shorturl.at/
104.26.8.129 167 B IP 104.26.8.129:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 0104c301c5e02bd6148b8703d19b3a73
7436e0b4b1f8c222c38069890b75fa2baf9ca620
446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET / HTTP/1.1
Host: shorturl.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 08:56:01 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 24 Apr 2024 09:56:01 GMT
Location: https://shorturl.at/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pY3lcOxpcLQE29UabLF1RH7AX9q7F9YvmNq7YLjia0fjnagyWDgMX%2B%2Ba9peI7LUTXpocsPesKjVX33RqES%2Bpz1f6J%2Fk1DwGBnSkujo0%2FwV6Ofl8C9f%2FdPyqmQsXn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8794e0b41f0db51b-OSL
alt-svc: h2=":443"; ma=60
uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
216.58.207.193200 OK 23 kB URL User Request GET HTTP/2 uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
IP 216.58.207.193:443
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (5475)
Hash d78289f6778ea9727a2688e08aa943d7
4eddfa855e162ee119d9dfe4d01f3e5679734584
0c55cb70974ce688b47bfad81662467c7d035857595b38319dc9fedb72afcf2c
GET /2024/01/man-takes-selfie-after-catching-another_12.html HTTP/1.1
Host: uupsanddowns.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Wed, 24 Apr 2024 08:56:05 GMT
date: Wed, 24 Apr 2024 08:56:05 GMT
cache-control: private, max-age=0
last-modified: Thu, 18 Apr 2024 14:51:57 GMT
etag: W/"7d150c5a52fb9035b714e6b9f661a1fb8f32e3ca27484517deaa6db3b905ff37"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 22882
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
uupsanddowns.blogspot.com/js/cookienotice.js
216.58.207.193200 OK 2.0 kB URL GET HTTP/3 uupsanddowns.blogspot.com/js/cookienotice.js
IP 216.58.207.193:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File type JavaScript source, ASCII text
Hash a705132a2174f88e196ec3610d68faa8
3bad57a48d973a678fec600d45933010f6edc659
068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: uupsanddowns.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Wed, 24 Apr 2024 08:56:06 GMT
expires: Wed, 01 May 2024 08:56:06 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 16:54:20 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
uupsanddowns.blogspot.com/responsive/sprite_v1_6.css.svg
216.58.207.193200 OK 2.2 kB URL GET HTTP/3 uupsanddowns.blogspot.com/responsive/sprite_v1_6.css.svg
IP 216.58.207.193:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File type SVG Scalable Vector Graphics image
Hash d4dcfc8144f556815c7a1d84ed4e959e
22088bd6cdf970dcf7bfab9a74a4768548ca8890
73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: uupsanddowns.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
date: Wed, 24 Apr 2024 08:56:06 GMT
expires: Wed, 01 May 2024 08:56:06 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 16:54:20 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
142.250.74.35200 OK 3.5 kB URL GET HTTP/2 www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js
IP 142.250.74.35:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (10473)
Hash 158013acb7e269a3dbe18de855656c97
08fa355584fc849539b3f04589ae6f61eb4a7d98
92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 08:56:06 GMT
expires: Wed, 24 Apr 2024 08:56:06 GMT
cache-control: public, max-age=0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 59308
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 111695
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/848617736-widgets.js
142.250.74.105200 OK 52 kB URL GET HTTP/2 www.blogger.com/static/v1/widgets/848617736-widgets.js
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (1941)
Hash 70285871f1f1d8f776a0c04a61d21d68
2c140498af2f9a4a8088950d16f675745e556a14
5cc556f7a1301c1c932b1b1f696cbfbc5e131209812b9573204f69b305f05b6c
GET /static/v1/widgets/848617736-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51485
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 01:53:53 GMT
expires: Tue, 22 Apr 2025 01:53:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 00:50:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 198133
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/4269703388-comment_from_post_iframe.js
142.250.74.105200 OK 6.8 kB URL GET HTTP/2 www.blogger.com/static/v1/jsbin/4269703388-comment_from_post_iframe.js
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2169)
Hash b0d91146560437ffe492330479c2803e
9bdb83b95969c2ff6603e3d4ca2c59132e719b7d
23d82536efbe90719d594c5d074bbd02dc4047aeff609910a1730551b486cac7
GET /static/v1/jsbin/4269703388-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6758
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 19:13:16 GMT
expires: Wed, 23 Apr 2025 19:13:16 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 18:53:15 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 49370
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
resources.blogblog.com/blogblog/data/res/673054701-indie_compiled.js
142.250.74.105200 OK 47 kB URL GET HTTP/2 resources.blogblog.com/blogblog/data/res/673054701-indie_compiled.js
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2179)
Hash b22b8ba05e55cad17681d0846adeed89
597f8da21b1192f770e0d44954977212d865368a
c168629cfafbf4d8de3f54311250bb6186127205c3783f024f1f87160bcc95d4
GET /blogblog/data/res/673054701-indie_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 02:01:01 GMT
expires: Tue, 30 Apr 2024 02:01:01 GMT
cache-control: public, max-age=604800
last-modified: Mon, 22 Apr 2024 21:51:51 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 111305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600
142.250.74.129200 OK 228 kB URL GET HTTP/2 themes.googleusercontent.com/image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, description=Sunset afterglow and twlight dunes in White Sands National Monument, software=Picasa], baseline, precision 8, 1600x1067, components 3
Size 228 kB (228521 bytes)
Hash e66ef1f4c654be20558150214aa2b85a
ad1dfbefad9a21e48aeeac1bae9f8a5b8ea1ef3c
6a5482e0dc4e77a6be20281b13d7ef4d8b67521e73b66bc633ea4e4242934be9
GET /image?id=L1lcAxxz0CLgsDzixEprHJ2F38TyEjCyE3RSAjynQDks0lT1BDc1OxXKaTEdLc89HPvdB11X9FDw&options=w1600 HTTP/1.1
Host: themes.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v1"
expires: Thu, 25 Apr 2024 08:56:06 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:06 GMT
server: fife
content-length: 228521
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=2593618823999681032&zx=b0233bee-8cfd-4349-b8db-91b1ed865417
142.250.74.105200 OK 21 B URL GET HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=2593618823999681032&zx=b0233bee-8cfd-4349-b8db-91b1ed865417
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /dyn-css/authorization.css?targetBlogID=2593618823999681032&zx=b0233bee-8cfd-4349-b8db-91b1ed865417 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 08:56:06 GMT
last-modified: Wed, 24 Apr 2024 08:56:06 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
104.26.8.129302 Found 96 kB URL User Request GET HTTP/2 IP 104.26.8.129:443
Certificate IssuerGoogle Trust Services LLC
Subjectshorturl.at
FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A
ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT
File type PNG image data, 244 x 320, 8-bit/color RGB, non-interlaced
Hash 20c7851bc3483eee58d07971390daadb
245e5456ad79a51bcd0b88525ad4ae9398aca54d
52d0b923150aabefbd3f3fb17d3f51d53a6536594128d03f66a504b6ff01444c
GET /pGOP7 HTTP/1.1
Host: www.shorturl.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Wed, 24 Apr 2024 08:56:04 GMT
content-type: text/html; charset=UTF-8
location: https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IH5ZThqqPQR%2FBM5mZFDUFLD%2BGAp2LmNrjgiyYK51CmF5q1weWYbWmj%2BRRxo5g663BLqF85dWmzcX8BqWYQWjvUGWTxY7436xAyVs9P6pFexjB1W2IjrlKzy4qDI6CqaljQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794e0a26d9056c1-OSL
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEiABBBfKHAZojjm8zI3ygtIMSwx111A9B1A-l3IdFT5yYEFpI_JlUKPZTJji8-lGrBI6g1w71rigYeABv6nx5Hc2MFfcEKA3lYaLROXMb78Tv9L_Yp4Pz_c7uLBYtHvSdFAfzGSR5lIMsl2cOZNATk1djWMAQYv6PmoZzIjs1wrW7aHouMmUefIX_y-he0R=w72-h72-p-k-no-nu
142.250.74.129200 OK 4.4 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEiABBBfKHAZojjm8zI3ygtIMSwx111A9B1A-l3IdFT5yYEFpI_JlUKPZTJji8-lGrBI6g1w71rigYeABv6nx5Hc2MFfcEKA3lYaLROXMb78Tv9L_Yp4Pz_c7uLBYtHvSdFAfzGSR5lIMsl2cOZNATk1djWMAQYv6PmoZzIjs1wrW7aHouMmUefIX_y-he0R=w72-h72-p-k-no-nu
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
Hash 88a2edea261b20df73c3b832afd298d4
ed7f0149191c0e900a2e15fc28e6c714b99b8b36
8b0ae8022b99c3b39175f329a10de153a78f399f2e1c144acc4df27536f8761f
GET /img/a/AVvXsEiABBBfKHAZojjm8zI3ygtIMSwx111A9B1A-l3IdFT5yYEFpI_JlUKPZTJji8-lGrBI6g1w71rigYeABv6nx5Hc2MFfcEKA3lYaLROXMb78Tv9L_Yp4Pz_c7uLBYtHvSdFAfzGSR5lIMsl2cOZNATk1djWMAQYv6PmoZzIjs1wrW7aHouMmUefIX_y-he0R=w72-h72-p-k-no-nu HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2cd5"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Screenshot_20240107-204138.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 4355
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEh7sM3_RUlJIg4oPpk3UIAR1BgWjNFqY8g_uji1on2TUi1-O3lphztr90lB4GFwEcxIYqqcphR46he9dkbPRsshcU-mn_WK808sAjjM2HnE_VB55Dhf4_zimw8E0ILMcD7N_tTW68S_tJcg1XVGvPICLWoiGSD3OJ-HdxUado7l5Au-p2TsODm_uaRn-jUB=w72-h72-p-k-no-nu
142.250.74.129200 OK 4.3 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEh7sM3_RUlJIg4oPpk3UIAR1BgWjNFqY8g_uji1on2TUi1-O3lphztr90lB4GFwEcxIYqqcphR46he9dkbPRsshcU-mn_WK808sAjjM2HnE_VB55Dhf4_zimw8E0ILMcD7N_tTW68S_tJcg1XVGvPICLWoiGSD3OJ-HdxUado7l5Au-p2TsODm_uaRn-jUB=w72-h72-p-k-no-nu
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
Hash 8e5820936cd1b7315f09b6a9ec1f8729
8d1e0ada4fd7f00c3eb2808d7c0ed2d15c45a6f5
10d7233413f7d7079803095a6bdad6311b2a8969fb6d7e45a5f4bca83102eba7
GET /img/a/AVvXsEh7sM3_RUlJIg4oPpk3UIAR1BgWjNFqY8g_uji1on2TUi1-O3lphztr90lB4GFwEcxIYqqcphR46he9dkbPRsshcU-mn_WK808sAjjM2HnE_VB55Dhf4_zimw8E0ILMcD7N_tTW68S_tJcg1XVGvPICLWoiGSD3OJ-HdxUado7l5Au-p2TsODm_uaRn-jUB=w72-h72-p-k-no-nu HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2d82"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="InShot_20240110_182314655.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 4343
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvL15pq4I4rqSyACfV4eCYj_Khx2KFMWXVq6MtGDhxQycCPNBFgXPdXjNGkong-ooh0xaKymVKKRZeJe9uNjkKBKj9C5WXNAAwQpxppyNwe231jW_-eimFKV_oOjTCdXYiGcwNAc5rTNTfnfOKP4WpkQ2AXXIWWM4zCxHYc3-k9WFY6iy1c87GvRdvlOIU/s320/5ffed9a1116a3.jpg
142.250.74.129200 OK 22 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjvL15pq4I4rqSyACfV4eCYj_Khx2KFMWXVq6MtGDhxQycCPNBFgXPdXjNGkong-ooh0xaKymVKKRZeJe9uNjkKBKj9C5WXNAAwQpxppyNwe231jW_-eimFKV_oOjTCdXYiGcwNAc5rTNTfnfOKP4WpkQ2AXXIWWM4zCxHYc3-k9WFY6iy1c87GvRdvlOIU/s320/5ffed9a1116a3.jpg
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 240x320, components 3
Hash 9c78374c2feb3c71d21ba388ba106301
2c1d6e12e704c78d108f02e9625ac91ab5af3052
55ac7e62d4b88bd862d38c5f2b92f6b02373ba4a3db91355914ff4feddffd030
GET /img/b/R29vZ2xl/AVvXsEjvL15pq4I4rqSyACfV4eCYj_Khx2KFMWXVq6MtGDhxQycCPNBFgXPdXjNGkong-ooh0xaKymVKKRZeJe9uNjkKBKj9C5WXNAAwQpxppyNwe231jW_-eimFKV_oOjTCdXYiGcwNAc5rTNTfnfOKP4WpkQ2AXXIWWM4zCxHYc3-k9WFY6iy1c87GvRdvlOIU/s320/5ffed9a1116a3.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2dd8"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="5ffed9a1116a3.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 21669
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEga90EKguu6Ldx5lvWLcd7ZVna9IBTQn89dzckoqRlRgpQb1orN2pzKcgtLW7w6pe4DDazxJCa0GBiD-6az1L_sY9ZWbApEEPNIYF_77bdptKMYYA67LgFNGlTRKoo-dKX7urj69p6ms6AE_YVLd-SAzG7Au-eE_JG3szKdGLVNOXfQiCaCxMfqRQ0ah62N/s320/5ffed871dde2e.png
142.250.74.129200 OK 75 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEga90EKguu6Ldx5lvWLcd7ZVna9IBTQn89dzckoqRlRgpQb1orN2pzKcgtLW7w6pe4DDazxJCa0GBiD-6az1L_sY9ZWbApEEPNIYF_77bdptKMYYA67LgFNGlTRKoo-dKX7urj69p6ms6AE_YVLd-SAzG7Au-eE_JG3szKdGLVNOXfQiCaCxMfqRQ0ah62N/s320/5ffed871dde2e.png
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type PNG image data, 320 x 196, 8-bit/color RGB, non-interlaced
Hash 2d0b12d0e4b33955ec34dc5b47afe2c8
af1be03d037c3ff9a1b8de6c7f8436b2f876eb73
1cb17e5f84fcbffb55839ac03e9d3992fb69ef1c29e1f1adf8602e83af70120c
GET /img/b/R29vZ2xl/AVvXsEga90EKguu6Ldx5lvWLcd7ZVna9IBTQn89dzckoqRlRgpQb1orN2pzKcgtLW7w6pe4DDazxJCa0GBiD-6az1L_sY9ZWbApEEPNIYF_77bdptKMYYA67LgFNGlTRKoo-dKX7urj69p6ms6AE_YVLd-SAzG7Au-eE_JG3szKdGLVNOXfQiCaCxMfqRQ0ah62N/s320/5ffed871dde2e.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2dd7"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="5ffed871dde2e.png"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 74748
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEhC_f4df8LmpUfNGm4oXXyZOgGPKK4QbIjsyKcEdubz_xI7wDaF3YUfeBqWe1IifCrlRqswKnGoyLQIghX5ggWCaXIX5629DvH_DcKdHdzpeX5CyIANYxT2XtX-l6Js8mF9wlq8JlboL1Wf21p19C-qfLO-NossADnQrDaByFQcID3kNbSQvSn2yyytU9J1=w72-h72-p-k-no-nu
142.250.74.129200 OK 4.7 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEhC_f4df8LmpUfNGm4oXXyZOgGPKK4QbIjsyKcEdubz_xI7wDaF3YUfeBqWe1IifCrlRqswKnGoyLQIghX5ggWCaXIX5629DvH_DcKdHdzpeX5CyIANYxT2XtX-l6Js8mF9wlq8JlboL1Wf21p19C-qfLO-NossADnQrDaByFQcID3kNbSQvSn2yyytU9J1=w72-h72-p-k-no-nu
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3
Hash 5b88306d8a7b8861029a78377514ecc3
ae75c980c58c937647522cacc55d25e1c7eae224
8fa085e77a7a994aea3516a13ac4905161c491fa1f3d5bcf8760f49c6dfc2bb6
GET /img/a/AVvXsEhC_f4df8LmpUfNGm4oXXyZOgGPKK4QbIjsyKcEdubz_xI7wDaF3YUfeBqWe1IifCrlRqswKnGoyLQIghX5ggWCaXIX5629DvH_DcKdHdzpeX5CyIANYxT2XtX-l6Js8mF9wlq8JlboL1Wf21p19C-qfLO-NossADnQrDaByFQcID3kNbSQvSn2yyytU9J1=w72-h72-p-k-no-nu HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2d1a"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Screenshot_20240108-142515.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 4652
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNTWoho5wgbsKC1-FyWFb9K1qPBvPsiogO32lh1YMAE7wkTsW3M-Jm7sza_lm3Z2MFYt4qam7pcaoezxTg5801mMolDXilPYP-6-5l19fbn2pqPk4MRNbF2ZtpyHmj0M3N4vWzvjctMPLavVkpwsto4NTd6euDMMI1xzMNXi1dlJoboQqtk4OkAn_4f7ml/s320/5ffed983d8ee6.jpg
142.250.74.129200 OK 31 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgNTWoho5wgbsKC1-FyWFb9K1qPBvPsiogO32lh1YMAE7wkTsW3M-Jm7sza_lm3Z2MFYt4qam7pcaoezxTg5801mMolDXilPYP-6-5l19fbn2pqPk4MRNbF2ZtpyHmj0M3N4vWzvjctMPLavVkpwsto4NTd6euDMMI1xzMNXi1dlJoboQqtk4OkAn_4f7ml/s320/5ffed983d8ee6.jpg
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x240, components 3
Hash 75c70685cc9c54d03486a04aaab05f49
7706b1b8ccd655536aff89796b3ce43b386371cc
7296c343c19241ff9c9c28d48306edaafe75b4ecdbec2214ff27f59d3796099e
GET /img/b/R29vZ2xl/AVvXsEgNTWoho5wgbsKC1-FyWFb9K1qPBvPsiogO32lh1YMAE7wkTsW3M-Jm7sza_lm3Z2MFYt4qam7pcaoezxTg5801mMolDXilPYP-6-5l19fbn2pqPk4MRNbF2ZtpyHmj0M3N4vWzvjctMPLavVkpwsto4NTd6euDMMI1xzMNXi1dlJoboQqtk4OkAn_4f7ml/s320/5ffed983d8ee6.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2dd6"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="5ffed983d8ee6.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 30788
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/a/AVvXsEg3j4W2TpZQO-5OIDAiuv79kGNsCmN1hCXDjpni691jLITljN8-WWjavqyHZACR_g2JFIx3s801aC4OeV_inieB6jEzw2kcJ6ollhYahm5aa7VTtYEZonl-NbVusr9Ts-RQwG_dPpSJL82gs_YnXgxp2lev_7r5GnodvcIxaDWnnipKDHg848i9ClNDnJ7O
142.250.74.129200 OK 502 kB URL GET HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEg3j4W2TpZQO-5OIDAiuv79kGNsCmN1hCXDjpni691jLITljN8-WWjavqyHZACR_g2JFIx3s801aC4OeV_inieB6jEzw2kcJ6ollhYahm5aa7VTtYEZonl-NbVusr9Ts-RQwG_dPpSJL82gs_YnXgxp2lev_7r5GnodvcIxaDWnnipKDHg848i9ClNDnJ7O
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=4, orientation=[*0*], software=Google], baseline, precision 8, 1080x1074, components 3
Size 502 kB (502115 bytes)
Hash bfac3a2b8654389c0bffffc8c8b8098e
8a767f270e2db1b340efef2fc412b6f0b3a61a91
1701451553c40eb0f1a1461f670e888453ff944749389b64e0eda398b88f2eec
GET /img/a/AVvXsEg3j4W2TpZQO-5OIDAiuv79kGNsCmN1hCXDjpni691jLITljN8-WWjavqyHZACR_g2JFIx3s801aC4OeV_inieB6jEzw2kcJ6ollhYahm5aa7VTtYEZonl-NbVusr9Ts-RQwG_dPpSJL82gs_YnXgxp2lev_7r5GnodvcIxaDWnnipKDHg848i9ClNDnJ7O HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2dd9"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Screenshot_20240112-123043.jpg"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 502115
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31238), with no line terminators
Hash 75ee061b5b5cf750fadd0acd0381c2e6
f2b6a60c779f3eb5a59ae11da9f27b7d6e8add2a
9383f081985c99e7dfe117488c4b5d742add7b3232e2fc7a225e5b8a18e05d82
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6bba621e1f55bea6973a122d912b4dfc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
proftrafficcounter.com/stats
35.158.46.84200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP 35.158.46.84:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 480a6e5ed2698688b151db5ae0d0678b
6ef98569e9e28f7c21b0edf8fefa35d85d68ce46
db29aab44f10f5f7384049f6421fa908e6b0475831da3141b4adcceeeb6d0a13
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://uupsanddowns.blogspot.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Sat, 22 Apr 2034 08:56:08 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31253), with no line terminators
Hash 15c83f2d5b4f9a3ac2a9e8726bd26859
8fc11d5e3ec2c04d6ad689faedd36ff704c80cb2
42b0a6993ca1a657a0799e310fc4e3f6fa071dc4f43e5cd34da2c1c7f4888d3f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 49f0a95489645b2f5df2af5ff61174d1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31292), with no line terminators
Hash 621e70f35a0d9027e950cec2d9b9b004
05a5ee2a2e480f436de39791621fea98191f2cba
c872ffe2c52d95e55a14c7bd1fba4712ad02ec17e807857c453cd9d82ccabac9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 311db5d6b60ddce7c8f74cf618c35b83
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hoardjan.com/watch.686364284676.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
172.240.108.84307 Temporary Redirect 0 B URL GET HTTP/1.1 hoardjan.com/watch.686364284676.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 172.240.108.84:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjecthoardjan.com
Fingerprint31:96:61:1B:2B:0A:A1:39:64:A1:39:00:A0:92:69:0E:FE:AD:08:39
ValidityTue, 23 Apr 2024 10:48:41 GMT - Mon, 22 Jul 2024 10:48:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.686364284676.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: hoardjan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://hoardjan.com/watch.686364284676.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=dd44a75d77322b61292fecbbf7d80299ababca2360e90bae66efa7660038dc78278f441de345ec88339af39ab868d15916f73910fa7189c8f5a3878264ceae331250582257f870803440681da60943368d3c42a9c23f66d185b826af4362&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd1b89a364f2630ad0b60d920015ce6a
Strict-Transport-Security: max-age=0; includeSubdomains
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31259), with no line terminators
Hash 513b489e6d5a6798746b1c8a75b1d7c9
7215daea5a9b3e6c0038803beb8b5c551c6f3cb3
e1e0c6ad2dd12bfdb2c806f1b53a7c2ae644f68ac8d0b0b0ac17e23e6dd4c2d5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5eb6887166409035339544af0925691d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hoardjan.com/watch.686364284676.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=dd44a75d77322b61292fecbbf7d80299ababca2360e90bae66efa7660038dc78278f441de345ec88339af39ab868d15916f73910fa7189c8f5a3878264ceae331250582257f870803440681da60943368d3c42a9c23f66d185b826af4362&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
172.240.108.84200 OK 2.0 kB URL GET HTTP/1.1 hoardjan.com/watch.686364284676.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=dd44a75d77322b61292fecbbf7d80299ababca2360e90bae66efa7660038dc78278f441de345ec88339af39ab868d15916f73910fa7189c8f5a3878264ceae331250582257f870803440681da60943368d3c42a9c23f66d185b826af4362&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 172.240.108.84:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjecthoardjan.com
Fingerprint31:96:61:1B:2B:0A:A1:39:64:A1:39:00:A0:92:69:0E:FE:AD:08:39
ValidityTue, 23 Apr 2024 10:48:41 GMT - Mon, 22 Jul 2024 10:48:40 GMT
File type JavaScript source, ASCII text, with very long lines (2533)
Hash f1e534ca9ef1f52ba8954ae5524bbda6
328f5004c5e62426f3a35516a02f3eaecea384d6
22710f9eee04a6a0bb9c962c602b13f232b998ac9a4bf2c53292f7613ff4f6e3
GET /watch.686364284676.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=dd44a75d77322b61292fecbbf7d80299ababca2360e90bae66efa7660038dc78278f441de345ec88339af39ab868d15916f73910fa7189c8f5a3878264ceae331250582257f870803440681da60943368d3c42a9c23f66d185b826af4362&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: hoardjan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:10 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:10 GMT; secure; SameSite=None
iprc78ec19d7fe9cb1d136a5518855f0c1d2=4471848; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1a7fdfddc50f156b949632e540ee627a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
skipdissatisfactionengland.com/watch.1021131697026.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.20307 Temporary Redirect 0 B URL GET HTTP/1.1 skipdissatisfactionengland.com/watch.1021131697026.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectskipdissatisfactionengland.com
Fingerprint0C:F8:6F:97:80:DE:2F:0C:B8:7E:F8:BB:79:80:6A:D9:1E:1F:70:83
ValidityTue, 23 Apr 2024 10:43:21 GMT - Mon, 22 Jul 2024 10:43:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1021131697026.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: skipdissatisfactionengland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:10 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://skipdissatisfactionengland.com/watch.1021131697026.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=8e52a0f44a9b2cfa770abe9380e5278ed26a2f43fa5c301b4decf15ecbb9c18154e6602a3f04b0acb0cf4112596c02c233ff5b94979f6094022054c03042c3364c8b4f32765a270bc964c52fc037fbdd3bb0a7826dea99fd88c0aa7c57b5c0&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:10 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:10 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d158704451bc04d9f57b4b7a1a75632b
Strict-Transport-Security: max-age=0; includeSubdomains
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31268), with no line terminators
Hash a4e1072a3bd22338d7b58767d4dd5dc1
f740c8ec8fffc075c9807c78550c8307722d5d3c
8786dd66f468429fca8035ce43c0121b773e651c526249e2042daa6b561fb87c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 04ad18d86809d40b4f97f8633cc1015e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
skipdissatisfactionengland.com/watch.1021131697026.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=8e52a0f44a9b2cfa770abe9380e5278ed26a2f43fa5c301b4decf15ecbb9c18154e6602a3f04b0acb0cf4112596c02c233ff5b94979f6094022054c03042c3364c8b4f32765a270bc964c52fc037fbdd3bb0a7826dea99fd88c0aa7c57b5c0&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.20200 OK 2.1 kB URL GET HTTP/1.1 skipdissatisfactionengland.com/watch.1021131697026.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=8e52a0f44a9b2cfa770abe9380e5278ed26a2f43fa5c301b4decf15ecbb9c18154e6602a3f04b0acb0cf4112596c02c233ff5b94979f6094022054c03042c3364c8b4f32765a270bc964c52fc037fbdd3bb0a7826dea99fd88c0aa7c57b5c0&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectskipdissatisfactionengland.com
Fingerprint0C:F8:6F:97:80:DE:2F:0C:B8:7E:F8:BB:79:80:6A:D9:1E:1F:70:83
ValidityTue, 23 Apr 2024 10:43:21 GMT - Mon, 22 Jul 2024 10:43:20 GMT
File type JavaScript source, ASCII text, with very long lines (2567)
Hash 9d8cd9899bfcc55b1d19591aea3aa3cc
62965614f095fab56aaefd091a7900108e20e0e2
1b182d2c175bd7f408bb67eb4fe442384c3edd07823cd26eabfee9423af1b51a
GET /watch.1021131697026.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949030&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=8e52a0f44a9b2cfa770abe9380e5278ed26a2f43fa5c301b4decf15ecbb9c18154e6602a3f04b0acb0cf4112596c02c233ff5b94979f6094022054c03042c3364c8b4f32765a270bc964c52fc037fbdd3bb0a7826dea99fd88c0aa7c57b5c0&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: skipdissatisfactionengland.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:11 GMT; secure; SameSite=None
iprc71108e1357bdf5aea713c639e5938268=4471850; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: be0bf84af0d981e67d4a28dff449c028
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/94/aa/09/94aa09b91a894fc0cedf40ac5d66e99b/1711621599.jpg
45.133.44.10200 OK 56 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/94/aa/09/94aa09b91a894fc0cedf40ac5d66e99b/1711621599.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, baseline, precision 8, 728x90, components 3
Hash 7ff2f74f6785665152addbfcb0701dfe
1a341a2611fca540579f151e5b35c6719c4679cb
44009fdc87583404b2a7a687bfe7c0efbc99e094238f0ef4f540f0d9377ed3fb
GET /cti/94/aa/09/94aa09b91a894fc0cedf40ac5d66e99b/1711621599.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:11 GMT
content-type: image/jpeg
content-length: 56390
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:26:47 GMT
etag: "660545e7-dc46"
expires: Fri, 26 Apr 2024 08:56:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
172.240.108.76200 OK 12 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (31241), with no line terminators
Hash 14312dfa7dafbeb2565232d2778225e6
6e64964bae20dae48511af7ce83f0810fdceeed7
9bfca005b93556139326c07df05ed35195155a5108fb53d342187ed697729cc4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ae1dea8ff188b0f1f4fbe01011d3ede4/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5480ed2b477a32c4d1ce60cf89262a40
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
gloomilybench.com/watch.421344916209.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
172.240.108.76307 Temporary Redirect 0 B URL GET HTTP/1.1 gloomilybench.com/watch.421344916209.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectgloomilybench.com
Fingerprint8B:3D:25:A6:C5:6A:D5:E5:6F:C7:B9:56:6E:9E:E1:41:E4:9C:40:32
ValidityTue, 23 Apr 2024 10:47:56 GMT - Mon, 22 Jul 2024 10:47:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.421344916209.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: gloomilybench.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://gloomilybench.com/watch.421344916209.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949031&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=ad14600aeab5dc088af548c658f0d05afddbc310e1372ffc58812be2cc74fca27489024a5c632179ba8763403ae58fa6ca3f52330d0bf418419f83c58a9c302ddd47189ca5303a079e682b6eadf8c57fb6fcb757d46831ab7e796aa1b57a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0b011bdf149cd99ce7fc65ed40d23629
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
216.58.207.227200 OK 18 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2
IP 216.58.207.227:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 17508, version 1.0
Hash 7fbdfaab6bd8b191496ffe1ef1b9e748
e9e592f8498d489d8000f3a4cfb1bb447f251edd
bb8007225d94a099cddbade7ea904667c0dd0b68d5e30778e5c6257589ab94d1
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TjASc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17508
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:40:43 GMT
expires: Fri, 18 Apr 2025 02:40:43 GMT
cache-control: public, max-age=31536000
age: 540928
last-modified: Wed, 11 May 2022 19:24:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/am=Bgx0DA/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP3rowknaAAZiVC9_T1HzkR-nkviyA/m=_b,_tp
142.250.74.105200 OK 65 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/am=Bgx0DA/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP3rowknaAAZiVC9_T1HzkR-nkviyA/m=_b,_tp
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2379)
Hash 4c87df166173d851fef47534242045c2
3d2442323ad55e15407e483bdb49c545c44dc8ef
956e3cefa996caac9dea48c402a936246025a5f607bf77c686281adb76682a24
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/am=Bgx0DA/d=1/excm=_b,_tp,commentformiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP3rowknaAAZiVC9_T1HzkR-nkviyA/m=_b,_tp HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 64910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:46:33 GMT
expires: Thu, 24 Apr 2025 03:46:33 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 540788
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
earliesthuntingtransgress.com/72630cfffca3ea81f586ef5b19564ed6/invoke.js
172.240.108.76200 OK 9.8 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/72630cfffca3ea81f586ef5b19564ed6/invoke.js
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (26542), with no line terminators
Hash c7f7678b8acc04b3ca60355577d35ea6
d58b76531fca7b333f155c6c4259da9a7f0bc936
be849285adf1c3a7294069b4bdd8b64aa85ed316d68d6353f9a458f758564931
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /72630cfffca3ea81f586ef5b19564ed6/invoke.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c4b6552069fd13793bb40bc9a938cc06
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf
216.58.207.227200 OK 21 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf
IP 216.58.207.227:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt
Hash a0d084a3e8176664e75f8eca3ebea96c
324ec20b91392a6871d7846e0ff2972447a1b2b8
a9ef021078603005c0b08fba881f1a7eb62ef213238021f3e8a4a00daa60b9d6
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxP.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:32:49 GMT
expires: Fri, 18 Apr 2025 02:32:49 GMT
cache-control: public, max-age=31536000
age: 541403
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/ttf
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,GkRiKb,e5qFLc,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
142.250.74.105200 OK 102 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,GkRiKb,e5qFLc,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2219)
Size 102 kB (101804 bytes)
Hash 114c56d20fb70f6234b5d52b52c3ffa6
2879999335e547fef10a6f5d732b7795b2b5c02c
c2629fccc8bf38231c5882fe947f16dff487fcc77ded96a7d55f31ffd2150369
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=_b,_tp/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=ws9Tlc,n73qwf,GkRiKb,e5qFLc,IZT63,vfuNJf,UUJqVe,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,COQbmf,fKUV3e,aurFic,U0aPgd,ZwDk9d,V3dDOb,mI3LFb,WO9ee,eD1YLc,gZjhIf,O6y8ed,PrPYRd,MpJwZc,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,hc6Ubd,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,SpsfSb,EFQ78c,Ulmmrd,ZfAoz,mdR7q,wmnU7d,xQtZb,Z5uLle,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,ovKuLd,hKSk3e,MdUzUe,yDVVkb,zbML3c,KG2eXe,zr1jrb,VwDzFe,Uas9Hd,A7fCU,pjICDe HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 101804
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:47:29 GMT
expires: Thu, 24 Apr 2025 03:47:29 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x
142.250.74.105200 OK 27 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (1127)
Hash aeaf78cde1b971f6239bd376069c2b6f
89c973776a889a5c088adf20ea40ee0944322357
21d73eb2d722b05ff0f5d4c767fcb9585fc721edfde71a02613d85db2ee32d7a
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VwDzFe,WO9ee,XVMNvd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=VXdfxd,fgib1c,YwHGTd,pxq3x HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 27360
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:47:29 GMT
expires: Thu, 24 Apr 2025 03:47:29 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18523
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
gloomilybench.com/watch.421344916209.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949031&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=ad14600aeab5dc088af548c658f0d05afddbc310e1372ffc58812be2cc74fca27489024a5c632179ba8763403ae58fa6ca3f52330d0bf418419f83c58a9c302ddd47189ca5303a079e682b6eadf8c57fb6fcb757d46831ab7e796aa1b57a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.13200 OK 2.1 kB URL GET HTTP/1.1 gloomilybench.com/watch.421344916209.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949031&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=ad14600aeab5dc088af548c658f0d05afddbc310e1372ffc58812be2cc74fca27489024a5c632179ba8763403ae58fa6ca3f52330d0bf418419f83c58a9c302ddd47189ca5303a079e682b6eadf8c57fb6fcb757d46831ab7e796aa1b57a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectgloomilybench.com
Fingerprint8B:3D:25:A6:C5:6A:D5:E5:6F:C7:B9:56:6E:9E:E1:41:E4:9C:40:32
ValidityTue, 23 Apr 2024 10:47:56 GMT - Mon, 22 Jul 2024 10:47:55 GMT
File type JavaScript source, ASCII text, with very long lines (2540)
Hash 83a0e0abc368cf52ad35a042ebd82822
2099e929a67935942c15d0d71003e400bbb31706
0a1762581cf2ef379a829bcd41daff0efab4bcbe75e85736a630b847816d9db8
GET /watch.421344916209.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949031&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=ad14600aeab5dc088af548c658f0d05afddbc310e1372ffc58812be2cc74fca27489024a5c632179ba8763403ae58fa6ca3f52330d0bf418419f83c58a9c302ddd47189ca5303a079e682b6eadf8c57fb6fcb757d46831ab7e796aa1b57a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: gloomilybench.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:11 GMT; secure; SameSite=None
iprc9c351fc8c9ff10f163bf0050037cac63=4471847; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5ce9c445b7e89b2753a41979e02ab9c6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=RqjULd
142.250.74.105200 OK 6.4 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=RqjULd
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2956)
Hash cbcc58d94f274761a0ae47045ff44ff9
3024a46b4d12dc020d4748260c923e5e2c0d402a
1b72295a0ac7d9ebea7dbb5f3d0f1b73815724a4b2a567a7514c9ca3c41e13b9
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=RqjULd HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 6412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:47:52 GMT
expires: Thu, 24 Apr 2025 03:47:52 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18500
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=bm51tf
142.250.74.105200 OK 748 B URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=bm51tf
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (744)
Hash 550e1c73a912f2ee4bc1047de5f69261
7a98217138415192eaab79c48805b3751d066b4b
1c2fe0d6bd7b87fbc225b54857f492e2dd0f3c2c31d03d447928d2067e17017b
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=bm51tf HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:47:52 GMT
expires: Thu, 24 Apr 2025 03:47:52 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18500
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
142.250.74.35200 OK 206 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type JavaScript source, ASCII text, with very long lines (631)
Size 206 kB (205803 bytes)
Hash e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:54:48 GMT
expires: Wed, 23 Apr 2025 05:54:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
geargrope.com/watch.318354997542.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.12307 Temporary Redirect 0 B URL GET HTTP/1.1 geargrope.com/watch.318354997542.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectgeargrope.com
Fingerprint6D:F2:BF:86:C6:29:5F:6C:AB:A6:08:AD:8C:7A:35:E2:1C:5B:2D:1C
ValidityTue, 23 Apr 2024 10:45:39 GMT - Mon, 22 Jul 2024 10:45:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.318354997542.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: geargrope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://geargrope.com/watch.318354997542.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=5895ebde9a4825dc11b322e4765739158abd7a945cd560f8cedc70baab1fdeb6360cc68773f280b9acc875fc870980ebfe3fce41c92b1ea4e0e5e86a86b26b7dda6f07a7de99c115dd2346eb8b51d129e15b5c1616723c9a5214f29e09f59197cf4b5a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a9202a9b415c9b0fbfc0ac8c39f721d
Strict-Transport-Security: max-age=0; includeSubdomains
evaluateuncanny.com/watch.80155427070.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.61.227307 Temporary Redirect 0 B URL GET HTTP/1.1 evaluateuncanny.com/watch.80155427070.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectevaluateuncanny.com
FingerprintFA:C8:EC:09:73:C4:B6:E0:EA:76:F1:B4:A3:6D:0D:97:11:91:64:CC
ValidityTue, 23 Apr 2024 10:54:45 GMT - Mon, 22 Jul 2024 10:54:44 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.80155427070.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: evaluateuncanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://evaluateuncanny.com/watch.80155427070.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=35a58301c8d3e74f01ba04a3b467e9e7d3bfc6771cdd857378c0a45a05d647eb3fbe7581ea66f3a41d3d88cf193f0aac0b428706a14bef4d345016a5e0ae5a109982d18f75a075faf92d4570fcab14fae94dfc&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0eb5e10350b3a1a9dab6b23905e1f193
Strict-Transport-Security: max-age=0; includeSubdomains
www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
142.250.74.164200 OK 52 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
IP 142.250.74.164:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File type HTML document, ASCII text, with very long lines (36245)
Hash 50c08ac47226f315c8e95f39a51548e6
de936b1c2f8961edbc4e2f363db3e09bb8f9f0d2
18fff40f42db040c192bae1c36fbd8ba9be36075ce15bb11abab2a1272095034
GET /recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 08:56:12 GMT
content-security-policy: script-src 'nonce-g8r2LKUW9h459ji3Hb5INg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
142.250.74.35200 OK 206 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type JavaScript source, ASCII text, with very long lines (631)
Size 206 kB (205803 bytes)
Hash e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:54:48 GMT
expires: Wed, 23 Apr 2025 05:54:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97284
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
earliesthuntingtransgress.com/ba/7c/fd/ba7cfd9b90abbe4c74ceee95cd035ae0.js
192.243.59.13200 OK 16 kB URL GET HTTP/1.1 earliesthuntingtransgress.com/ba/7c/fd/ba7cfd9b90abbe4c74ceee95cd035ae0.js
IP 192.243.59.13:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectearliesthuntingtransgress.com
FingerprintA8:A0:D6:D1:32:3F:6B:86:6E:77:BB:1B:49:45:79:6C:7F:30:9C:EF
ValidityMon, 04 Mar 2024 11:48:44 GMT - Sun, 02 Jun 2024 11:48:43 GMT
File type JavaScript source, ASCII text, with very long lines (44040), with no line terminators
Hash 000e50722fd80f9cc490c4de4f2d5b2c
9993d7d5c053576ff68665be64f199ac5a48da83
de5bcb32895f2c62fc18b6980568def5039d2907da2f2178d4357e68ceb8eecd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ba/7c/fd/ba7cfd9b90abbe4c74ceee95cd035ae0.js HTTP/1.1
Host: earliesthuntingtransgress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8ec0932ee27fabcbb571591ad249c075
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
geargrope.com/watch.318354997542.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=5895ebde9a4825dc11b322e4765739158abd7a945cd560f8cedc70baab1fdeb6360cc68773f280b9acc875fc870980ebfe3fce41c92b1ea4e0e5e86a86b26b7dda6f07a7de99c115dd2346eb8b51d129e15b5c1616723c9a5214f29e09f59197cf4b5a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.12200 OK 2.1 kB URL GET HTTP/1.1 geargrope.com/watch.318354997542.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=5895ebde9a4825dc11b322e4765739158abd7a945cd560f8cedc70baab1fdeb6360cc68773f280b9acc875fc870980ebfe3fce41c92b1ea4e0e5e86a86b26b7dda6f07a7de99c115dd2346eb8b51d129e15b5c1616723c9a5214f29e09f59197cf4b5a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectgeargrope.com
Fingerprint6D:F2:BF:86:C6:29:5F:6C:AB:A6:08:AD:8C:7A:35:E2:1C:5B:2D:1C
ValidityTue, 23 Apr 2024 10:45:39 GMT - Mon, 22 Jul 2024 10:45:38 GMT
File type JavaScript source, ASCII text, with very long lines (2526)
Hash 69f6b4c042f213f32f63cecdd6669fb6
49aceabf61ec30557af318b707ed94394ef72551
9d979b9c7187166348c239325cfd711676f1d59ac2f268a33a84ebe529aed869
GET /watch.318354997542.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=5895ebde9a4825dc11b322e4765739158abd7a945cd560f8cedc70baab1fdeb6360cc68773f280b9acc875fc870980ebfe3fce41c92b1ea4e0e5e86a86b26b7dda6f07a7de99c115dd2346eb8b51d129e15b5c1616723c9a5214f29e09f59197cf4b5a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: geargrope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:12 GMT; secure; SameSite=None
iprc8b1bf46aec4c87ae48dadb722ba1fc0f=4471853; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e55669da442f983de11ba96953b0b05
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.blogger.com/img/blogger_logo_round_35.png
142.250.74.105200 OK 2.5 kB URL GET HTTP/3 www.blogger.com/img/blogger_logo_round_35.png
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced
Hash 838622483cbfed35380b4705f19d7cca
7de684136affc969a24d61927afc18905cf2fc36
183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:53:38 GMT
expires: Tue, 30 Apr 2024 05:53:38 GMT
cache-control: public, max-age=604800
last-modified: Tue, 23 Apr 2024 03:56:12 GMT
content-type: image/png
age: 97355
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js
142.250.74.164200 OK 7.4 kB URL GET HTTP/3 www.google.com/js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File type JavaScript source, ASCII text, with very long lines (17602)
Hash a881e4c268e13ad20405ae80fca4c36b
dee477906e2c92b4c7747029a2409069b9b676ad
63d2e26aa68933bac804050c4e0f0293f1f97e927ad4a79ac9e6a0e8b310fb77
GET /js/bg/Y9LiaqaJM7rIBAUMTg8Ck_H5fpJ61Keayeag6LMQ-3c.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 7447
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 05:05:57 GMT
expires: Thu, 24 Apr 2025 05:05:57 GMT
cache-control: public, max-age=31536000
age: 13816
last-modified: Tue, 16 Apr 2024 13:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cloudimagesb.com/cti/bd/65/12/bd6512d08c58e732c59bfd4abb075c19/1711621546.mp4
45.133.44.10200 OK 87 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/bd/65/12/bd6512d08c58e732c59bfd4abb075c19/1711621546.mp4
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]
Hash 485e3c0400be28a8c0a2b011c10404a6
54e92dd65f56a8662a71c0c51fa3ccd26148fab5
1acefe6760b3d4415ef02fa9fb2b71a6244e2c862a2d83a6b6fa152aca71cde8
GET /cti/bd/65/12/bd6512d08c58e732c59bfd4abb075c19/1711621546.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:11 GMT
content-type: video/mp4
content-length: 528058
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:25:54 GMT
etag: "660545b2-80eba"
expires: Fri, 26 Apr 2024 08:56:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 540790
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cloudimagesb.com/cti/4a/1e/d8/4a1ed8e2ff519fa6a8bd0e90ddda6b11/1711621664.jpg
45.133.44.10200 OK 69 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4a/1e/d8/4a1ed8e2ff519fa6a8bd0e90ddda6b11/1711621664.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, baseline, precision 8, 728x90, components 3
Hash e14b730e0a2658ed28a3ce670a105a99
d989b38da47a03474882cc6e6175e436c044c134
e64c3eb5c5c59878141b805e025623cb0dd4d0f43cc979b1aedd79f7e7dc5507
GET /cti/4a/1e/d8/4a1ed8e2ff519fa6a8bd0e90ddda6b11/1711621664.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:13 GMT
content-type: image/jpeg
content-length: 69331
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:27:52 GMT
etag: "66054628-10ed3"
expires: Fri, 26 Apr 2024 08:56:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 17:25:07 GMT
expires: Fri, 18 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 487866
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.46200 OK 0 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.46:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Wed, 24 Apr 2024 08:56:13 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.46200 OK 131 B URL POST HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.46:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 842
Origin: https://www.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Wed, 24 Apr 2024 08:56:13 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
142.250.74.35200 OK 206 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type JavaScript source, ASCII text, with very long lines (631)
Size 206 kB (205803 bytes)
Hash e2e79d6b927169d9e0e57e3baecc0993
1299473950b2999ba0b7f39bd5e4a60eafd1819d
231336ed913a5ebd4445b85486e053caf2b81cab91318241375f3f7a245b6c6b
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 205803
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 05:54:48 GMT
expires: Wed, 23 Apr 2025 05:54:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 97285
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
142.250.74.105200 OK 1.7 kB URL GET HTTP/3 www.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk
IP 142.250.74.105:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (732)
Hash 4e0ac302a441962249d984540a21f465
112d687ebad2706ba01834533d77c90ee2f1cfcd
641a14bcd1b572798789f8ae1f60271d39e25e164ff31b282be266ac940213ec
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerCommentUi.en.NDF7UmkalHg.es5.O/ck=boq-blogger.BloggerCommentUi.ApV33UkLunI.L.F4.O/am=Bgx0DA/d=1/exm=A7fCU,BVgquf,COQbmf,EEDORb,EFQ78c,GkRiKb,IZT63,JNoxi,KG2eXe,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,RMhBfe,RqjULd,SdcwHb,SpsfSb,U0aPgd,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,VXdfxd,VwDzFe,WO9ee,XVMNvd,YwHGTd,Z5uLle,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,bm51tf,byfTOb,e5qFLc,eD1YLc,fKUV3e,fgib1c,gZjhIf,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pxq3x,vfuNJf,w9hDv,wmnU7d,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,commentformiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP05kvHtV2Yvim8fDcFlDIVbM1jLRQ/ee=EmZ2Bf:zr1jrb;Erl4fe:FloWmf;JsbNhc:Xd8iUd;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Oj465e:KG2eXe;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;eBAeSb:zbML3c;iFQyKf:vfuNJf;io8t5d:yDVVkb;kMFpHd:OTA3Ae;nAFL3:NTMZac;oGtAuc:sOXFj;pXdRYb:MdUzUe;qddgKe:xQtZb;sP4Vbe:VwDzFe;uY49fb:COQbmf;ul9GGd:VDovNc;wR5FRb:O1Gjze;xqZiqf:wmnU7d;yxTchf:KUM7Z;zxnPse:GkRiKb/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1651
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 03:53:09 GMT
expires: Thu, 24 Apr 2025 03:53:09 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 23 Apr 2024 03:09:18 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18184
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/v-css/13464135-lightbox_bundle.css
142.250.74.105200 OK 6.5 kB URL GET HTTP/3 www.blogger.com/static/v1/v-css/13464135-lightbox_bundle.css
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type ASCII text, with very long lines (35822), with no line terminators
Hash fb7ea6fe6f6b435448fd0eb8a2db2e12
33cc931a5f17975d0a9d259a9608cfc6f75a1a4f
dbcb4b8e7dbaa9d09b7dbee23f9317eba8ae7933be22e798bc054c0c3b16f163
GET /static/v1/v-css/13464135-lightbox_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6525
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 Apr 2024 13:57:24 GMT
expires: Tue, 22 Apr 2025 13:57:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 03:50:25 GMT
content-type: text/css
vary: Accept-Encoding
age: 154729
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.blogger.com/static/v1/jsbin/692272730-lbx.js
142.250.74.105200 OK 122 kB URL GET HTTP/3 www.blogger.com/static/v1/jsbin/692272730-lbx.js
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type JavaScript source, ASCII text, with very long lines (2359)
Size 122 kB (122201 bytes)
Hash d81f8f099ea8bcd47e4645baca943899
10b2f6390e1400c0fde906309b4b5c40592df485
1f10edbc265c5b392c0217fae6eaf1dfac927a786592649786fd27eb1b9ab27a
GET /static/v1/jsbin/692272730-lbx.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 122201
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:56:12 GMT
expires: Wed, 23 Apr 2025 01:56:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:51:51 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 111601
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
evaluateuncanny.com/watch.80155427070.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=35a58301c8d3e74f01ba04a3b467e9e7d3bfc6771cdd857378c0a45a05d647eb3fbe7581ea66f3a41d3d88cf193f0aac0b428706a14bef4d345016a5e0ae5a109982d18f75a075faf92d4570fcab14fae94dfc&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.59.12200 OK 2.0 kB URL GET HTTP/1.1 evaluateuncanny.com/watch.80155427070.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=35a58301c8d3e74f01ba04a3b467e9e7d3bfc6771cdd857378c0a45a05d647eb3fbe7581ea66f3a41d3d88cf193f0aac0b428706a14bef4d345016a5e0ae5a109982d18f75a075faf92d4570fcab14fae94dfc&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectevaluateuncanny.com
FingerprintFA:C8:EC:09:73:C4:B6:E0:EA:76:F1:B4:A3:6D:0D:97:11:91:64:CC
ValidityTue, 23 Apr 2024 10:54:45 GMT - Mon, 22 Jul 2024 10:54:44 GMT
File type JavaScript source, ASCII text, with very long lines (2520)
Hash dd154fcf30048f49efd04d31bbcc155f
207a6f6fcc5e73a5c3d23ef524130ed95ea1f836
992e4f333fec7a11dece787c330552618a1a04882ad6ff9aedd862c5a5aebae2
GET /watch.80155427070.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=35a58301c8d3e74f01ba04a3b467e9e7d3bfc6771cdd857378c0a45a05d647eb3fbe7581ea66f3a41d3d88cf193f0aac0b428706a14bef4d345016a5e0ae5a109982d18f75a075faf92d4570fcab14fae94dfc&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: evaluateuncanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:12 GMT; secure; SameSite=None
iprcdd49aaa8c6b045e79cb8c7ee0d0aa78d=4471849; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1d7cb43b3613c4a1caf5e5e6c99c8757
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
lastlyseaweedgoose.com/watch.418863434297.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
192.243.61.225307 Temporary Redirect 0 B URL GET HTTP/1.1 lastlyseaweedgoose.com/watch.418863434297.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectlastlyseaweedgoose.com
Fingerprint78:42:1C:EB:71:83:F1:5B:2F:AB:31:0E:E2:F9:D1:23:03:14:4B:FA
ValidityTue, 23 Apr 2024 10:52:26 GMT - Mon, 22 Jul 2024 10:52:25 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.418863434297.js?key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&tz=0&dev=e&res=14.2071&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: lastlyseaweedgoose.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://lastlyseaweedgoose.com/watch.418863434297.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=f4057aeeac13db593577b2d695794eb71da6f53c28816242bff4bf862d5c978e6218345eea73a0c43d591c966a11b0052993d295b19ecad9dd11912da9a9f64e95a2f24d2ebaf13cd50c2f9a470e63710687f876177da68fc71f396a3a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
Set-Cookie: u_pl=21954223; expires=Thu, 25 Apr 2024 08:56:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk; expires=Wed, 24 Apr 2024 08:57:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1220cbca6ac8fe803c6667fd6e99e681
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg
45.133.44.10200 OK 64 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, baseline, precision 8, 728x90, components 3
Hash c416d00adf54f22a0a7059110288f1ba
041feade34f9021e60d153b9d82d3d2c5ac8c945
3d5e90fa0e3b161d4b31e354eefebe2e01913b4510ef7975a88be2a39a711d93
GET /cti/4d/d9/00/4dd9001a8b835337ba6f030efe1c7f96/1711621579.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:13 GMT
content-type: image/jpeg
content-length: 63639
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:26:28 GMT
etag: "660545d4-f897"
expires: Fri, 26 Apr 2024 08:56:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
lastlyseaweedgoose.com/watch.418863434297.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=f4057aeeac13db593577b2d695794eb71da6f53c28816242bff4bf862d5c978e6218345eea73a0c43d591c966a11b0052993d295b19ecad9dd11912da9a9f64e95a2f24d2ebaf13cd50c2f9a470e63710687f876177da68fc71f396a3a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
172.240.108.76200 OK 2.1 kB URL GET HTTP/1.1 lastlyseaweedgoose.com/watch.418863434297.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=f4057aeeac13db593577b2d695794eb71da6f53c28816242bff4bf862d5c978e6218345eea73a0c43d591c966a11b0052993d295b19ecad9dd11912da9a9f64e95a2f24d2ebaf13cd50c2f9a470e63710687f876177da68fc71f396a3a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 172.240.108.76:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectlastlyseaweedgoose.com
Fingerprint78:42:1C:EB:71:83:F1:5B:2F:AB:31:0E:E2:F9:D1:23:03:14:4B:FA
ValidityTue, 23 Apr 2024 10:52:26 GMT - Mon, 22 Jul 2024 10:52:25 GMT
File type JavaScript source, ASCII text, with very long lines (2525)
Hash 74a3b010935e843de4c9f92438efed2f
276b7e38f22bb5045ac3a5f981dd5328e92266ce
c7fa88b583b779efebca612ba34a35d221a27cf6ec623f4c263d3bb495d82e99
GET /watch.418863434297.js?dev=e&key=ae1dea8ff188b0f1f4fbe01011d3ede4&kw=%5B%22man%22%2C%22takes%22%2C%22a%22%2C%22selfie%22%2C%22after%22%2C%22catching%22%2C%22another%22%2C%22man%22%2C%22enjoying%22%2C%22his%22%2C%22wife%22%2C%22%E2%80%8Ein%22%2C%22bedd%22%5D&pst=1713949032&refer=https%3A%2F%2Fuupsanddowns.blogspot.com%2F2024%2F01%2Fman-takes-selfie-after-catching-another_12.html&res=14.2071&rmtc=t&shu=f4057aeeac13db593577b2d695794eb71da6f53c28816242bff4bf862d5c978e6218345eea73a0c43d591c966a11b0052993d295b19ecad9dd11912da9a9f64e95a2f24d2ebaf13cd50c2f9a470e63710687f876177da68fc71f396a3a&tz=0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: lastlyseaweedgoose.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
Referer: https://uupsanddowns.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=21954223; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMTk1NDIyMywiayI6ImFlMWRlYThmZjE4OGIwZjFmNGZiZTAxMDExZDNlZGU0Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyNzU4OTk0LCJwaWQiOjY1NDUyOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjoyMywicHQiOjQsInBrIjoidnlyN2FudDhhdSIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3V1cHNhbmRkb3ducy5ibG9nc3BvdC5jb20vMjAyNC8wMS9tYW4tdGFrZXMtc2VsZmllLWFmdGVyLWNhdGNoaW5nLWFub3RoZXJfMTIuaHRtbCIsImFyIjpbXX19.WMglmQcq7cVZ6LgVIJ6fr3ZQMjLY-lDVh7kmMEX6ikk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:13 GMT; secure; SameSite=None
iprc4702e3a41c35b75d025593cc24e8eb2a=4471851; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
pdhtkv23=true; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
uncs23=1; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8959671370cada968ee855e5d86ab21f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/c8/68/98/c868986ca0f948cedda22ae2e481e4c2/1711621620.jpg
45.133.44.10200 OK 68 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/c8/68/98/c868986ca0f948cedda22ae2e481e4c2/1711621620.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, baseline, precision 8, 728x90, components 3
Hash 354368cec8329d42477fc4336b54d80f
ecf74de17c259bc1d63e904996f63178b17f74b4
14c49a8d87a5956d61712ffd956c129b4ee74112501175f2b1b23ea79d66675f
GET /cti/c8/68/98/c868986ca0f948cedda22ae2e481e4c2/1711621620.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:14 GMT
content-type: image/jpeg
content-length: 68086
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:27:08 GMT
etag: "660545fc-109f6"
expires: Fri, 26 Apr 2024 08:56:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
uupsanddowns.blogspot.com/favicon.ico
216.58.207.193200 OK 412 B URL GET HTTP/3 uupsanddowns.blogspot.com/favicon.ico
IP 216.58.207.193:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectmisc-sni.blogspot.com
FingerprintE8:F4:4F:CE:D1:E0:7B:C8:CD:18:45:AA:90:5A:35:8B:D5:CF:66:6B
ValidityMon, 18 Mar 2024 20:01:08 GMT - Mon, 10 Jun 2024 20:01:07 GMT
File type MS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel
Hash 59a0c7b6e4848ccdabcea0636efda02b
30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340
a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: uupsanddowns.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1; sb_main_ba7cfd9b90abbe4c74ceee95cd035ae0=1; sb_count_ba7cfd9b90abbe4c74ceee95cd035ae0=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-security-policy: upgrade-insecure-requests
content-security-policy-report-only: default-src https: blob: data: 'unsafe-inline' 'unsafe-eval'; report-to blogspot; report-uri https://www.blogger.com/cspreport
report-to: {"group":"blogspot","max_age":2592000,"endpoints":[{"url":"https://www.blogger.com/cspreport"}]}
content-type: image/x-icon; charset=UTF-8
expires: Wed, 24 Apr 2024 08:56:14 GMT
date: Wed, 24 Apr 2024 08:56:14 GMT
cache-control: private, max-age=86400
last-modified: Thu, 18 Apr 2024 14:51:57 GMT
etag: W/"7d150c5a52fb9035b714e6b9f661a1fb8f32e3ca27484517deaa6db3b905ff37"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
enrageeyesnoop.com/ntv.json?key=72630cfffca3ea81f586ef5b19564ed6&vstc=4&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
192.243.61.227200 OK 18 kB URL GET HTTP/1.1 enrageeyesnoop.com/ntv.json?key=72630cfffca3ea81f586ef5b19564ed6&vstc=4&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectenrageeyesnoop.com
FingerprintC1:EE:8C:E0:BA:02:53:6A:DD:8B:05:7C:9F:F1:F6:7D:AD:11:5F:12
ValidityTue, 23 Apr 2024 09:09:58 GMT - Mon, 22 Jul 2024 09:09:57 GMT
Hash 060f1b179c18e5cec73eea13d39a0e25
11f7bc67763c2c1aa3e5b0ad66ce10ced5dba5fe
081677b129af3973c9fa5cd6dbb87f34a45bbfa95f7b922694440b8dd2e2c744
GET /ntv.json?key=72630cfffca3ea81f586ef5b19564ed6&vstc=4&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D HTTP/1.1
Host: enrageeyesnoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:14 GMT
Content-Type: application/json
Content-Length: 18328
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=21954278; expires=Thu, 25 Apr 2024 08:56:13 GMT; secure; SameSite=None
uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:14 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:14 GMT; secure; SameSite=None
pdhtkv49=true; expires=Thu, 25 Apr 2024 08:56:14 GMT; secure; SameSite=None
uncs49=1; expires=Thu, 25 Apr 2024 08:56:14 GMT; secure; SameSite=None
nlec72630cfffca3ea81f586ef5b19564ed6=[2229329,2229333,2019380,2229337]; expires=Wed, 24 Apr 2024 08:56:19 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8b13565615cc3650561cdcef57ac8b74
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg
45.133.44.10200 OK 32 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 321x240, components 3
Hash 3528385dd0c31dbd2e5bfc4af7a6bec5
832c580ffd7711115d6c036ab4232f5bd88480a4
bfbfeebfcb679ca578055235614cc679b0757bad272996ef89b7fd5615a2db75
GET /cti/f7/13/0e/f7130e7f47db248dc886c97a1e4c3e2b/1588233482.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:15 GMT
content-type: image/jpeg
content-length: 32471
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:58:05 GMT
etag: "5eaa850d-7ed7"
expires: Fri, 26 Apr 2024 08:56:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg
45.133.44.10200 OK 24 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Hash d71c872fb9f50bd9383abc0721d1d51e
1f69b40ef2f95798b4e0fd738d630ad4319cd739
6b4a622b9de1ffab8fe905fc8c4633994c732476664b5190ceedd62a3795ab08
GET /cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:15 GMT
content-type: image/jpeg
content-length: 24518
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:58:34 GMT
etag: "5eaa852a-5fc6"
expires: Fri, 26 Apr 2024 08:56:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/d7/14/ea/d714ea0356c58a2679ce4074962c0e16/1588233398.jpeg
45.133.44.10200 OK 23 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/d7/14/ea/d714ea0356c58a2679ce4074962c0e16/1588233398.jpeg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Hash 9a2dc4fe2ebb70df2dfb1566d22970b8
b85a5f4ef7bd68b834d03d8b9a552e2e546e8701
1983c705f5f4315c8cd002183eb9ed3c846abed8fc2a6f0a073185c249552efd
GET /cti/d7/14/ea/d714ea0356c58a2679ce4074962c0e16/1588233398.jpeg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:15 GMT
content-type: image/jpeg
content-length: 22757
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:56:41 GMT
etag: "5eaa84b9-58e5"
expires: Fri, 26 Apr 2024 08:56:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg
45.133.44.10200 OK 28 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3
Hash 1dcde64d47d24d151a1433ecf4403dd7
443d6704b5a294e000084d7a8ac823e526093928
d11bcd65a82589c2c31d6fd87cb16ec673dd5640462ad3d20ff53e014a435376
GET /cti/d6/e8/37/d6e83777d7311d26f1ac5b2b62a81218/1588233535.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:15 GMT
content-type: image/jpeg
content-length: 27832
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:58:58 GMT
etag: "5eaa8542-6cb8"
expires: Fri, 26 Apr 2024 08:56:15 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=ba7cfd9b90abbe4c74ceee95cd035ae0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
192.243.61.227200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=ba7cfd9b90abbe4c74ceee95cd035ae0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=ba7cfd9b90abbe4c74ceee95cd035ae0&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:15 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: eeebd58fd2df4b7b4d75942637b45f90
Strict-Transport-Security: max-age=0; includeSubdomains
acknowledgecalculated.com/sbar.json?key=ba7cfd9b90abbe4c74ceee95cd035ae0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
172.240.108.68200 OK 8.3 kB URL GET HTTP/1.1 acknowledgecalculated.com/sbar.json?key=ba7cfd9b90abbe4c74ceee95cd035ae0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash 7550ac9e37789bd9e03dc797d97bd37d
08d2c76fd46e7af4682003d7002d93f028ad330a
ba606f9ed693bfe91dc9bd84aa17b5fd0049232ebad5d84d760f1fd2fae5fad0
GET /sbar.json?key=ba7cfd9b90abbe4c74ceee95cd035ae0&uuid=e966fc26-3928-4d9d-bd72-2fccf50892a5%3A2%3A1 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:15 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://uupsanddowns.blogspot.com
Access-Control-Allow-Origin: https://uupsanddowns.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19958685; expires=Thu, 25 Apr 2024 08:56:15 GMT; secure; SameSite=None
uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; expires=Wed, 01 May 2024 08:56:15 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 08:56:15 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 08:56:15 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 25 Apr 2024 08:56:15 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 25 Apr 2024 08:56:15 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0af6b9362830c68bb3d726d55e4f70f7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzm%2FgR%2BIlahBEkEEUoriz3T0zPTMGCca4Elyz%2BWNQT1JdVT0pt7qrqeqanuwpGpAcRxBET71vNol%2FgujRg0FnAyEExZ2L7ME9evMkBA8iMuPi6Hfo7339XsGr99V7m26PhHB09%2BSrekMqRZfbDb9%2B9I0gOFZflZkb1ofd6K2odaxuBs%2F1oob%2FdP1lwdb1cugHvh%2F4QX1FGpHo4fKMhMxv9oJGz2%2B0wkbQbmFo%2Fjtb58FSD3ywRx6C5NPabe8IJJsgS788Kex6ofNnX0qdooU2GPAbF7L1TJcZ0gVMjIcku7GvhrY7K7egs2tzu9CDf4SxnBLvzi3E2Y19k4gHW3OfsYLIEPMHUA4mEGoCSSdg%2Bgok3yEA4zi9hiy9flqbkl76m6Uzdkpq93%2BDLKek9vMRZOkXJ5Qc1s9r5QqpM4thUkEOJ5D9CXK3jWLjAGS5DVa8C8l%2FIMv3V5GlW2tWaUi%2B%2B6ToRVHCwmip2Qu7Sy3e40sx74RLYcJY0va7vZC25wFJOYFMJlBiBGoPwFkPTnpwiQeXe0j5bp0FQdDxOaN%2Bt8dYk3dEHHE%2FoJ0koIEfdeHY7A4jFPkITI3AzGXk5p1PeLMjmjFrbcZYl%2B9PiXfwERj3LezFCpb%2FH7aYEu%2FshxjwCqUgKC1BSQlKSVAWBOWgusaVDW11nSvr4mC%2Fh%2Fu9WY110d%2Bk13TRFxkBNSMYXm3me%2BTBWaje6T9%2FwbrYrXfCqOmzJEkYbQraDZJ2NxJJOw567agleAQrK0h7ANR62JBT8syj55DLKTn4x3eI6Tas2gaTh0FdAFpWoBcrbGRfO5dbmnGuy8w2YqX7NtdFg%2BkUXFfIixqKS96m2iOPzXf8RO0sBLt3%2FM6h5%2FPxT4fATIXcVHhb3iboq6vjc7okW%2Bd0aclXa3khU7lBZ%2Fs%2FX9BC%2FO%2BzV8SlUht%2B6qQdffoCmxEzePM1YYtVmnGZ9S35%2FITkXJgVbZgg35yyr4v4jLMXTziTuXz1zIsrp9LcCGulziagcmftdzA5JbWnHp4%2F7MPf%2FwppJjCuQurukf2C1Ntg%2BWXYfOHeagKjFpo491C6amzCePFTSQIlFjONK9h%2FzfECjw2dnaay2rRX0Tc10OIKsrTCwFQYqApUjWDdoXGRm3vH7340q48Rq9o4Vqa2FSujPpiHPPtcmJLHf2zN0JuwcrfeaTZ9GvXaQadDRSduhd0kCjilYSsKo4g2UdhpcvRu4y8AAAD%2F%2FwEAAP%2F%2FqX3rNbwEAAA%3D
192.243.61.227200 OK 7 B URL GET HTTP/1.1 enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzm%2FgR%2BIlahBEkEEUoriz3T0zPTMGCca4Elyz%2BWNQT1JdVT0pt7qrqeqanuwpGpAcRxBET71vNol%2FgujRg0FnAyEExZ2L7ME9evMkBA8iMuPi6Hfo7339XsGr99V7m26PhHB09%2BSrekMqRZfbDb9%2B9I0gOFZflZkb1ofd6K2odaxuBs%2F1oob%2FdP1lwdb1cugHvh%2F4QX1FGpHo4fKMhMxv9oJGz2%2B0wkbQbmFo%2Fjtb58FSD3ywRx6C5NPabe8IJJsgS788Kex6ofNnX0qdooU2GPAbF7L1TJcZ0gVMjIcku7GvhrY7K7egs2tzu9CDf4SxnBLvzi3E2Y19k4gHW3OfsYLIEPMHUA4mEGoCSSdg%2Bgok3yEA4zi9hiy9flqbkl76m6Uzdkpq93%2BDLKek9vMRZOkXJ5Qc1s9r5QqpM4thUkEOJ5D9CXK3jWLjAGS5DVa8C8l%2FIMv3V5GlW2tWaUi%2B%2B6ToRVHCwmip2Qu7Sy3e40sx74RLYcJY0va7vZC25wFJOYFMJlBiBGoPwFkPTnpwiQeXe0j5bp0FQdDxOaN%2Bt8dYk3dEHHE%2FoJ0koIEfdeHY7A4jFPkITI3AzGXk5p1PeLMjmjFrbcZYl%2B9PiXfwERj3LezFCpb%2FH7aYEu%2FshxjwCqUgKC1BSQlKSVAWBOWgusaVDW11nSvr4mC%2Fh%2Fu9WY110d%2Bk13TRFxkBNSMYXm3me%2BTBWaje6T9%2FwbrYrXfCqOmzJEkYbQraDZJ2NxJJOw567agleAQrK0h7ANR62JBT8syj55DLKTn4x3eI6Tas2gaTh0FdAFpWoBcrbGRfO5dbmnGuy8w2YqX7NtdFg%2BkUXFfIixqKS96m2iOPzXf8RO0sBLt3%2FM6h5%2FPxT4fATIXcVHhb3iboq6vjc7okW%2Bd0aclXa3khU7lBZ%2Fs%2FX9BC%2FO%2BzV8SlUht%2B6qQdffoCmxEzePM1YYtVmnGZ9S35%2FITkXJgVbZgg35yyr4v4jLMXTziTuXz1zIsrp9LcCGulziagcmftdzA5JbWnHp4%2F7MPf%2FwppJjCuQurukf2C1Ntg%2BWXYfOHeagKjFpo491C6amzCePFTSQIlFjONK9h%2FzfECjw2dnaay2rRX0Tc10OIKsrTCwFQYqApUjWDdoXGRm3vH7340q48Rq9o4Vqa2FSujPpiHPPtcmJLHf2zN0JuwcrfeaTZ9GvXaQadDRSduhd0kCjilYSsKo4g2UdhpcvRu4y8AAAD%2F%2FwEAAP%2F%2FqX3rNbwEAAA%3D
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectenrageeyesnoop.com
FingerprintC1:EE:8C:E0:BA:02:53:6A:DD:8B:05:7C:9F:F1:F6:7D:AD:11:5F:12
ValidityTue, 23 Apr 2024 09:09:58 GMT - Mon, 22 Jul 2024 09:09:57 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutzm%2FgR%2BIlahBEkEEUoriz3T0zPTMGCca4Elyz%2BWNQT1JdVT0pt7qrqeqanuwpGpAcRxBET71vNol%2FgujRg0FnAyEExZ2L7ME9evMkBA8iMuPi6Hfo7339XsGr99V7m26PhHB09%2BSrekMqRZfbDb9%2B9I0gOFZflZkb1ofd6K2odaxuBs%2F1oob%2FdP1lwdb1cugHvh%2F4QX1FGpHo4fKMhMxv9oJGz2%2B0wkbQbmFo%2Fjtb58FSD3ywRx6C5NPabe8IJJsgS788Kex6ofNnX0qdooU2GPAbF7L1TJcZ0gVMjIcku7GvhrY7K7egs2tzu9CDf4SxnBLvzi3E2Y19k4gHW3OfsYLIEPMHUA4mEGoCSSdg%2Bgok3yEA4zi9hiy9flqbkl76m6Uzdkpq93%2BDLKek9vMRZOkXJ5Qc1s9r5QqpM4thUkEOJ5D9CXK3jWLjAGS5DVa8C8l%2FIMv3V5GlW2tWaUi%2B%2B6ToRVHCwmip2Qu7Sy3e40sx74RLYcJY0va7vZC25wFJOYFMJlBiBGoPwFkPTnpwiQeXe0j5bp0FQdDxOaN%2Bt8dYk3dEHHE%2FoJ0koIEfdeHY7A4jFPkITI3AzGXk5p1PeLMjmjFrbcZYl%2B9PiXfwERj3LezFCpb%2FH7aYEu%2FshxjwCqUgKC1BSQlKSVAWBOWgusaVDW11nSvr4mC%2Fh%2Fu9WY110d%2Bk13TRFxkBNSMYXm3me%2BTBWaje6T9%2FwbrYrXfCqOmzJEkYbQraDZJ2NxJJOw567agleAQrK0h7ANR62JBT8syj55DLKTn4x3eI6Tas2gaTh0FdAFpWoBcrbGRfO5dbmnGuy8w2YqX7NtdFg%2BkUXFfIixqKS96m2iOPzXf8RO0sBLt3%2FM6h5%2FPxT4fATIXcVHhb3iboq6vjc7okW%2Bd0aclXa3khU7lBZ%2Fs%2FX9BC%2FO%2BzV8SlUht%2B6qQdffoCmxEzePM1YYtVmnGZ9S35%2FITkXJgVbZgg35yyr4v4jLMXTziTuXz1zIsrp9LcCGulziagcmftdzA5JbWnHp4%2F7MPf%2FwppJjCuQurukf2C1Ntg%2BWXYfOHeagKjFpo491C6amzCePFTSQIlFjONK9h%2FzfECjw2dnaay2rRX0Tc10OIKsrTCwFQYqApUjWDdoXGRm3vH7340q48Rq9o4Vqa2FSujPpiHPPtcmJLHf2zN0JuwcrfeaTZ9GvXaQadDRSduhd0kCjilYSsKo4g2UdhpcvRu4y8AAAD%2F%2FwEAAP%2F%2FqX3rNbwEAAA%3D HTTP/1.1
Host: enrageeyesnoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=21954278; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec72630cfffca3ea81f586ef5b19564ed6=[2229329,2229333,2019380,2229337]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a7bfc0fa1da5b469bcbc4cc27a00874c
Strict-Transport-Security: max-age=0; includeSubdomains
enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t%2FAj8RL1CCIEAZRiOLOdvfM9MwYJBjjSnDN5o9BPUl1VfWk3OqupqprerKnaFByHEEQPfW%2B2ST%2BCWJuejDobCCERTFzkT24Ry%2BKFyF4EJFZF1e%2Fy%2Fe%2Beq%2Fg1fvqnTW3TUI4unX8Jb0qlaIL7YZfP%2FxqEBypL8nMDevDbvR61DpSN4One1HDf6L%2BgmAreiH0A98P%2FKC%2BKI1I9HBhRkLm13tBo%2Bc3WmEjaLcwNP%2BdrfNgqQc%2B2CYPQPJp7ZZ3EJJNkKWfHxd2pdD5U8%2BnTtFCGwz4tXPZSqbLDOkeTIyHJLu2q4a2dxdvQmdXduxCD%2F4RxnJKvNs3EWfXdk0iHqzv%2BIwVRIaY34dyMIFQE0g6AdOXIPldAjCOk8vI0qsntSnphb9ZOmOnpHbvN8hySmo%2FHkSWfnZMyWH9rFaukDqzGCYV5HAC2Z8gdxsoVucgyw2w4i1I%2Fh1ZuLeELF1ftkpD8q3HRC%2BKEhZG881e2J1v8R6fj3knnA8TxpK23%2B2FtL0TkJQTyGQCJUagdg7OenDSg0s8uNxDyrfqLAiCjs8Z9bs9xpq8I%2BKI%2BwHtJAEN%2FKgLx2ZvGKHIR2BqBGYuIjdvfsSbHdGMWWstxop8d0q8fQ%2FBuK9hz1ew%2FP%2BwxZR4p9%2FHgFcoBUFpCUpKUEqCsiAoB9UVrmxoq6tcWRcHuz3c7c1qrIv%2BGr2ii77ICKgZwfBqLd8m989C9U7%2B%2BRNWxFa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2jlQ62FVTsmTD59BLqdk3x%2FfIKYbsGoDTB4AdQFoWYGer7CafelcbmnGuS4z24iV7ttcFw2mU3BdIS9qKC54a2qbPLKz40dr5yDY5tHb%2B5%2FJxz%2FsBzMVclPhDXmLoK8uj8%2Fokqyf0aUlN5bzQqZylc72f7aghfjfJy%2BKC6U2%2FMRxO%2Fr4WTYjZvD6y8IWSzTjMutb8ukxybkwi9owQb46YV8R8Slnzx9zJnP50qnnFk%2BkuRHWSp1NQOXd5d%2FB5JTUHn9w52Mf%2BPZXSDOBcRVSt0l2C1JvgOUXYfPNozd%2BfvvQF6d%2FgdUERu1p4nwOpavGJoz3DpUkUGJvpnEF%2B6853sNjQ2e3qazW7GX0TQ20uIQsrTAwFQaqAlUjWLd%2FXORm8%2BidD2b1IWJVG8fK1NZjZdR7s5BP7yQ9JYe%2Bb83Qa7Byq95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Gly%2BE7jLwAAAP%2F%2FAQAA%2F%2F%2Br2AS%2FvAQAAA%3D%3D
192.243.59.20200 OK 7 B URL GET HTTP/1.1 enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t%2FAj8RL1CCIEAZRiOLOdvfM9MwYJBjjSnDN5o9BPUl1VfWk3OqupqprerKnaFByHEEQPfW%2B2ST%2BCWJuejDobCCERTFzkT24Ry%2BKFyF4EJFZF1e%2Fy%2Fe%2Beq%2Fg1fvqnTW3TUI4unX8Jb0qlaIL7YZfP%2FxqEBypL8nMDevDbvR61DpSN4One1HDf6L%2BgmAreiH0A98P%2FKC%2BKI1I9HBhRkLm13tBo%2Bc3WmEjaLcwNP%2BdrfNgqQc%2B2CYPQPJp7ZZ3EJJNkKWfHxd2pdD5U8%2BnTtFCGwz4tXPZSqbLDOkeTIyHJLu2q4a2dxdvQmdXduxCD%2F4RxnJKvNs3EWfXdk0iHqzv%2BIwVRIaY34dyMIFQE0g6AdOXIPldAjCOk8vI0qsntSnphb9ZOmOnpHbvN8hySmo%2FHkSWfnZMyWH9rFaukDqzGCYV5HAC2Z8gdxsoVucgyw2w4i1I%2Fh1ZuLeELF1ftkpD8q3HRC%2BKEhZG881e2J1v8R6fj3knnA8TxpK23%2B2FtL0TkJQTyGQCJUagdg7OenDSg0s8uNxDyrfqLAiCjs8Z9bs9xpq8I%2BKI%2BwHtJAEN%2FKgLx2ZvGKHIR2BqBGYuIjdvfsSbHdGMWWstxop8d0q8fQ%2FBuK9hz1ew%2FP%2BwxZR4p9%2FHgFcoBUFpCUpKUEqCsiAoB9UVrmxoq6tcWRcHuz3c7c1qrIv%2BGr2ii77ICKgZwfBqLd8m989C9U7%2B%2BRNWxFa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2jlQ62FVTsmTD59BLqdk3x%2FfIKYbsGoDTB4AdQFoWYGer7CafelcbmnGuS4z24iV7ttcFw2mU3BdIS9qKC54a2qbPLKz40dr5yDY5tHb%2B5%2FJxz%2FsBzMVclPhDXmLoK8uj8%2Fokqyf0aUlN5bzQqZylc72f7aghfjfJy%2BKC6U2%2FMRxO%2Fr4WTYjZvD6y8IWSzTjMutb8ukxybkwi9owQb46YV8R8Slnzx9zJnP50qnnFk%2BkuRHWSp1NQOXd5d%2FB5JTUHn9w52Mf%2BPZXSDOBcRVSt0l2C1JvgOUXYfPNozd%2BfvvQF6d%2FgdUERu1p4nwOpavGJoz3DpUkUGJvpnEF%2B6853sNjQ2e3qazW7GX0TQ20uIQsrTAwFQaqAlUjWLd%2FXORm8%2BidD2b1IWJVG8fK1NZjZdR7s5BP7yQ9JYe%2Bb83Qa7Byq95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Gly%2BE7jLwAAAP%2F%2FAQAA%2F%2F%2Br2AS%2FvAQAAA%3D%3D
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectenrageeyesnoop.com
FingerprintC1:EE:8C:E0:BA:02:53:6A:DD:8B:05:7C:9F:F1:F6:7D:AD:11:5F:12
ValidityTue, 23 Apr 2024 09:09:58 GMT - Mon, 22 Jul 2024 09:09:57 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3t%2FAj8RL1CCIEAZRiOLOdvfM9MwYJBjjSnDN5o9BPUl1VfWk3OqupqprerKnaFByHEEQPfW%2B2ST%2BCWJuejDobCCERTFzkT24Ry%2BKFyF4EJFZF1e%2Fy%2Fe%2Beq%2Fg1fvqnTW3TUI4unX8Jb0qlaIL7YZfP%2FxqEBypL8nMDevDbvR61DpSN4One1HDf6L%2BgmAreiH0A98P%2FKC%2BKI1I9HBhRkLm13tBo%2Bc3WmEjaLcwNP%2BdrfNgqQc%2B2CYPQPJp7ZZ3EJJNkKWfHxd2pdD5U8%2BnTtFCGwz4tXPZSqbLDOkeTIyHJLu2q4a2dxdvQmdXduxCD%2F4RxnJKvNs3EWfXdk0iHqzv%2BIwVRIaY34dyMIFQE0g6AdOXIPldAjCOk8vI0qsntSnphb9ZOmOnpHbvN8hySmo%2FHkSWfnZMyWH9rFaukDqzGCYV5HAC2Z8gdxsoVucgyw2w4i1I%2Fh1ZuLeELF1ftkpD8q3HRC%2BKEhZG881e2J1v8R6fj3knnA8TxpK23%2B2FtL0TkJQTyGQCJUagdg7OenDSg0s8uNxDyrfqLAiCjs8Z9bs9xpq8I%2BKI%2BwHtJAEN%2FKgLx2ZvGKHIR2BqBGYuIjdvfsSbHdGMWWstxop8d0q8fQ%2FBuK9hz1ew%2FP%2BwxZR4p9%2FHgFcoBUFpCUpKUEqCsiAoB9UVrmxoq6tcWRcHuz3c7c1qrIv%2BGr2ii77ICKgZwfBqLd8m989C9U7%2B%2BRNWxFa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2jlQ62FVTsmTD59BLqdk3x%2FfIKYbsGoDTB4AdQFoWYGer7CafelcbmnGuS4z24iV7ttcFw2mU3BdIS9qKC54a2qbPLKz40dr5yDY5tHb%2B5%2FJxz%2FsBzMVclPhDXmLoK8uj8%2Fokqyf0aUlN5bzQqZylc72f7aghfjfJy%2BKC6U2%2FMRxO%2Fr4WTYjZvD6y8IWSzTjMutb8ukxybkwi9owQb46YV8R8Slnzx9zJnP50qnnFk%2BkuRHWSp1NQOXd5d%2FB5JTUHn9w52Mf%2BPZXSDOBcRVSt0l2C1JvgOUXYfPNozd%2BfvvQF6d%2FgdUERu1p4nwOpavGJoz3DpUkUGJvpnEF%2B6853sNjQ2e3qazW7GX0TQ20uIQsrTAwFQaqAlUjWLd%2FXORm8%2BidD2b1IWJVG8fK1NZjZdR7s5BP7yQ9JYe%2Bb83Qa7Byq95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Gly%2BE7jLwAAAP%2F%2FAQAA%2F%2F%2Br2AS%2FvAQAAA%3D%3D HTTP/1.1
Host: enrageeyesnoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=21954278; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec72630cfffca3ea81f586ef5b19564ed6=[2229329,2229333,2019380,2229337]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fd309065311dc99e3a2ff906260f87e6
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
188.114.96.1200 OK 591 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/img/close.png
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced
Hash 9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: image/png
content-length: 591
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: "65aa84fe-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6033069
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yPmPZXSf8qzOYvkLo7b%2FkcVDA72kk1K1XPQtva%2BSsiQhN5Ji7%2FC3ppTWb1heB9ouRtqWAsdkrUo7pYDbky%2FTrxfLOrsWIU%2Fw97eQibjPlf2UAeWNCOFCjnwyCvk6BFCW8JCslRTfg76j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e10cae02568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
45.133.44.10200 OK 16 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Hash 14cf262fabfd850855c42847d14fe775
2fafa28f167f018a0fb1f261f47380c8810803c9
972004ebada4077c3a4d03dcb45175ea467faf54da72be727a1c5c75e688b8af
GET /si/07/9c/1b/079c1b9b48633e3ef398faef0739f24f/1701651986.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: image/png
content-length: 16093
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:06:35 GMT
etag: "656d261b-3edd"
expires: Fri, 26 Apr 2024 08:56:16 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=126
172.240.108.68200 OK 0 B URL GET HTTP/1.1 acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=126
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F0c%2Fc8%2Fe1%2F0cc8e13ba9d5dbc867b982993e805a9d%2F1632728593.html&l=1325&fd=126 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
acknowledgecalculated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSu3ixIEEQlCBKEOXiI4s5298z0TJtDMMaVxTUbk4jepLqqelJudVdT1TU9WS%2FBgAS8jN6F3m82CWqQ5Khg0NmASEDIeNqDe%2FEfKOTkQWYcHH2Heu%2FV9xV89b33yZ47IiEcPTz3tt6VStH1TtNvnHo%2FCE43tmTuho1hL%2Fogap9umMGrcdT0X2q8KdiOXg%2F9wPcDP2hsSCNSPVyfgZDFnThoxn6zHTaDThtD8%2F%2FeOg%2BWeuCDI%2FIsJJ%2BuPvBOQLIJ8uzuOWF3Sl288kbmFC21wYDffjffyXWVI1uWqfGQ5rcXbGj7aOM%2BdH5zLhd68C8xkVPi%2FXQfSX57IRLJYH%2BuM1EQORL%2BJKrBBEJNIOkETF%2BH5I8IwDjObyPPbp3XpqJX%2F0HpDJ2S1cd%2FQlZTsvrbCeTZN2eVHDYuaeVKqXOLYVpDDieQ%2FQkKd4BydwWyOgArP4bkv5D1x1vIs%2F1tqzQkP3xRxFGUsjBaa8Vhb63NY76W8G64FqaMpR2%2FF4e0MzdIyglkOoESI1C7Amc9OOnBpR5c4SHjhw0WBEHX54z6vZixFu%2BKJOJ%2BQLtpQAM%2F6sGx2R9GKIsRmBqBmWsozDXsyM%2BmxDv%2BHIz7AfZKDcufgC2nxHvnIwx4jUoQVJagogSVJKhKgmpQ3%2BTKhra%2BxZV1SbDI4SK36rEu%2B3v0pi77IiegZgTD673iiDwzc9LzP%2F0CO%2BKwkdAuS3mcxD5NEtFm3TYTQsQdxv1WhwofVtaQdgXUetiVU%2FLy8xdRyCk5%2FtePSOgBrDoAk0%2BDuhdAqxr0So3d%2FFvnCktzznWV22aidN8WumwynYHrGkW5ivKqt6eOyMn5YDe370Gwh2d%2Bb80DzNQoTI0P5QOCvroxvqgrsn9RV5bc2y5KmcldOhv6pZKW4thXb4mrlTZ885wdffkamwGz8s5lYcstmnOZ9y35%2BqzkXJgNbZgg32%2Fa90RywdkrZ53JXbF14fWNzawwwlqp8wnobH%2F%2FMGBySp46eXm%2Bz6e%2BuwBpJjCuRuYekkVA6glYcQ22WOq3msCoJScpPFSuHpswWV4qSaDEsqdJDfufPlnWY0Nnr6ms9%2BwN9M0KaHkdeVZjYGoMVA2qRrDu2LgszMMzvy5kJGplnCizsp8ooz6f2zw77sLKw0a31fJpFHeCbpeKbtIOe2kUcErDdhRGEW2htNP01M%2FrfwMAAP%2F%2FAQAA%2F%2F9qAGPGqQQAAA%3D%3D
172.240.108.68200 OK 7 B URL GET HTTP/1.1 acknowledgecalculated.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSu3ixIEEQlCBKEOXiI4s5298z0TJtDMMaVxTUbk4jepLqqelJudVdT1TU9WS%2FBgAS8jN6F3m82CWqQ5Khg0NmASEDIeNqDe%2FEfKOTkQWYcHH2Heu%2FV9xV89b33yZ47IiEcPTz3tt6VStH1TtNvnHo%2FCE43tmTuho1hL%2Fogap9umMGrcdT0X2q8KdiOXg%2F9wPcDP2hsSCNSPVyfgZDFnThoxn6zHTaDThtD8%2F%2FeOg%2BWeuCDI%2FIsJJ%2BuPvBOQLIJ8uzuOWF3Sl288kbmFC21wYDffjffyXWVI1uWqfGQ5rcXbGj7aOM%2BdH5zLhd68C8xkVPi%2FXQfSX57IRLJYH%2BuM1EQORL%2BJKrBBEJNIOkETF%2BH5I8IwDjObyPPbp3XpqJX%2F0HpDJ2S1cd%2FQlZTsvrbCeTZN2eVHDYuaeVKqXOLYVpDDieQ%2FQkKd4BydwWyOgArP4bkv5D1x1vIs%2F1tqzQkP3xRxFGUsjBaa8Vhb63NY76W8G64FqaMpR2%2FF4e0MzdIyglkOoESI1C7Amc9OOnBpR5c4SHjhw0WBEHX54z6vZixFu%2BKJOJ%2BQLtpQAM%2F6sGx2R9GKIsRmBqBmWsozDXsyM%2BmxDv%2BHIz7AfZKDcufgC2nxHvnIwx4jUoQVJagogSVJKhKgmpQ3%2BTKhra%2BxZV1SbDI4SK36rEu%2B3v0pi77IiegZgTD673iiDwzc9LzP%2F0CO%2BKwkdAuS3mcxD5NEtFm3TYTQsQdxv1WhwofVtaQdgXUetiVU%2FLy8xdRyCk5%2FtePSOgBrDoAk0%2BDuhdAqxr0So3d%2FFvnCktzznWV22aidN8WumwynYHrGkW5ivKqt6eOyMn5YDe370Gwh2d%2Bb80DzNQoTI0P5QOCvroxvqgrsn9RV5bc2y5KmcldOhv6pZKW4thXb4mrlTZ885wdffkamwGz8s5lYcstmnOZ9y35%2BqzkXJgNbZgg32%2Fa90RywdkrZ53JXbF14fWNzawwwlqp8wnobH%2F%2FMGBySp46eXm%2Bz6e%2BuwBpJjCuRuYekkVA6glYcQ22WOq3msCoJScpPFSuHpswWV4qSaDEsqdJDfufPlnWY0Nnr6ms9%2BwN9M0KaHkdeVZjYGoMVA2qRrDu2LgszMMzvy5kJGplnCizsp8ooz6f2zw77sLKw0a31fJpFHeCbpeKbtIOe2kUcErDdhRGEW2htNP01M%2FrfwMAAP%2F%2FAQAA%2F%2F9qAGPGqQQAAA%3D%3D
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQYscRRSu3ixIEEQlCBKEOXiI4s5298z0TJtDMMaVxTUbk4jepLqqelJudVdT1TU9WS%2FBgAS8jN6F3m82CWqQ5Khg0NmASEDIeNqDe%2FEfKOTkQWYcHH2Heu%2FV9xV89b33yZ47IiEcPTz3tt6VStH1TtNvnHo%2FCE43tmTuho1hL%2Fogap9umMGrcdT0X2q8KdiOXg%2F9wPcDP2hsSCNSPVyfgZDFnThoxn6zHTaDThtD8%2F%2FeOg%2BWeuCDI%2FIsJJ%2BuPvBOQLIJ8uzuOWF3Sl288kbmFC21wYDffjffyXWVI1uWqfGQ5rcXbGj7aOM%2BdH5zLhd68C8xkVPi%2FXQfSX57IRLJYH%2BuM1EQORL%2BJKrBBEJNIOkETF%2BH5I8IwDjObyPPbp3XpqJX%2F0HpDJ2S1cd%2FQlZTsvrbCeTZN2eVHDYuaeVKqXOLYVpDDieQ%2FQkKd4BydwWyOgArP4bkv5D1x1vIs%2F1tqzQkP3xRxFGUsjBaa8Vhb63NY76W8G64FqaMpR2%2FF4e0MzdIyglkOoESI1C7Amc9OOnBpR5c4SHjhw0WBEHX54z6vZixFu%2BKJOJ%2BQLtpQAM%2F6sGx2R9GKIsRmBqBmWsozDXsyM%2BmxDv%2BHIz7AfZKDcufgC2nxHvnIwx4jUoQVJagogSVJKhKgmpQ3%2BTKhra%2BxZV1SbDI4SK36rEu%2B3v0pi77IiegZgTD673iiDwzc9LzP%2F0CO%2BKwkdAuS3mcxD5NEtFm3TYTQsQdxv1WhwofVtaQdgXUetiVU%2FLy8xdRyCk5%2FtePSOgBrDoAk0%2BDuhdAqxr0So3d%2FFvnCktzznWV22aidN8WumwynYHrGkW5ivKqt6eOyMn5YDe370Gwh2d%2Bb80DzNQoTI0P5QOCvroxvqgrsn9RV5bc2y5KmcldOhv6pZKW4thXb4mrlTZ885wdffkamwGz8s5lYcstmnOZ9y35%2BqzkXJgNbZgg32%2Fa90RywdkrZ53JXbF14fWNzawwwlqp8wnobH%2F%2FMGBySp46eXm%2Bz6e%2BuwBpJjCuRuYekkVA6glYcQ22WOq3msCoJScpPFSuHpswWV4qSaDEsqdJDfufPlnWY0Nnr6ms9%2BwN9M0KaHkdeVZjYGoMVA2qRrDu2LgszMMzvy5kJGplnCizsp8ooz6f2zw77sLKw0a31fJpFHeCbpeKbtIOe2kUcErDdhRGEW2htNP01M%2FrfwMAAP%2F%2FAQAA%2F%2F9qAGPGqQQAAA%3D%3D HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:15 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 47bf65f26802204e01ee28826bcb993f
Strict-Transport-Security: max-age=0; includeSubdomains
enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjgOSeIkaBBFkEIUo7mx3z0zPjEGCMa4E12x%2BDOpJqquqJ%2BVWdzVVXdOTPUUDkuMIguip580m8SeIHj0YdDYQQlDMXGQP7tGrByF4EJHZLI5%2Bh%2F6%2B1%2B8VvHpffTB2OySEo9vHX9cbUim63G749cNvBcGR%2BqrM3LA%2B7EbvRK0jdTN4oRc1%2FGfrrwq2rpdDP%2FD9wA%2FqK9KIRA%2BX5yRkfr0XNHp%2BoxU2gnYLQ%2FN%2FbJ0HSz3wwQ55BJLPaje9Q5Bsiiz9%2Briw64XOn38ldYoW2mDAr53L1jNdZkgXY2I8JNm1PTW0vbtyAzq7smsXevCvMJYz4t26gTi7tmcS8WBz12esIDLE%2FCGUgymEmkLSKZi%2BBMnvEoBxnFxDll49qU1JL9xn6Zydkdq9PyDLGan9eghZ%2BtUxJYf1s1q5QurMYphUkMMpZH%2BK3G2h2NgHWW6BFe9D8p%2FI8r1VZOnmmlUakm8%2FLXpRlLAwWmr2wu5Si%2Ff4Usw74VKYMJa0%2FW4vpO3dgKScQiZTKDECtfvgrAcnPbjEg8s9pHy7zoIg6PicUb%2FbY6zJOyKOuB%2FQThLQwI%2B6cGx%2BhxGKfASmRmDmInLz3me82RHNmLXGMdblhzPi7X8Mxn0Pe76C5Q%2FCFjPinf4YA16hFASlJSgpQSkJyoKgHFRXuLKhra5yZV0c7PVwrzeriS76Y3pFF32REVAzguHVON8hD89D9U7%2B%2FRvWxXa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2n2g1sOGnJHnHj%2BDXM7I%2Fr9%2BQEy3YNUWmDwI6gLQsgI9X2Ej%2B9a53NKMc11mthEr3be5LhpMp%2BC6Ql7UUFzwxmqHPLG746dqb0OwO0dvHXgxn%2FxyAMxUyE2Fd%2BVNgr66PDmjS7J5RpeWfLOWFzKVG3S%2B%2F7MFLcQDX7wmLpTa8BPH7ejzl9icmI%2FX3xC2WKUZl1nfki%2BPSc6FWdGGCfLdCfumiE85e%2F6YM5nLV0%2B9vHIizY2wVupsCirvrv0JJmek9syjuw%2F74I%2B%2FQ5opjKuQujtkryD1Flh%2BETZfuLeawKiFJs5rKF01MWG8%2BKkkgRILTOMK9j84XswTQ%2BenqazG9jL6pgZaXEKWVhiYCgNVgaoRrDswKXJz5%2BjtT%2Bb1KWJVm8TK1DZjZdRH85BPzz%2FnZuTJn1v3M7dyu95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Fly%2BHbjHwAAAP%2F%2FAQAA%2F%2F9v6t66vAQAAA%3D%3D
192.243.61.227200 OK 7 B URL GET HTTP/1.1 enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjgOSeIkaBBFkEIUo7mx3z0zPjEGCMa4E12x%2BDOpJqquqJ%2BVWdzVVXdOTPUUDkuMIguip580m8SeIHj0YdDYQQlDMXGQP7tGrByF4EJHZLI5%2Bh%2F6%2B1%2B8VvHpffTB2OySEo9vHX9cbUim63G749cNvBcGR%2BqrM3LA%2B7EbvRK0jdTN4oRc1%2FGfrrwq2rpdDP%2FD9wA%2FqK9KIRA%2BX5yRkfr0XNHp%2BoxU2gnYLQ%2FN%2FbJ0HSz3wwQ55BJLPaje9Q5Bsiiz9%2Briw64XOn38ldYoW2mDAr53L1jNdZkgXY2I8JNm1PTW0vbtyAzq7smsXevCvMJYz4t26gTi7tmcS8WBz12esIDLE%2FCGUgymEmkLSKZi%2BBMnvEoBxnFxDll49qU1JL9xn6Zydkdq9PyDLGan9eghZ%2BtUxJYf1s1q5QurMYphUkMMpZH%2BK3G2h2NgHWW6BFe9D8p%2FI8r1VZOnmmlUakm8%2FLXpRlLAwWmr2wu5Si%2Ff4Usw74VKYMJa0%2FW4vpO3dgKScQiZTKDECtfvgrAcnPbjEg8s9pHy7zoIg6PicUb%2FbY6zJOyKOuB%2FQThLQwI%2B6cGx%2BhxGKfASmRmDmInLz3me82RHNmLXGMdblhzPi7X8Mxn0Pe76C5Q%2FCFjPinf4YA16hFASlJSgpQSkJyoKgHFRXuLKhra5yZV0c7PVwrzeriS76Y3pFF32REVAzguHVON8hD89D9U7%2B%2FRvWxXa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2n2g1sOGnJHnHj%2BDXM7I%2Fr9%2BQEy3YNUWmDwI6gLQsgI9X2Ej%2B9a53NKMc11mthEr3be5LhpMp%2BC6Ql7UUFzwxmqHPLG746dqb0OwO0dvHXgxn%2FxyAMxUyE2Fd%2BVNgr66PDmjS7J5RpeWfLOWFzKVG3S%2B%2F7MFLcQDX7wmLpTa8BPH7ejzl9icmI%2FX3xC2WKUZl1nfki%2BPSc6FWdGGCfLdCfumiE85e%2F6YM5nLV0%2B9vHIizY2wVupsCirvrv0JJmek9syjuw%2F74I%2B%2FQ5opjKuQujtkryD1Flh%2BETZfuLeawKiFJs5rKF01MWG8%2BKkkgRILTOMK9j84XswTQ%2BenqazG9jL6pgZaXEKWVhiYCgNVgaoRrDswKXJz5%2BjtT%2Bb1KWJVm8TK1DZjZdRH85BPzz%2FnZuTJn1v3M7dyu95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Fly%2BHbjHwAAAP%2F%2FAQAA%2F%2F9v6t66vAQAAA%3D%3D
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectenrageeyesnoop.com
FingerprintC1:EE:8C:E0:BA:02:53:6A:DD:8B:05:7C:9F:F1:F6:7D:AD:11:5F:12
ValidityTue, 23 Apr 2024 09:09:58 GMT - Mon, 22 Jul 2024 09:09:57 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjgOSeIkaBBFkEIUo7mx3z0zPjEGCMa4E12x%2BDOpJqquqJ%2BVWdzVVXdOTPUUDkuMIguip580m8SeIHj0YdDYQQlDMXGQP7tGrByF4EJHZLI5%2Bh%2F6%2B1%2B8VvHpffTB2OySEo9vHX9cbUim63G749cNvBcGR%2BqrM3LA%2B7EbvRK0jdTN4oRc1%2FGfrrwq2rpdDP%2FD9wA%2FqK9KIRA%2BX5yRkfr0XNHp%2BoxU2gnYLQ%2FN%2FbJ0HSz3wwQ55BJLPaje9Q5Bsiiz9%2Briw64XOn38ldYoW2mDAr53L1jNdZkgXY2I8JNm1PTW0vbtyAzq7smsXevCvMJYz4t26gTi7tmcS8WBz12esIDLE%2FCGUgymEmkLSKZi%2BBMnvEoBxnFxDll49qU1JL9xn6Zydkdq9PyDLGan9eghZ%2BtUxJYf1s1q5QurMYphUkMMpZH%2BK3G2h2NgHWW6BFe9D8p%2FI8r1VZOnmmlUakm8%2FLXpRlLAwWmr2wu5Si%2Ff4Usw74VKYMJa0%2FW4vpO3dgKScQiZTKDECtfvgrAcnPbjEg8s9pHy7zoIg6PicUb%2FbY6zJOyKOuB%2FQThLQwI%2B6cGx%2BhxGKfASmRmDmInLz3me82RHNmLXGMdblhzPi7X8Mxn0Pe76C5Q%2FCFjPinf4YA16hFASlJSgpQSkJyoKgHFRXuLKhra5yZV0c7PVwrzeriS76Y3pFF32REVAzguHVON8hD89D9U7%2B%2FRvWxXa9E0ZNnyVJwmhT0G6QtLuRSNpx0GtHLcEjWFlB2n2g1sOGnJHnHj%2BDXM7I%2Fr9%2BQEy3YNUWmDwI6gLQsgI9X2Ej%2B9a53NKMc11mthEr3be5LhpMp%2BC6Ql7UUFzwxmqHPLG746dqb0OwO0dvHXgxn%2FxyAMxUyE2Fd%2BVNgr66PDmjS7J5RpeWfLOWFzKVG3S%2B%2F7MFLcQDX7wmLpTa8BPH7ejzl9icmI%2FX3xC2WKUZl1nfki%2BPSc6FWdGGCfLdCfumiE85e%2F6YM5nLV0%2B9vHIizY2wVupsCirvrv0JJmek9syjuw%2F74I%2B%2FQ5opjKuQujtkryD1Flh%2BETZfuLeawKiFJs5rKF01MWG8%2BKkkgRILTOMK9j84XswTQ%2BenqazG9jL6pgZaXEKWVhiYCgNVgaoRrDswKXJz5%2BjtT%2Bb1KWJVm8TK1DZjZdRH85BPzz%2FnZuTJn1v3M7dyu95pNn0a9dpBp0NFJ26F3SQKOKVhKwqjiDZR2Fly%2BHbjHwAAAP%2F%2FAQAA%2F%2F9v6t66vAQAAA%3D%3D HTTP/1.1
Host: enrageeyesnoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=21954278; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec72630cfffca3ea81f586ef5b19564ed6=[2229329,2229333,2019380,2229337]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7b4227004638228731e48bd617ad8f97
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
188.114.96.1200 OK 4.9 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/animate.css
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash 3d4123dbfb33d27a5cfdfcfa91df6783
e7d0eeeec54b848f0bc3da8685fa3bc88429d660
cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887
GET /sb/ssp/vpn/classic-push/small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DCpKQCltLijmUC7YzrkXp8VLBnW2iTTuE%2BRbTHl0A9kpxfl38mimCie5%2BZhfwMy3Na5diCEh3jeePRcJa87aK6aUefvDSrVMoACH1cgE63D4Mx%2B8AMnMKwwWAZ7L5EwBQdT%2B92huaDGn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e10c4db4568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=349
172.240.108.68200 OK 0 B URL GET HTTP/1.1 acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=349
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fstyle.css&l=3355&fd=349 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=333
172.240.108.68200 OK 0 B URL GET HTTP/1.1 acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=333
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fjs%2Fscript.js&l=962&fd=333 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 111706
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 59319
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTgZ%2BJD8QP4IgggyiEIM7290z0zNjkGCMK8E1mw%2BDepLqqupJudVdTVXX9GRP0YDkOIIgeup9ZpP4EUSPHgw6GwghIO5cZA%2Fu0X9ACB5EZMbF0ffQ7%2FP28xQ89bz1wabbIyEc3T31ut6QStHldsOvH30rCI7XV2XmhvVhN3onah2vm8ELvajhP1d%2FVbB1vRz6ge8HflBfkUYkerg8IyHzW72g0fMbrbARtFsYmv%2FO1nmw1AMf7JFHIfm0dsc7AskmyNKvTwm7Xuj8%2BVdSp2ihDQb85sVsPdNlhnQBE%2BMhyW7uq6Htzspt6Oz63C704B9hLKfEu3sbcXZz3yTiwdbcZ6wgMsT8%2FygHEwg1gaQTMH0Vku8QgHGcWUOW3jijTUkv%2F83SGTsltQe%2FQZZTUvvlCLL0q5NKDusXtHKF1JnFMKkghxPI%2FgS520axcQCy3AYr3ofkP5LlB6vI0q01qzQk331G9KIoYWG01OyF3aUW7%2FGlmHfCpTBhLGn73V5I2%2FOApJxAJhMoMQK1B%2BCsByc9uMSDyz2kfLfOgiDo%2BJxRv9tjrMk7Io64H9BOEtDAj7pwbHaHEYp8BKZGYOYKcvPeZ7zZEc2YtTZjrMsPp8Q79DiM%2Bx72UgXL%2FwdbTIl37mMMeIVSEJSWoKQEpSQoC4JyUF3nyoa2usGVdXGw38P93qzGuuhv0uu66IuMgJoRDK828z3yyCxU78yfv2Jd7NY7YdT0WZIkjDYF7QZJuxuJpB0HvXbUEjyClRWkPQBqPWzIKTn2xHnkckoO%2FfEDYroNq7bB5MOgLgAtK9BLFTayb53LLc0412VmG7HSfZvrosF0Cq4r5EUNxWVvU%2B2RJ%2Bc7fuqnFgS7f%2BLu4Rfz8c%2BHwUyF3FR4V94h6Ktr4%2FO6JFvndWnJN2t5IVO5QWf7v1DQQhz84jVxudSGnz5lR5%2B%2FxGbEDN56Q9hilWZcZn1LvjwpORdmRRsmyHen7ZsiPuvspZPOZC5fPfvyyuk0N8JaqbMJqNxZ%2Bx1MTknt2cfmD%2FuhnWOQZgLjKqTuPtkvSL0Nll%2BBzRfurSYwaqGJ84MoXTU2Ybz4qSSBEouZxhXsv%2BZ4gceGzk5TWW3aa%2BibGmhxFVlaYWAqDFQFqkaw7vC4yM39E%2Fc%2BmdWniFVtHCtT24qVUR9NydO1c7PPxXncM%2FQ2rNytd5pNn0a9dtDpUNGJW2E3iQJOadiKwiiiTRR2mhy91%2FgLAAD%2F%2FwEAAP%2F%2F7gZerrwEAAA%3D
192.243.59.20200 OK 7 B URL GET HTTP/1.1 enrageeyesnoop.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTgZ%2BJD8QP4IgggyiEIM7290z0zNjkGCMK8E1mw%2BDepLqqupJudVdTVXX9GRP0YDkOIIgeup9ZpP4EUSPHgw6GwghIO5cZA%2Fu0X9ACB5EZMbF0ffQ7%2FP28xQ89bz1wabbIyEc3T31ut6QStHldsOvH30rCI7XV2XmhvVhN3onah2vm8ELvajhP1d%2FVbB1vRz6ge8HflBfkUYkerg8IyHzW72g0fMbrbARtFsYmv%2FO1nmw1AMf7JFHIfm0dsc7AskmyNKvTwm7Xuj8%2BVdSp2ihDQb85sVsPdNlhnQBE%2BMhyW7uq6Htzspt6Oz63C704B9hLKfEu3sbcXZz3yTiwdbcZ6wgMsT8%2FygHEwg1gaQTMH0Vku8QgHGcWUOW3jijTUkv%2F83SGTsltQe%2FQZZTUvvlCLL0q5NKDusXtHKF1JnFMKkghxPI%2FgS520axcQCy3AYr3ofkP5LlB6vI0q01qzQk331G9KIoYWG01OyF3aUW7%2FGlmHfCpTBhLGn73V5I2%2FOApJxAJhMoMQK1B%2BCsByc9uMSDyz2kfLfOgiDo%2BJxRv9tjrMk7Io64H9BOEtDAj7pwbHaHEYp8BKZGYOYKcvPeZ7zZEc2YtTZjrMsPp8Q79DiM%2Bx72UgXL%2FwdbTIl37mMMeIVSEJSWoKQEpSQoC4JyUF3nyoa2usGVdXGw38P93qzGuuhv0uu66IuMgJoRDK828z3yyCxU78yfv2Jd7NY7YdT0WZIkjDYF7QZJuxuJpB0HvXbUEjyClRWkPQBqPWzIKTn2xHnkckoO%2FfEDYroNq7bB5MOgLgAtK9BLFTayb53LLc0412VmG7HSfZvrosF0Cq4r5EUNxWVvU%2B2RJ%2Bc7fuqnFgS7f%2BLu4Rfz8c%2BHwUyF3FR4V94h6Ktr4%2FO6JFvndWnJN2t5IVO5QWf7v1DQQhz84jVxudSGnz5lR5%2B%2FxGbEDN56Q9hilWZcZn1LvjwpORdmRRsmyHen7ZsiPuvspZPOZC5fPfvyyuk0N8JaqbMJqNxZ%2Bx1MTknt2cfmD%2FuhnWOQZgLjKqTuPtkvSL0Nll%2BBzRfurSYwaqGJ84MoXTU2Ybz4qSSBEouZxhXsv%2BZ4gceGzk5TWW3aa%2BibGmhxFVlaYWAqDFQFqkaw7vC4yM39E%2Fc%2BmdWniFVtHCtT24qVUR9NydO1c7PPxXncM%2FQ2rNytd5pNn0a9dtDpUNGJW2E3iQJOadiKwiiiTRR2mhy91%2FgLAAD%2F%2FwEAAP%2F%2F7gZerrwEAAA%3D
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectenrageeyesnoop.com
FingerprintC1:EE:8C:E0:BA:02:53:6A:DD:8B:05:7C:9F:F1:F6:7D:AD:11:5F:12
ValidityTue, 23 Apr 2024 09:09:58 GMT - Mon, 22 Jul 2024 09:09:57 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscxRuuTgZ%2BJD8QP4IgggyiEIM7290z0zNjkGCMK8E1mw%2BDepLqqupJudVdTVXX9GRP0YDkOIIgeup9ZpP4EUSPHgw6GwghIO5cZA%2Fu0X9ACB5EZMbF0ffQ7%2FP28xQ89bz1wabbIyEc3T31ut6QStHldsOvH30rCI7XV2XmhvVhN3onah2vm8ELvajhP1d%2FVbB1vRz6ge8HflBfkUYkerg8IyHzW72g0fMbrbARtFsYmv%2FO1nmw1AMf7JFHIfm0dsc7AskmyNKvTwm7Xuj8%2BVdSp2ihDQb85sVsPdNlhnQBE%2BMhyW7uq6Htzspt6Oz63C704B9hLKfEu3sbcXZz3yTiwdbcZ6wgMsT8%2FygHEwg1gaQTMH0Vku8QgHGcWUOW3jijTUkv%2F83SGTsltQe%2FQZZTUvvlCLL0q5NKDusXtHKF1JnFMKkghxPI%2FgS520axcQCy3AYr3ofkP5LlB6vI0q01qzQk331G9KIoYWG01OyF3aUW7%2FGlmHfCpTBhLGn73V5I2%2FOApJxAJhMoMQK1B%2BCsByc9uMSDyz2kfLfOgiDo%2BJxRv9tjrMk7Io64H9BOEtDAj7pwbHaHEYp8BKZGYOYKcvPeZ7zZEc2YtTZjrMsPp8Q79DiM%2Bx72UgXL%2FwdbTIl37mMMeIVSEJSWoKQEpSQoC4JyUF3nyoa2usGVdXGw38P93qzGuuhv0uu66IuMgJoRDK828z3yyCxU78yfv2Jd7NY7YdT0WZIkjDYF7QZJuxuJpB0HvXbUEjyClRWkPQBqPWzIKTn2xHnkckoO%2FfEDYroNq7bB5MOgLgAtK9BLFTayb53LLc0412VmG7HSfZvrosF0Cq4r5EUNxWVvU%2B2RJ%2Bc7fuqnFgS7f%2BLu4Rfz8c%2BHwUyF3FR4V94h6Ktr4%2FO6JFvndWnJN2t5IVO5QWf7v1DQQhz84jVxudSGnz5lR5%2B%2FxGbEDN56Q9hilWZcZn1LvjwpORdmRRsmyHen7ZsiPuvspZPOZC5fPfvyyuk0N8JaqbMJqNxZ%2Bx1MTknt2cfmD%2FuhnWOQZgLjKqTuPtkvSL0Nll%2BBzRfurSYwaqGJ84MoXTU2Ybz4qSSBEouZxhXsv%2BZ4gceGzk5TWW3aa%2BibGmhxFVlaYWAqDFQFqkaw7vC4yM39E%2Fc%2BmdWniFVtHCtT24qVUR9NydO1c7PPxXncM%2FQ2rNytd5pNn0a9dtDpUNGJW2E3iQJOadiKwiiiTRR2mhy91%2FgLAAD%2F%2FwEAAP%2F%2F7gZerrwEAAA%3D HTTP/1.1
Host: enrageeyesnoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=21954278; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec72630cfffca3ea81f586ef5b19564ed6=[2229329,2229333,2019380,2229337]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5467f7cedc2046407dc9faf57569ac88
Strict-Transport-Security: max-age=0; includeSubdomains
acknowledgecalculated.com/pixel/sbs?c=1
172.240.108.68200 OK 0 B URL GET HTTP/1.1 acknowledgecalculated.com/pixel/sbs?c=1
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
acknowledgecalculated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunixIEEQlCBKEOXiI4s52z%2B8xh2CMK4trNiYRvUn96km51V1NVdf0ZL0EAxLwMnoXer%2FZZFGDJEcFg84GRBaEjKc9uBf%2FA4WcPMiMg6PvUO%2B9%2Br6Cr773Ptn1x6QOT48uvG12lNZ0rVULq2fej6Kz1U2V%2BmF12G1%2F0G6erdrBq712LXyp%2Bqbk22atHkZhGIVRdV1ZGZvh2gyEyu72olovrDXrtajVxND%2Bv3c%2BgKMBxOCYPAslpisPg1NQfII0uXdBuu3cZK%2B8kXhNc2MxEPvvptupKVIkyzK2AeJ0f8GGcY%2FWH8Ckt%2BdyYQb%2FEpmakuCnB2Dp%2FkIk2GBvrpNpyBRMPIliMIHUEyg6ATc3ocQjAnCBi1tIkzsXjS3o9X9QOkOnZOXxn1DFlKz8dgpp8s15rYbVK0b7XJnUYRiXUMMJVH%2BCzB8g36lAFQfg%2BcdQ4hey9ngTabK35bSBEkcvyl67HfN6e7XRq3dXm6InVpno1FfrMedxK%2Bz26rQ1N0ipCVQ8gZYjUFeBdwG8CuDjAD4LkIijKo%2BiqBMKTsNuj%2FOG6EjWFmFEO3FEo7DdheezP4yQZyNwPQK3N5DZG9hWn01JcPI5WP8D3LUSTjwBl09J8M5HGIgShSQoHEFBCQpFUOQExaC8LbSru%2FKO0M6zaJHri9woxybv79LbJu%2FLlIDaEawod7Nj8szMySD89Atsy6Mqox0eix7rhZQx2eSdJpdS9lpchI0WlSGcKqFcBdQF2FFT8vLzl5GpKTn5149g9ABOH4Crp0H9C6BFCXqtxE76rfeZo6kQpkhdjWnTd5nJa9wkEKZElq8gvx7s6mNyej7Yja37kPzw3O%2BNeYDbEpkt8aF6SNDXt8aXTUH2LpvCkftbWa4StUNnQ7%2BS01ye%2BOoteb0wVmxccKMvX%2BMzYFbevSpdvklTodK%2BI1%2BfV0JIu24sl%2BT7DfeeZJe8u3be29Rnm5deX99IMiudUyadgM729w8LrqbkqdNX5%2Ft85rtLUHYC60sk%2FpAsAspMwLMbcNlSvzMEVi85LAtQ%2BHJs62x5qRWBlsueshLuPz1b1mNLZ6%2BpKnfdLfRtBTS%2FiTQpMbAlBroE1SM4f2KcZ%2Fbw3K8LGUxXxkzbyh7TVn8%2Bt3l23INTR9VGKDpMxrLDZLPVjCUXrNViIY85a4hulyN30%2FjMz2t%2FAwAA%2F%2F8BAAD%2F%2F%2BrUti6pBAAA
172.240.108.68200 OK 7 B URL GET HTTP/1.1 acknowledgecalculated.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunixIEEQlCBKEOXiI4s52z%2B8xh2CMK4trNiYRvUn96km51V1NVdf0ZL0EAxLwMnoXer%2FZZFGDJEcFg84GRBaEjKc9uBf%2FA4WcPMiMg6PvUO%2B9%2Br6Cr773Ptn1x6QOT48uvG12lNZ0rVULq2fej6Kz1U2V%2BmF12G1%2F0G6erdrBq712LXyp%2Bqbk22atHkZhGIVRdV1ZGZvh2gyEyu72olovrDXrtajVxND%2Bv3c%2BgKMBxOCYPAslpisPg1NQfII0uXdBuu3cZK%2B8kXhNc2MxEPvvptupKVIkyzK2AeJ0f8GGcY%2FWH8Ckt%2BdyYQb%2FEpmakuCnB2Dp%2FkIk2GBvrpNpyBRMPIliMIHUEyg6ATc3ocQjAnCBi1tIkzsXjS3o9X9QOkOnZOXxn1DFlKz8dgpp8s15rYbVK0b7XJnUYRiXUMMJVH%2BCzB8g36lAFQfg%2BcdQ4hey9ngTabK35bSBEkcvyl67HfN6e7XRq3dXm6InVpno1FfrMedxK%2Bz26rQ1N0ipCVQ8gZYjUFeBdwG8CuDjAD4LkIijKo%2BiqBMKTsNuj%2FOG6EjWFmFEO3FEo7DdheezP4yQZyNwPQK3N5DZG9hWn01JcPI5WP8D3LUSTjwBl09J8M5HGIgShSQoHEFBCQpFUOQExaC8LbSru%2FKO0M6zaJHri9woxybv79LbJu%2FLlIDaEawod7Nj8szMySD89Atsy6Mqox0eix7rhZQx2eSdJpdS9lpchI0WlSGcKqFcBdQF2FFT8vLzl5GpKTn5149g9ABOH4Crp0H9C6BFCXqtxE76rfeZo6kQpkhdjWnTd5nJa9wkEKZElq8gvx7s6mNyej7Yja37kPzw3O%2BNeYDbEpkt8aF6SNDXt8aXTUH2LpvCkftbWa4StUNnQ7%2BS01ye%2BOoteb0wVmxccKMvX%2BMzYFbevSpdvklTodK%2BI1%2BfV0JIu24sl%2BT7DfeeZJe8u3be29Rnm5deX99IMiudUyadgM729w8LrqbkqdNX5%2Ft85rtLUHYC60sk%2FpAsAspMwLMbcNlSvzMEVi85LAtQ%2BHJs62x5qRWBlsueshLuPz1b1mNLZ6%2BpKnfdLfRtBTS%2FiTQpMbAlBroE1SM4f2KcZ%2Fbw3K8LGUxXxkzbyh7TVn8%2Bt3l23INTR9VGKDpMxrLDZLPVjCUXrNViIY85a4hulyN30%2FjMz2t%2FAwAA%2F%2F8BAAD%2F%2F%2BrUti6pBAAA
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSunixIEEQlCBKEOXiI4s52z%2B8xh2CMK4trNiYRvUn96km51V1NVdf0ZL0EAxLwMnoXer%2FZZFGDJEcFg84GRBaEjKc9uBf%2FA4WcPMiMg6PvUO%2B9%2Br6Cr773Ptn1x6QOT48uvG12lNZ0rVULq2fej6Kz1U2V%2BmF12G1%2F0G6erdrBq712LXyp%2Bqbk22atHkZhGIVRdV1ZGZvh2gyEyu72olovrDXrtajVxND%2Bv3c%2BgKMBxOCYPAslpisPg1NQfII0uXdBuu3cZK%2B8kXhNc2MxEPvvptupKVIkyzK2AeJ0f8GGcY%2FWH8Ckt%2BdyYQb%2FEpmakuCnB2Dp%2FkIk2GBvrpNpyBRMPIliMIHUEyg6ATc3ocQjAnCBi1tIkzsXjS3o9X9QOkOnZOXxn1DFlKz8dgpp8s15rYbVK0b7XJnUYRiXUMMJVH%2BCzB8g36lAFQfg%2BcdQ4hey9ngTabK35bSBEkcvyl67HfN6e7XRq3dXm6InVpno1FfrMedxK%2Bz26rQ1N0ipCVQ8gZYjUFeBdwG8CuDjAD4LkIijKo%2BiqBMKTsNuj%2FOG6EjWFmFEO3FEo7DdheezP4yQZyNwPQK3N5DZG9hWn01JcPI5WP8D3LUSTjwBl09J8M5HGIgShSQoHEFBCQpFUOQExaC8LbSru%2FKO0M6zaJHri9woxybv79LbJu%2FLlIDaEawod7Nj8szMySD89Atsy6Mqox0eix7rhZQx2eSdJpdS9lpchI0WlSGcKqFcBdQF2FFT8vLzl5GpKTn5149g9ABOH4Crp0H9C6BFCXqtxE76rfeZo6kQpkhdjWnTd5nJa9wkEKZElq8gvx7s6mNyej7Yja37kPzw3O%2BNeYDbEpkt8aF6SNDXt8aXTUH2LpvCkftbWa4StUNnQ7%2BS01ye%2BOoteb0wVmxccKMvX%2BMzYFbevSpdvklTodK%2BI1%2BfV0JIu24sl%2BT7DfeeZJe8u3be29Rnm5deX99IMiudUyadgM729w8LrqbkqdNX5%2Ft85rtLUHYC60sk%2FpAsAspMwLMbcNlSvzMEVi85LAtQ%2BHJs62x5qRWBlsueshLuPz1b1mNLZ6%2BpKnfdLfRtBTS%2FiTQpMbAlBroE1SM4f2KcZ%2Fbw3K8LGUxXxkzbyh7TVn8%2Bt3l23INTR9VGKDpMxrLDZLPVjCUXrNViIY85a4hulyN30%2FjMz2t%2FAwAA%2F%2F8BAAD%2F%2F%2BrUti6pBAAA HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:17 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 799dd50750ad939cb4e62cf13321bfce
Strict-Transport-Security: max-age=0; includeSubdomains
www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
142.250.74.105200 OK 82 kB URL GET HTTP/3 www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
IP 142.250.74.105:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.blogger.com
Fingerprint17:41:C7:D0:1D:55:29:41:DB:6D:65:5F:4E:63:97:50:32:7D:E1:60
ValidityMon, 18 Mar 2024 19:33:57 GMT - Mon, 10 Jun 2024 19:33:56 GMT
File type HTML document, ASCII text, with very long lines (40719)
Hash 494abcd0650da5ef1ce334620a17cbbe
402b4df4d13fde823b35f46145b43577ca137511
ed73336e263c527982a31c7318b9971d5aa80327465e4c051714367e95dfbe78
GET /comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 24 Apr 2024 08:56:11 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: require-trusted-types-for 'script';report-uri /_/BloggerCommentUi/cspreport, script-src 'nonce--MwXbXRM4CnX7noXsgnHxQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerCommentUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerCommentUi/cspreport/allowlist
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
reporting-endpoints: default="/_/BloggerCommentUi/web-reports?context=eJzjytHikmLw15BiqHXfyVR6ZSfTHY1dTK-AOLJ0F1M6EDu9uskk03uL6fGUW0zP258xfQNiTZMXTH-TXzJp7nnJJPH1JZMaEGuETmd1Sp_BGgDEPvUzWKOAuPXmOdbJQJz07zxrARAL8XCsnrR4I5vAiy93XjABAD5vNWk"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=513=UCla5GrXVNzy7KP_8CPwI2sbGmpn_TFCBfZvDhulUAb5I73Rdfcz_RL2Oa3HkReKSg4HpyiIRKXG0EVSOSYM-6QEpl368EmHgOvq4-5XN5-vMgbbd8_2z_n0gPqXns9GBz2qGrTYraLB16GouAaR4AgBw4V_PA8vL5ivYs6hPaw; expires=Thu, 24-Oct-2024 08:56:11 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
p.jhwo.info/dcba/znWaa3gu
0.0.0.0 0 B URL GET p.jhwo.info/dcba/znWaa3gu
IP 0.0.0.0:0
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dcba/znWaa3gu HTTP/1.1
Host: p.jhwo.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
cdn.jhwo.info/app.js
194.242.11.186200 OK 111 kB IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.jhwo.info
FingerprintB8:05:2C:5C:A5:F9:63:BE:D7:72:C8:38:46:2D:86:09:2D:C0:02:98
ValidityWed, 03 Apr 2024 15:15:46 GMT - Tue, 02 Jul 2024 15:15:45 GMT
File type JavaScript source, ASCII text, with very long lines (65381)
Size 111 kB (111235 bytes)
Hash 4974f2a8a6fad758c4f7b6180377f73c
06ad0ed567fbb8fae7c4354e80d7b5186d4d93ca
95ac87fe620accb45e31ee4c9257e0e5dcc180a1808e1f7d3c9f322e531267d6
GET /app.js HTTP/1.1
Host: cdn.jhwo.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:13 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1962980
cdn-uid: 81f0ee8a-6b19-463e-a8be-46c199377685
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
alt-svc: h2=":443"; ma=60
cache-control: public, max-age=2592000
etag: W/"661ce329-1b283"
expires: Wed, 15 May 2024 08:30:04 GMT
last-modified: Mon, 15 Apr 2024 08:19:53 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F6LQ0p3loZXEBBOyjvw8s039%2BzoFjktVeF4e0x9kax8B6Td3RKfocUCxNIivQ08RauW0s5TAsFppbKJXR8ng8x0U5dLcvnzA8%2F%2FLz5S0ey5OFHeK6kSV8Qh8HAR9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 874a924c1e599004-FRA
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 04/15/2024 08:30:04
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: 62614382ec135c3f8f517556d8c92e10
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:54:07 GMT
expires: Thu, 25 Apr 2024 02:54:07 GMT
cache-control: public, max-age=604800
age: 540126
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
142.250.74.35200 OK 56 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File type ASCII text, with very long lines (56412), with no line terminators
Hash 2c00b9f417b688224937053cd0c284a5
17b4c18ebc129055dd25f214c3f11e03e9df2d82
1e754b107428162c65a26d399b66db3daaea09616bf8620d9de4bc689ce48eed
GET /recaptcha/releases/V6_85qpc2Xf2sbe3xTnRte7m/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24617
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 15:50:55 GMT
expires: Wed, 23 Apr 2025 15:50:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 Apr 2024 21:03:35 GMT
content-type: text/css
vary: Accept-Encoding
age: 61517
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js
188.114.96.1200 OK 962 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/script.js
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (1015), with no line terminators
Hash 88523e22d10f0cbad31aa1d8276764fa
9238cd9499e01abdbeb33e68c550d26cfb6eaba5
d553390acb639c765cb6aaa4fbb72529e4005227d190f53108aec87ccec411c2
GET /sb/ssp/vpn/classic-push/small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-3c2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QYUs%2FQ3NsGcDq%2F8NipRN5utDCQVew5ar9J4Ocpfl1He1b3xJ6F08mT0IrfRIK6%2F4kjS8xKqSTAxFhKzUqoIfhuseajBRFWJdCluaC312wn8eJWjM3XNuXk895scWhpUo6AILn8ihex8x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e10d3e8a568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 1.0 kB URL GET HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:443
Requested by https://www.blogger.com/comment/frame/2593618823999681032?po=5054080944872042732&hl=en&skin=contempo&blogspotRpcToken=196664
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintCD:48:2A:0C:60:1D:37:5A:D4:D5:A9:F7:DE:A0:2B:5E:2F:29:76:73
ValidityMon, 18 Mar 2024 20:38:49 GMT - Mon, 10 Jun 2024 20:38:48 GMT
File type JavaScript source, ASCII text, with very long lines (1034), with no line terminators
Hash 48f56ba3cd643906939062da717659d4
aede6f759f4d255f4f23aa33ca6c6207eeb32397
6618eddea6c31949ec2a7fcfb728125e50225a75d8674a96a05c10b05f0e858b
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
expires: Wed, 24 Apr 2024 08:56:12 GMT
date: Wed, 24 Apr 2024 08:56:12 GMT
cache-control: private, max-age=300
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
188.114.96.1200 OK 3.4 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/css/style.css
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type ASCII text, with very long lines (3537), with no line terminators
Hash b8a277e051f047a41d3229377460f0c9
596b934114e1b6e3cee15ef19925c7f2ff5607e7
9cf981fe6d59b72cb9d12e4bc958983bac07f16b8f1b40bb1c6ced0bf2d6b2d0
GET /sb/ssp/vpn/classic-push/small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-d1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R5lJAqoEjvQI1rJEBcbPDIPjEVa9nZajJlmUXD5%2FrhC7FMahMD9IZmBYC%2F%2FCj4T4Z35JlrNemegGdYQlstiXp1b8Zp75j22WrmaryFtBkValDri0WActGHIeBUQmvcgnio51JK0YRL2j"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e10c4db5568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
downstairsnegotiatebarren.com/sfp.js
188.114.96.1200 OK 86 kB URL GET HTTP/2 downstairsnegotiatebarren.com/sfp.js
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:13 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 06de97d4e57f687790db7130c81bddfb
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 24 Apr 2024 08:56:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RJIQUlltYtOIXDdsfMsWcAcj%2FPw5kbU%2F2O%2F81PDoEa9W3poELTimhM%2B7KOS%2BNuQVg5%2B4LGtGlBC2b0LY3MkNObO2YmgF7ZuNR2a7E1vGEAT%2FYaL92UoA9bJPgUmDBtGe0%2Fyr3%2BcFcY6qin7jntkKxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e0f94f5856aa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=344
172.240.108.68200 OK 0 B URL GET HTTP/1.1 acknowledgecalculated.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=344
IP 172.240.108.68:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Fvpn%2Fclassic-push%2Fsmall%2Fcss%2Fanimate.css&l=78689&fd=344 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Cookie: u_pl=19958685; uid_id2=e966fc26-3928-4d9d-bd72-2fccf50892a5:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 08:56:16 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgWKhx309oc2K25xuWKhBD1ObNloY39TI0g99jGvAYIzF8DuAEPz-EfM3O-Ft-a6nPL43mAxOnyds_aNtCq8_1ITG8HWUJBACFPtUfzyBXn7xZlJ0ten47ZlPHEpm2E3ri_RTSFjIwdNrBnHxneWppghf6pqOCvOABK0I_SVs0Jyc97OmfuxQwusIqSrIq_/s320/5ffedc94bb142.png
142.250.74.129200 OK 96 kB URL GET HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgWKhx309oc2K25xuWKhBD1ObNloY39TI0g99jGvAYIzF8DuAEPz-EfM3O-Ft-a6nPL43mAxOnyds_aNtCq8_1ITG8HWUJBACFPtUfzyBXn7xZlJ0ten47ZlPHEpm2E3ri_RTSFjIwdNrBnHxneWppghf6pqOCvOABK0I_SVs0Jyc97OmfuxQwusIqSrIq_/s320/5ffedc94bb142.png
IP 142.250.74.129:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subject*.googleusercontent.com
Fingerprint6E:66:E1:45:85:5C:3A:EB:60:4A:8E:EF:62:B8:7C:E3:C7:1B:FA:47
ValidityMon, 18 Mar 2024 20:34:07 GMT - Mon, 10 Jun 2024 20:34:06 GMT
File type PNG image data, 244 x 320, 8-bit/color RGB, non-interlaced
Hash 20c7851bc3483eee58d07971390daadb
245e5456ad79a51bcd0b88525ad4ae9398aca54d
52d0b923150aabefbd3f3fb17d3f51d53a6536594128d03f66a504b6ff01444c
GET /img/b/R29vZ2xl/AVvXsEgWKhx309oc2K25xuWKhBD1ObNloY39TI0g99jGvAYIzF8DuAEPz-EfM3O-Ft-a6nPL43mAxOnyds_aNtCq8_1ITG8HWUJBACFPtUfzyBXn7xZlJ0ten47ZlPHEpm2E3ri_RTSFjIwdNrBnHxneWppghf6pqOCvOABK0I_SVs0Jyc97OmfuxQwusIqSrIq_/s320/5ffedc94bb142.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v2dd9"
expires: Thu, 25 Apr 2024 08:56:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="5ffedc94bb142.png"
x-content-type-options: nosniff
date: Wed, 24 Apr 2024 08:56:07 GMT
server: fife
content-length: 95819
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 7.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File type ASCII text, with very long lines (7193), with no line terminators
Hash 16b49a99486594c0b42d9bd7821deb2c
2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 08:56:16 GMT
date: Wed, 24 Apr 2024 08:56:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
104.26.8.129301 Moved Permanently 108 kB URL User Request GET HTTP/2 IP 104.26.8.129:443
Certificate IssuerGoogle Trust Services LLC
Subjectshorturl.at
FingerprintE6:B3:B9:89:FA:01:F0:B9:4C:C8:BE:5C:9B:A5:92:98:5A:14:A9:9A
ValidityWed, 10 Apr 2024 11:26:54 GMT - Tue, 09 Jul 2024 11:26:53 GMT
Size 108 kB (107658 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pGOP7 HTTP/1.1
Host: shorturl.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Wed, 24 Apr 2024 08:55:59 GMT
content-type: text/html; charset=iso-8859-1
location: https://www.shorturl.at/pGOP7
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7vMdarSkZaMa34QPfggAGEq97jcWrcUBJLzxZ20yv5qIgljnqrxrc27lL98y%2FLyhrsK2IgydlyiuVrOs%2FPYrEBH5HK%2BrgjYKEzLsR4qjwSXPlV8kwy9i%2BAD1hZjS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8794e0a17cd156c1-OSL
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
188.114.96.1200 OK 84 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/small/js/jquery.min.js
IP 188.114.96.1:443
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File type JavaScript source, ASCII text, with very long lines (32025)
Hash 4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /sb/ssp/vpn/classic-push/small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:16 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:42 GMT
etag: W/"65aa84fe-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6033070
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EQv13izl2yzMiKiGaZRLHk%2Bgzs0K2Y0rz7wPw3OQF8IbUnnJIn5feWbjAM1gJbeNh%2Bj2otb1MpWAmcRuzCWy1p1UrUNAEGwH7a36jx075c61kAFmZ3BJIVgJVucdDFDovn44nw9UD6AW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8794e10cae06568d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
45.133.44.3200 OK 1.3 kB URL GET HTTP/2 cdn.barscreative1.com/sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html
IP 45.133.44.3:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File type HTML document, ASCII text, with very long lines (1405), with no line terminators
Hash 5373f3c4843345dde67db670323b2d54
666b2db9872196e52a2bc902111de5e37aa1ae28
e398fbdac28494dec6505fb0143d4cd41cee83989517e12c13ea113fef006fda
GET /sb/au/0c/c8/e1/0cc8e13ba9d5dbc867b982993e805a9d/1632728593.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uupsanddowns.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://uupsanddowns.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:15 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 07:43:24 GMT
etag: W/"6151761c-52d"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 24 Apr 2024 09:56:15 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4
45.133.44.10200 OK 131 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4
IP 45.133.44.10:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://uupsanddowns.blogspot.com/2024/01/man-takes-selfie-after-catching-another_12.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File type ISO Media, MP4 v2 [ISO 14496-14]
Size 131 kB (131072 bytes)
Hash 0b06eadbbb9c3e7e1d222d52cefe296a
2fde3c59b9656ed06a8232d34366398cf0a58c45
ab7b93cf9ba3c3cf401e402aeed02445e047c590c87df232fe3098ccb101075a
GET /cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 08:56:12 GMT
content-type: video/mp4
content-length: 503186
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:25:23 GMT
etag: "66054593-7ad92"
expires: Fri, 26 Apr 2024 08:56:12 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
142.250.74.164200 OK 102 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m
IP 142.250.74.164:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint70:CC:1A:8A:58:6C:1F:6D:43:AE:66:75:89:F7:99:7B:BC:7A:74:2D
ValidityMon, 18 Mar 2024 19:37:19 GMT - Mon, 10 Jun 2024 19:37:18 GMT
File type ASCII text, with no line terminators
Hash 284b36421a1cf446f32cb8f7987b1091
eb14d6298c9da3fb26d75b54c087ea2df9f3f05f
94ab2be973685680d0be9c08d4e1a7465f3c09053cf631126bd33f49cc2f939b
GET /recaptcha/api2/webworker.js?hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu&co=aHR0cHM6Ly93d3cuYmxvZ2dlci5jb206NDQz&hl=en&v=V6_85qpc2Xf2sbe3xTnRte7m&size=invisible&cb=4ta3rehukh4l
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 24 Apr 2024 08:56:13 GMT
date: Wed, 24 Apr 2024 08:56:13 GMT
cache-control: private, max-age=300
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000