl25150069=1; nlecfa97879dcf807609a80fb8a3d5e5ee7f=[5941311,6002946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 11 Jun 2025 18:12:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 046bcaec7633b34a03d3b68930ab76bd
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
200 OK 66 kB URL User Request GET sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
IP
Certificate IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint60:6C:4A:90:50:55:17:7B:EA:21:63:7A:95:AD:B6:F4:3C:5C:F8:91
ValidityMon, 12 May 2025 08:43:42 GMT - Mon, 04 Aug 2025 08:43:41 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (8453)
Hash 670e3658c4fd72bc091b8019a0bf374a
8069f7d79e2d7650ec64e9554c773e6593c1c1ee
cb920932f409a55c1102585e40d135bb30d8b3a4da884e4e01b103c9709cea28
GET /2021/07/blog-post.html HTTP/1.1
Host: sofiahalbofanimeworld.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jun 2025 18:12:53 GMT
date: Wed, 11 Jun 2025 18:12:53 GMT
cache-control: private, max-age=0
last-modified: Wed, 11 Jun 2025 18:11:53 GMT
etag: W/"bf0e19754322bdbcbfd2c000904752bb7bc4608cc5b908501eaa8936c07a7aa9"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 16657
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pl25250568.profitableratecpm.com/fa97879dcf807609a80fb8a3d5e5ee7f/invoke.js
200 OK 26 kB URL GET pl25250568.profitableratecpm.com/fa97879dcf807609a80fb8a3d5e5ee7f/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectprofitableratecpm.com
FingerprintF0:1C:19:8E:0A:66:67:96:FE:65:D1:76:02:CD:A0:DD:D4:3B:88:9E
ValidityFri, 06 Jun 2025 21:52:23 GMT - Thu, 04 Sep 2025 21:52:22 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (25609), with no line terminators
Hash 262f847f33845f2090dd893bec920933
8b489ed7c8aaab64e1df9cee32682798212deade
2d77bdb434adf017e0eefb147870261be0c9cb2e83ed1d468f353ba903daf7aa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fa97879dcf807609a80fb8a3d5e5ee7f/invoke.js HTTP/1.1
Host: pl25250568.profitableratecpm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 11 Jun 2025 18:12:54 GMT
Content-Type: application/javascript
Content-Length: 9548
Connection: keep-alive
Content-Encoding: gzip
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl25250568.profitableratecpm.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: acea6e28f87a8418087f34e01e786534
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
GET pagead2.googlesyndication.com/pagead/js/google_top_exp.js
200 OK 47 B URL GET pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
Hash 7f5f2be159837d73b72a4b37616bce44
c93d7f25b530b05c26440d3352213b683d03dcc3
ccecd185ac16ba0a538840f37701053fbb861f7fbbdd86039c7415fcd924d1f2
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Wed, 11 Jun 2025 09:57:23 GMT
expires: Wed, 25 Jun 2025 09:57:23 GMT
cache-control: public, max-age=1209600
age: 29731
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint7B:D2:02:FC:58:D9:E6:6C:DB:4E:0A:85:10:91:65:A5:9A:9C:5D:12
ValidityMon, 12 May 2025 08:42:58 GMT - Mon, 04 Aug 2025 08:42:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Wed, 11 Jun 2025 18:12:57 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
200 OK 1.2 kB URL GET www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint84:BD:0D:9A:51:CC:86:3E:E9:2F:6E:7C:2D:58:AC:4C:FB:B5:3D:8C
ValidityMon, 12 May 2025 08:44:44 GMT - Mon, 04 Aug 2025 08:44:43 GMT
File type JavaScript source, ASCII text, with very long lines (1201), with no line terminators
Hash d6dd74ec8e2f1bf5f18ac05e25c548ac
2d10fc99f2a65abd6e5b1a2c58c9d09ab67b7ead
2b1f864b6076d865aec6782778916dcac32a9a22c4ea4609eca68776db9f5c07
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-security-policy-report-only: script-src 'unsafe-inline';report-uri https://csp.withgoogle.com/csp/script-inclusions/38fac9d5b82543fc4729580d18ff2d3d
expires: Wed, 11 Jun 2025 18:12:57 GMT
date: Wed, 11 Jun 2025 18:12:57 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_38fac9d5b82543fc4729580d18ff2d3d"
report-to: {"group":"coop_38fac9d5b82543fc4729580d18ff2d3d","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/38fac9d5b82543fc4729580d18ff2d3d"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5387507473582359&host=ca-host-pub-1556223355139109
200 OK 163 kB URL GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5387507473582359&host=ca-host-pub-1556223355139109
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File type JavaScript source, ASCII text, with very long lines (4327)
Size 163 kB (163065 bytes)
Hash c0c923b811ca4d702765c40a8cdb6286
a8d342b633358bb9bf4e4fd18c624e3b12994556
694044e901ef35b580f295089dea5dee7afbadade87fcb951cfcdd307172aa8b
GET /pagead/js/adsbygoogle.js?client=ca-pub-5387507473582359&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sofiahalbofanimeworld.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Wed, 11 Jun 2025 18:12:54 GMT
expires: Wed, 11 Jun 2025 18:12:54 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 1249495199259594654
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53852
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET resources.blogblog.com/img/navbar/icons_peach.png
200 OK 907 B URL GET resources.blogblog.com/img/navbar/icons_peach.png
IP
Requested by https://www.blogger.com/navbar/3405693820859981231?po=4364866522047349775&origin=https://sofiahalbofanimeworld.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.nJpyt-fjzo8.O%2Fd%3D1%2Frs%3DAHpOoo9fTqXSCmwMDsu9FH68l5KSqr6MBg%2Fm%3D__features__#id=navbar-iframe&_gfid=navbar-iframe&parent=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com&pfname=&rpctoken=25783731
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type PNG image data, 46 x 20, 8-bit colormap, non-interlaced
Hash 3718077fe5eb689b0ded987a52881d06
f0ce5596ef43f850c400cbbc0556697fb3e7b232
72be8098b87d7e2d7fbc6eb0a3eaebcf1013186d7733cd340549f9e1701a4865
GET /img/navbar/icons_peach.png HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 907
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jun 2025 12:29:01 GMT
expires: Mon, 16 Jun 2025 12:29:01 GMT
cache-control: public, max-age=604800
last-modified: Mon, 09 Jun 2025 10:50:43 GMT
content-type: image/png
age: 193435
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cryptocoinsad.com/banner/ads_banner/26834.png
200 OK 142 kB URL GET cryptocoinsad.com/banner/ads_banner/26834.png
IP
Requested by https://traffic2bitcoin.com/ptp.php?ref=sofiahalbof&sitetype=1
Certificate IssuerGoogle Trust Services
Subjectcryptocoinsad.com
FingerprintF9:A5:1E:40:66:44:45:C9:8B:28:21:E9:93:97:EF:57:7E:0C:D4:FC
ValiditySun, 13 Apr 2025 18:23:17 GMT - Sat, 12 Jul 2025 19:21:00 GMT
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced
Size 142 kB (142047 bytes)
Hash 6d7c8bb7928ac90e0ee70a9a275fb443
ef6cf54cbe7da434b38a0070c507ebccc6b8ee46
7f3c2228c96253957b887ecf5e5300d625f04068d11dd31442d98052b3fb23cb
GET /banner/ads_banner/26834.png HTTP/1.1
Host: cryptocoinsad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://traffic2bitcoin.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/png
content-length: 142047
server: cloudflare
last-modified: Sun, 03 Sep 2023 23:14:51 GMT
etag: "64f5136b-22adf"
accept-ranges: bytes
age: 6013
cache-control: max-age=10800
cf-cache-status: HIT
nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
vary: accept-encoding
report-to: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=Dy1cX2kexJGYAhZhm1JAGCCrpaL7CjU9SdgE0cEWaCt8rXC15uSr4nZ5yZ9qe7MtskZvo1H52Upw6uN%2FXkpD7p%2F22du%2BxkdcPZzpE%2FLExA%3D%3D"}]}
cf-ray: 94e3145bc965569b-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET resources.blogblog.com/img/blank.gif
200 OK 43 B URL GET resources.blogblog.com/img/blank.gif
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.blogger.com
FingerprintA6:7E:21:41:13:92:D3:FB:CF:9D:C9:97:89:FF:13:6B:D7:56:61:B4
ValidityMon, 12 May 2025 08:42:40 GMT - Mon, 04 Aug 2025 08:42:39 GMT
File type GIF image data, version 89a, 1 x 1
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 05 Jun 2025 00:42:33 GMT
expires: Thu, 12 Jun 2025 00:42:33 GMT
cache-control: public, max-age=604800
last-modified: Wed, 04 Jun 2025 04:53:03 GMT
content-type: image/gif
age: 581421
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET sofiahalbofanimeworld.blogspot.com/js/cookienotice.js
200 OK 6.5 kB URL GET sofiahalbofanimeworld.blogspot.com/js/cookienotice.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subjectmisc-sni.blogspot.com
Fingerprint60:6C:4A:90:50:55:17:7B:EA:21:63:7A:95:AD:B6:F4:3C:5C:F8:91
ValidityMon, 12 May 2025 08:43:42 GMT - Mon, 04 Aug 2025 08:43:41 GMT
File type JavaScript source, ASCII text
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: sofiahalbofanimeworld.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Jun 2025 22:55:40 GMT
expires: Fri, 13 Jun 2025 22:55:40 GMT
cache-control: public, max-age=604800
last-modified: Fri, 06 Jun 2025 11:53:04 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 415034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET acceptable.a-ads.com/2394350
200 OK 21 kB URL GET acceptable.a-ads.com/2394350
IP
ASN #24940 Hetzner Online GmbH
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerSectigo Limited
Subject*.a-ads.com
Fingerprint29:38:CF:C5:B7:11:ED:58:BF:D9:11:7B:D8:5E:88:8A:48:33:9A:23
ValiditySun, 05 Jan 2025 00:00:00 GMT - Tue, 09 Dec 2025 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1982)
Hash 4a12b4b8b5f90415cd100bc249a67ef6
0c8a724e74bcbd141b342d4a3ccd5beb8ca0f94d
92947e911644f05a2ef4dfab6d6b9598938be5884808df4e61e11b08736cf42a
GET /2394350 HTTP/1.1
Host: acceptable.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 18:12:54 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://sofiahalbofanimeworld.blogspot.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgeaoNsjDNQ-ft3m51CUPvtToBCbzwdc07wA-SfDPeT-QYmEmsTDzvY8IT9fbty0vA7cQw0i0FVu0FF2ondR7f191Nf0ZSiKTH-boMuR4uzVZYnx-uy132RLaT3OwItBoytd6eLbHjhJnk/s1600/tumblr_p9sx9t6ITy1tji7wmo1_640.png
200 OK 19 kB URL GET blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgeaoNsjDNQ-ft3m51CUPvtToBCbzwdc07wA-SfDPeT-QYmEmsTDzvY8IT9fbty0vA7cQw0i0FVu0FF2ondR7f191Nf0ZSiKTH-boMuR4uzVZYnx-uy132RLaT3OwItBoytd6eLbHjhJnk/s1600/tumblr_p9sx9t6ITy1tji7wmo1_640.png
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
Fingerprint27:E5:A6:4D:A7:35:A0:F7:7B:EA:CD:2E:47:1A:64:DB:8B:2C:E6:06
ValidityMon, 12 May 2025 08:43:56 GMT - Mon, 04 Aug 2025 08:43:55 GMT
File type PNG image data, 627 x 348, 8-bit/color RGB, non-interlaced
Hash 08b8c241415eb845471a6cdc24e86d3d
4a67fd9185985c5eb0f690a81e4723e9fd10991e
e20d7cd5eded37c6539062e9a67b2674b0c52f8149c9880c8ea6ca366fe7df00
GET /img/b/R29vZ2xl/AVvXsEgeaoNsjDNQ-ft3m51CUPvtToBCbzwdc07wA-SfDPeT-QYmEmsTDzvY8IT9fbty0vA7cQw0i0FVu0FF2ondR7f191Nf0ZSiKTH-boMuR4uzVZYnx-uy132RLaT3OwItBoytd6eLbHjhJnk/s1600/tumblr_p9sx9t6ITy1tji7wmo1_640.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v358"
expires: Thu, 12 Jun 2025 18:12:55 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="tumblr_p9sx9t6ITy1tji7wmo1_640.png"
x-content-type-options: nosniff
date: Wed, 11 Jun 2025 18:12:55 GMT
server: fife
content-length: 19422
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.storageimagedisplay.com/cti/ca/bd/00/cabd00972e07b6799a688915f78c8fe9/1708427652.jpg
200 OK 18 kB URL GET cdn.storageimagedisplay.com/cti/ca/bd/00/cabd00972e07b6799a688915f78c8fe9/1708427652.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectcdn.storageimagedisplay.com
Fingerprint7C:BD:B0:48:37:0F:A4:22:46:5F:09:F9:77:FA:07:FF:25:25:52:76
ValiditySun, 11 May 2025 02:32:51 GMT - Sat, 09 Aug 2025 02:32:50 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Hash e49f54f9f43bacc7659a6c2046397827
32be4af65230872930f22cb24004fd503eac8716
8ce6a531720c7b1de1041c701723d686f56591bdd89cb3ff6e2630cba029de45
GET /cti/ca/bd/00/cabd00972e07b6799a688915f78c8fe9/1708427652.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: image/jpeg
content-length: 18157
server: nginx/1.21.6
last-modified: Tue, 20 Feb 2024 11:14:20 GMT
etag: "65d4898c-46ed"
expires: Fri, 13 Jun 2025 18:12:56 GMT
cache-control: max-age=172800
x-cdn-host-id: ah0543
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
200 OK 569 kB URL GET www.gstatic.com/recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js
IP
Requested by https://www.blogger.com/comment/frame/3405693820859981231?po=4364866522047349775&hl=en&blogspotRpcToken=1696471#%7B%22color%22:%22rgb(102,%20102,%20102)%22,%22backgroundColor%22:%22rgb(61,%20133,%20198)%22,%22unvisitedLinkColor%22:%22rgb(61,%20116,%20165)%22,%22fontFamily%22:%22Arial,%20Tahoma,%20Helvetica,%20FreeSans,%20sans-serif%22%7D
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint41:FF:72:9C:74:6F:D4:D1:3B:A8:03:EB:55:D2:D2:09:7E:7A:44:DC
ValidityMon, 12 May 2025 08:44:01 GMT - Mon, 04 Aug 2025 08:44:00 GMT
File type JavaScript source, ASCII text, with very long lines (552)
Size 569 kB (568942 bytes)
Hash 77533ec9585d46c3d6f0190d5150f169
21a5a0c7c432d43242dc38cd78ecae56cecc8812
e26714bbd1908c0b0028789de4bc5a01105b8f2756f3e4eac5f885959c4ab444
GET /recaptcha/releases/GUGrl5YkSwpBsxsF3eY665Ye/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
timing-allow-origin: *
content-length: 224457
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 11 Jun 2025 08:55:32 GMT
expires: Thu, 11 Jun 2026 08:55:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 26 May 2025 16:43:37 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 33445
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn.surdotly.com/js/Surly.min.js
200 OK 2.9 kB URL GET cdn.surdotly.com/js/Surly.min.js
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectcdn.surdotly.com
FingerprintF9:4B:B2:13:58:31:B9:54:F0:23:19:E5:E5:6B:4A:A0:F0:00:1E:F5
ValidityTue, 13 May 2025 02:02:34 GMT - Mon, 11 Aug 2025 02:02:33 GMT
File type JavaScript source, ASCII text, with very long lines (2938), with no line terminators
Hash 12b23e2eb2eddaf38ae08f3fbc49f704
b2f951ead8f0ea9c413890759f2911dd2107b038
8979fbb9b4d9cf110b9efe36be1b4f73dc4a001137ef15b28b4f6fe56afbcf35
GET /js/Surly.min.js HTTP/1.1
Host: cdn.surdotly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.14.2
date: Wed, 11 Jun 2025 18:12:54 GMT
content-type: application/javascript
last-modified: Mon, 13 Jun 2022 04:23:22 GMT
vary: Accept-Encoding
etag: W/"62a6bbba-b7a"
expires: Fri, 11 Jul 2025 18:12:54 GMT
cache-control: max-age=2592000
content-encoding: gzip
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/ads?npa=1&client=ca-pub-5387507473582359&output=html&adk=1812271804&adf=3025194257&abgtt=7&lmt=1749665513&plat=2%3A16777216%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=154x805_l%7C154x805_r&format=0x0&url=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com%2F2021%2F07%2Fblog-post.html&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&asro=0&aifxl=29_18~30_19&itsi=-1&aiapm=0.15&aiapmi=0.16&aiact=0.7&aicct=0.5799249952898795&ailct=0.5550815628130766&aimart=8&dt=1749665574320&bpp=43&bdt=412&idt=534&shv=r20250610&mjsv=m202506090101&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=4636370350359&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31092114%2C95360548%2C31092898%2C31092920%2C95353387%2C95362655%2C31092935%2C95344791%2C95362794%2C95359265%2C95362808%2C95363074&oid=2&pvsid=7331139824472038&tmod=1611673557&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&pgls=CAA.&ifi=1&uci=a!1&fsb=1&dtd=581
200 OK 603 B URL GET pagead2.googlesyndication.com/pagead/ads?npa=1&client=ca-pub-5387507473582359&output=html&adk=1812271804&adf=3025194257&abgtt=7&lmt=1749665513&plat=2%3A16777216%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=154x805_l%7C154x805_r&format=0x0&url=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com%2F2021%2F07%2Fblog-post.html&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&asro=0&aifxl=29_18~30_19&itsi=-1&aiapm=0.15&aiapmi=0.16&aiact=0.7&aicct=0.5799249952898795&ailct=0.5550815628130766&aimart=8&dt=1749665574320&bpp=43&bdt=412&idt=534&shv=r20250610&mjsv=m202506090101&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=4636370350359&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31092114%2C95360548%2C31092898%2C31092920%2C95353387%2C95362655%2C31092935%2C95344791%2C95362794%2C95359265%2C95362808%2C95363074&oid=2&pvsid=7331139824472038&tmod=1611673557&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&pgls=CAA.&ifi=1&uci=a!1&fsb=1&dtd=581
IP
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintCB:D6:DD:24:49:A1:05:33:C4:D6:0A:04:6A:88:75:11:64:1B:56:6D
ValidityMon, 12 May 2025 08:42:57 GMT - Mon, 04 Aug 2025 08:42:56 GMT
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 2c739853e3edfa26869416e3d4e5d369
c263dc1c36c954b252bc7e775e6e82865d9b29b8
00daef3b4a945d15f73efa05e0ce2ca51f2f8252e1da8fae5c2efb0f6dddacce
GET /pagead/ads?npa=1&client=ca-pub-5387507473582359&output=html&adk=1812271804&adf=3025194257&abgtt=7&lmt=1749665513&plat=2%3A16777216%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=154x805_l%7C154x805_r&format=0x0&url=https%3A%2F%2Fsofiahalbofanimeworld.blogspot.com%2F2021%2F07%2Fblog-post.html&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&asro=0&aifxl=29_18~30_19&itsi=-1&aiapm=0.15&aiapmi=0.16&aiact=0.7&aicct=0.5799249952898795&ailct=0.5550815628130766&aimart=8&dt=1749665574320&bpp=43&bdt=412&idt=534&shv=r20250610&mjsv=m202506090101&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=4636370350359&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31092114%2C95360548%2C31092898%2C31092920%2C95353387%2C95362655%2C31092935%2C95344791%2C95362794%2C95359265%2C95362808%2C95363074&oid=2&pvsid=7331139824472038&tmod=1611673557&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&pgls=CAA.&ifi=1&uci=a!1&fsb=1&dtd=581 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Wed, 11 Jun 2025 18:12:54 GMT
server: cafe
content-length: 46
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET z.cdn.trafficbass.com/load?o=c&z=1697968353&random=
200 OK 6.9 kB URL GET z.cdn.trafficbass.com/load?o=c&z=1697968353&random=
IP
ASN #60781 LeaseWeb Netherlands B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerGoDaddy.com, Inc.
Subject*.cdn.trafficbass.com
Fingerprint32:8E:1E:BB:08:72:07:C6:75:44:9E:9D:0A:28:EB:0C:BA:DE:A3:38
ValidityThu, 06 Feb 2025 16:22:15 GMT - Tue, 10 Mar 2026 16:22:15 GMT
File type HTML document, ASCII text
Hash 7dd4fd9efbb6a697d2f05b8c9e51110c
aa2b1ea8af287b8a338e78c1289fa245fcc45086
deeb16e9356a0baaa66b0892209d0942c0acfce8898824eaa760829165853981
GET /load?o=c&z=1697968353&random= HTTP/1.1
Host: z.cdn.trafficbass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 11 Jun 2025 18:12:56 GMT
content-type: text/html; charset=utf-8
content-length: 3802
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET writingfreedomdecember.com/clk.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzm9-C7oHUSQevPTNP8ikZ6aT6XEPizFGgzGJuysB91TdVT0pp6erreo_kzm4wYDscQQF11Plm2Sj6yJ68yLIRBRZELZvOWwuHj0K4sGDdDIw-qDfe9_7uuF73-uPDrIz4iKjp1tvyaGIIrqwWHfs57dFzGSh7Y0bdsOpO1fsbREvuVfsQZVU_nKj5dadF-zXedCTC02n4TgNp2GvCsVDOVg4ZyGS-51GvePU3Wa9sehioP6LdWZBUwssPyNPQbDyid_CmxDBBHH_mxWue6lMXnqtn0U0lQo5O34n7sWyiNGftaGyEMbH07chdUnIZ3OQ8fF0A8j8sNoAvijJ3Pwj-PHxVCb8_OhCqR-Bx_DZZRT5BDyaQNAJArkPwR4SIGDY2ETcv7shVUF3L1hasSWp_fkHRFGS2qOnEfe_Xo7EwL4uoywVMtYYhAZiMIHoTpBkJ0iHcxDFCYL0Qwj2K3GeuYy4f-8NmYuenXPVg2Dm3AMRThDxEai2kFWPsJCFFrLEQp-d2q7juUGDtpbCDgvajktdl3Hf6XhNx6GdoI0sqASOkCYjBNEIgdpDovbQEx-XxHpsHir7AXrHQDMLOi2J9fYecmZQcIJCExSUoBAERUpQ5OaIRbqpzV0W6cxvTGtzWltmLNPuAT2SaZfHBFSNoJg5FMn7eh9B-r_xMNRsLKtE_dSMqc_MQXJGnqxMtG5NMvT4qR3STttrd1gQek57yelQzwl9j7bYIl_kvB1CCwOh585dGYqSrGx_h0SU5BI9hE9PoKMTBGIeNGuAFgZ0x2AYGzBpkKQ1pLvWQXRGnj0_3br3O3jwgEwDgTJIlMF74keCbnR7fE0W5PCaLDT5djNJRV8MaXXW6ylN-aV7b_LdQiq2tqJHX74SVETV3r_BdbpOYybiriZfLQvGuFqVKuDk-zW9zf2tTO8sZyrOkvWtV1fX-oniWgsZT0DFw82_EIiS_P_vT89_2Bdv_QShJlCZQT-bKRVygiDZg05mMy0JVDTDflJDkZmxavqzYSQIIj7D1DfQ_8L-rB8rWn1NhTnQt9FVNdB0H3HfIFcGeWRAoxF09vg4TdSDq7_cqeJz-FFt7EeqduhHKvqkJO9-cbUkN-_MlWRdfHDhuRantu96LGy3m47rNQLepoutpcDzA68VeiFd8jykutxZ-_m5fwIAAP__Oya9h6EEAAA=
200 OK 0 B URL GET writingfreedomdecember.com/clk.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzm9-C7oHUSQevPTNP8ikZ6aT6XEPizFGgzGJuysB91TdVT0pp6erreo_kzm4wYDscQQF11Plm2Sj6yJ68yLIRBRZELZvOWwuHj0K4sGDdDIw-qDfe9_7uuF73-uPDrIz4iKjp1tvyaGIIrqwWHfs57dFzGSh7Y0bdsOpO1fsbREvuVfsQZVU_nKj5dadF-zXedCTC02n4TgNp2GvCsVDOVg4ZyGS-51GvePU3Wa9sehioP6LdWZBUwssPyNPQbDyid_CmxDBBHH_mxWue6lMXnqtn0U0lQo5O34n7sWyiNGftaGyEMbH07chdUnIZ3OQ8fF0A8j8sNoAvijJ3Pwj-PHxVCb8_OhCqR-Bx_DZZRT5BDyaQNAJArkPwR4SIGDY2ETcv7shVUF3L1hasSWp_fkHRFGS2qOnEfe_Xo7EwL4uoywVMtYYhAZiMIHoTpBkJ0iHcxDFCYL0Qwj2K3GeuYy4f-8NmYuenXPVg2Dm3AMRThDxEai2kFWPsJCFFrLEQp-d2q7juUGDtpbCDgvajktdl3Hf6XhNx6GdoI0sqASOkCYjBNEIgdpDovbQEx-XxHpsHir7AXrHQDMLOi2J9fYecmZQcIJCExSUoBAERUpQ5OaIRbqpzV0W6cxvTGtzWltmLNPuAT2SaZfHBFSNoJg5FMn7eh9B-r_xMNRsLKtE_dSMqc_MQXJGnqxMtG5NMvT4qR3STttrd1gQek57yelQzwl9j7bYIl_kvB1CCwOh585dGYqSrGx_h0SU5BI9hE9PoKMTBGIeNGuAFgZ0x2AYGzBpkKQ1pLvWQXRGnj0_3br3O3jwgEwDgTJIlMF74keCbnR7fE0W5PCaLDT5djNJRV8MaXXW6ylN-aV7b_LdQiq2tqJHX74SVETV3r_BdbpOYybiriZfLQvGuFqVKuDk-zW9zf2tTO8sZyrOkvWtV1fX-oniWgsZT0DFw82_EIiS_P_vT89_2Bdv_QShJlCZQT-bKRVygiDZg05mMy0JVDTDflJDkZmxavqzYSQIIj7D1DfQ_8L-rB8rWn1NhTnQt9FVNdB0H3HfIFcGeWRAoxF09vg4TdSDq7_cqeJz-FFt7EeqduhHKvqkJO9-cbUkN-_MlWRdfHDhuRantu96LGy3m47rNQLepoutpcDzA68VeiFd8jykutxZ-_m5fwIAAP__Oya9h6EEAAA=
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://sofiahalbofanimeworld.blogspot.com/2021/07/blog-post.html
Certificate IssuerLet's Encrypt
Subjectwritingfreedomdecember.com
Fingerprint4D:B7:83:7B:35:CA:0E:1A:73:76:83:29:D4:3E:81:D8:A2:A3:C2:83
ValiditySat, 19 Apr 2025 15:19:23 GMT - Fri, 18 Jul 2025 15:19:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /clk.gif?sid=H4sIAAAAAAAC_1RST2gkxReuzm9-C7oHUSQevPTNP8ikZ6aT6XEPizFGgzGJuysB91TdVT0pp6erreo_kzm4wYDscQQF11Plm2Sj6yJ68yLIRBRZELZvOWwuHj0K4sGDdDIw-qDfe9_7uuF73-uPDrIz4iKjp1tvyaGIIrqwWHfs57dFzGSh7Y0bdsOpO1fsbREvuVfsQZVU_nKj5dadF-zXedCTC02n4TgNp2GvCsVDOVg4ZyGS-51GvePU3Wa9sehioP6LdWZBUwssPyNPQbDyid_CmxDBBHH_mxWue6lMXnqtn0U0lQo5O34n7sWyiNGftaGyEMbH07chdUnIZ3OQ8fF0A8j8sNoAvijJ3Pwj-PHxVCb8_OhCqR-Bx_DZZRT5BDyaQNAJArkPwR4SIGDY2ETcv7shVUF3L1hasSWp_fkHRFGS2qOnEfe_Xo7EwL4uoywVMtYYhAZiMIHoTpBkJ0iHcxDFCYL0Qwj2K3GeuYy4f-8NmYuenXPVg2Dm3AMRThDxEai2kFWPsJCFFrLEQp-d2q7juUGDtpbCDgvajktdl3Hf6XhNx6GdoI0sqASOkCYjBNEIgdpDovbQEx-XxHpsHir7AXrHQDMLOi2J9fYecmZQcIJCExSUoBAERUpQ5OaIRbqpzV0W6cxvTGtzWltmLNPuAT2SaZfHBFSNoJg5FMn7eh9B-r_xMNRsLKtE_dSMqc_MQXJGnqxMtG5NMvT4qR3STttrd1gQek57yelQzwl9j7bYIl_kvB1CCwOh585dGYqSrGx_h0SU5BI9hE9PoKMTBGIeNGuAFgZ0x2AYGzBpkKQ1pLvWQXRGnj0_3br3O3jwgEwDgTJIlMF74keCbnR7fE0W5PCaLDT5djNJRV8MaXXW6ylN-aV7b_LdQiq2tqJHX74SVETV3r_BdbpOYybiriZfLQvGuFqVKuDk-zW9zf2tTO8sZyrOkvWtV1fX-oniWgsZT0DFw82_EIiS_P_vT89_2Bdv_QShJlCZQT-bKRVygiDZg05mMy0JVDTDflJDkZmxavqzYSQIIj7D1DfQ_8L-rB8rWn1NhTnQt9FVNdB0H3HfIFcGeWRAoxF09vg4TdSDq7_cqeJz-FFt7EeqduhHKvqkJO9-cbUkN-_MlWRdfHDhuRantu96LGy3m47rNQLepoutpcDzA68VeiFd8jykutxZ-_m5fwIAAP__Oya9h6EEAAA= HTTP/1.1
Host: writingfreedomdecember.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sofiahalbofanimeworld.blogspot.com/
Cookie: pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; u_pl25150069=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 11 Jun 2025 18:13:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: writingfreedomdecember.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1788b4dda5380f07809d8c67fb3aff71
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
142.250.178.65
78.46.174.169
104.21.45.251
213.227.149.183
192.243.59.12
164.132.225.66
185.105.111.32
0.0.0.0