| baimhalamanwebsite.blogspot.com/?m=1 |  142.250.74.129 | 200 OK | 22 kB |
URL User Request GET HTTP/2baimhalamanwebsite.blogspot.com/?m=1 IP142.250.74.129:443
CertificateIssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15 ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (8177) Hash99520c1fe004c403cf5c6f64e24930e5 52a5e3f88b3615165b6bde4e88f009fd0849a048 fc9eb587191ab50c169aee27176dc1308394de4be09c1b5cb5b2cfbfbde6c493
GET /?m=1 HTTP/1.1
Host: baimhalamanwebsite.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 08 Dec 2024 03:10:59 GMT
date: Sun, 08 Dec 2024 03:10:59 GMT
cache-control: private, max-age=0
last-modified: Wed, 27 Nov 2024 01:45:42 GMT
etag: W/"ab468fc617b7c0fb6b6c6bf3c4a7ac9ad3e234251f07c8af8c74a7430db20811"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 22112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| baimhalamanwebsite.blogspot.com/js/cookienotice.js | 142.250.74.129 | 200 OK | 2.0 kB |
URL GET HTTP/3baimhalamanwebsite.blogspot.com/js/cookienotice.js IP142.250.74.129:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15 ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT
File typeJavaScript source, ASCII text Hasha705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568
GET /js/cookienotice.js HTTP/1.1
Host: baimhalamanwebsite.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/?m=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 08 Dec 2024 03:10:59 GMT
expires: Sun, 15 Dec 2024 03:10:59 GMT
cache-control: public, max-age=604800
last-modified: Sat, 07 Dec 2024 20:51:42 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| baimhalamanwebsite.blogspot.com/responsive/sprite_v1_6.css.svg | 142.250.74.129 | 200 OK | 2.2 kB |
URL GET HTTP/3baimhalamanwebsite.blogspot.com/responsive/sprite_v1_6.css.svg IP142.250.74.129:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15 ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT
File typeSVG Scalable Vector Graphics image Hashd4dcfc8144f556815c7a1d84ed4e959e 22088bd6cdf970dcf7bfab9a74a4768548ca8890 73d16aca9b019e42dd2de3a10e5049b5606268ce0d8e3a167b05b37acb9b0e9c
GET /responsive/sprite_v1_6.css.svg HTTP/1.1
Host: baimhalamanwebsite.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/?m=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: image/svg+xml
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2244
date: Sun, 08 Dec 2024 03:10:59 GMT
expires: Sun, 15 Dec 2024 03:10:59 GMT
cache-control: public, max-age=604800
last-modified: Sat, 07 Dec 2024 12:54:05 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js | 142.250.74.35 | 200 OK | 3.5 kB |
URL GET HTTP/2www.gstatic.com/external_hosted/clipboardjs/clipboard.min.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (10473) Hash158013acb7e269a3dbe18de855656c97 08fa355584fc849539b3f04589ae6f61eb4a7d98 92e40dc4bbb485a182b796c58e6da7974cb8a6a84fdb4548ace3b85c991f0f94
GET /external_hosted/clipboardjs/clipboard.min.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 3475
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 03:10:59 GMT
expires: Sun, 08 Dec 2024 03:10:59 GMT
cache-control: public, max-age=0
age: 0
last-modified: Thu, 20 Jul 2023 22:48:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.blogger.com/static/v1/widgets/3704019819-widgets.js | 216.58.207.233 | 200 OK | 52 kB |
URL GET HTTP/2www.blogger.com/static/v1/widgets/3704019819-widgets.js IP216.58.207.233:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (4137) Hashe5e94160e257182f70da510e8f3cc93e 818ef6636e0a8e4c61ebb19aa6a99915f9887695 b2a75bbc8fe9eafaa4322022c2e134a19f2566a197ae57bfff6099d1c7795050
GET /static/v1/widgets/3704019819-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 51878
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Dec 2024 08:23:14 GMT
expires: Sun, 07 Dec 2025 08:23:14 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 06 Dec 2024 16:54:58 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 67665
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8964089458799379 | 142.250.74.162 | 200 OK | 53 kB |
URL GET HTTP/2pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-8964089458799379 IP142.250.74.162:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (3679) Hash03bad85b9f70fe1417c99e4eb0f55297 5f3b8cc3ff1e8e65237a55f0b3d05127c9835cc8 9c4c02a2d949c64adc1b77e47007461bf147ea92ba259c212826456681ea7f66
GET /pagead/js/adsbygoogle.js?client=ca-pub-8964089458799379 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Sun, 08 Dec 2024 03:10:59 GMT
expires: Sun, 08 Dec 2024 03:10:59 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 12657995062419680793
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53358
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18536, version 1.0 Hash8eff0b8045fd1959e117f85654ae7770 227fee13ceb7c410b5c0bb8000258b6643cb6255 89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571
GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 19:08:18 GMT
expires: Sat, 06 Dec 2025 19:08:18 GMT
cache-control: public, max-age=31536000
age: 115361
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| resources.blogblog.com/blogblog/data/res/2645346988-strm_compiled.js | 216.58.207.233 | 200 OK | 48 kB |
URL GET HTTP/2resources.blogblog.com/blogblog/data/res/2645346988-strm_compiled.js IP216.58.207.233:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (2005) Hashb4f50326a5a7d2dd68a8c55b61c3fa10 21ccdb6625178f66f23fd2840bd672fcd2ac41ac e78396a1400ece38ba768b8a6f8f83d63aed2cbb83e01064cec2566733022030
GET /blogblog/data/res/2645346988-strm_compiled.js HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 47824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Dec 2024 11:58:44 GMT
expires: Sat, 14 Dec 2024 11:58:44 GMT
cache-control: public, max-age=604800
last-modified: Sat, 07 Dec 2024 10:53:05 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 54735
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18596, version 1.0 Hashc83e4437a53d7f849f9d32df3d6b68f3 fabea5ad92ed3e2431659b02e7624df30d0c6bbc d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb
GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 19:03:05 GMT
expires: Sat, 06 Dec 2025 19:03:05 GMT
cache-control: public, max-age=31536000
age: 115674
last-modified: Thu, 01 Aug 2024 20:41:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/charts/loader.js | 142.250.74.35 | 200 OK | 18 kB |
URL GET HTTP/2www.gstatic.com/charts/loader.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeJavaScript source, ASCII text, with very long lines (2186) Hash32bc41d964faa1b95d9c61fc443df579 02d3f83dac14fe996babbfe332779ed182d39d1c 369ae154eab37b7ada7776b934833183bb053ebd1d0255f70ef8944f65cabb0c
GET /charts/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 18534
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:23:43 GMT
expires: Sun, 08 Dec 2024 03:23:43 GMT
cache-control: public, max-age=3600
last-modified: Tue, 04 Apr 2023 17:52:30 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 2836
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| apis.google.com/js/platform.js | 142.250.74.46 | 200 OK | 24 kB |
URL GET HTTP/2apis.google.com/js/platform.js IP142.250.74.46:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.apis.google.com Fingerprint1F:E3:EE:31:47:B4:9D:7F:9D:8E:B7:DE:9B:69:A2:11:93:B5:80:5B ValidityMon, 21 Oct 2024 08:38:50 GMT - Mon, 13 Jan 2025 08:38:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1863) Hash862a8ade4373863292f4d5e1cd39c4f6 8279dc8ec1e68a509542d3e7f34688a3433f0176 0d0bb023d86d107bab096e78384e087e0da10de8e28dc981e729cda94f1e9677
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 24187
date: Sun, 08 Dec 2024 03:10:59 GMT
expires: Sun, 08 Dec 2024 03:10:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "27a62a450d9bd00c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs | 142.250.74.46 | 200 OK | 34 kB |
URL GET HTTP/2apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs IP142.250.74.46:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.apis.google.com Fingerprint1F:E3:EE:31:47:B4:9D:7F:9D:8E:B7:DE:9B:69:A2:11:93:B5:80:5B ValidityMon, 21 Oct 2024 08:38:50 GMT - Mon, 13 Jan 2025 08:38:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1302) Hash3e42f6ad24b075e5b1080894f7c956d6 cbf9779731e66c850578a62c949ac297d078511d 02f9f0d4870d06b2b676c349927a55f16fbd9f69cf0ac1d9645001b6ed63ffbf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 33639
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 11:36:09 GMT
expires: Sat, 06 Dec 2025 11:36:09 GMT
cache-control: public, max-age=31536000
age: 142490
last-modified: Mon, 11 Nov 2024 18:50:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js | 192.243.59.13 | 200 OK | 9.2 kB |
URL GET HTTP/1.1pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (23155), with no line terminators Hash9bdd2e4ddab7ecc7be437feff0d2ceff 7fff90018ee2a0fd0a7e996f07ac82c110b0f583 c33399723514177a317694846bdc40941a933e0ecc36d9bc77b19417f39c865e
GET /6168b558aaf85f097913d26c76f32bed/invoke.js HTTP/1.1
Host: pl24159476.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159476.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: caed11dcc8b2624b1dddebdbef2d71fe
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pagead2.googlesyndication.com/pagead/managed/js/adsense/m202412040102/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8964089458799379&plah=baimhalamanwebsite.blogspot.com&bust=31089297 | 142.250.74.162 | 200 OK | 148 kB |
URL GET HTTP/2pagead2.googlesyndication.com/pagead/managed/js/adsense/m202412040102/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8964089458799379&plah=baimhalamanwebsite.blogspot.com&bust=31089297 IP142.250.74.162:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (3008) Size148 kB (147644 bytes) Hashaf4d1a3b2e0397c222470e8ac8f2101c e1b394d3aa516407177d6a00d947c87b094acc4c afbac0b33f494384e1a335f37238eb2d801a3724e27b9a3172b40dd031eaceae
GET /pagead/managed/js/adsense/m202412040102/show_ads_impl_with_ama_fy2021.js?client=ca-pub-8964089458799379&plah=baimhalamanwebsite.blogspot.com&bust=31089297 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 08 Dec 2024 03:11:00 GMT
expires: Sun, 08 Dec 2024 03:11:00 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 14568625757394101332
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 147644
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| roomshikinginformal.com/6168b558aaf85f097913d26c76f32bed/invoke.js | 192.243.59.20 | 200 OK | 9.2 kB |
URL GET HTTP/1.1roomshikinginformal.com/6168b558aaf85f097913d26c76f32bed/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (23188), with no line terminators Hash5109f2ac74a63baefe02f547baac2ffb ba27c9640239049ef70e9fa9f3f88aae02e22b2b d8f2f580da73afb2a3c6081a3731d65e83a20140848531534abca0df40e81fd0
GET /6168b558aaf85f097913d26c76f32bed/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2681bf1d4886075b182c7df2ae46a319
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js | 192.243.59.20 | 200 OK | 11 kB |
URL GET HTTP/1.1roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (24933), with no line terminators Hash32267cb2040995999111803e7b1d123c cb3555753c95e683288ee4510ac824d2aa64f22b 2d74acbfd160ad72e9741cd0eb483261a5b9791dc1042d2ee5375da040ba1b07
GET /2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c0db17b4bfaecb1c23700e600b6a2ad4
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| roomshikinginformal.com/82f4142c5376817392c72e99b42e0387/invoke.js | 192.243.59.20 | 200 OK | 11 kB |
URL GET HTTP/1.1roomshikinginformal.com/82f4142c5376817392c72e99b42e0387/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (24933), with no line terminators Hasha931211c28476ba46ce5be56745e075e 40962501f48eae496373908d5bb6841e97764d4a 8a7f8626b19b3f3350c01f8fe5f1f14e999631d591f9002d1b55479c92c7d3d1
GET /82f4142c5376817392c72e99b42e0387/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 548d8c2a5d16f8d0f7feac4fbf18d951
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pl24159845.cpmrevenuegate.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js | 192.243.59.20 | 200 OK | 34 kB |
URL GET HTTP/1.1pl24159845.cpmrevenuegate.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash6cc4eb0477331151a50265c43f59414a 150e06a33e7f1df3070216827660c6fe0a20d7ac c024db022459e5007022f15e836d77a898d44f30dface0a31f7d035fe3a3ca50
GET /a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js HTTP/1.1
Host: pl24159845.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159845.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cadc114d7aaa1be48ca3eee2ebb3c24f
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| roomshikinginformal.com/09/86/9d/09869ddeb16838a1b2a0f0415d306d70.js | 192.243.59.20 | 200 OK | 16 kB |
URL GET HTTP/1.1roomshikinginformal.com/09/86/9d/09869ddeb16838a1b2a0f0415d306d70.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (45192), with no line terminators Hash0449d280d94fc2817f67640ea8ea8e18 6047b57fe84c4de3fbabffa5bbcad32a92fdd142 a54c038296e5ccdd49df1d59204dd12565bacd241f645e7ed46dfa536e659079
GET /09/86/9d/09869ddeb16838a1b2a0f0415d306d70.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b5d0ac9b45c89ed7269678e6dbc69a7c
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| roomshikinginformal.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js | 192.243.59.20 | 200 OK | 34 kB |
URL GET HTTP/1.1roomshikinginformal.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash005df5ed13265ef783a1dda1dc88a625 badb48ee43a3ebea0c36a154759014d9995d7bc8 c78e144427810365024c701819bb6a60940f61653e9a9ff36e3d8bc8d0a154d3
GET /a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 07451de687194f04dee972096433cdd3
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pagead2.googlesyndication.com/pagead/js/r20241120/r20190131/rum_fy2021.js | 142.250.74.162 | 200 OK | 22 kB |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/js/r20241120/r20190131/rum_fy2021.js IP142.250.74.162:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (2691) Hash75130661afae769f1a9f4bffff18517e 3f03934b88e49ff9dbe088c20e673cb106c5f955 d6005a25618ac8aa4482159270dafbb6391ff45d363c1c6cce616590ccef3a90
GET /pagead/js/r20241120/r20190131/rum_fy2021.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 22229
x-xss-protection: 0
date: Sat, 07 Dec 2024 18:54:50 GMT
expires: Sat, 21 Dec 2024 18:54:50 GMT
cache-control: public, max-age=1209600
age: 29770
etag: 11760956206354111062
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/html/r20241120/r20190131/zrt_lookup_fy2021.html | 142.250.74.162 | 200 OK | 4.1 kB |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/html/r20241120/r20190131/zrt_lookup_fy2021.html IP142.250.74.162:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeHTML document, ASCII text, with very long lines (2875) Hash37d6140d181883b03975d9454dbbfded 38ef8848a82e58abe73c1a880d03dd3c53637fcc 2ac52bd16d3c1bb75fac25d4961fc73897894d990f43844bef8e7be36facb84b
GET /pagead/html/r20241120/r20190131/zrt_lookup_fy2021.html HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4128
x-xss-protection: 0
date: Sat, 07 Dec 2024 21:32:09 GMT
expires: Sat, 21 Dec 2024 21:32:09 GMT
cache-control: public, max-age=1209600
age: 20331
etag: 17661348622971093804
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| pagead2.googlesyndication.com/pagead/ads?npa=1&client=ca-pub-8964089458799379&output=html&adk=1812271804&adf=3025194257&abgtt=6&lmt=1732671942&plat=3%3A16%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=174x920_r&format=0x0&url=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&aiof=3&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~3~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33~38&aifxl=29_18~30_19&aiixl=29_5~30_6&aiict=1&itsi=-1&aiapm=0.3221&aiapmi=0.33938&aiombap=1&aief=1&dt=1733627459852&bpp=6&bdt=437&idt=488&shv=r20241120&mjsv=m202412040102&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=1114170126605&rume=1&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31089332%2C95347445%2C31089297%2C95345967%2C31061691%2C31061693&oid=2&pvsid=3710480692511703&tmod=975829842&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=1&uci=a!1&fsb=1&dtd=552 | 142.250.74.162 | 200 OK | 46 B |
URL GET HTTP/3pagead2.googlesyndication.com/pagead/ads?npa=1&client=ca-pub-8964089458799379&output=html&adk=1812271804&adf=3025194257&abgtt=6&lmt=1732671942&plat=3%3A16%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=174x920_r&format=0x0&url=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&aiof=3&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~3~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33~38&aifxl=29_18~30_19&aiixl=29_5~30_6&aiict=1&itsi=-1&aiapm=0.3221&aiapmi=0.33938&aiombap=1&aief=1&dt=1733627459852&bpp=6&bdt=437&idt=488&shv=r20241120&mjsv=m202412040102&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=1114170126605&rume=1&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31089332%2C95347445%2C31089297%2C95345967%2C31061691%2C31061693&oid=2&pvsid=3710480692511703&tmod=975829842&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=1&uci=a!1&fsb=1&dtd=552 IP142.250.74.162:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeHTML document, ASCII text, with very long lines (603), with no line terminators Hash2c739853e3edfa26869416e3d4e5d369 c263dc1c36c954b252bc7e775e6e82865d9b29b8 00daef3b4a945d15f73efa05e0ce2ca51f2f8252e1da8fae5c2efb0f6dddacce
GET /pagead/ads?npa=1&client=ca-pub-8964089458799379&output=html&adk=1812271804&adf=3025194257&abgtt=6&lmt=1732671942&plat=3%3A16%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1081344%2C32%3A32%2C41%3A32%2C42%3A32&plas=174x920_r&format=0x0&url=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&host=ca-host-pub-1556223355139109&pra=5&wgl=1&aihb=0&aiof=3&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~3~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33~38&aifxl=29_18~30_19&aiixl=29_5~30_6&aiict=1&itsi=-1&aiapm=0.3221&aiapmi=0.33938&aiombap=1&aief=1&dt=1733627459852&bpp=6&bdt=437&idt=488&shv=r20241120&mjsv=m202412040102&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=1114170126605&rume=1&frm=20&pv=2&u_tz=0&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&u_sd=1&adx=-12245933&ady=-12245933&biw=1280&bih=1024&scr_x=0&scr_y=0&eid=31089332%2C95347445%2C31089297%2C95345967%2C31061691%2C31061693&oid=2&pvsid=3710480692511703&tmod=975829842&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C1024&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=1&ifi=1&uci=a!1&fsb=1&dtd=552 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Sun, 08 Dec 2024 03:11:00 GMT
server: cafe
content-length: 46
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://draft.blogger.com/
Origin: https://draft.blogger.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Dec 2024 05:38:28 GMT
expires: Sun, 07 Dec 2025 05:38:28 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 77552
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/am=ABBgFg/d=1/excm=_b,_tp,followersiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP28k-47yxSvFOQPeRegIKwhGMwrZg/m=_b,_tp | 216.58.207.233 | 200 OK | 78 kB |
URL GET HTTP/3draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/am=ABBgFg/d=1/excm=_b,_tp,followersiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP28k-47yxSvFOQPeRegIKwhGMwrZg/m=_b,_tp IP216.58.207.233:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (900) Hash20360bae591590ee6ff7b4bdd5495cc7 471c1030331247db133ae85d331e88c9fbf3f6a0 40de86f70f64ae6f1549f9eae480fe8589e527e74fe95228aa597b47f45ee936
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/am=ABBgFg/d=1/excm=_b,_tp,followersiframeview/ed=1/dg=0/wt=2/ujg=1/rs=AEy-KP28k-47yxSvFOQPeRegIKwhGMwrZg/m=_b,_tp HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 77872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Dec 2024 06:43:41 GMT
expires: Sun, 07 Dec 2025 06:43:41 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 05 Dec 2024 05:07:40 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 73639
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| proftrafficcounter.com/stats |  18.197.104.204 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.197.104.204:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerAmazon Subjectproftrafficcounter.com Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40 ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash85e37efeedb486fff518083a68c1d520 ddcee6cb8842d8fb6c508ad5b919ddf4941b4e50 f863ea2731997cfa43a087ec5291707de2b08e28723d43a67c717f09d2425b82
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://baimhalamanwebsite.blogspot.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Wed, 06 Dec 2034 03:11:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.197.104.204 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.197.104.204:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerAmazon Subjectproftrafficcounter.com Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40 ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash3029ab2200254c95f8f0b3d7bd6234bf 2d68321b54d90a52988f11e622380d4e9c8927c3 181f19e562036748a28e3da9824682c501e23bb8676215cb47d010c2261ec5f1
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://baimhalamanwebsite.blogspot.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=d760b7b8-1142-4d16-b813-76dc91431cd4:3:1; expires=Wed, 06 Dec 2034 03:11:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.197.104.204 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.197.104.204:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerAmazon Subjectproftrafficcounter.com Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40 ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash7ffa8814d2e22ff223a51b1989b20708 bbf03b0c81d71997dcda08527ba1d9b8b67ece21 3b4a981e57bde268aed9033aabfd8b9c67bd20f1d25ddacf93e9654b78dbdad9
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://baimhalamanwebsite.blogspot.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4d238185-fd85-4fca-8a1d-79f2d9c1a0a0:1:1; expires=Wed, 06 Dec 2034 03:11:00 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 18.197.104.204 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.197.104.204:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerAmazon Subjectproftrafficcounter.com Fingerprint40:FD:DA:57:15:28:B1:29:02:3E:E6:2F:38:E5:11:E5:7F:DB:6B:40 ValidityMon, 21 Oct 2024 00:00:00 GMT - Thu, 20 Nov 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash85e37efeedb486fff518083a68c1d520 ddcee6cb8842d8fb6c508ad5b919ddf4941b4e50 f863ea2731997cfa43a087ec5291707de2b08e28723d43a67c717f09d2425b82
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:00 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://baimhalamanwebsite.blogspot.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js | 192.243.59.13 | 200 OK | 9.2 kB |
URL GET HTTP/1.1pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (23188), with no line terminators Hash5109f2ac74a63baefe02f547baac2ffb ba27c9640239049ef70e9fa9f3f88aae02e22b2b d8f2f580da73afb2a3c6081a3731d65e83a20140848531534abca0df40e81fd0
GET /6168b558aaf85f097913d26c76f32bed/invoke.js HTTP/1.1
Host: pl24159476.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159476.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 44cdb8852bb504614f9cc51c322ca5dc
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pl24159845.cpmrevenuegate.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js | 192.243.59.20 | 200 OK | 34 kB |
URL GET HTTP/1.1pl24159845.cpmrevenuegate.com/a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashec21e04ca499afed93a15d9bcf38a0f8 bcea6c14f517e8bbfb214f6d60d3301cb65beadc 49be8ea137a482710a99510f3bc37ab13a76e8bb4fb1a396ac8bae6d5e0782fb
GET /a7/ea/76/a7ea76e7e090c42b65affc82160e9d04.js HTTP/1.1
Host: pl24159845.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159845.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a44372fcd939fc8150a10cc68a8a5d28
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| recordedthereby.com/sfp.js |  185.196.197.71 | 200 OK | 85 kB |
URL GET HTTP/1.1recordedthereby.com/sfp.js IP185.196.197.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectrecordedthereby.com FingerprintE0:09:99:E3:0E:A5:83:8D:96:1B:26:8A:2E:AC:12:98:C6:D3:E1:76 ValidityWed, 06 Nov 2024 14:09:18 GMT - Tue, 04 Feb 2025 14:09:17 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: b0a4587b749d18519c1f9e2de6184a32
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=_b,_tp/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,A1yn5d,fKUV3e,aurFic,ZwDk9d,V3dDOb,mI3LFb,WO9ee,SyPird,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,s39S4,duFQFc,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,pw70Gc,EFQ78c,Ulmmrd,ZfAoz,mdR7q,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,QIhFr,ovKuLd,hKSk3e,yDVVkb,hc6Ubd,SpsfSb,ebZ3mb,Z5uLle,BBI74,ZDZcre,MdUzUe,A7fCU,zbML3c,zr1jrb,Uas9Hd,pjICDe | 216.58.207.233 | 200 OK | 120 kB |
URL GET HTTP/3draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=_b,_tp/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,A1yn5d,fKUV3e,aurFic,ZwDk9d,V3dDOb,mI3LFb,WO9ee,SyPird,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,s39S4,duFQFc,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,pw70Gc,EFQ78c,Ulmmrd,ZfAoz,mdR7q,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,QIhFr,ovKuLd,hKSk3e,yDVVkb,hc6Ubd,SpsfSb,ebZ3mb,Z5uLle,BBI74,ZDZcre,MdUzUe,A7fCU,zbML3c,zr1jrb,Uas9Hd,pjICDe IP216.58.207.233:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (14724) Size120 kB (119570 bytes) Hash66fd43ffed3a1e5ab147b7b1388f3993 cd527e37dbfe0a24af36439a04e46105981dbf23 673942b2d8c95a7a8ead0ef21b9c337af6a315dad31e934eaa37fa462e84c62f
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=_b,_tp/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=ws9Tlc,n73qwf,UUJqVe,IZT63,e5qFLc,O1Gjze,byfTOb,lsjVmc,xUdipf,OTA3Ae,A1yn5d,fKUV3e,aurFic,ZwDk9d,V3dDOb,mI3LFb,WO9ee,SyPird,O6y8ed,MpJwZc,PrPYRd,LEikZe,NwH0H,OmgaI,lazG7b,XVMNvd,L1AAkb,KUM7Z,Mlhmy,s39S4,duFQFc,lwddkf,gychg,w9hDv,EEDORb,RMhBfe,SdcwHb,aW3pY,pw70Gc,EFQ78c,Ulmmrd,ZfAoz,mdR7q,xQtZb,JNoxi,kWgXee,MI6k7c,kjKdXe,BVgquf,QIhFr,ovKuLd,hKSk3e,yDVVkb,hc6Ubd,SpsfSb,ebZ3mb,Z5uLle,BBI74,ZDZcre,MdUzUe,A7fCU,zbML3c,zr1jrb,Uas9Hd,pjICDe HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 119570
date: Sun, 08 Dec 2024 03:11:00 GMT
expires: Mon, 08 Dec 2025 03:11:00 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 05 Dec 2024 03:07:14 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxOM7c-5_7fffVsUNILY4eL0djHH2FWrUHXgRYivTwpwhMd5EGcuYXDowT0WI_n50hcAgHjy7DN0uJXrsti2HfjM6zHdCaLV-GOlLQ24JMIggUG_uHL0RJa2wil0zczCcdtjb6MwW3bfM9DSrDwu1zn_9Lhz_w4YxW6SlDmXlbOp7vvjCbQ8KZGPS7aoI/w128-h128-p-k-no-nu/Screenshot_20240811-190724.png | 142.250.74.129 | 200 OK | 17 kB |
URL GET HTTP/2blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjxOM7c-5_7fffVsUNILY4eL0djHH2FWrUHXgRYivTwpwhMd5EGcuYXDowT0WI_n50hcAgHjy7DN0uJXrsti2HfjM6zHdCaLV-GOlLQ24JMIggUG_uHL0RJa2wil0zczCcdtjb6MwW3bfM9DSrDwu1zn_9Lhz_w4YxW6SlDmXlbOp7vvjCbQ8KZGPS7aoI/w128-h128-p-k-no-nu/Screenshot_20240811-190724.png IP142.250.74.129:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.googleusercontent.com Fingerprint1E:EC:6F:A8:CB:AA:F1:D0:22:B4:B9:38:61:D0:49:58:42:5C:6A:6F ValidityMon, 21 Oct 2024 08:37:53 GMT - Mon, 13 Jan 2025 08:37:52 GMT
File typePNG image data, 128 x 128, 8-bit/color RGB, non-interlaced Hashd9b7fa0422200a05fd02774cb291e506 8f73851073b5d9d647b1072c15feaadead2d5578 2ebe21b4f4f6d300087d0bff3532982f139ef45aeaf6098c41bc57ff2003988e
GET /img/b/R29vZ2xl/AVvXsEjxOM7c-5_7fffVsUNILY4eL0djHH2FWrUHXgRYivTwpwhMd5EGcuYXDowT0WI_n50hcAgHjy7DN0uJXrsti2HfjM6zHdCaLV-GOlLQ24JMIggUG_uHL0RJa2wil0zczCcdtjb6MwW3bfM9DSrDwu1zn_9Lhz_w4YxW6SlDmXlbOp7vvjCbQ8KZGPS7aoI/w128-h128-p-k-no-nu/Screenshot_20240811-190724.png HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
vary: Origin
access-control-expose-headers: Content-Length
etag: "v92"
expires: Mon, 09 Dec 2024 03:11:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Screenshot_20240811-190724.png"
x-content-type-options: nosniff
date: Sun, 08 Dec 2024 03:11:00 GMT
server: fife
content-length: 17217
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| normalfloat.com/pixel/purst?dl=0&th=0&sc=0&rs=2179&rd=2179&fd=812&bv=24.12.6652&tmpl=70 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1normalfloat.com/pixel/purst?dl=0&th=0&sc=0&rs=2179&rd=2179&fd=812&bv=24.12.6652&tmpl=70 IP172.240.108.84:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectnormalfloat.com FingerprintD7:D5:52:48:AB:4D:76:3F:44:BF:9C:06:08:FB:F9:66:58:F4:D5:AB ValidityMon, 14 Oct 2024 07:53:11 GMT - Sun, 12 Jan 2025 07:53:10 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2179&rd=2179&fd=812&bv=24.12.6652&tmpl=70 HTTP/1.1
Host: normalfloat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Length: 0
Connection: keep-alive
Host: normalfloat.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| darkenedplane.com/ntv.json?key=6168b558aaf85f097913d26c76f32bed&vstc=4 | 172.240.127.234 | 200 OK | 18 kB |
URL GET HTTP/1.1darkenedplane.com/ntv.json?key=6168b558aaf85f097913d26c76f32bed&vstc=4 IP172.240.127.234:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectdarkenedplane.com FingerprintAB:79:51:4E:B6:71:80:C0:64:A0:77:72:CF:DA:7B:28:7F:48:35:CF ValidityTue, 26 Nov 2024 07:58:54 GMT - Mon, 24 Feb 2025 07:58:53 GMT
Hash2d8b90472beb69de99a4dc2abb318a31 496770ddd846737562797fc7c1b45d05fce03f22 893861fd5066bdb524760513aa7d41a2f54d450c147820a86775679b7169deff
GET /ntv.json?key=6168b558aaf85f097913d26c76f32bed&vstc=4 HTTP/1.1
Host: darkenedplane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:00 GMT
Content-Type: application/json
Content-Length: 18325
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl24058977=1; expires=Mon, 09 Dec 2024 03:11:00 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 09 Dec 2024 03:11:00 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 09 Dec 2024 03:11:00 GMT; path=/; secure; SameSite=None
pdhtkv49=true; expires=Mon, 09 Dec 2024 03:11:00 GMT; path=/; secure; SameSite=None
uncs49=1; expires=Mon, 09 Dec 2024 03:11:00 GMT; path=/; secure; SameSite=None
nlec6168b558aaf85f097913d26c76f32bed=[5479086,5479087,5479085,5479083]; expires=Sun, 08 Dec 2024 03:11:05 GMT; path=/; secure; SameSite=None
Host: darkenedplane.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 55154f3865e689694db0f716a3c0bea7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=sOXFj,q0xTif,pePXtf | 216.58.207.233 | 200 OK | 3.0 kB |
URL GET HTTP/3draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=sOXFj,q0xTif,pePXtf IP216.58.207.233:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (887) Hashc69af824b519c320b3e1c1ec4da1ab56 0aca049c71f0f3f158966a30685aee5940072bf9 ffff91c0c0234ad85827b0077d5c06c3dab54a220dd451673deffb25a6f6b850
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pjICDe,pw70Gc,s39S4,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=sOXFj,q0xTif,pePXtf HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 3000
date: Sun, 08 Dec 2024 03:11:01 GMT
expires: Mon, 08 Dec 2025 03:11:01 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 05 Dec 2024 03:07:14 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=P6sQOc | 216.58.207.233 | 200 OK | 759 B |
URL GET HTTP/3draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=P6sQOc IP216.58.207.233:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (764) Hash55ea8b3024fe086e7853ae5fd206365f ed8d659beccaf56444df14e98ff22391ac07e8ec f8fdf7fe3e10b21887f653174f91da0a60979b28e64cc54dbd937630b87f9ef9
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=P6sQOc HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 759
date: Sun, 08 Dec 2024 03:11:01 GMT
expires: Mon, 08 Dec 2025 03:11:01 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 05 Dec 2024 03:07:14 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js | 192.243.59.20 | 200 OK | 11 kB |
URL GET HTTP/1.1roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (24925), with no line terminators Hashb4306fa0fd92252ffa082e01a089e4db bece00708544ba25df91383390e62955fea41cd1 68f120844afd207d939bdcd5e256a19c889043eb0838c09baf3fc51c64094cc2
GET /2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 60af88824f6a535694e47ade2ae377c6
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js | 192.243.59.13 | 200 OK | 9.2 kB |
URL GET HTTP/1.1pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (23155), with no line terminators Hash9bdd2e4ddab7ecc7be437feff0d2ceff 7fff90018ee2a0fd0a7e996f07ac82c110b0f583 c33399723514177a317694846bdc40941a933e0ecc36d9bc77b19417f39c865e
GET /6168b558aaf85f097913d26c76f32bed/invoke.js HTTP/1.1
Host: pl24159476.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159476.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2cefcd84b9f63d42fe1022a5c4c18300
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASFDK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B4cgYeni3bw57WjuU8Q6gKpLvCROCHoytujmyon%2BzdVbsj366kVsRjQctMbllp%2B5eu3%2BHauNFtdNsOvXg9LoGzvv8uNXaMJE0nXkHtLgjGuV5QOOflx1bzHgxuZ2VzKdJKlazfeWFmNU82NESoZg4qz8AeEYkKeOm1Pn3Dt5DcIPYbOCsTZKbkMCHWMMN2BSWfqjSLQcsYJUgd5Vox0PZj9lIJA8tlMgwLmP3Mw60ealqepKPbMbXR1BdTuIokL9HSBnixA5RAme3xkU326%2BOuXZdxBICujQOrKfiC1%2FGJqcpm%2BLdM3ZboHI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSffWk8t%2FBwAA%2F%2F8ov5JRpgQAAA%3D%3D | 172.240.127.234 | 200 OK | 7 B |
URL GET HTTP/1.1darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASFDK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B4cgYeni3bw57WjuU8Q6gKpLvCROCHoytujmyon%2BzdVbsj366kVsRjQctMbllp%2B5eu3%2BHauNFtdNsOvXg9LoGzvv8uNXaMJE0nXkHtLgjGuV5QOOflx1bzHgxuZ2VzKdJKlazfeWFmNU82NESoZg4qz8AeEYkKeOm1Pn3Dt5DcIPYbOCsTZKbkMCHWMMN2BSWfqjSLQcsYJUgd5Vox0PZj9lIJA8tlMgwLmP3Mw60ealqepKPbMbXR1BdTuIokL9HSBnixA5RAme3xkU326%2BOuXZdxBICujQOrKfiC1%2FGJqcpm%2BLdM3ZboHI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSffWk8t%2FBwAA%2F%2F8ov5JRpgQAAA%3D%3D IP172.240.127.234:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectdarkenedplane.com FingerprintAB:79:51:4E:B6:71:80:C0:64:A0:77:72:CF:DA:7B:28:7F:48:35:CF ValidityTue, 26 Nov 2024 07:58:54 GMT - Mon, 24 Feb 2025 07:58:53 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASFDK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B4cgYeni3bw57WjuU8Q6gKpLvCROCHoytujmyon%2BzdVbsj366kVsRjQctMbllp%2B5eu3%2BHauNFtdNsOvXg9LoGzvv8uNXaMJE0nXkHtLgjGuV5QOOflx1bzHgxuZ2VzKdJKlazfeWFmNU82NESoZg4qz8AeEYkKeOm1Pn3Dt5DcIPYbOCsTZKbkMCHWMMN2BSWfqjSLQcsYJUgd5Vox0PZj9lIJA8tlMgwLmP3Mw60ealqepKPbMbXR1BdTuIokL9HSBnixA5RAme3xkU326%2BOuXZdxBICujQOrKfiC1%2FGJqcpm%2BLdM3ZboHI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSffWk8t%2FBwAA%2F%2F8ov5JRpgQAAA%3D%3D HTTP/1.1
Host: darkenedplane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24058977=1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec6168b558aaf85f097913d26c76f32bed=[5479086,5479087,5479085,5479083]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: darkenedplane.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f4bd86eb1f6e4f3665c47d5ab7dd25b9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| clusterposture.com/watch.219041948665.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1clusterposture.com/watch.219041948665.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.219041948665.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://clusterposture.com/watch.219041948665.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=3fb2ae4070e67a97cd25e9446e799862ba5ffc5784479462f24927ab65c11166238bba807e0e930d8d99d5d068d053a898344bedded9823611a416a2e15b98631180802452133ca593c466cbf484a2509a01be24a297ba991c4598&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1
Set-Cookie: u_pl24090878=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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_bT0xIiwiYXIiOltdfX0.rc66ZxR-gPoKP06Pepq_vAKyP5pEFMqtV0lLYDRGza0; expires=Sun, 08 Dec 2024 03:12:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4eb817d16c017150b9d1d72a85c0ce62
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| apis.google.com/js/api.js | 142.250.74.46 | 200 OK | 5.8 kB |
URL GET HTTP/3apis.google.com/js/api.js IP142.250.74.46:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint2C:88:D1:F3:88:1E:8C:7A:FA:75:31:0C:56:7A:2F:4E:7F:79:4F:EB ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (2049) Hash9067a46c3485ec09c3d4da4fe39e805a 7b900c2e11819922b1da3e9090df73166429e4f2 c6aa41b04dd78f5e58c5af6bf43fbfde6183ab0abc400f6b207bcb48b4671ee3
GET /js/api.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 5772
date: Sun, 08 Dec 2024 03:11:01 GMT
expires: Sun, 08 Dec 2024 03:11:01 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "0ae6300f747a955a"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| clusterposture.com/watch.403152343320.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1clusterposture.com/watch.403152343320.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.403152343320.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://clusterposture.com/watch.403152343320.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=e2141db39cb4d17ba24841d9df946d904fe818dcfa8f1c558f4d320ff16c378b8e694d334a60b3533ff121f004ce61c63a23105776f13ac8ca294fd429b2645c641853bbbf7eb0cf19ed829d980aef6ab9277b46629c840c319f53&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1
Set-Cookie: u_pl24090241=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; expires=Sun, 08 Dec 2024 03:12:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2571a9404c474749eb8ef2ffd24961c9
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.storageimagedisplay.com/si/0336d0fbbd753a4a1476dd27315282eb020d183925a1b70b499643afef0d766f.png | 45.133.44.1 | 200 OK | 45 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/si/0336d0fbbd753a4a1476dd27315282eb020d183925a1b70b499643afef0d766f.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Hash81a0cc7dfa86a01a18be94f8186c5ac3 92f0b6ebcaa282a6672f62784c444797ea900a66 17be749d81ed5f12e850cdcb9e596bdef6403131297f02f51125381e26634288
GET /si/0336d0fbbd753a4a1476dd27315282eb020d183925a1b70b499643afef0d766f.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:01 GMT
content-type: image/png
content-length: 44889
server: nginx/1.21.6
last-modified: Fri, 16 Aug 2024 04:26:56 GMT
etag: "66bed510-af59"
expires: Tue, 10 Dec 2024 03:11:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASETK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B58Ax6eLtrBn9eO5j5BqAukusBH4oSgK2%2BPbqqc7N9UuSHfr6dWxGJAy01vWGr5la%2Ff4tu50mx12Qy%2Fej0sgbK9%2Fy43do0mTCRdQ%2B4tCca4XlE65OTHVfMeD25kZnMp00mWrt14Y2U1TjU3RqhkDCrOwh8Qigl56rQ9fcK1k98g9Bg6KxBnp%2BQyINQxwnQHJp2pN4pAyxknSK8gz4qRrgezn1IQSD6baVDA%2FGcOZv1I0%2FI0FcWeuY2uroDaXSRxgZ4u0JMFqBzCZI%2BPbKpPF3%2F9sow7CGRlFEhd2Q%2Bkll%2BUJh%2BV6dup3WW6ByPOq61Gw6V%2Bp%2Bm1WpS3goV6O%2FI9Rml9wa%2F7Pm3Amkn31pPLfwcAAP%2F%2F310jAaYEAAA%3D | 172.240.127.234 | 200 OK | 7 B |
URL GET HTTP/1.1darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASETK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B58Ax6eLtrBn9eO5j5BqAukusBH4oSgK2%2BPbqqc7N9UuSHfr6dWxGJAy01vWGr5la%2Ff4tu50mx12Qy%2Fej0sgbK9%2Fy43do0mTCRdQ%2B4tCca4XlE65OTHVfMeD25kZnMp00mWrt14Y2U1TjU3RqhkDCrOwh8Qigl56rQ9fcK1k98g9Bg6KxBnp%2BQyINQxwnQHJp2pN4pAyxknSK8gz4qRrgezn1IQSD6baVDA%2FGcOZv1I0%2FI0FcWeuY2uroDaXSRxgZ4u0JMFqBzCZI%2BPbKpPF3%2F9sow7CGRlFEhd2Q%2Bkll%2BUJh%2BV6dup3WW6ByPOq61Gw6V%2Bp%2Bm1WpS3goV6O%2FI9Rml9wa%2F7Pm3Amkn31pPLfwcAAP%2F%2F310jAaYEAAA%3D IP172.240.127.234:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectdarkenedplane.com FingerprintAB:79:51:4E:B6:71:80:C0:64:A0:77:72:CF:DA:7B:28:7F:48:35:CF ValidityTue, 26 Nov 2024 07:58:54 GMT - Mon, 24 Feb 2025 07:58:53 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitdgdEBVGJXhSco4pMumcyPTPuIRhjlmDcrBsXvYhUd1VPylR3tVXV05PxEgzIHkfw4p46b5INumvUs7jKJCASETK3HAz4Nwh7lh6Dox%2F096PfK3j1vvpsL7sgDWT0fPltNRBS0vlmza2%2B9L7nXa2uiSTrV%2Ftt%2F0N%2F4WpV917r%2BDX35eo1Hm6p%2Bbrrua7netUVoXmk%2BvMlCJHe73i1jltbqNe85gL6%2Bv%2BzyRwY6oD1LsgzEGxSOXHmIMIxkvi7ZW62rEpffTPOJLVKo8cObyVbicoTxLM20g6i5PCSDWXOVh5AJQdTuVC9f4mBmBDnlwcIksNLkQh6%2B1OdgQRPELAnkPfG4HIMQccI1S4EOyNAyHB9HUl897rSOd3%2BB6UlOiGVh39B5BNS%2BWMOSXy0JEW%2FuqFkZoVKDPpRAdEfQ3THSLNj2IEDkR8jtJ9CsN%2FJ%2FMM1JPH%2BupEKghXTuwsxhojGkHwIahxk5SccZJGDLHUQs%2FNq6Hley2UhddudMGywFg985nq0FXnUc%2F02srCUN4RNhwjlEKHeQap3sCU%2BnxDnseegs59hNgsY5sDYCXHe2UGPFcg5QW4IckqQC4LcEuS94oBJUzfFXSZNFniXtX5ZG8VI2e4ePVC2yxMCqofQrNgX6cdmF6G9MhpE5oORigzbSy%2FI06VxjnqBYoufV33PbwfNZpvSqN2M3E6r4zVY3Q9bftSoB5zBiALCPDL1YiAmZPHRV5CKCXlxo46AHsPIY4TiWdDMA80L0M0Cg%2BSngIp4k0oa0yTngRGW1wKpuiZVthaqGEwVSG0FdtvZkxfk%2Bek2N%2B58Ax6eLtrBn9eO5j5BqAukusBH4oSgK2%2BPbqqc7N9UuSHfr6dWxGJAy01vWGr5la%2Ff4tu50mx12Qy%2Fej0sgbK9%2Fy43do0mTCRdQ%2B4tCca4XlE65OTHVfMeD25kZnMp00mWrt14Y2U1TjU3RqhkDCrOwh8Qigl56rQ9fcK1k98g9Bg6KxBnp%2BQyINQxwnQHJp2pN4pAyxknSK8gz4qRrgezn1IQSD6baVDA%2FGcOZv1I0%2FI0FcWeuY2uroDaXSRxgZ4u0JMFqBzCZI%2BPbKpPF3%2F9sow7CGRlFEhd2Q%2Bkll%2BUJh%2BV6dup3WW6ByPOq61Gw6V%2Bp%2Bm1WpS3goV6O%2FI9Rml9wa%2F7Pm3Amkn31pPLfwcAAP%2F%2F310jAaYEAAA%3D HTTP/1.1
Host: darkenedplane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24058977=1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec6168b558aaf85f097913d26c76f32bed=[5479086,5479087,5479085,5479083]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: darkenedplane.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 2f43c013e10a705a27aed1731ffcf9a6
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.storageimagedisplay.com/si/fb818d006820610795d8a4e344b018816291d8aa118e9ff95c7266ad29bd32af.png | 45.133.44.1 | 200 OK | 71 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/si/fb818d006820610795d8a4e344b018816291d8aa118e9ff95c7266ad29bd32af.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Hash00ab3e532693ce370f7bee8b9d12f146 6cf47d31cc4ee3707bc5a1da14272567dbcbf1c9 58d79dc390194f8303b83a3e5198ceea3da3e047dde34f8f873e879ccaa5f166
GET /si/fb818d006820610795d8a4e344b018816291d8aa118e9ff95c7266ad29bd32af.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:01 GMT
content-type: image/png
content-length: 70835
server: nginx/1.21.6
last-modified: Fri, 16 Aug 2024 04:27:36 GMT
etag: "66bed538-114b3"
expires: Tue, 10 Dec 2024 03:11:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/si/ec4f8fd42750ec320af378f06d2b05ae4f14680edbed1965eb2efdb3f6a1e601.png | 45.133.44.1 | 200 OK | 86 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/si/ec4f8fd42750ec320af378f06d2b05ae4f14680edbed1965eb2efdb3f6a1e601.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Hashe16dfa3af0255e161ecd96ea6d595ffe 9685ae033bb502f8ee360a735690464078b2a02d de824830581af52138fd5d998522809ff2de379bff5361eba1fd75015420e857
GET /si/ec4f8fd42750ec320af378f06d2b05ae4f14680edbed1965eb2efdb3f6a1e601.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:01 GMT
content-type: image/png
content-length: 85555
server: nginx/1.21.6
last-modified: Fri, 16 Aug 2024 04:28:18 GMT
etag: "66bed562-14e33"
expires: Tue, 10 Dec 2024 03:11:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/si/2482d1a934240457aac406442d80cffe47bb7a86d62aae51b0d2928792361105.png | 45.133.44.1 | 200 OK | 189 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/si/2482d1a934240457aac406442d80cffe47bb7a86d62aae51b0d2928792361105.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typePNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced Size189 kB (189369 bytes) Hash9bf2bd016a4598c36c9807e0f6469581 de01dbc784aaf90c4cdf04bfc48cd2129678b51e 7760250efb4621cb34cdb6d1af08f6ee43676e7ca5c73ee98632039b9927fe71
GET /si/2482d1a934240457aac406442d80cffe47bb7a86d62aae51b0d2928792361105.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:01 GMT
content-type: image/png
content-length: 189369
server: nginx/1.21.6
last-modified: Fri, 16 Aug 2024 04:28:05 GMT
etag: "66bed555-2e3b9"
expires: Tue, 10 Dec 2024 03:11:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js | 172.240.108.68 | 200 OK | 9.2 kB |
URL GET HTTP/1.1pl24159476.cpmrevenuegate.com/6168b558aaf85f097913d26c76f32bed/invoke.js IP172.240.108.68:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcpmrevenuegate.com Fingerprint4D:6A:48:FA:9D:ED:03:54:AB:79:1E:FE:22:70:5A:7C:39:8A:35:6E ValidityMon, 21 Oct 2024 05:17:26 GMT - Sun, 19 Jan 2025 05:17:25 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (23188), with no line terminators Hash5109f2ac74a63baefe02f547baac2ffb ba27c9640239049ef70e9fa9f3f88aae02e22b2b d8f2f580da73afb2a3c6081a3731d65e83a20140848531534abca0df40e81fd0
GET /6168b558aaf85f097913d26c76f32bed/invoke.js HTTP/1.1
Host: pl24159476.cpmrevenuegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: pl24159476.cpmrevenuegate.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: d32fe0b9fe254410d58ab0fbd19173fb
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js | 192.243.59.20 | 200 OK | 11 kB |
URL GET HTTP/1.1roomshikinginformal.com/2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (24925), with no line terminators Hash22d6436348825e376bd7f1d770df5800 c8ddee4b1b880d4d9c98d307830910f020e17afd cf693ac156225ab8347078f90cdee34310f4e10952f5ec83ad23d46c322bb572
GET /2b1405bbf5bc3524b05d31e77bbdaaa2/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 02b10b02a72d631819b07ccd4d9d9cf7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs | 142.250.74.46 | 200 OK | 43 kB |
URL GET HTTP/3apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs IP142.250.74.46:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.google.com Fingerprint2C:88:D1:F3:88:1E:8C:7A:FA:75:31:0C:56:7A:2F:4E:7F:79:4F:EB ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (1302) Hashac898b39e850ef3b63567d74f0831095 aaf7f00f6e9605792c5aab80672328119be4ca71 85bd2c4029566e2677a527f4df4a046b9460a62efd1cf4c6fdc66077e130c33d
GET /_/scs/abc-static/_/js/k=gapi.lb.en.6zM9SN8ON8Q.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/am=AAAg/rs=AHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 42808
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 07 Dec 2024 16:40:24 GMT
expires: Sun, 07 Dec 2025 16:40:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Nov 2024 18:50:50 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 37837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt%2Fu7AFxVEJXpRcI4qMumeyfTMuIdgjFmCcbNuXPQiUt1VPSlT3dVWVU9PxkswIHscwYt76rxJNuiuUc%2FiKpOAaEDI3HIw4N8g7Fl6Njj6gf786PcKXr1PfbaXXZAGMnq%2B%2FLYaCCnpfLPmVl963%2FOuVtdEkvWr%2Fbb%2Fob9wtap7r3X8mvty9RoPt9R83fVc13O96orQPFL9%2BRKESO93vFrHrS3Ua15zAX3939lkDgx1wHoX5BkINqmcOHMQ4RhJ%2FN0yN1tWpa%2B%2BGWeSWqXRY4e3kq1E5QniWRtpB1FyeMmGMmcrD6CSg6lcqN4%2FxEBMiPPLAwTJ4aVIBL39qc5AgicI2BPIe2NwOYagY4RqF4KdESBkuL6OJL57Xemcbj9CaYlOSOXhXxD5hFT%2BmEMSHy1J0a9uKJlZoRKDflRA9McQ3THS7Bh24EDkxwjtpxDsdzL%2FcA1JvL9upIJgxfTuQowhojEkH4IaB1n5CQdZ5CBLHcTsvBp6ntdyWUjddicMG6zFA5%2B5Hm1FHvVcv40sLOUNYdMhQjlEqHeQ6h1sic8nxHnsOejsZ5jNAoY5MHZCnHd20GMFck6QG4KcEuSCILcEea84YNLUTXGXSZMF3mWtX9ZGMVK2u0cPlO3yhIDqITQr9kX6sdlFaK%2BMBpH5YKQiw%2FbSC%2FJ0aZyjXqDY4udV3%2FPbQbPZpjRqNyO30%2Bp4DVb3w5YfNeoBZzCigDD%2Fm3oxEBOy%2BP9XkIoJeXGjjoAew8hjhOJZ0MwDzQvQzQKD5KeAiniTShrTJOeBEZbXAqm6JlW2FqoYTBVIbQV229mTF%2BT56TY37twDD08X7eDPa0dznyDUBVJd4CNxQtCVt0c3VU72b6rckO%2FXUytiMaDlpjcstfzK12%2Fx7Vxptrpshl%2B9HpZA2d5%2Flxu7RhMmkq4h95YEY1yvKB1y8uOqeY8HNzKzuZTpJEvXbryxshqnmhsjVDIGFWfhDwjFhDx12p4%2B4drJbxB6DJ0ViLNTchkQ6hhhugOTztQbRaDljBOkFeRZMdL1YPZTCgLJZzMNCph%2FzcGsH2lanqai2DO30dUVULuLJC7Q0wV6sgCVQ5js8ZFN9enir1%2BWcQeBrIwCqSv7gdTyi9LkozJ9W6ZvHnluxHm11Wi41O80vVaL8lawUG9HvscorS%2F4dd%2BnDVgz6d56cvnvAAAA%2F%2F8F73eGpgQAAA%3D%3D | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt%2Fu7AFxVEJXpRcI4qMumeyfTMuIdgjFmCcbNuXPQiUt1VPSlT3dVWVU9PxkswIHscwYt76rxJNuiuUc%2FiKpOAaEDI3HIw4N8g7Fl6Njj6gf786PcKXr1PfbaXXZAGMnq%2B%2FLYaCCnpfLPmVl963%2FOuVtdEkvWr%2Fbb%2Fob9wtap7r3X8mvty9RoPt9R83fVc13O96orQPFL9%2BRKESO93vFrHrS3Ua15zAX3939lkDgx1wHoX5BkINqmcOHMQ4RhJ%2FN0yN1tWpa%2B%2BGWeSWqXRY4e3kq1E5QniWRtpB1FyeMmGMmcrD6CSg6lcqN4%2FxEBMiPPLAwTJ4aVIBL39qc5AgicI2BPIe2NwOYagY4RqF4KdESBkuL6OJL57Xemcbj9CaYlOSOXhXxD5hFT%2BmEMSHy1J0a9uKJlZoRKDflRA9McQ3THS7Bh24EDkxwjtpxDsdzL%2FcA1JvL9upIJgxfTuQowhojEkH4IaB1n5CQdZ5CBLHcTsvBp6ntdyWUjddicMG6zFA5%2B5Hm1FHvVcv40sLOUNYdMhQjlEqHeQ6h1sic8nxHnsOejsZ5jNAoY5MHZCnHd20GMFck6QG4KcEuSCILcEea84YNLUTXGXSZMF3mWtX9ZGMVK2u0cPlO3yhIDqITQr9kX6sdlFaK%2BMBpH5YKQiw%2FbSC%2FJ0aZyjXqDY4udV3%2FPbQbPZpjRqNyO30%2Bp4DVb3w5YfNeoBZzCigDD%2Fm3oxEBOy%2BP9XkIoJeXGjjoAew8hjhOJZ0MwDzQvQzQKD5KeAiniTShrTJOeBEZbXAqm6JlW2FqoYTBVIbQV229mTF%2BT56TY37twDD08X7eDPa0dznyDUBVJd4CNxQtCVt0c3VU72b6rckO%2FXUytiMaDlpjcstfzK12%2Fx7Vxptrpshl%2B9HpZA2d5%2Flxu7RhMmkq4h95YEY1yvKB1y8uOqeY8HNzKzuZTpJEvXbryxshqnmhsjVDIGFWfhDwjFhDx12p4%2B4drJbxB6DJ0ViLNTchkQ6hhhugOTztQbRaDljBOkFeRZMdL1YPZTCgLJZzMNCph%2FzcGsH2lanqai2DO30dUVULuLJC7Q0wV6sgCVQ5js8ZFN9enir1%2BWcQeBrIwCqSv7gdTyi9LkozJ9W6ZvHnluxHm11Wi41O80vVaL8lawUG9HvscorS%2F4dd%2BnDVgz6d56cvnvAAAA%2F%2F8F73eGpgQAAA%3D%3D IP172.240.253.132:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectdarkenedplane.com FingerprintAB:79:51:4E:B6:71:80:C0:64:A0:77:72:CF:DA:7B:28:7F:48:35:CF ValidityTue, 26 Nov 2024 07:58:54 GMT - Mon, 24 Feb 2025 07:58:53 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt%2Fu7AFxVEJXpRcI4qMumeyfTMuIdgjFmCcbNuXPQiUt1VPSlT3dVWVU9PxkswIHscwYt76rxJNuiuUc%2FiKpOAaEDI3HIw4N8g7Fl6Njj6gf786PcKXr1PfbaXXZAGMnq%2B%2FLYaCCnpfLPmVl963%2FOuVtdEkvWr%2Fbb%2Fob9wtap7r3X8mvty9RoPt9R83fVc13O96orQPFL9%2BRKESO93vFrHrS3Ua15zAX3939lkDgx1wHoX5BkINqmcOHMQ4RhJ%2FN0yN1tWpa%2B%2BGWeSWqXRY4e3kq1E5QniWRtpB1FyeMmGMmcrD6CSg6lcqN4%2FxEBMiPPLAwTJ4aVIBL39qc5AgicI2BPIe2NwOYagY4RqF4KdESBkuL6OJL57Xemcbj9CaYlOSOXhXxD5hFT%2BmEMSHy1J0a9uKJlZoRKDflRA9McQ3THS7Bh24EDkxwjtpxDsdzL%2FcA1JvL9upIJgxfTuQowhojEkH4IaB1n5CQdZ5CBLHcTsvBp6ntdyWUjddicMG6zFA5%2B5Hm1FHvVcv40sLOUNYdMhQjlEqHeQ6h1sic8nxHnsOejsZ5jNAoY5MHZCnHd20GMFck6QG4KcEuSCILcEea84YNLUTXGXSZMF3mWtX9ZGMVK2u0cPlO3yhIDqITQr9kX6sdlFaK%2BMBpH5YKQiw%2FbSC%2FJ0aZyjXqDY4udV3%2FPbQbPZpjRqNyO30%2Bp4DVb3w5YfNeoBZzCigDD%2Fm3oxEBOy%2BP9XkIoJeXGjjoAew8hjhOJZ0MwDzQvQzQKD5KeAiniTShrTJOeBEZbXAqm6JlW2FqoYTBVIbQV229mTF%2BT56TY37twDD08X7eDPa0dznyDUBVJd4CNxQtCVt0c3VU72b6rckO%2FXUytiMaDlpjcstfzK12%2Fx7Vxptrpshl%2B9HpZA2d5%2Flxu7RhMmkq4h95YEY1yvKB1y8uOqeY8HNzKzuZTpJEvXbryxshqnmhsjVDIGFWfhDwjFhDx12p4%2B4drJbxB6DJ0ViLNTchkQ6hhhugOTztQbRaDljBOkFeRZMdL1YPZTCgLJZzMNCph%2FzcGsH2lanqai2DO30dUVULuLJC7Q0wV6sgCVQ5js8ZFN9enir1%2BWcQeBrIwCqSv7gdTyi9LkozJ9W6ZvHnluxHm11Wi41O80vVaL8lawUG9HvscorS%2F4dd%2BnDVgz6d56cvnvAAAA%2F%2F8F73eGpgQAAA%3D%3D HTTP/1.1
Host: darkenedplane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24058977=1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec6168b558aaf85f097913d26c76f32bed=[5479086,5479087,5479085,5479083]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: darkenedplane.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 4838c41a127449861ae8fb613e176e41
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3h348lUQlehFwTmqyKR7JtMz4x6CMWYJxs26cdGLSHVX9aRMdVdbVT09GS%2FBgOxxBC%2FuqfMm2aC7Rj2Lq0wCIoGFzC0HA%2F4Nwp6lx%2BDoB%2Frzo98rePU%2B9fledkEayOj58jtqIKSk882aW335A8%2B7Vl0TSdav9tv%2BR%2F7Ctaruvd7xa%2B4r1es83FLzdddzXc%2F1qitC80j150sQIn3Q8Wodt7ZQr3nNBfT1f2eTOTDUAetdkGch2KRy4sxBhGMk8ffL3GxZlb72VpxJapVGjx3eTrYSlSeIZ22kHUTJ4SUbypytPIRKDqZyoXr%2FEAMxIc6vDxEkh5ciEfT2pzoDCZ4gYE8i743B5RiCjhGqXQh2RoCQ4cY6kvjeDaVzuv03Skt0QiqP%2F4TIJ6Ty%2BxyS%2BGhJin51Q8nMCpUY9KMCoj%2BG6I6RZsewAwciP0ZoP4Ngj8j84zUk8f66kQqCFdO7CzGGiMaQfAhqHGTlJxxkkYMsdRCz82roeV7LZSF1250wbLAWD3zmerQVedRz%2FTaysJQ3hE2HCOUQod5BqnewJb6YEOf%2Fz0Nnv8BsFjDMgbET4ry7gx4rkHOC3BDklCAXBLklyHvFAZOmbop7TJos8C5r%2FbI2ipGy3T16oGyXJwRUD6FZsS%2FST8wuQnt1NIjMhyMVGbaXXpBnSuMc9SLFFj%2Bv%2Bp7fDprNNqVRuxm5nVbHa7C6H7b8qFEPOIMRBYS5MvViICZk8X%2BvIhUT8tJGHQE9hpHHCMVzoJkHmhegmwUGyc8BFfEmlTSmSc4DIyyvBVJ1TapsLVQxmCqQ2grstrMnL8gL021u3P0OPDxdtIM%2Frh%2FNfYpQF0h1gY%2FFCUFX3hndUjnZv6VyQ35YT62IxYCWm96w1PKr37zNt3Ol2eqyGX79RlgCZfvgPW7sGk2YSLqG3F8SjHG9onTIyU%2Br5n0e3MzM5lKmkyxdu%2Fnmymqcam6MUMkYVJyFPyIUE%2FL0aXv6hGsnjyD0GDorEGen5DIg1DHCdAcmnak3ikDLGSdIryDPipGuB7OfUhBIPptpUMD8aw5m%2FUjT8jQVxZ65g66ugNpdJHGBni7QkwWoHMJkT4xsqk8Xf%2FuqjLsIZGUUSF3ZD6SWX5YmH02dLtO3ZboPI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSff2U8t%2FBQAA%2F%2F8hA6X2pgQAAA%3D%3D | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1darkenedplane.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3h348lUQlehFwTmqyKR7JtMz4x6CMWYJxs26cdGLSHVX9aRMdVdbVT09GS%2FBgOxxBC%2FuqfMm2aC7Rj2Lq0wCIoGFzC0HA%2F4Nwp6lx%2BDoB%2Frzo98rePU%2B9fledkEayOj58jtqIKSk882aW335A8%2B7Vl0TSdav9tv%2BR%2F7Ctaruvd7xa%2B4r1es83FLzdddzXc%2F1qitC80j150sQIn3Q8Wodt7ZQr3nNBfT1f2eTOTDUAetdkGch2KRy4sxBhGMk8ffL3GxZlb72VpxJapVGjx3eTrYSlSeIZ22kHUTJ4SUbypytPIRKDqZyoXr%2FEAMxIc6vDxEkh5ciEfT2pzoDCZ4gYE8i743B5RiCjhGqXQh2RoCQ4cY6kvjeDaVzuv03Skt0QiqP%2F4TIJ6Ty%2BxyS%2BGhJin51Q8nMCpUY9KMCoj%2BG6I6RZsewAwciP0ZoP4Ngj8j84zUk8f66kQqCFdO7CzGGiMaQfAhqHGTlJxxkkYMsdRCz82roeV7LZSF1250wbLAWD3zmerQVedRz%2FTaysJQ3hE2HCOUQod5BqnewJb6YEOf%2Fz0Nnv8BsFjDMgbET4ry7gx4rkHOC3BDklCAXBLklyHvFAZOmbop7TJos8C5r%2FbI2ipGy3T16oGyXJwRUD6FZsS%2FST8wuQnt1NIjMhyMVGbaXXpBnSuMc9SLFFj%2Bv%2Bp7fDprNNqVRuxm5nVbHa7C6H7b8qFEPOIMRBYS5MvViICZk8X%2BvIhUT8tJGHQE9hpHHCMVzoJkHmhegmwUGyc8BFfEmlTSmSc4DIyyvBVJ1TapsLVQxmCqQ2grstrMnL8gL021u3P0OPDxdtIM%2Frh%2FNfYpQF0h1gY%2FFCUFX3hndUjnZv6VyQ35YT62IxYCWm96w1PKr37zNt3Ol2eqyGX79RlgCZfvgPW7sGk2YSLqG3F8SjHG9onTIyU%2Br5n0e3MzM5lKmkyxdu%2Fnmymqcam6MUMkYVJyFPyIUE%2FL0aXv6hGsnjyD0GDorEGen5DIg1DHCdAcmnak3ikDLGSdIryDPipGuB7OfUhBIPptpUMD8aw5m%2FUjT8jQVxZ65g66ugNpdJHGBni7QkwWoHMJkT4xsqk8Xf%2FuqjLsIZGUUSF3ZD6SWX5YmH02dLtO3ZboPI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSff2U8t%2FBQAA%2F%2F8hA6X2pgQAAA%3D%3D IP172.240.253.132:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectdarkenedplane.com FingerprintAB:79:51:4E:B6:71:80:C0:64:A0:77:72:CF:DA:7B:28:7F:48:35:CF ValidityTue, 26 Nov 2024 07:58:54 GMT - Mon, 24 Feb 2025 07:58:53 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skxR%2Bt3h348lUQlehFwTmqyKR7JtMz4x6CMWYJxs26cdGLSHVX9aRMdVdbVT09GS%2FBgOxxBC%2FuqfMm2aC7Rj2Lq0wCIoGFzC0HA%2F4Nwp6lx%2BDoB%2Frzo98rePU%2B9fledkEayOj58jtqIKSk882aW335A8%2B7Vl0TSdav9tv%2BR%2F7Ctaruvd7xa%2B4r1es83FLzdddzXc%2F1qitC80j150sQIn3Q8Wodt7ZQr3nNBfT1f2eTOTDUAetdkGch2KRy4sxBhGMk8ffL3GxZlb72VpxJapVGjx3eTrYSlSeIZ22kHUTJ4SUbypytPIRKDqZyoXr%2FEAMxIc6vDxEkh5ciEfT2pzoDCZ4gYE8i743B5RiCjhGqXQh2RoCQ4cY6kvjeDaVzuv03Skt0QiqP%2F4TIJ6Ty%2BxyS%2BGhJin51Q8nMCpUY9KMCoj%2BG6I6RZsewAwciP0ZoP4Ngj8j84zUk8f66kQqCFdO7CzGGiMaQfAhqHGTlJxxkkYMsdRCz82roeV7LZSF1250wbLAWD3zmerQVedRz%2FTaysJQ3hE2HCOUQod5BqnewJb6YEOf%2Fz0Nnv8BsFjDMgbET4ry7gx4rkHOC3BDklCAXBLklyHvFAZOmbop7TJos8C5r%2FbI2ipGy3T16oGyXJwRUD6FZsS%2FST8wuQnt1NIjMhyMVGbaXXpBnSuMc9SLFFj%2Bv%2Bp7fDprNNqVRuxm5nVbHa7C6H7b8qFEPOIMRBYS5MvViICZk8X%2BvIhUT8tJGHQE9hpHHCMVzoJkHmhegmwUGyc8BFfEmlTSmSc4DIyyvBVJ1TapsLVQxmCqQ2grstrMnL8gL021u3P0OPDxdtIM%2Frh%2FNfYpQF0h1gY%2FFCUFX3hndUjnZv6VyQ35YT62IxYCWm96w1PKr37zNt3Ol2eqyGX79RlgCZfvgPW7sGk2YSLqG3F8SjHG9onTIyU%2Br5n0e3MzM5lKmkyxdu%2Fnmymqcam6MUMkYVJyFPyIUE%2FL0aXv6hGsnjyD0GDorEGen5DIg1DHCdAcmnak3ikDLGSdIryDPipGuB7OfUhBIPptpUMD8aw5m%2FUjT8jQVxZ65g66ugNpdJHGBni7QkwWoHMJkT4xsqk8Xf%2FuqjLsIZGUUSF3ZD6SWX5YmH02dLtO3ZboPI86rrUbDpX6n6bValLeChXo78j1GaX3Br%2Fs%2BbcCaSff2U8t%2FBQAA%2F%2F8hA6X2pgQAAA%3D%3D HTTP/1.1
Host: darkenedplane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24058977=1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec6168b558aaf85f097913d26c76f32bed=[5479086,5479087,5479085,5479083]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: darkenedplane.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6f9c052c5acffbbd8c0fa1a1a98dfa6e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| clusterposture.com/watch.219041948665.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=3fb2ae4070e67a97cd25e9446e799862ba5ffc5784479462f24927ab65c11166238bba807e0e930d8d99d5d068d053a898344bedded9823611a416a2e15b98631180802452133ca593c466cbf484a2509a01be24a297ba991c4598&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 200 OK | 2.1 kB |
URL GET HTTP/1.1clusterposture.com/watch.219041948665.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=3fb2ae4070e67a97cd25e9446e799862ba5ffc5784479462f24927ab65c11166238bba807e0e930d8d99d5d068d053a898344bedded9823611a416a2e15b98631180802452133ca593c466cbf484a2509a01be24a297ba991c4598&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
File typeJavaScript source, ASCII text, with very long lines (2553) Hashe87e8a158b25c87aba0e2fa8c17d46d6 0e50438623463f5b20f31346cd67067fc4410fef 8b4b4b90656f7b9c3b4441f5b0275728eb978a80bdb836bd30b6570bcf862012
GET /watch.219041948665.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=3fb2ae4070e67a97cd25e9446e799862ba5ffc5784479462f24927ab65c11166238bba807e0e930d8d99d5d068d053a898344bedded9823611a416a2e15b98631180802452133ca593c466cbf484a2509a01be24a297ba991c4598&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
Referer: https://baimhalamanwebsite.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDI0MSwiayI6IjJiMTQwNWJiZjViYzM1MjRiMDVkMzFlNzdiYmRhYWEyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6NSwicHQiOjQsInBrIjoicjd2aGI5ZzgiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9iYWltaGFsYW1hbndlYnNpdGUuYmxvZ3Nwb3QuY29tLz9tPTEiLCJhciI6W119fQ.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; u_pl24090241=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv27=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs27=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 6cbf5efe2835575e0b8cea8e39597a65
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| clusterposture.com/watch.403152343320.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=e2141db39cb4d17ba24841d9df946d904fe818dcfa8f1c558f4d320ff16c378b8e694d334a60b3533ff121f004ce61c63a23105776f13ac8ca294fd429b2645c641853bbbf7eb0cf19ed829d980aef6ab9277b46629c840c319f53&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 200 OK | 2.1 kB |
URL GET HTTP/1.1clusterposture.com/watch.403152343320.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=e2141db39cb4d17ba24841d9df946d904fe818dcfa8f1c558f4d320ff16c378b8e694d334a60b3533ff121f004ce61c63a23105776f13ac8ca294fd429b2645c641853bbbf7eb0cf19ed829d980aef6ab9277b46629c840c319f53&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
File typeJavaScript source, ASCII text, with very long lines (2551) Hash63bfeaad9fb7dcd809c996f394f93106 0dec6df70b0d528aa8e95cc3d85251c05e14406e f245df5dd968a0b1ade758f901d5628234425a8815a96d3813e3ac778ab086ad
GET /watch.403152343320.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=e2141db39cb4d17ba24841d9df946d904fe818dcfa8f1c558f4d320ff16c378b8e694d334a60b3533ff121f004ce61c63a23105776f13ac8ca294fd429b2645c641853bbbf7eb0cf19ed829d980aef6ab9277b46629c840c319f53&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
Referer: https://baimhalamanwebsite.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDI0MSwiayI6IjJiMTQwNWJiZjViYzM1MjRiMDVkMzFlNzdiYmRhYWEyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6NSwicHQiOjQsInBrIjoicjd2aGI5ZzgiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9iYWltaGFsYW1hbndlYnNpdGUuYmxvZ3Nwb3QuY29tLz9tPTEiLCJhciI6W119fQ.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; u_pl24090241=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 425cd9e1d9c8242005a50030705d3437
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk | 216.58.207.233 | 200 OK | 1.6 kB |
URL GET HTTP/3draft.blogger.com/_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk IP216.58.207.233:443
Requested byhttps://draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__#id=I0_1733627460018&_gfid=I0_1733627460018&parent=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com&pfname=&rpctoken=36630283 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeJavaScript source, ASCII text, with very long lines (956) Hash6d745c7ae95a969959985ad54e0640ab 1076d2fc9a678be03004a6e3826f074fd40c7325 7138d6e5770bec937ecd8b93cd36f49770750bc391cefbf042b9a90fc975a6e3
GET /_/scs/mss-static/_/js/k=boq-blogger.BloggerFollowersUi.id.UI7c18U4_9Q.es5.O/ck=boq-blogger.BloggerFollowersUi.uva6TaoX7dY.L.F4.O/am=ABBgFg/d=1/exm=A1yn5d,A7fCU,BBI74,BVgquf,EEDORb,EFQ78c,IZT63,JNoxi,KUM7Z,L1AAkb,LEikZe,MI6k7c,MdUzUe,Mlhmy,MpJwZc,NwH0H,O1Gjze,O6y8ed,OTA3Ae,OmgaI,P6sQOc,PrPYRd,QIhFr,RMhBfe,SdcwHb,SpsfSb,SyPird,UUJqVe,Uas9Hd,Ulmmrd,V3dDOb,WO9ee,XVMNvd,Z5uLle,ZDZcre,ZfAoz,ZwDk9d,_b,_tp,aW3pY,aurFic,byfTOb,duFQFc,e5qFLc,ebZ3mb,fKUV3e,gychg,hKSk3e,hc6Ubd,kWgXee,kjKdXe,lazG7b,lsjVmc,lwddkf,mI3LFb,mdR7q,n73qwf,ovKuLd,pePXtf,pjICDe,pw70Gc,q0xTif,s39S4,sOXFj,w9hDv,ws9Tlc,xQtZb,xUdipf,yDVVkb,zbML3c,zr1jrb/excm=_b,_tp,followersiframeview/ed=1/wt=2/ujg=1/rs=AEy-KP3qXYKeRHDhvZpUBbxCxdkTfZKh4A/ee=EVNhjf:pw70Gc;EmZ2Bf:zr1jrb;JsbNhc:Xd8iUd;K5nYTd:ZDZcre;LBgRLc:SdcwHb;Me32dd:MEeYgc;NPKaK:SdcwHb;NSEoX:lazG7b;Pjplud:EEDORb;QGR0gd:Mlhmy;SNUn3:ZwDk9d;ScI3Yc:e7Hzgb;Uvc8o:VDovNc;YIZmRd:A1yn5d;a56pNe:JEfCwb;cEt90b:ws9Tlc;dIoSBb:SpsfSb;dowIGb:ebZ3mb;eBAeSb:zbML3c;iFQyKf:QIhFr;lOO0Vd:OTA3Ae;nAFL3:s39S4;oGtAuc:sOXFj;pXdRYb:MdUzUe;qafBPd:yDVVkb;qddgKe:xQtZb;wR5FRb:O1Gjze;xqZiqf:BBI74;yxTchf:KUM7Z;zxnPse:duFQFc/m=Wt6vjf,hhhU8,FCpbqb,WhJNk HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://draft.blogger.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/boq-infra/blogger-boq-js-css-signers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="boq-infra/blogger-boq-js-css-signers"
report-to: {"group":"boq-infra/blogger-boq-js-css-signers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/boq-infra/blogger-boq-js-css-signers"}]}
content-length: 1579
date: Sun, 08 Dec 2024 03:11:01 GMT
expires: Mon, 08 Dec 2025 03:11:01 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 05 Dec 2024 03:07:14 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cupboardgold.com/watch.492682017149.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 172.240.108.68 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1cupboardgold.com/watch.492682017149.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP172.240.108.68:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcupboardgold.com Fingerprint97:4D:74:9A:E0:C0:70:B4:42:4D:4C:F6:CB:55:4B:0C:DD:26:0E:6B ValidityMon, 14 Oct 2024 04:44:56 GMT - Sun, 12 Jan 2025 04:44:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.492682017149.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: cupboardgold.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://cupboardgold.com/watch.492682017149.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=a5840f23bd0abdf4e8e147c737d42b06a9aa0e310c3ddbd973cd0876513a0ada5b3a24e31c3fb38dfdd43d3ed57e88f71e0d5867f49c1d822c610e43af96832dffafe43cfc8aa37d2ef4b6abbc08a44b437ef3e53ee259ec5b0c31&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1
Set-Cookie: u_pl24090241=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDI0MSwiayI6IjJiMTQwNWJiZjViYzM1MjRiMDVkMzFlNzdiYmRhYWEyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6NSwicHQiOjQsInBrIjoicjd2aGI5ZzgiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9iYWltaGFsYW1hbndlYnNpdGUuYmxvZ3Nwb3QuY29tLz9tPTEiLCJhciI6W119fQ.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; expires=Sun, 08 Dec 2024 03:12:01 GMT; path=/; secure; SameSite=None
Host: cupboardgold.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: c51dba7b6f911061544d4bbe1318f5c5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| roomshikinginformal.com/82f4142c5376817392c72e99b42e0387/invoke.js | 192.243.59.20 | 200 OK | 11 kB |
URL GET HTTP/1.1roomshikinginformal.com/82f4142c5376817392c72e99b42e0387/invoke.js IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectroomshikinginformal.com Fingerprint6A:E6:EF:D0:9D:3B:50:DC:0C:D4:B1:FB:68:FE:E1:36:12:10:EA:B5 ValidityFri, 25 Oct 2024 13:38:41 GMT - Thu, 23 Jan 2025 13:38:40 GMT
File typeJavaScript source, ASCII text, with very long lines (24933), with no line terminators Hasha931211c28476ba46ce5be56745e075e 40962501f48eae496373908d5bb6841e97764d4a 8a7f8626b19b3f3350c01f8fe5f1f14e999631d591f9002d1b55479c92c7d3d1
GET /82f4142c5376817392c72e99b42e0387/invoke.js HTTP/1.1
Host: roomshikinginformal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: roomshikinginformal.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 75613fcf07f5a54580f1ff14a757d8c7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| recordedthereby.com/sfp.js | 185.196.197.71 | 200 OK | 85 kB |
URL GET HTTP/1.1recordedthereby.com/sfp.js IP185.196.197.71:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectrecordedthereby.com FingerprintE0:09:99:E3:0E:A5:83:8D:96:1B:26:8A:2E:AC:12:98:C6:D3:E1:76 ValidityWed, 06 Nov 2024 14:09:18 GMT - Tue, 04 Feb 2025 14:09:17 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash7e3e44049654b6e244c1777e68ffb8e7 8f2a8298666d607afd92a0baa362ef4dc9ccd039 4acac8b8ff23671d365150818f3c39bbbfa08b1a1842d73de5933e0fea26454b
GET /sfp.js HTTP/1.1
Host: recordedthereby.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 85378
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: recordedthereby.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 9b19caf0cc8e0f30ef344bc2c4d53ca5
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| clusterposture.com/watch.666447887143.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1clusterposture.com/watch.666447887143.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.666447887143.js?key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDI0MSwiayI6IjJiMTQwNWJiZjViYzM1MjRiMDVkMzFlNzdiYmRhYWEyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6NSwicHQiOjQsInBrIjoicjd2aGI5ZzgiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9iYWltaGFsYW1hbndlYnNpdGUuYmxvZ3Nwb3QuY29tLz9tPTEiLCJhciI6W119fQ.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://clusterposture.com/watch.666447887143.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=ed1310bcb4855f1a8efc4e5f9ed22c19e2005658ba91489dd42a9cbae8f083ce6c3918d7ff003458b3913046928b4c533fa99bb52bd3b61b8b363c6ead01a4928ad6bdde2bcb8226062df3ec827e0349d2b06e59236e53a5de0dcc&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1
Set-Cookie: ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; expires=Sun, 08 Dec 2024 03:12:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 0deef458aaea58bbdc78067fbd9e1adb
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.blogger.com/img/blogger_logo_round_35.png | 216.58.207.233 | 200 OK | 2.5 kB |
URL GET HTTP/3www.blogger.com/img/blogger_logo_round_35.png IP216.58.207.233:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typePNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced Hash838622483cbfed35380b4705f19d7cca 7de684136affc969a24d61927afc18905cf2fc36 183923f8c8c3960dce8ad9722cf55a30d19b321b721741bd9e2ab6ae1f1ae72a
GET /img/blogger_logo_round_35.png HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2531
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 23:00:47 GMT
expires: Fri, 13 Dec 2024 23:00:47 GMT
cache-control: public, max-age=604800
last-modified: Fri, 06 Dec 2024 10:51:46 GMT
content-type: image/png
age: 101414
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cupboardgold.com/watch.492682017149.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=a5840f23bd0abdf4e8e147c737d42b06a9aa0e310c3ddbd973cd0876513a0ada5b3a24e31c3fb38dfdd43d3ed57e88f71e0d5867f49c1d822c610e43af96832dffafe43cfc8aa37d2ef4b6abbc08a44b437ef3e53ee259ec5b0c31&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 172.240.108.68 | 200 OK | 2.0 kB |
URL GET HTTP/1.1cupboardgold.com/watch.492682017149.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=a5840f23bd0abdf4e8e147c737d42b06a9aa0e310c3ddbd973cd0876513a0ada5b3a24e31c3fb38dfdd43d3ed57e88f71e0d5867f49c1d822c610e43af96832dffafe43cfc8aa37d2ef4b6abbc08a44b437ef3e53ee259ec5b0c31&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP172.240.108.68:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcupboardgold.com Fingerprint97:4D:74:9A:E0:C0:70:B4:42:4D:4C:F6:CB:55:4B:0C:DD:26:0E:6B ValidityMon, 14 Oct 2024 04:44:56 GMT - Sun, 12 Jan 2025 04:44:55 GMT
File typeJavaScript source, ASCII text, with very long lines (2500) Hash976385de3a45a16cfb9d6ec60da86009 6d7aa9fb65f387a1b034f773fbe3b6f4bb48c54d 0b4443bafdde2af0479c7698dd07c46f834d1ab848fd785a6679b798ea1b4fcf
GET /watch.492682017149.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=a5840f23bd0abdf4e8e147c737d42b06a9aa0e310c3ddbd973cd0876513a0ada5b3a24e31c3fb38dfdd43d3ed57e88f71e0d5867f49c1d822c610e43af96832dffafe43cfc8aa37d2ef4b6abbc08a44b437ef3e53ee259ec5b0c31&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: cupboardgold.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
Referer: https://baimhalamanwebsite.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl24090241=1; ain=eyJhbGciOiJIUzI1NiJ9.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.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
Host: cupboardgold.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: a78e2769fdbe1bb18f10d2c80aba30f0
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| clusterposture.com/watch.666447887143.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=ed1310bcb4855f1a8efc4e5f9ed22c19e2005658ba91489dd42a9cbae8f083ce6c3918d7ff003458b3913046928b4c533fa99bb52bd3b61b8b363c6ead01a4928ad6bdde2bcb8226062df3ec827e0349d2b06e59236e53a5de0dcc&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 200 OK | 2.1 kB |
URL GET HTTP/1.1clusterposture.com/watch.666447887143.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=ed1310bcb4855f1a8efc4e5f9ed22c19e2005658ba91489dd42a9cbae8f083ce6c3918d7ff003458b3913046928b4c533fa99bb52bd3b61b8b363c6ead01a4928ad6bdde2bcb8226062df3ec827e0349d2b06e59236e53a5de0dcc&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
File typeJavaScript source, ASCII text, with very long lines (2593) Hash68efe634a980726981c2923b7b0576d7 ad5794a45668a05cbd18f038b6af319e70e470e1 b88a36ee4f8d28a4b8fafa997b22dbae29a0c8ffa3e9890a12d118c074746b1f
GET /watch.666447887143.js?dev=e&key=82f4142c5376817392c72e99b42e0387&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=ed1310bcb4855f1a8efc4e5f9ed22c19e2005658ba91489dd42a9cbae8f083ce6c3918d7ff003458b3913046928b4c533fa99bb52bd3b61b8b363c6ead01a4928ad6bdde2bcb8226062df3ec827e0349d2b06e59236e53a5de0dcc&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
Referer: https://baimhalamanwebsite.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDg3OCwiayI6IjgyZjQxNDJjNTM3NjgxNzM5MmM3MmU5OWI0MmUwMzg3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6MjcsInB0Ijo0LCJwayI6ImJkbnQ1bWViIiwidCI6MX0sInUiOnsidSI6MiwiYXUiOjIsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6ZmFsc2UsInIiOiJodHRwczovL2JhaW1oYWxhbWFud2Vic2l0ZS5ibG9nc3BvdC5jb20vP209MSIsImFyIjpbXX19.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=1; pdhtkv27=true; uncs27=1; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs=2; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
uncs27=2; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 5eac3739289c23544c34f1cf1ec8baea
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241120&st=env | 142.250.74.34 | 200 OK | 13 kB |
URL GET HTTP/2ep1.adtrafficquality.google/getconfig/sodar?sv=200&tid=gda&tv=r20241120&st=env IP142.250.74.34:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectadtrafficquality.google Fingerprint26:BB:18:89:E0:E5:8E:98:97:F2:63:1F:BB:20:A1:0F:18:8C:8B:01 ValidityMon, 21 Oct 2024 08:39:59 GMT - Mon, 13 Jan 2025 08:39:58 GMT
Hashf26e514653fc01524e3c82afc2ab0c4a f8f652a75ed3abc4c523043c5591292be1ceb8ab 3d09dd731caad7edc5b8e805addf4b4062d6654e8a0e5b763d7a8106984f39f6
GET /getconfig/sodar?sv=200&tid=gda&tv=r20241120&st=env HTTP/1.1
Host: ep1.adtrafficquality.google
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 08 Dec 2024 03:11:01 GMT
server: cafe
content-length: 13253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| baimhalamanwebsite.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCgmxGSAkpp7xOV9djdsHyJNqCjunSubWq6SW0YfTpN5j7CCD7A7xq8gTBHSJuIjW-xjDTixQkb6tU_m-mhKgBnnd_G_Q | 142.250.74.129 | 200 OK | 235 B |
URL GET HTTP/3baimhalamanwebsite.blogspot.com/b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCgmxGSAkpp7xOV9djdsHyJNqCjunSubWq6SW0YfTpN5j7CCD7A7xq8gTBHSJuIjW-xjDTixQkb6tU_m-mhKgBnnd_G_Q IP142.250.74.129:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15 ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT
Hash31f9f80cfc804c4869378f928eab43dc a9d4f9487c7c0d7293b3ebcddf2702fdc4fe676f b49bdd196ef0a51992f788b68f7da30add0aeeec6e4800e95f6ff22a7588b974
GET /b/stats?style=BLACK_TRANSPARENT&timeRange=ALL_TIME&token=APq4FmCgmxGSAkpp7xOV9djdsHyJNqCjunSubWq6SW0YfTpN5j7CCD7A7xq8gTBHSJuIjW-xjDTixQkb6tU_m-mhKgBnnd_G_Q HTTP/1.1
Host: baimhalamanwebsite.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/?m=1
Cookie: isFTime_82f4142c5376817392c72e99b42e0387=true; isFTime_82f4142c5376817392c72e99b42e0387_expiry=Sun, 08 Dec 2024 03:11:00 GMT; isFTime_2b1405bbf5bc3524b05d31e77bbdaaa2=true; isFTime_2b1405bbf5bc3524b05d31e77bbdaaa2_expiry=Sun, 08 Dec 2024 03:11:00 GMT; dom3ic8zudi28v8lr6fgphwffqoz0j6c=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1; pp_main_a7ea76e7e090c42b65affc82160e9d04=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=darkenedplane.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Sun, 08 Dec 2024 03:11:01 GMT
expires: Sun, 08 Dec 2024 03:11:01 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 235
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| behaviorbald.com/watch.824200515555.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.12 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1behaviorbald.com/watch.824200515555.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectbehaviorbald.com Fingerprint0A:52:51:DA:C5:10:60:F3:D3:30:D0:28:C5:8E:42:0A:55:90:32:E1 ValiditySun, 13 Oct 2024 23:52:24 GMT - Sat, 11 Jan 2025 23:52:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.824200515555.js?key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&tz=0&dev=e&res=14.2071&rb=&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: behaviorbald.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:01 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Location: https://behaviorbald.com/watch.824200515555.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=6bc6b4b2576d6bb0c42f40a18b679e7e086fc3dc7e05d4a36694136c346ce1585e28b9eb361810c674be6839ec88893316675ea30543e9ec86f40aa5f27c6f929772bbd28e48ab085df020db8eca0abfd6b2f4f3c6f58ea4d8e36f&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1
Set-Cookie: u_pl24090241=1; expires=Mon, 09 Dec 2024 03:11:01 GMT; path=/; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU; expires=Sun, 08 Dec 2024 03:12:01 GMT; path=/; secure; SameSite=None
Host: behaviorbald.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: f4ef9f2a0b655869e06b3b9f0e952665
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.storageimagedisplay.com/cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg | 45.133.44.1 | 200 OK | 51 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 15:38:28], progressive, precision 8, 468x60, components 3 Hash0713b13138c98e7ad32f5d7fe3af2e06 6e1239f3961b51fe2d592d23e8e318f8d01c0c65 4b6471c649ceca54d807a2554a77885510230145c1839dc7ff4ecb8cdf1495b6
GET /cti/13/1f/6b/131f6bab3714025f2516b1d6477f6774/1708270544.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:02 GMT
content-type: image/jpeg
content-length: 50848
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:35:53 GMT
etag: "65d223d9-c6a0"
expires: Tue, 10 Dec 2024 03:11:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/cti/24/5b/3c/245b3c40c6d7a28419b530e0f4c8160a/1708270169.jpg | 45.133.44.1 | 200 OK | 76 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/24/5b/3c/245b3c40c6d7a28419b530e0f4c8160a/1708270169.jpg IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:16 15:05:08], progressive, precision 8, 300x250, components 3 Hash0ce3d5c31e61b2b14c5ede2cdd64045e 4d260a0cc5f3a184568ffe8ca627441ce048a6c4 e2955a0eca91674eb16ea126b21a1a04e19a2d7f7ddfdc80f95d2260a0ce6224
GET /cti/24/5b/3c/245b3c40c6d7a28419b530e0f4c8160a/1708270169.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:02 GMT
content-type: image/jpeg
content-length: 75664
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:29:37 GMT
etag: "65d22261-12790"
expires: Tue, 10 Dec 2024 03:11:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.storageimagedisplay.com/cti/5e/a7/e0/5ea7e0aff4bf51bee11fade7700f6f28/1707923235.jpg | 45.133.44.1 | 200 OK | 120 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/5e/a7/e0/5ea7e0aff4bf51bee11fade7700f6f28/1707923235.jpg IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typeJPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 300x250, components 3 Size120 kB (119736 bytes) Hashb6302f100b68f462859b1b4dec28ca24 27c2593c480cb61b0b7b143048cff5e56de9ffd4 bb6c58cea0780621cf7c4f5504248183ee986753fe53eaacaec915817cb18b1a
GET /cti/5e/a7/e0/5ea7e0aff4bf51bee11fade7700f6f28/1707923235.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:02 GMT
content-type: image/jpeg
content-length: 119736
server: nginx/1.21.6
last-modified: Wed, 14 Feb 2024 15:07:23 GMT
etag: "65ccd72b-1d3b8"
expires: Tue, 10 Dec 2024 03:11:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/charts/51/loader.js | 142.250.74.35 | 200 OK | 16 kB |
URL GET HTTP/3www.gstatic.com/charts/51/loader.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeJavaScript source, ASCII text, with very long lines (1877) Hash0d4116dada2cae1db8727035a89248c1 cfe1a8697d0684f4872310b76523f949a3091d0a 15f9c7dcb6d3f3fd50ac55a55f8a4168652122756d7763c13c333c9d4b8a36f0
GET /charts/51/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 15900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:54:55 GMT
expires: Sun, 08 Dec 2024 03:54:55 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:04:22 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| capaciousdrewreligion.com/advertisers.js | 185.196.197.72 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP185.196.197.72:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com FingerprintD9:49:50:C3:1F:23:A3:E8:75:32:16:6A:76:DE:28:2B:93:73:31:80 ValiditySun, 03 Nov 2024 04:28:34 GMT - Sat, 01 Feb 2025 04:28:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 08 Dec 2024 03:11:02 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 607230cdbdfc7cf15742f7f648d4c01d
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.gstatic.com/charts/51/css/core/tooltip.css | 142.250.74.35 | 200 OK | 533 B |
URL GET HTTP/3www.gstatic.com/charts/51/css/core/tooltip.css IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
Hashc0d9257463706e7243af302ef6e287ba d81ce8030056dccc08fbf46c9c54e5d3d5033493 2cb6d99c8ba2262a4d0c6d0333a35b67be6d4db6c5a7d2c4a9cff74e5970e4f6
GET /charts/51/css/core/tooltip.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:45:15 GMT
expires: Sun, 08 Dec 2024 03:45:15 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:22:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 1547
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js | 142.250.74.35 | 200 OK | 1.4 kB |
URL GET HTTP/3www.gstatic.com/charts/51/js/jsapi_compiled_corechart_module.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeASCII text, with very long lines (514) Hash99926767e2e026e6c3cbecd1ee31ceb0 113f33d54d13eb32ef908a8f2820bd14e369b93e 30c48eef4e305a1f7e77d50dcac4b5f7baf250b0d55dfbab468db645bfb13c65
GET /charts/51/js/jsapi_compiled_corechart_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 1354
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:14:26 GMT
expires: Sun, 08 Dec 2024 03:14:26 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 3396
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ep2.adtrafficquality.google/sodar/sodar2.js | 142.250.74.161 | 200 OK | 6.4 kB |
URL GET HTTP/2ep2.adtrafficquality.google/sodar/sodar2.js IP142.250.74.161:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectadtrafficquality.google Fingerprint26:BB:18:89:E0:E5:8E:98:97:F2:63:1F:BB:20:A1:0F:18:8C:8B:01 ValidityMon, 21 Oct 2024 08:39:59 GMT - Mon, 13 Jan 2025 08:39:58 GMT
File typeJavaScript source, ASCII text, with very long lines (1382) Hash3b071d5606cc1cf92ae307f5bdb4e540 e191068cc90e5489130489a1cf173fe50bba28b8 ff3de130872fe0fb5b770dfa2bc9f0daf8ab320403a34a60d089436f08d24f99
GET /sodar/sodar2.js HTTP/1.1
Host: ep2.adtrafficquality.google
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6445
date: Sun, 08 Dec 2024 03:11:02 GMT
expires: Sun, 08 Dec 2024 03:11:02 GMT
cache-control: private, max-age=3000
etag: "1727224258380615"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/charts/51/css/util/util.css | 142.250.74.35 | 200 OK | 3.2 kB |
URL GET HTTP/3www.gstatic.com/charts/51/css/util/util.css IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
Hashc5934a97cd2e7a2ce012214d66ab8515 e5553d827c725b9cb6619d019363a71cf18b7c69 e9c9244f08810a7573b16fd89288d4587f617de4c005b3e4d74ee034b6dbf280
GET /charts/51/css/util/util.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 3203
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:21:11 GMT
expires: Sun, 08 Dec 2024 03:21:11 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:22:00 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 2991
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js | 142.250.74.35 | 200 OK | 8.0 kB |
URL GET HTTP/3www.gstatic.com/charts/51/js/jsapi_compiled_graphics_module.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeASCII text, with very long lines (1629) Hash23c6f16903fe7d4b4c68bd9ae55b78b4 60b0d741aff75eb878e19547dc1a97ed7d891c10 9ad0d8bf9e4659eb773ec937a69b25c1e8869b17c43acd258f01e268f0194088
GET /charts/51/js/jsapi_compiled_graphics_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 7953
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:41:22 GMT
expires: Sun, 08 Dec 2024 03:41:22 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 1780
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js | 142.250.74.35 | 200 OK | 84 kB |
URL GET HTTP/3www.gstatic.com/charts/51/js/jsapi_compiled_default_module.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeASCII text, with very long lines (2329) Hasha68870343cf229117e2e937de0a4bcab d26503d7966e135023baf2bd6492c7016bf5601b 7e7e72eecf6a4fb2981627eb8d15b947d394398db4e67c7ca7705749cdb2f832
GET /charts/51/js/jsapi_compiled_default_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 84496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:15:25 GMT
expires: Sun, 08 Dec 2024 03:15:25 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 3337
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js | 142.250.74.35 | 200 OK | 171 kB |
URL GET HTTP/3www.gstatic.com/charts/51/js/jsapi_compiled_ui_module.js IP142.250.74.35:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeHTML document, ASCII text, with very long lines (541) Size171 kB (171024 bytes) Hashcacca7bca63f8956b13b911c990713b7 524b727b15d66f07bb9ffebd6f2ddf3464c39bfb 0867ee1df230c80dc1601a8c56c499fabe444ab3ec173ce8b901444560c8816d
GET /charts/51/js/jsapi_compiled_ui_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 171024
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:32:09 GMT
expires: Sun, 08 Dec 2024 03:32:09 GMT
cache-control: public, max-age=3600
last-modified: Wed, 23 Jun 2021 03:09:09 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 2333
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.storageimagedisplay.com/cti/9b/d5/0f/9bd50fd5d4a02ba4e5d1f1bec6dca9f1/1708270587.jpg | 45.133.44.1 | 200 OK | 53 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/9b/d5/0f/9bd50fd5d4a02ba4e5d1f1bec6dca9f1/1708270587.jpg IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:18 15:43:07], progressive, precision 8, 468x60, components 3 Hash034d0320b7ff0d6408e58a6012d2741c fd0e4bf86e361ea981e81b9a227e0bcf2413a4fc 6a90dd44b2122e51af67ea778ceafcc1eee91bad6048c19d2de39f0399064cac
GET /cti/9b/d5/0f/9bd50fd5d4a02ba4e5d1f1bec6dca9f1/1708270587.jpg HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:02 GMT
content-type: image/jpeg
content-length: 53239
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:36:35 GMT
etag: "65d22403-cff7"
expires: Tue, 10 Dec 2024 03:11:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| behaviorbald.com/watch.824200515555.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=6bc6b4b2576d6bb0c42f40a18b679e7e086fc3dc7e05d4a36694136c346ce1585e28b9eb361810c674be6839ec88893316675ea30543e9ec86f40aa5f27c6f929772bbd28e48ab085df020db8eca0abfd6b2f4f3c6f58ea4d8e36f&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.12 | 200 OK | 2.0 kB |
URL GET HTTP/1.1behaviorbald.com/watch.824200515555.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=6bc6b4b2576d6bb0c42f40a18b679e7e086fc3dc7e05d4a36694136c346ce1585e28b9eb361810c674be6839ec88893316675ea30543e9ec86f40aa5f27c6f929772bbd28e48ab085df020db8eca0abfd6b2f4f3c6f58ea4d8e36f&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectbehaviorbald.com Fingerprint0A:52:51:DA:C5:10:60:F3:D3:30:D0:28:C5:8E:42:0A:55:90:32:E1 ValiditySun, 13 Oct 2024 23:52:24 GMT - Sat, 11 Jan 2025 23:52:23 GMT
File typeJavaScript source, ASCII text, with very long lines (2492) Hash48e66853c4b634a4f120498fd414cfa2 b3d7d00168dffab7f7559eb0cb321032c4002c6b c16f09b4453d7ea6165e6f448f21f9d7bfd1b71b91bfd44981633bb7dcb33d68
GET /watch.824200515555.js?dev=e&key=2b1405bbf5bc3524b05d31e77bbdaaa2&kw=%5B%22baim%22%2C%2201%22%2C%22gaming%22%2C%22website%E2%9C%A8%E2%9D%A4%22%5D&pst=1733627521&rb=&refer=https%3A%2F%2Fbaimhalamanwebsite.blogspot.com%2F%3Fm%3D1&res=14.2071&rmtc=t&shu=6bc6b4b2576d6bb0c42f40a18b679e7e086fc3dc7e05d4a36694136c346ce1585e28b9eb361810c674be6839ec88893316675ea30543e9ec86f40aa5f27c6f929772bbd28e48ab085df020db8eca0abfd6b2f4f3c6f58ea4d8e36f&tz=0&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: behaviorbald.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
Referer: https://baimhalamanwebsite.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl24090241=1; ain=eyJhbGciOiJIUzI1NiJ9.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.JXqXo0qlZT9V9gfvh5hUoA5hHBs2G1EGJdO8cj9rQiU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:02 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
pdhtkv=true; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
uncs=1; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
pdhtkv5=true; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
uncs5=1; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
Host: behaviorbald.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 1c8f79be51e626d23e855e9cfb1cb8df
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| clusterposture.com/sbar.json?key=09869ddeb16838a1b2a0f0415d306d70&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 | 192.243.59.20 | 200 OK | 8.6 kB |
URL GET HTTP/1.1clusterposture.com/sbar.json?key=09869ddeb16838a1b2a0f0415d306d70&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hash1e555c3a9e7a4f3dc26a38fa91781059 6254f226029b8be5457f91247f1df34a13806b06 d493349fb20084a848bee98f6c5ff008fe772114082ff8170b6e0cac59e2cbac
GET /sbar.json?key=09869ddeb16838a1b2a0f0415d306d70&uuid=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=2; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:02 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Origin: https://baimhalamanwebsite.blogspot.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl24090099=1; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; expires=Sun, 15 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
uncs=3; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
pdhtkv29=true; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
uncs29=1; expires=Mon, 09 Dec 2024 03:11:02 GMT; path=/; secure; SameSite=None
slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]; expires=Sun, 08 Dec 2024 03:11:07 GMT; path=/; secure; SameSite=None
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 26c1d65b98c225423c91acb529b9e599
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ep2.adtrafficquality.google/sodar/sodar2/232/runner.html | 142.250.74.161 | 200 OK | 5.0 kB |
URL GET HTTP/3ep2.adtrafficquality.google/sodar/sodar2/232/runner.html IP142.250.74.161:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectadtrafficquality.google Fingerprint26:BB:18:89:E0:E5:8E:98:97:F2:63:1F:BB:20:A1:0F:18:8C:8B:01 ValidityMon, 21 Oct 2024 08:39:59 GMT - Mon, 13 Jan 2025 08:39:58 GMT
File typeHTML document, ASCII text, with very long lines (2008) Hashd1f231b50b152372a6c3100f4aed1973 1bf10951be06da03d1371a904e19c0419f2a3637 9dec95894af322b087ab6e87f9c8ce66d849646cf33b375d33c957f4569ed081
GET /sodar/sodar2/232/runner.html HTTP/1.1
Host: ep2.adtrafficquality.google
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5005
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Dec 2024 02:59:17 GMT
expires: Sun, 08 Dec 2024 03:49:17 GMT
cache-control: public, max-age=3000
age: 705
last-modified: Mon, 23 Sep 2024 18:12:21 GMT
content-type: text/html
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.storageimagedisplay.com/cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png | 45.133.44.1 | 200 OK | 104 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Size104 kB (103467 bytes) Hashe661e37b3ce102135ded3de19e25ca47 cf4180faec136ff3e1a04b059676bde9c9654bee b6f3a2708c6c43dfca6ee30be64a520089afce3736ec5cdad8a26336a9c4eff3
GET /cti/41/00/e1/4100e1ec48d8ae82b50d31d374fc4537/1707813732.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:02 GMT
content-type: image/png
content-length: 103467
server: nginx/1.21.6
last-modified: Tue, 13 Feb 2024 08:42:21 GMT
etag: "65cb2b6d-1942b"
expires: Tue, 10 Dec 2024 03:11:02 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| clusterposture.com/ren.gif?sid=H4sIAAAAAAAC%2F1RUQYscRRSu3iyICKISvYg4Bw8q7mx3z0z3jDkEY9wQXJOYNehFQnVV9Wy51V1tVff0ZAQNBiTHUfTiqeeb2V01IZizGGU24CEgZDztwQV%2FQyBnmcnixoLmve%2F73oOvX7%2Bur0bFAWmgoPun39MDqRRdbdXd2qsfed6J2rpMi36t3w4uB80TNdN7sxPU3ddqZwTb0qu%2B67mu53q1NWlErPurcxEyu9nx6h233vTrXquJvvk%2FtsUxWOqA9w7Ic5B8tnzXOQ7JpkiTn08Lu5Xr7I13kkLRXBv0%2BO6ldCvVZYrkKI2NgzjdPayGtvfX7kCn2wu70L3%2FCiM5I84fdxClu4cmEfUmC5%2BRgkgR8adQ9qYQagpJp2D6GiS%2FTwDGce480mTnnDYlvfJIpXN1RpYfPoAsZ2T57%2BNIk1unlOzXNrQqcqlTi35cQfankN0psmIP%2BcCBLPfA8i8h%2BZ9k9eE60mRy3ioNyfdfacbNdshanRXGRLzSjDtipe2zcMX345bfDv1OHMeLAUk5hYynUGIIah0U80c6KGIHReYg4fs15nle6HJG3XaHsQYPRRRw16Nh7FHPDdoo2PwdhsizIZgagpnrkyJlduT%2FkPHNfKvnh5PcFGJnTvrhyN99RLcW7PacbY28m8XlTPlNt%2BO2w%2Fbj0G96I2%2FnUcuiA5m5ii359Yw4T74AU%2FwOu1nB8mXYfEac979Aj1coBUFpCUpKUEqCMicoe9U2V9a31Q5Xtoi8w%2BgfxkY11nl3RLd13hUpATVDGF5NZPapvQaWHxsPYvvxWMeWj7ID8uz80zn6uwfYEvs1t9MOOpyLyAvajTb1Ip%2B6sdv0WrzhBjx0YWUFaZcWgx7IGTn5xOvI5Iy8vOEjonuwag9MPg9avARaVqCbFQbpbxGVySZVNKFpKSIrc1GPlO7aTOd1phNwXSHLl5FfcUbqgLy42KcNoyDYvZPfDv45c%2Bv4Z2CmQmYqfCLvEnTV9fFFXZLJRV1acvt8lstEDuh81zZymotjP70rrpTa8LOn7fDHt9hcmKc3PxA2X6cpl2nXkhunJOfCrGnDBPn1rP1QRBcKu3mqMGmRrV94e%2B1skhlhrdTpFFTeZ7%2BAyRl5Zu%2Fq4ieq3%2Fgc0kxhigpJcY8cHki9B5Zdhc2O3FtNYNRRTZQ5KItqbPzoiFSSQIkjTKMK9jEcHeVjQ%2BfdVFYjex1dswSaX0OaVOiZCj1Vgarh%2FF4Z55m5d%2FKvxuIgUkvjSJmlSaSM%2BmYx5BnZ%2BP42rNyvhY2GS4NOywtDKsKo6bfjwOOU%2Bs3ADwLaQG5n3UtPr%2F0bAAD%2F%2F60EQ%2FceBQAA | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1clusterposture.com/ren.gif?sid=H4sIAAAAAAAC%2F1RUQYscRRSu3iyICKISvYg4Bw8q7mx3z0z3jDkEY9wQXJOYNehFQnVV9Wy51V1tVff0ZAQNBiTHUfTiqeeb2V01IZizGGU24CEgZDztwQV%2FQyBnmcnixoLmve%2F73oOvX7%2Bur0bFAWmgoPun39MDqRRdbdXd2qsfed6J2rpMi36t3w4uB80TNdN7sxPU3ddqZwTb0qu%2B67mu53q1NWlErPurcxEyu9nx6h233vTrXquJvvk%2FtsUxWOqA9w7Ic5B8tnzXOQ7JpkiTn08Lu5Xr7I13kkLRXBv0%2BO6ldCvVZYrkKI2NgzjdPayGtvfX7kCn2wu70L3%2FCiM5I84fdxClu4cmEfUmC5%2BRgkgR8adQ9qYQagpJp2D6GiS%2FTwDGce480mTnnDYlvfJIpXN1RpYfPoAsZ2T57%2BNIk1unlOzXNrQqcqlTi35cQfankN0psmIP%2BcCBLPfA8i8h%2BZ9k9eE60mRy3ioNyfdfacbNdshanRXGRLzSjDtipe2zcMX345bfDv1OHMeLAUk5hYynUGIIah0U80c6KGIHReYg4fs15nle6HJG3XaHsQYPRRRw16Nh7FHPDdoo2PwdhsizIZgagpnrkyJlduT%2FkPHNfKvnh5PcFGJnTvrhyN99RLcW7PacbY28m8XlTPlNt%2BO2w%2Fbj0G96I2%2FnUcuiA5m5ii359Yw4T74AU%2FwOu1nB8mXYfEac979Aj1coBUFpCUpKUEqCMicoe9U2V9a31Q5Xtoi8w%2BgfxkY11nl3RLd13hUpATVDGF5NZPapvQaWHxsPYvvxWMeWj7ID8uz80zn6uwfYEvs1t9MOOpyLyAvajTb1Ip%2B6sdv0WrzhBjx0YWUFaZcWgx7IGTn5xOvI5Iy8vOEjonuwag9MPg9avARaVqCbFQbpbxGVySZVNKFpKSIrc1GPlO7aTOd1phNwXSHLl5FfcUbqgLy42KcNoyDYvZPfDv45c%2Bv4Z2CmQmYqfCLvEnTV9fFFXZLJRV1acvt8lstEDuh81zZymotjP70rrpTa8LOn7fDHt9hcmKc3PxA2X6cpl2nXkhunJOfCrGnDBPn1rP1QRBcKu3mqMGmRrV94e%2B1skhlhrdTpFFTeZ7%2BAyRl5Zu%2Fq4ieq3%2Fgc0kxhigpJcY8cHki9B5Zdhc2O3FtNYNRRTZQ5KItqbPzoiFSSQIkjTKMK9jEcHeVjQ%2BfdVFYjex1dswSaX0OaVOiZCj1Vgarh%2FF4Z55m5d%2FKvxuIgUkvjSJmlSaSM%2BmYx5BnZ%2BP42rNyvhY2GS4NOywtDKsKo6bfjwOOU%2Bs3ADwLaQG5n3UtPr%2F0bAAD%2F%2F60EQ%2FceBQAA IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RUQYscRRSu3iyICKISvYg4Bw8q7mx3z0z3jDkEY9wQXJOYNehFQnVV9Wy51V1tVff0ZAQNBiTHUfTiqeeb2V01IZizGGU24CEgZDztwQV%2FQyBnmcnixoLmve%2F73oOvX7%2Bur0bFAWmgoPun39MDqRRdbdXd2qsfed6J2rpMi36t3w4uB80TNdN7sxPU3ddqZwTb0qu%2B67mu53q1NWlErPurcxEyu9nx6h233vTrXquJvvk%2FtsUxWOqA9w7Ic5B8tnzXOQ7JpkiTn08Lu5Xr7I13kkLRXBv0%2BO6ldCvVZYrkKI2NgzjdPayGtvfX7kCn2wu70L3%2FCiM5I84fdxClu4cmEfUmC5%2BRgkgR8adQ9qYQagpJp2D6GiS%2FTwDGce480mTnnDYlvfJIpXN1RpYfPoAsZ2T57%2BNIk1unlOzXNrQqcqlTi35cQfankN0psmIP%2BcCBLPfA8i8h%2BZ9k9eE60mRy3ioNyfdfacbNdshanRXGRLzSjDtipe2zcMX345bfDv1OHMeLAUk5hYynUGIIah0U80c6KGIHReYg4fs15nle6HJG3XaHsQYPRRRw16Nh7FHPDdoo2PwdhsizIZgagpnrkyJlduT%2FkPHNfKvnh5PcFGJnTvrhyN99RLcW7PacbY28m8XlTPlNt%2BO2w%2Fbj0G96I2%2FnUcuiA5m5ii359Yw4T74AU%2FwOu1nB8mXYfEac979Aj1coBUFpCUpKUEqCMicoe9U2V9a31Q5Xtoi8w%2BgfxkY11nl3RLd13hUpATVDGF5NZPapvQaWHxsPYvvxWMeWj7ID8uz80zn6uwfYEvs1t9MOOpyLyAvajTb1Ip%2B6sdv0WrzhBjx0YWUFaZcWgx7IGTn5xOvI5Iy8vOEjonuwag9MPg9avARaVqCbFQbpbxGVySZVNKFpKSIrc1GPlO7aTOd1phNwXSHLl5FfcUbqgLy42KcNoyDYvZPfDv45c%2Bv4Z2CmQmYqfCLvEnTV9fFFXZLJRV1acvt8lstEDuh81zZymotjP70rrpTa8LOn7fDHt9hcmKc3PxA2X6cpl2nXkhunJOfCrGnDBPn1rP1QRBcKu3mqMGmRrV94e%2B1skhlhrdTpFFTeZ7%2BAyRl5Zu%2Fq4ieq3%2Fgc0kxhigpJcY8cHki9B5Zdhc2O3FtNYNRRTZQ5KItqbPzoiFSSQIkjTKMK9jEcHeVjQ%2BfdVFYjex1dswSaX0OaVOiZCj1Vgarh%2FF4Z55m5d%2FKvxuIgUkvjSJmlSaSM%2BmYx5BnZ%2BP42rNyvhY2GS4NOywtDKsKo6bfjwOOU%2Bs3ADwLaQG5n3UtPr%2F0bAAD%2F%2F60EQ%2FceBQAA HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:02 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8d9c8533982ed7a7d69c0ac7d464f5a7
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| pagead2.googlesyndication.com/bg/lt2cCoPsX252dEmzUuMfQOVAz67OvgkgZdQzIFlkHFY.js | 142.250.74.162 | 200 OK | 21 kB |
URL pagead2.googlesyndication.com/bg/lt2cCoPsX252dEmzUuMfQOVAz67OvgkgZdQzIFlkHFY.js IP142.250.74.162:0
CertificateIssuerGoogle Trust Services Subject*.g.doubleclick.net FingerprintBC:4E:29:59:F0:00:68:76:80:D0:87:A6:C3:84:47:C3:18:FF:84:89 ValidityMon, 21 Oct 2024 08:36:57 GMT - Mon, 13 Jan 2025 08:36:56 GMT
File typeJavaScript source, ASCII text, with very long lines (53373) Hashb8cc82166185aa3fbec770f66708e569 b8418c02d1146d61f3163b60e5b668960d4cb83f 96dd9c0a83ec5f6e767449b352e31f40e540cfaecebe092065d4332059641c56
GET /bg/lt2cCoPsX252dEmzUuMfQOVAz67OvgkgZdQzIFlkHFY.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ep2.adtrafficquality.google/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20975
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 18:32:36 GMT
expires: Sat, 06 Dec 2025 18:32:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Nov 2024 15:28:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 117506
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| baimhalamanwebsite.blogspot.com/favicon.ico | 142.250.74.129 | 200 OK | 412 B |
URL GET HTTP/3baimhalamanwebsite.blogspot.com/favicon.ico IP142.250.74.129:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectmisc-sni.blogspot.com Fingerprint59:76:5B:79:FF:5C:31:98:63:35:D7:37:37:6E:C0:99:9B:02:38:15 ValidityMon, 21 Oct 2024 08:37:38 GMT - Mon, 13 Jan 2025 08:37:37 GMT
File typeMS Windows icon resource - 2 icons, 32x32, 8 bits/pixel, 16x16, 8 bits/pixel Hash59a0c7b6e4848ccdabcea0636efda02b 30ef5c54b8bbc3487ea2b4c45cd11ea2932e4340 a1495da3cf3db37bf105a12658636ff628fee7b73975b9200049af7747e60b1f
GET /favicon.ico HTTP/1.1
Host: baimhalamanwebsite.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/?m=1
Cookie: isFTime_82f4142c5376817392c72e99b42e0387=true; isFTime_82f4142c5376817392c72e99b42e0387_expiry=Sun, 08 Dec 2024 03:11:00 GMT; isFTime_2b1405bbf5bc3524b05d31e77bbdaaa2=true; isFTime_2b1405bbf5bc3524b05d31e77bbdaaa2_expiry=Sun, 08 Dec 2024 03:11:00 GMT; dom3ic8zudi28v8lr6fgphwffqoz0j6c=4f487c59-ccef-4f9e-82c7-22f528729fff%3A1%3A1; pp_main_a7ea76e7e090c42b65affc82160e9d04=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=darkenedplane.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Sun, 08 Dec 2024 03:11:02 GMT
date: Sun, 08 Dec 2024 03:11:02 GMT
cache-control: private, max-age=86400
last-modified: Wed, 27 Nov 2024 01:45:42 GMT
etag: W/"ab468fc617b7c0fb6b6c6bf3c4a7ac9ad3e234251f07c8af8c74a7430db20811"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 412
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| ep2.adtrafficquality.google/generate_204?LHK0OQ | 142.250.74.161 | 204 No Content | 0 B |
URL ep2.adtrafficquality.google/generate_204?LHK0OQ IP142.250.74.161:0
CertificateIssuerGoogle Trust Services Subjectadtrafficquality.google Fingerprint26:BB:18:89:E0:E5:8E:98:97:F2:63:1F:BB:20:A1:0F:18:8C:8B:01 ValidityMon, 21 Oct 2024 08:39:59 GMT - Mon, 13 Jan 2025 08:39:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?LHK0OQ HTTP/1.1
Host: ep2.adtrafficquality.google
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ep2.adtrafficquality.google/sodar/sodar2/232/runner.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Sun, 08 Dec 2024 03:11:03 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| csi.gstatic.com/csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~m4f111m5&c=3710480692511703&e=31089332%2C95347445%2C31089297%2C31061691%2C31061693&ctx=1&met.3=1001.1d1_1__1~164.1d6~165.1d0_6~166.1cb_v~1032.1qj~326.1qp_2~832.1qw~868.1qw~216.1qi_f~215.1qi_f~843.1qh_g~889.1s5~639.1si~112.1tx_1~1244.2kl~113.2xq_1&met.7=CBsQCMABhsKigAE~CAEQChgBINMKKNMKMNkMOIYCQP8KSIALUIALWJ4MYI0LaJ8McLoMeIKnA4AB7qADiAHd3QmwAQG4AQPAAd6Ov5sB~CBsQChgBINQKKNQKMP4LOKoBwAGTtsX5Dg~CBsQCiDWCjjgBMABrKHO4Qc~CBsQCiDWCjivBcABmsnqlgM~CBsQCiDWCjiaBsAB0aHEtA4~CBsQChgBINYKKNYKMLANONoCQP8KSLILULMLWIsNYL0LaJANcKINeNTDAYAB-7wBiAGb9gOwAQG4AQPAAa7dyZcI~CBsQCiDXCji3BcAB1f2MmQo~CBsQCiDXCjisBsABi67e6w8~CBsQCiDXCji3BsABhc-8uAc~CBsQChgBINcKKNcKMJ0NOMYCwAH1osyyAQ~CBsQCiDYCjjbAcAB-d7BzA4~CBsQCiDYCjitAsABl4e5jQ8~CBsQCiDYCjitBsABs5G0gQ4~CBsQCiDYCjhOwAGFheaeDQ~CBsg8wo4VcABiP-imQI~CBMYASD-Cij-CjDaDDjcAUCmC0ivC1C0C1i5DGC-C2i7DHDZDHiolwGAAeiQAYgB6JABqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHztLCUDw~CBMYASCACyiACzCKDTiKAkCoC0ixC1DDC1i9DGDLC2i_DHCGDXjklwGAAaSRAYgBpJEBqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHBhdPRCw~CAMQChgBIOQNKOQNMIAQOJwCUNIOWLQPYN0OaLYPcOQPeOWGCYABvIEJiAG6kBuwAQG4AQPAAYH8kdkB~CBsQChgBIMEOKMEOMOYOOCXAAd7q7I0N~CBwQChgBINIRKNIRMO8ROB1o4RFw6hF42rIBgAHVrQGIAbrGA7ABAbgBA8ABhaPwlgo~CBsQDSCrETj4AcAB5Y-bxwk~CBwQBRgBIOERKOERMPMROBJo5RFw7xF46ySAAaAgiAHPRrABAbgBA8ABk6LVwwk~CBsQDSDYEjhmwAHlj5vHCQ~CBsQDSClEjinAcAB5Y-bxwk~CBwQBRgBIJESKJESMPUSOGRo0RJw9BJ46AOAAS6IAdsEsAEBuAEDwAHbpYdu~CBsQDSD4EjiIAcAB5Y-bxwk~CBsQBSCQDzi5BMAB_YvFqgg~CBsQCiDtEji8AcABrKHO4Qc~CBsQCiD5EjjoAcABi67e6w8~CBsQCiDYEjjOAsABw_Gkggs~CBsQBhgBINUKKNUKMMQVOO8KwAGf9_ejAQ~CBsQBiDWEjjPA8ABqfq-5Ag~CBsQDSCmEjjRBMABs5fq9Qc~CBsQCiCMFTjIAsAB1f2MmQo~CBsQCiCJFTjOAsABrKHO4Qc~CBsQBiCRFziBAcAB6KKhgAg~CBsQAiCaFzjoAcABxKeDpgo~CBsQAiCaFziGAsAB3aDYpQo~CBsQBiCUFzj8AcAB6KKhgAg~CBsQAiCZFzi_AsAB_c3h5w4~CBsQAiCZFzipAsAB8IGsFw~CBsQCiCKFTjvBMABrKHO4Qc~CBsQCiCUGDi6AsAB1f2MmQo~CBsQBiCVFzjVA8AB6KKhgAg~CBsQBiCTFzjbA8AB6KKhgAg~CBsQDSDZFDjWBsABqcDMuA8~CBsQDSDrFDjKBsABstmu8Q4~CBsQCiDoGjiJAcAB0aHEtA4~CBsQCiC_HDgxwAHD8aSCCw~CBsQBiCaHTgQwAG3-rW5AQ~CBsQCDjHHcABhsKigAE~CBsQDSCIGDjVBcABr5OarQg~CBsQDSCnHDiLAsAB7_K61wI~CBsQDSDYHDjzAcAB262DPw~CBsQDSC7HTiEAcAByOnstQ8~CBsQCiDHHzhawAHzlJiSAw~CBsQChgBIPIfKPIfMIYgOBTAAbjE_8cC~CBsQBxgBIKogKKogMNQgOCrAAbzv-OAN~CBsQChgBILAgKLAgMPggOEjAAdD0ycEH~CBsQCiDvHziMAcABkoq75QM~CBsQBxgBIKsgKKsgMP0gOFLAAeSwx-4N~CBsQChgBIK4gKK4gMP0gOE_AAdSS1JAM~CBsQChgBIK0gKK0gMKkhOHzAAdvd_vAB~CBsQChgBIK8gKK8gMOkhOLoBwAG_rp3lDA~CBsQDSD6GjjvB8ABrPPwxgY~CBsQDSDaIDipAsABiqT-_A8~CBsQBSCDIji_AcABqYDT4Qc~CBsQBiC3IziGAcAB3KG0yAM~CBsg2gs4xRnAAeqg3t4P&met.1=1.m4f10zs8~6.2r~7.2t~8.2v~9.2v~10.5f~11.3k~12.5g~13.uu~14.we~15.10u~16.2u1~17.2u5~18.2uo~19.2wp~20.2wp~21.2x2~23.162 | 172.217.16.3 | 204 No Content | 0 B |
URL POST HTTP/2csi.gstatic.com/csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~m4f111m5&c=3710480692511703&e=31089332%2C95347445%2C31089297%2C31061691%2C31061693&ctx=1&met.3=1001.1d1_1__1~164.1d6~165.1d0_6~166.1cb_v~1032.1qj~326.1qp_2~832.1qw~868.1qw~216.1qi_f~215.1qi_f~843.1qh_g~889.1s5~639.1si~112.1tx_1~1244.2kl~113.2xq_1&met.7=CBsQCMABhsKigAE~CAEQChgBINMKKNMKMNkMOIYCQP8KSIALUIALWJ4MYI0LaJ8McLoMeIKnA4AB7qADiAHd3QmwAQG4AQPAAd6Ov5sB~CBsQChgBINQKKNQKMP4LOKoBwAGTtsX5Dg~CBsQCiDWCjjgBMABrKHO4Qc~CBsQCiDWCjivBcABmsnqlgM~CBsQCiDWCjiaBsAB0aHEtA4~CBsQChgBINYKKNYKMLANONoCQP8KSLILULMLWIsNYL0LaJANcKINeNTDAYAB-7wBiAGb9gOwAQG4AQPAAa7dyZcI~CBsQCiDXCji3BcAB1f2MmQo~CBsQCiDXCjisBsABi67e6w8~CBsQCiDXCji3BsABhc-8uAc~CBsQChgBINcKKNcKMJ0NOMYCwAH1osyyAQ~CBsQCiDYCjjbAcAB-d7BzA4~CBsQCiDYCjitAsABl4e5jQ8~CBsQCiDYCjitBsABs5G0gQ4~CBsQCiDYCjhOwAGFheaeDQ~CBsg8wo4VcABiP-imQI~CBMYASD-Cij-CjDaDDjcAUCmC0ivC1C0C1i5DGC-C2i7DHDZDHiolwGAAeiQAYgB6JABqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHztLCUDw~CBMYASCACyiACzCKDTiKAkCoC0ixC1DDC1i9DGDLC2i_DHCGDXjklwGAAaSRAYgBpJEBqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHBhdPRCw~CAMQChgBIOQNKOQNMIAQOJwCUNIOWLQPYN0OaLYPcOQPeOWGCYABvIEJiAG6kBuwAQG4AQPAAYH8kdkB~CBsQChgBIMEOKMEOMOYOOCXAAd7q7I0N~CBwQChgBINIRKNIRMO8ROB1o4RFw6hF42rIBgAHVrQGIAbrGA7ABAbgBA8ABhaPwlgo~CBsQDSCrETj4AcAB5Y-bxwk~CBwQBRgBIOERKOERMPMROBJo5RFw7xF46ySAAaAgiAHPRrABAbgBA8ABk6LVwwk~CBsQDSDYEjhmwAHlj5vHCQ~CBsQDSClEjinAcAB5Y-bxwk~CBwQBRgBIJESKJESMPUSOGRo0RJw9BJ46AOAAS6IAdsEsAEBuAEDwAHbpYdu~CBsQDSD4EjiIAcAB5Y-bxwk~CBsQBSCQDzi5BMAB_YvFqgg~CBsQCiDtEji8AcABrKHO4Qc~CBsQCiD5EjjoAcABi67e6w8~CBsQCiDYEjjOAsABw_Gkggs~CBsQBhgBINUKKNUKMMQVOO8KwAGf9_ejAQ~CBsQBiDWEjjPA8ABqfq-5Ag~CBsQDSCmEjjRBMABs5fq9Qc~CBsQCiCMFTjIAsAB1f2MmQo~CBsQCiCJFTjOAsABrKHO4Qc~CBsQBiCRFziBAcAB6KKhgAg~CBsQAiCaFzjoAcABxKeDpgo~CBsQAiCaFziGAsAB3aDYpQo~CBsQBiCUFzj8AcAB6KKhgAg~CBsQAiCZFzi_AsAB_c3h5w4~CBsQAiCZFzipAsAB8IGsFw~CBsQCiCKFTjvBMABrKHO4Qc~CBsQCiCUGDi6AsAB1f2MmQo~CBsQBiCVFzjVA8AB6KKhgAg~CBsQBiCTFzjbA8AB6KKhgAg~CBsQDSDZFDjWBsABqcDMuA8~CBsQDSDrFDjKBsABstmu8Q4~CBsQCiDoGjiJAcAB0aHEtA4~CBsQCiC_HDgxwAHD8aSCCw~CBsQBiCaHTgQwAG3-rW5AQ~CBsQCDjHHcABhsKigAE~CBsQDSCIGDjVBcABr5OarQg~CBsQDSCnHDiLAsAB7_K61wI~CBsQDSDYHDjzAcAB262DPw~CBsQDSC7HTiEAcAByOnstQ8~CBsQCiDHHzhawAHzlJiSAw~CBsQChgBIPIfKPIfMIYgOBTAAbjE_8cC~CBsQBxgBIKogKKogMNQgOCrAAbzv-OAN~CBsQChgBILAgKLAgMPggOEjAAdD0ycEH~CBsQCiDvHziMAcABkoq75QM~CBsQBxgBIKsgKKsgMP0gOFLAAeSwx-4N~CBsQChgBIK4gKK4gMP0gOE_AAdSS1JAM~CBsQChgBIK0gKK0gMKkhOHzAAdvd_vAB~CBsQChgBIK8gKK8gMOkhOLoBwAG_rp3lDA~CBsQDSD6GjjvB8ABrPPwxgY~CBsQDSDaIDipAsABiqT-_A8~CBsQBSCDIji_AcABqYDT4Qc~CBsQBiC3IziGAcAB3KG0yAM~CBsg2gs4xRnAAeqg3t4P&met.1=1.m4f10zs8~6.2r~7.2t~8.2v~9.2v~10.5f~11.3k~12.5g~13.uu~14.we~15.10u~16.2u1~17.2u5~18.2uo~19.2wp~20.2wp~21.2x2~23.162 IP172.217.16.3:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint5E:64:A9:4C:59:5A:8F:EC:57:D9:7F:C4:7E:70:AC:88:F2:67:F1:79 ValidityMon, 04 Nov 2024 08:38:50 GMT - Mon, 27 Jan 2025 08:38:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~m4f111m5&c=3710480692511703&e=31089332%2C95347445%2C31089297%2C31061691%2C31061693&ctx=1&met.3=1001.1d1_1__1~164.1d6~165.1d0_6~166.1cb_v~1032.1qj~326.1qp_2~832.1qw~868.1qw~216.1qi_f~215.1qi_f~843.1qh_g~889.1s5~639.1si~112.1tx_1~1244.2kl~113.2xq_1&met.7=CBsQCMABhsKigAE~CAEQChgBINMKKNMKMNkMOIYCQP8KSIALUIALWJ4MYI0LaJ8McLoMeIKnA4AB7qADiAHd3QmwAQG4AQPAAd6Ov5sB~CBsQChgBINQKKNQKMP4LOKoBwAGTtsX5Dg~CBsQCiDWCjjgBMABrKHO4Qc~CBsQCiDWCjivBcABmsnqlgM~CBsQCiDWCjiaBsAB0aHEtA4~CBsQChgBINYKKNYKMLANONoCQP8KSLILULMLWIsNYL0LaJANcKINeNTDAYAB-7wBiAGb9gOwAQG4AQPAAa7dyZcI~CBsQCiDXCji3BcAB1f2MmQo~CBsQCiDXCjisBsABi67e6w8~CBsQCiDXCji3BsABhc-8uAc~CBsQChgBINcKKNcKMJ0NOMYCwAH1osyyAQ~CBsQCiDYCjjbAcAB-d7BzA4~CBsQCiDYCjitAsABl4e5jQ8~CBsQCiDYCjitBsABs5G0gQ4~CBsQCiDYCjhOwAGFheaeDQ~CBsg8wo4VcABiP-imQI~CBMYASD-Cij-CjDaDDjcAUCmC0ivC1C0C1i5DGC-C2i7DHDZDHiolwGAAeiQAYgB6JABqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHztLCUDw~CBMYASCACyiACzCKDTiKAkCoC0ixC1DDC1i9DGDLC2i_DHCGDXjklwGAAaSRAYgBpJEBqgEMCgZyb2JvdG8QIBgCsAEBuAEDwAHBhdPRCw~CAMQChgBIOQNKOQNMIAQOJwCUNIOWLQPYN0OaLYPcOQPeOWGCYABvIEJiAG6kBuwAQG4AQPAAYH8kdkB~CBsQChgBIMEOKMEOMOYOOCXAAd7q7I0N~CBwQChgBINIRKNIRMO8ROB1o4RFw6hF42rIBgAHVrQGIAbrGA7ABAbgBA8ABhaPwlgo~CBsQDSCrETj4AcAB5Y-bxwk~CBwQBRgBIOERKOERMPMROBJo5RFw7xF46ySAAaAgiAHPRrABAbgBA8ABk6LVwwk~CBsQDSDYEjhmwAHlj5vHCQ~CBsQDSClEjinAcAB5Y-bxwk~CBwQBRgBIJESKJESMPUSOGRo0RJw9BJ46AOAAS6IAdsEsAEBuAEDwAHbpYdu~CBsQDSD4EjiIAcAB5Y-bxwk~CBsQBSCQDzi5BMAB_YvFqgg~CBsQCiDtEji8AcABrKHO4Qc~CBsQCiD5EjjoAcABi67e6w8~CBsQCiDYEjjOAsABw_Gkggs~CBsQBhgBINUKKNUKMMQVOO8KwAGf9_ejAQ~CBsQBiDWEjjPA8ABqfq-5Ag~CBsQDSCmEjjRBMABs5fq9Qc~CBsQCiCMFTjIAsAB1f2MmQo~CBsQCiCJFTjOAsABrKHO4Qc~CBsQBiCRFziBAcAB6KKhgAg~CBsQAiCaFzjoAcABxKeDpgo~CBsQAiCaFziGAsAB3aDYpQo~CBsQBiCUFzj8AcAB6KKhgAg~CBsQAiCZFzi_AsAB_c3h5w4~CBsQAiCZFzipAsAB8IGsFw~CBsQCiCKFTjvBMABrKHO4Qc~CBsQCiCUGDi6AsAB1f2MmQo~CBsQBiCVFzjVA8AB6KKhgAg~CBsQBiCTFzjbA8AB6KKhgAg~CBsQDSDZFDjWBsABqcDMuA8~CBsQDSDrFDjKBsABstmu8Q4~CBsQCiDoGjiJAcAB0aHEtA4~CBsQCiC_HDgxwAHD8aSCCw~CBsQBiCaHTgQwAG3-rW5AQ~CBsQCDjHHcABhsKigAE~CBsQDSCIGDjVBcABr5OarQg~CBsQDSCnHDiLAsAB7_K61wI~CBsQDSDYHDjzAcAB262DPw~CBsQDSC7HTiEAcAByOnstQ8~CBsQCiDHHzhawAHzlJiSAw~CBsQChgBIPIfKPIfMIYgOBTAAbjE_8cC~CBsQBxgBIKogKKogMNQgOCrAAbzv-OAN~CBsQChgBILAgKLAgMPggOEjAAdD0ycEH~CBsQCiDvHziMAcABkoq75QM~CBsQBxgBIKsgKKsgMP0gOFLAAeSwx-4N~CBsQChgBIK4gKK4gMP0gOE_AAdSS1JAM~CBsQChgBIK0gKK0gMKkhOHzAAdvd_vAB~CBsQChgBIK8gKK8gMOkhOLoBwAG_rp3lDA~CBsQDSD6GjjvB8ABrPPwxgY~CBsQDSDaIDipAsABiqT-_A8~CBsQBSCDIji_AcABqYDT4Qc~CBsQBiC3IziGAcAB3KG0yAM~CBsg2gs4xRnAAeqg3t4P&met.1=1.m4f10zs8~6.2r~7.2t~8.2v~9.2v~10.5f~11.3k~12.5g~13.uu~14.we~15.10u~16.2u1~17.2u5~18.2uo~19.2wp~20.2wp~21.2x2~23.162 HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sun, 08 Dec 2024 03:11:03 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsgcc:41:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsgcc:41:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=09869ddeb16838a1b2a0f0415d306d70&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=09869ddeb16838a1b2a0f0415d306d70&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subject*.unseenreport.com FingerprintB3:C3:D3:00:AB:EE:F9:2F:2C:9A:5D:74:A9:E1:4E:36:06:3F:B6:74 ValidityMon, 18 Nov 2024 22:38:22 GMT - Sun, 16 Feb 2025 22:38:21 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=09869ddeb16838a1b2a0f0415d306d70&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 7211443f29ad35afb85a4a6a11efd54e
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a7ea76e7e090c42b65affc82160e9d04&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a7ea76e7e090c42b65affc82160e9d04&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subject*.unseenreport.com FingerprintB3:C3:D3:00:AB:EE:F9:2F:2C:9A:5D:74:A9:E1:4E:36:06:3F:B6:74 ValidityMon, 18 Nov 2024 22:38:22 GMT - Sun, 16 Feb 2025 22:38:21 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=4f487c59-ccef-4f9e-82c7-22f528729fff&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a7ea76e7e090c42b65affc82160e9d04&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Host: unseenreport.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: 8f0c5f948970e80e0e6c2c0f9d3e7fae
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=519 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=519 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.show-sb.com%2Fsb%2Fau%2Fd3%2F55%2Ffb%2Fd355fb06fa4f4907609b7d285fa07f7a%2F1664530003.html&l=1175&fd=519 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyNDA5MDg3OCwiayI6IjgyZjQxNDJjNTM3NjgxNzM5MmM3MmU5OWI0MmUwMzg3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo0MTMwNjAyLCJwaWQiOjIwNTI5MTQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6MjcsInB0Ijo0LCJwayI6ImJkbnQ1bWViIiwidCI6MX0sInUiOnsidSI6MiwiYXUiOjIsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6ZmFsc2UsInIiOiJodHRwczovL2JhaW1oYWxhbWFud2Vic2l0ZS5ibG9nc3BvdC5jb20vP209MSIsImFyIjpbXX19.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Length: 0
Connection: keep-alive
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.storageimagedisplay.com/si/89833276a6ef88b03d747119372d03f1f2239633eb38adc11e7fad5b3352eb51.png | 45.133.44.1 | 200 OK | 18 kB |
URL GET HTTP/2cdn.storageimagedisplay.com/si/89833276a6ef88b03d747119372d03f1f2239633eb38adc11e7fad5b3352eb51.png IP45.133.44.1:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectcdn.storageimagedisplay.com FingerprintF9:20:E7:90:5F:37:8A:CE:B4:58:90:7D:E5:7E:FD:5E:B8:11:6E:FE ValidityTue, 12 Nov 2024 03:04:34 GMT - Mon, 10 Feb 2025 03:04:33 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3 Hashe70e25c20ea3347dbbd220082282bb67 f979f6309b2b76948028d097f29a6479971b6434 849ac1134d6f91b30babc8dee4177b320dda83ed201dc4127f83528f7ead272a
GET /si/89833276a6ef88b03d747119372d03f1f2239633eb38adc11e7fad5b3352eb51.png HTTP/1.1
Host: cdn.storageimagedisplay.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: image/png
content-length: 17660
server: nginx/1.21.6
last-modified: Tue, 13 Aug 2024 14:54:53 GMT
etag: "66bb73bd-44fc"
expires: Tue, 10 Dec 2024 03:11:03 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
x-cdn-host-id: ah0543
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg |  104.21.13.187 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg IP104.21.13.187:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectcreative-stat1.com Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36 ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT
File typeSVG Scalable Vector Graphics image Hash3edeb68064815a05dc25ee715b546048 6ed43c4d875aa7d955e4897c9b78bab55ab4f735 6d87b433d8a0e4648ae21a4491bf63848bf8bb19eb215399d5b6370cb0e6d48f
GET /sb/ssp/utility/social-media/instagram/new/4/img/close.svg HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:19:43 GMT
etag: W/"65aa84ff-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 230587
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z4ca1RkGB5CLfnAaZSv0ncUeec60xf9ww4t2wAL7R4B%2BnjaVq2XD0K5uVKSMDD2SyCPc6JcJr8aIOQMsbpx%2BDUbE76NIy6oXYjusR3%2FPeejQ1Z2wXL6wMEkIi7jou6OCXb6kR830xX2N"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee990dda9b456bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=614&min_rtt=444&rtt_var=350&sent=10&recv=13&lost=0&retrans=0&sent_bytes=3217&recv_bytes=1495&delivery_rate=7841155&cwnd=254&unsent_bytes=0&cid=1712b3738e2236d3&ts=89&x=0"
X-Firefox-Spdy: h2
|
|
| ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241120&jk=3710480692511703&bg=!Y2ClYC_NAAaIaF9IqGg7ADQBe5WfOPe5gY8JEqNe7KmrjAq6DO8jdd-R8HiKl4gL4i7IhT4-Dd4AVihtxL6qgR-rh3UqAgAAAQFSAAAAC2gBB34ANdG_gbd4bXVab7GJcNErTVWx6c_WCMRzrbKbQzdF_tKYoIIgK00oP5-dWiIbONEttbnkMxvaCgCowEYa16sbmRsZ1Xtg4J_ooPR3KRqomzTSEL3-_ox1b3zO7zeqG9M1QRtTdgoCy6_kua_PTGPjjHfnwAq2gZNO_huB-7rEB1hEMVQtsfAkBg2YK0HNl0CuERanR77rozIWvrlVeRI-gEelK7RFTemJ7qdAuwM3sBxCZDZ-zVjuSWzwCrXw0npG7mIzdoEOmX_yjSEGrUqu1fvs2YA7HTzE_dsUvUXaEzAjmQIT1-RxKVMFsgr2UjDs0vyWeF-_3M6GyTbO-d3KxiRtY8FLYX0legZyIzuR_H_4nuF37_wORLXHzj1HlAqPmdB4f-RDalfFMTZAKhZ6ng4vR9TWk1orq_Y9ZpWSvcasm0akUN9kzmJqtYbXhCBovgQqADNcNXLMrAnu6VluT-HZDiIsfrh8ndpO4yuo-ywMzlkIY984NAvSD6FMn7lqueoaRxklF6On9m5KFYkma8Bk8BhDJN87U1plJ5AvYohsVrFwpYtV8r532R_KTAI3IcxZlXQoERAyDKJt5pMHlfEfRPXIv_PpkYmuZNJkus6H6ghPBE4sFUcK0_F1WmDWu-O30uLh8UGDOJjiKdU9IwLRs2b7A_FnbgoF-IZHO9sbG8vDBVy0MD61FELc-t_sFtD7Zi5PwFQNwYoVYN3HJnvbAUPyfcWxf6eNzJlh8NU0H9-fHuhzEPKpRUsMKC14Ptm57ehPSZWqXIPNAGbfQrfPzS4KeDr5T1LHLFZIuw-tR-Pw49a_yavQiCT6XfJqeCPrItQMKl7TwaGBD5Jild0Oql70IgQlS_6CUdk917hhS0zaY21K7Tl7efiUDx_zcaajhLtKQPLpxENn5McRXlMb0X4mlrGu7v7_X6p9g2EJbhnNdKXHdxMbnfAj_klyuD7QZX4lv8z4ccXuy17WeLPdu1tmG1vMmxVlEVFOh4fTm6TBayiP | 142.250.74.34 | 204 No Content | 0 B |
URL GET HTTP/3ep1.adtrafficquality.google/pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241120&jk=3710480692511703&bg=!Y2ClYC_NAAaIaF9IqGg7ADQBe5WfOPe5gY8JEqNe7KmrjAq6DO8jdd-R8HiKl4gL4i7IhT4-Dd4AVihtxL6qgR-rh3UqAgAAAQFSAAAAC2gBB34ANdG_gbd4bXVab7GJcNErTVWx6c_WCMRzrbKbQzdF_tKYoIIgK00oP5-dWiIbONEttbnkMxvaCgCowEYa16sbmRsZ1Xtg4J_ooPR3KRqomzTSEL3-_ox1b3zO7zeqG9M1QRtTdgoCy6_kua_PTGPjjHfnwAq2gZNO_huB-7rEB1hEMVQtsfAkBg2YK0HNl0CuERanR77rozIWvrlVeRI-gEelK7RFTemJ7qdAuwM3sBxCZDZ-zVjuSWzwCrXw0npG7mIzdoEOmX_yjSEGrUqu1fvs2YA7HTzE_dsUvUXaEzAjmQIT1-RxKVMFsgr2UjDs0vyWeF-_3M6GyTbO-d3KxiRtY8FLYX0legZyIzuR_H_4nuF37_wORLXHzj1HlAqPmdB4f-RDalfFMTZAKhZ6ng4vR9TWk1orq_Y9ZpWSvcasm0akUN9kzmJqtYbXhCBovgQqADNcNXLMrAnu6VluT-HZDiIsfrh8ndpO4yuo-ywMzlkIY984NAvSD6FMn7lqueoaRxklF6On9m5KFYkma8Bk8BhDJN87U1plJ5AvYohsVrFwpYtV8r532R_KTAI3IcxZlXQoERAyDKJt5pMHlfEfRPXIv_PpkYmuZNJkus6H6ghPBE4sFUcK0_F1WmDWu-O30uLh8UGDOJjiKdU9IwLRs2b7A_FnbgoF-IZHO9sbG8vDBVy0MD61FELc-t_sFtD7Zi5PwFQNwYoVYN3HJnvbAUPyfcWxf6eNzJlh8NU0H9-fHuhzEPKpRUsMKC14Ptm57ehPSZWqXIPNAGbfQrfPzS4KeDr5T1LHLFZIuw-tR-Pw49a_yavQiCT6XfJqeCPrItQMKl7TwaGBD5Jild0Oql70IgQlS_6CUdk917hhS0zaY21K7Tl7efiUDx_zcaajhLtKQPLpxENn5McRXlMb0X4mlrGu7v7_X6p9g2EJbhnNdKXHdxMbnfAj_klyuD7QZX4lv8z4ccXuy17WeLPdu1tmG1vMmxVlEVFOh4fTm6TBayiP IP142.250.74.34:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectadtrafficquality.google Fingerprint26:BB:18:89:E0:E5:8E:98:97:F2:63:1F:BB:20:A1:0F:18:8C:8B:01 ValidityMon, 21 Oct 2024 08:39:59 GMT - Mon, 13 Jan 2025 08:39:58 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=232&t=2&li=gda_r20241120&jk=3710480692511703&bg=!Y2ClYC_NAAaIaF9IqGg7ADQBe5WfOPe5gY8JEqNe7KmrjAq6DO8jdd-R8HiKl4gL4i7IhT4-Dd4AVihtxL6qgR-rh3UqAgAAAQFSAAAAC2gBB34ANdG_gbd4bXVab7GJcNErTVWx6c_WCMRzrbKbQzdF_tKYoIIgK00oP5-dWiIbONEttbnkMxvaCgCowEYa16sbmRsZ1Xtg4J_ooPR3KRqomzTSEL3-_ox1b3zO7zeqG9M1QRtTdgoCy6_kua_PTGPjjHfnwAq2gZNO_huB-7rEB1hEMVQtsfAkBg2YK0HNl0CuERanR77rozIWvrlVeRI-gEelK7RFTemJ7qdAuwM3sBxCZDZ-zVjuSWzwCrXw0npG7mIzdoEOmX_yjSEGrUqu1fvs2YA7HTzE_dsUvUXaEzAjmQIT1-RxKVMFsgr2UjDs0vyWeF-_3M6GyTbO-d3KxiRtY8FLYX0legZyIzuR_H_4nuF37_wORLXHzj1HlAqPmdB4f-RDalfFMTZAKhZ6ng4vR9TWk1orq_Y9ZpWSvcasm0akUN9kzmJqtYbXhCBovgQqADNcNXLMrAnu6VluT-HZDiIsfrh8ndpO4yuo-ywMzlkIY984NAvSD6FMn7lqueoaRxklF6On9m5KFYkma8Bk8BhDJN87U1plJ5AvYohsVrFwpYtV8r532R_KTAI3IcxZlXQoERAyDKJt5pMHlfEfRPXIv_PpkYmuZNJkus6H6ghPBE4sFUcK0_F1WmDWu-O30uLh8UGDOJjiKdU9IwLRs2b7A_FnbgoF-IZHO9sbG8vDBVy0MD61FELc-t_sFtD7Zi5PwFQNwYoVYN3HJnvbAUPyfcWxf6eNzJlh8NU0H9-fHuhzEPKpRUsMKC14Ptm57ehPSZWqXIPNAGbfQrfPzS4KeDr5T1LHLFZIuw-tR-Pw49a_yavQiCT6XfJqeCPrItQMKl7TwaGBD5Jild0Oql70IgQlS_6CUdk917hhS0zaY21K7Tl7efiUDx_zcaajhLtKQPLpxENn5McRXlMb0X4mlrGu7v7_X6p9g2EJbhnNdKXHdxMbnfAj_klyuD7QZX4lv8z4ccXuy17WeLPdu1tmG1vMmxVlEVFOh4fTm6TBayiP HTTP/1.1
Host: ep1.adtrafficquality.google
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 08 Dec 2024 03:11:03 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 216.58.207.234 | 200 OK | 740 B |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP216.58.207.234:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectupload.video.google.com FingerprintE8:18:86:79:89:2E:F0:7C:66:1F:C3:43:81:D2:6D:9E:0C:9C:AB:05 ValidityMon, 21 Oct 2024 08:38:00 GMT - Mon, 13 Jan 2025 08:37:59 GMT
Hash04fce85a4376ac7d4549b5401a08427f 4853a7df6ddd20a01810fc0d8eb88a74542c76e6 71cfdae69236a935151761b96b4f46b54f95be14372112e9b5c398eb87db1b3a
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Dec 2024 03:11:03 GMT
date: Sun, 08 Dec 2024 03:11:03 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=78689&fd=571 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=78689&fd=571 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fanimate.css&l=78689&fd=571 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Length: 0
Connection: keep-alive
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css | 104.21.13.187 | 200 OK | 1.9 kB |
URL GET HTTP/2cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css IP104.21.13.187:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectcreative-stat1.com Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36 ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT
Hash98090679cdc97734c4911d7995d7a560 50616bcd7ea8829649ce87ccf771dcc60ad20d8d 985576dbd564299199b75f1e108e7808324c3549692fe41a04aa32b85a1f727a
GET /sb/ssp/utility/social-media/instagram/new/4/css/style.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:43 GMT
etag: W/"65aa84ff-1d9a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SaArC0OF8JTaVXt8j5jKqHCBxoyvdp6jQEJJh%2Bf9Q6nEgbnt6I4PRebTBlnxVVX2EEurzd7PdrGsc3XgcdaQeXXMcWlt2TY5FfEq%2FiE%2BVDOllql9Km%2FAtX7PsSEiYtYXcmIfVpL49UmJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee990dd599256bb-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=945&min_rtt=444&rtt_var=925&sent=13&recv=14&lost=0&retrans=0&sent_bytes=4582&recv_bytes=1495&delivery_rate=7841155&cwnd=257&unsent_bytes=0&cid=1712b3738e2236d3&ts=468&x=0"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18596, version 1.0 Hashc83e4437a53d7f849f9d32df3d6b68f3 fabea5ad92ed3e2431659b02e7624df30d0c6bbc d9bada3a44bb2ffa66dec5cc781cafc9ef17ed876cd9b0c5f7ef18228b63cebb
GET /s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 19:03:05 GMT
expires: Sat, 06 Dec 2025 19:03:05 GMT
cache-control: public, max-age=31536000
age: 115679
last-modified: Thu, 01 Aug 2024 20:41:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 18 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.gstatic.com Fingerprint2A:56:7F:C1:73:8D:7A:48:D9:E7:52:83:15:27:9D:C3:C9:23:71:52 ValidityMon, 21 Oct 2024 08:37:59 GMT - Mon, 13 Jan 2025 08:37:58 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 18536, version 1.0 Hash8eff0b8045fd1959e117f85654ae7770 227fee13ceb7c410b5c0bb8000258b6643cb6255 89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571
GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 06 Dec 2024 19:08:18 GMT
expires: Sat, 06 Dec 2025 19:08:18 GMT
cache-control: public, max-age=31536000
age: 115366
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| clusterposture.com/impr.gif?sid=H4sIAAAAAAAC%2F1RUz4scRRit3iyICKISvYg4Bw8q7mx3z29zCMa4IbgmMWvQi4T61bPlVne1Vd3TkxE0GJAcR9GLp543s7tqQjBnMcpswENAyHjagwv%2BDYGcZSaLGwua%2Bt5734PXX1fXV6P8gNSQ0%2F3T75mB0pquNqp%2B5dWPguBEZV0leb%2FSbzcvN%2BsnKrb3ZqdZ9V%2BrnJF8y6yGfuD7gR9U1pSVkemvzkWo9GYnqHb8aj2sBo06%2Bvb%2F2OXH4KgH0Tsgz0GJ2fJd7zgUnyKJfz4t3VZm0jfeiXNNM2PRE7uXkq3EFAniozKyHqJk97Abxt1fuwOTbC%2FiwvT%2Ba2RqRrw%2F7oAlu4chwXqTRU6mIRMw8RSK3hRST6HoFNxcgxL3CcAFzp1HEu%2BcM7agVx6pdK7OyPLDB1DFjCz%2FfRxJfOuUVv3KhtF5pkzi0I9KqP4UqjtFmu8hG3hQxR549iWU%2BJOsPlxHEk%2FOO22gxP4r9ajebvFGZ4VzGa3Uo45caYe8tRKGUSNst8JOFEWLASk1hYqm0HII6jzk80d5yCMPeeohFvsVHgRByxec%2Bu0O5zXRkqwp%2FIC2ooAGfrONnM%2FfYYgsHYLrIbi9vpuKzWyr15hkNpfbecJdYxTczC%2BnOqz7Hb%2Fdaj8Ow3owCnYeWRaOydwxCn94RIWtBbkzJ8PWKERqr2JLfT0j3pMvwOa%2Fw22WcGIZLpsR7%2F0v0BMlCklQOIKCEhSKoMgIil65LbQLXbkjtMtZcLiHh3utHJusO6LbJuvKhIDaIawoJyr91F0Dz46NB5H7eGwiJ0bpAXl2%2Fuk8890DbMn9it9pNztCSBY027U2DVhI%2FcivBw1R85ui5cOpEsotLQY9UDNy8onXkaoZeXkjBKN7cHoPXD0Pmr8EWpSgmyUGyW%2BMqniTahrTpJDMqUxWmTZdl5qsyk0MYUqk2TKyK95IH5AXF%2Bdpw2pIfu%2Fkt4N%2Fztw6%2Fhm4LZHaEp%2BouwRdfX180RRkctEUjtw%2Bn2YqVgM6P2sbGc3ksZ%2FelVcKY8XZ027441t8LszLmx9Il63TRKik68iNU0oIadeM5ZL8etZ9KNmF3G2eym2Sp%2BsX3l47G6dWOqdMMgVV9%2Fkv4GpGntm7uviJqjc%2Bh7JT2LxEnN8jhwvK7IGnV%2BHSo%2FTOEFh91MNSD0Vejm3IjkitCLQ8wpSVcI9hdlSPLZ27qSpH7jq6dgk0u4YkLtGzJXq6BNXD%2Bb0yzlJ77%2BRftcUC00tjpu3ShGmrv1kMeUY2vr8Np%2FYrNV%2B0mIxki8l6ox5JLlijwXwecVYT7TZH5mbdS0%2Bv%2FRsAAP%2F%2FpG0e%2BB4FAAA%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1clusterposture.com/impr.gif?sid=H4sIAAAAAAAC%2F1RUz4scRRit3iyICKISvYg4Bw8q7mx3z29zCMa4IbgmMWvQi4T61bPlVne1Vd3TkxE0GJAcR9GLp543s7tqQjBnMcpswENAyHjagwv%2BDYGcZSaLGwua%2Bt5734PXX1fXV6P8gNSQ0%2F3T75mB0pquNqp%2B5dWPguBEZV0leb%2FSbzcvN%2BsnKrb3ZqdZ9V%2BrnJF8y6yGfuD7gR9U1pSVkemvzkWo9GYnqHb8aj2sBo06%2Bvb%2F2OXH4KgH0Tsgz0GJ2fJd7zgUnyKJfz4t3VZm0jfeiXNNM2PRE7uXkq3EFAniozKyHqJk97Abxt1fuwOTbC%2FiwvT%2Ba2RqRrw%2F7oAlu4chwXqTRU6mIRMw8RSK3hRST6HoFNxcgxL3CcAFzp1HEu%2BcM7agVx6pdK7OyPLDB1DFjCz%2FfRxJfOuUVv3KhtF5pkzi0I9KqP4UqjtFmu8hG3hQxR549iWU%2BJOsPlxHEk%2FOO22gxP4r9ajebvFGZ4VzGa3Uo45caYe8tRKGUSNst8JOFEWLASk1hYqm0HII6jzk80d5yCMPeeohFvsVHgRByxec%2Bu0O5zXRkqwp%2FIC2ooAGfrONnM%2FfYYgsHYLrIbi9vpuKzWyr15hkNpfbecJdYxTczC%2BnOqz7Hb%2Fdaj8Ow3owCnYeWRaOydwxCn94RIWtBbkzJ8PWKERqr2JLfT0j3pMvwOa%2Fw22WcGIZLpsR7%2F0v0BMlCklQOIKCEhSKoMgIil65LbQLXbkjtMtZcLiHh3utHJusO6LbJuvKhIDaIawoJyr91F0Dz46NB5H7eGwiJ0bpAXl2%2Fuk8890DbMn9it9pNztCSBY027U2DVhI%2FcivBw1R85ui5cOpEsotLQY9UDNy8onXkaoZeXkjBKN7cHoPXD0Pmr8EWpSgmyUGyW%2BMqniTahrTpJDMqUxWmTZdl5qsyk0MYUqk2TKyK95IH5AXF%2Bdpw2pIfu%2Fkt4N%2Fztw6%2Fhm4LZHaEp%2BouwRdfX180RRkctEUjtw%2Bn2YqVgM6P2sbGc3ksZ%2FelVcKY8XZ027441t8LszLmx9Il63TRKik68iNU0oIadeM5ZL8etZ9KNmF3G2eym2Sp%2BsX3l47G6dWOqdMMgVV9%2Fkv4GpGntm7uviJqjc%2Bh7JT2LxEnN8jhwvK7IGnV%2BHSo%2FTOEFh91MNSD0Vejm3IjkitCLQ8wpSVcI9hdlSPLZ27qSpH7jq6dgk0u4YkLtGzJXq6BNXD%2Bb0yzlJ77%2BRftcUC00tjpu3ShGmrv1kMeUY2vr8Np%2FYrNV%2B0mIxki8l6ox5JLlijwXwecVYT7TZH5mbdS0%2Bv%2FRsAAP%2F%2FpG0e%2BB4FAAA%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RUz4scRRit3iyICKISvYg4Bw8q7mx3z29zCMa4IbgmMWvQi4T61bPlVne1Vd3TkxE0GJAcR9GLp543s7tqQjBnMcpswENAyHjagwv%2BDYGcZSaLGwua%2Bt5734PXX1fXV6P8gNSQ0%2F3T75mB0pquNqp%2B5dWPguBEZV0leb%2FSbzcvN%2BsnKrb3ZqdZ9V%2BrnJF8y6yGfuD7gR9U1pSVkemvzkWo9GYnqHb8aj2sBo06%2Bvb%2F2OXH4KgH0Tsgz0GJ2fJd7zgUnyKJfz4t3VZm0jfeiXNNM2PRE7uXkq3EFAniozKyHqJk97Abxt1fuwOTbC%2FiwvT%2Ba2RqRrw%2F7oAlu4chwXqTRU6mIRMw8RSK3hRST6HoFNxcgxL3CcAFzp1HEu%2BcM7agVx6pdK7OyPLDB1DFjCz%2FfRxJfOuUVv3KhtF5pkzi0I9KqP4UqjtFmu8hG3hQxR549iWU%2BJOsPlxHEk%2FOO22gxP4r9ajebvFGZ4VzGa3Uo45caYe8tRKGUSNst8JOFEWLASk1hYqm0HII6jzk80d5yCMPeeohFvsVHgRByxec%2Bu0O5zXRkqwp%2FIC2ooAGfrONnM%2FfYYgsHYLrIbi9vpuKzWyr15hkNpfbecJdYxTczC%2BnOqz7Hb%2Fdaj8Ow3owCnYeWRaOydwxCn94RIWtBbkzJ8PWKERqr2JLfT0j3pMvwOa%2Fw22WcGIZLpsR7%2F0v0BMlCklQOIKCEhSKoMgIil65LbQLXbkjtMtZcLiHh3utHJusO6LbJuvKhIDaIawoJyr91F0Dz46NB5H7eGwiJ0bpAXl2%2Fuk8890DbMn9it9pNztCSBY027U2DVhI%2FcivBw1R85ui5cOpEsotLQY9UDNy8onXkaoZeXkjBKN7cHoPXD0Pmr8EWpSgmyUGyW%2BMqniTahrTpJDMqUxWmTZdl5qsyk0MYUqk2TKyK95IH5AXF%2Bdpw2pIfu%2Fkt4N%2Fztw6%2Fhm4LZHaEp%2BouwRdfX180RRkctEUjtw%2Bn2YqVgM6P2sbGc3ksZ%2FelVcKY8XZ027441t8LszLmx9Il63TRKik68iNU0oIadeM5ZL8etZ9KNmF3G2eym2Sp%2BsX3l47G6dWOqdMMgVV9%2Fkv4GpGntm7uviJqjc%2Bh7JT2LxEnN8jhwvK7IGnV%2BHSo%2FTOEFh91MNSD0Vejm3IjkitCLQ8wpSVcI9hdlSPLZ27qSpH7jq6dgk0u4YkLtGzJXq6BNXD%2Bb0yzlJ77%2BRftcUC00tjpu3ShGmrv1kMeUY2vr8Np%2FYrNV%2B0mIxki8l6ox5JLlijwXwecVYT7TZH5mbdS0%2Bv%2FRsAAP%2F%2FpG0e%2BB4FAAA%3D HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:04 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
X-Request-ID: cad0e6fa4efd5cbc4d766923800a20c2
Cache-Control: no-cache, max-age=0, private, no-cache
Pragma: no-cache
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| clusterposture.com/pixel/sbs?c=1 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1clusterposture.com/pixel/sbs?c=1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:04 GMT
Content-Length: 0
Connection: keep-alive
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.show-sb.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html | 172.67.170.115 | 200 OK | 1.2 kB |
URL GET HTTP/2cdn.show-sb.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html IP172.67.170.115:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectshow-sb.com FingerprintDE:97:01:25:F3:91:37:6C:5B:CA:2B:55:01:2E:C7:F8:D9:16:D8:DC ValidityFri, 18 Oct 2024 17:26:42 GMT - Thu, 16 Jan 2025 17:26:41 GMT
File typeHTML document, ASCII text, with very long lines (1251), with no line terminators Hash0c7ef29f3f978be103c93eae3c8d9df2 e334dfc2fed21f89dd67aa40505bbcbec1d047ec 9bd5468d6381f08d4dccf53f3888c98026498fe5addc46c9f57f930e6dc210aa
GET /sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html HTTP/1.1
Host: cdn.show-sb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: text/html
last-modified: Fri, 30 Sep 2022 09:26:48 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pTboReqiUuLW2rMcQlsJ0faSuN0yqiBtJpoBkP6u6U%2FEXpRUT9OZ%2FokwLVJb%2BcNTbcqjK5FClRooZ51E8fERWMzmd5oJPRlaZuuSYPxUsvGgsZzxWCFr8D0lwm26NgQGFjA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ee990d9db3cb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=574&min_rtt=462&rtt_var=239&sent=8&recv=10&lost=0&retrans=0&sent_bytes=3200&recv_bytes=1141&delivery_rate=8517647&cwnd=254&unsent_bytes=0&cid=bd919105cba2d02f&ts=465&x=0"
X-Firefox-Spdy: h2
|
|
| draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__ | 216.58.207.233 | 200 OK | 35 kB |
URL GET HTTP/2draft.blogger.com/followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__ IP216.58.207.233:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subject*.blogger.com Fingerprint96:A7:F3:A2:AD:E2:28:05:2E:91:57:8D:B3:C4:24:F0:9D:2B:13:08 ValidityMon, 21 Oct 2024 08:36:43 GMT - Mon, 13 Jan 2025 08:36:42 GMT
File typeHTML document, ASCII text, with very long lines (15435) Hash14571293018124c74e511a90ff54aecc 9738268d761d769c542ee14549f0ef27cb7c9512 0f3aca24c9a33bcdfe85af53f869326bfaf5c4a906b1ee6c354ec1485cc2b1d0
GET /followers/frame/6504556940247630340?colors=Cgt0cmFuc3BhcmVudBILdHJhbnNwYXJlbnQaByM3NTc1NzUiByMyMTk2ZjMqByNmNGY0ZjQyByMwMDAwMDA6ByM3NTc1NzVCByMyMTk2ZjNKByMwMDAwMDBSByNGRkZGRkZaC3RyYW5zcGFyZW50&pageSize=21&hl=in&origin=https://baimhalamanwebsite.blogspot.com&usegapi=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.6zM9SN8ON8Q.O%2Fam%3DAAAg%2Fd%3D1%2Frs%3DAHpOoo9LiInNUyZ6A99oK9HdmPXGee7Zyg%2Fm%3D__features__ HTTP/1.1
Host: draft.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-ua-compatible: IE=edge
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 08 Dec 2024 03:11:00 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-Lp9cCm9ryNNdv8zj_TbpVw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/BloggerFollowersUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com https://support.google.com/inapp/ https://www.google.com/tools/feedback/ https://www.gstatic.com/inproduct_help/ https://www.gstatic.com/support/content/ https://www.googleapis.com/appsmarket/v2/installedApps/;report-uri /_/BloggerFollowersUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/BloggerFollowersUi/cspreport
cross-origin-resource-policy: same-site
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
reporting-endpoints: default="/_/BloggerFollowersUi/web-reports?context=eJzj6mHU4pJi8NSQYqh138lUfmUn0x2NXUyvgDiydBdTOhA7vbrJJNN7i-nxlFtMz9ufMX0DYomvL5lkgDhdbQZrLhA7pc9gdQPi1pvnWDuB2GjteVYzILa9dZ416d951jQgNlS4xGoKxKo9l1g1gdi05zKrCxAXSVxhLQPi_pSrrELcHEfmXNnFJnBgwm0PJaWk_ML4pJz89PTUotLM4tSistSieCMDIxNDIwNTPQOD-AIDACPgS9k"
content-encoding: br
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=519=2-Dl_y825AfKqulB6AzuM-65ZVtel12axyIyvJonBRgOo8a9EoXAhlmXAXgPjnyNMmWXW9ALvoAGhy5IPN8V96VxdqW26NaInwcXKYVNCPb6wXkUnosh9-IE3YoaPc5Czwtv3OaHXher4-F_qAs02Cw60p-6kVX18QKDCKTDlTFNBE1zQSUY23H1aIA2kisoK9U; expires=Mon, 09-Jun-2025 03:11:00 GMT; path=/; domain=.blogger.com; Secure; HttpOnly
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=564 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=564 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fjs%2Fscript.js&l=444&fd=564 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Length: 0
Connection: keep-alive
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7578&fd=512 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1clusterposture.com/pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7578&fd=512 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerLet's Encrypt Subjectclusterposture.com Fingerprint4C:B5:C5:B8:D3:18:E6:F3:7F:BF:1F:F6:C8:12:72:93:6A:31:82:43 ValidityMon, 14 Oct 2024 03:37:53 GMT - Sun, 12 Jan 2025 03:37:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.46.6377&tmpl=482&u=https%3A%2F%2Fcdn.creative-stat1.com%2Fsb%2Fssp%2Futility%2Fsocial-media%2Finstagram%2Fnew%2F4%2Fcss%2Fstyle.css&l=7578&fd=512 HTTP/1.1
Host: clusterposture.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Cookie: u_pl24090878=1; ain=eyJhbGciOiJIUzI1NiJ9.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.5uvduG_cCzTkHw2nmvKo-c-etQ5TssGUIrDanAoV5Ec; u_pl24090241=1; uid_id2=4f487c59-ccef-4f9e-82c7-22f528729fff:1:1; pdhtkv=true; uncs=3; pdhtkv27=true; uncs27=2; pdhtkv5=true; uncs5=1; u_pl24090099=1; pdhtkv29=true; uncs29=1; slec09869ddeb16838a1b2a0f0415d306d70=[5468780,5479089]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 08 Dec 2024 03:11:03 GMT
Content-Length: 0
Connection: keep-alive
Host: clusterposture.com
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js | 104.21.13.187 | 200 OK | 444 B |
URL GET HTTP/2cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js IP104.21.13.187:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectcreative-stat1.com Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36 ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT
File typeASCII text, with very long lines (458), with no line terminators Hash982ab6e275f01f07609f7a83b9ded288 00cae17857fd26867610c5287a75c107ab8a150f 2f60a6c44dff7939447126884982a613420b55459abf4ddc27144c2d09fe992c
GET /sb/ssp/utility/social-media/instagram/new/4/js/script.js HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:43 GMT
etag: W/"65aa84ff-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=204ABQzY2HTipn0w4n0K%2BZjsJ7VYt1AX0%2FdnfY%2BngzQ5qUb3bp7J7u96rPHb0tvfR%2FrhGKZsPjPXEIAbcbfKY5ggxyxAr7MqIySj2kfSGnKlgKdbtyw6YZIjP0Ybku0Ni%2B8JN%2BGbMl4Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee990dd599556bb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=825&min_rtt=444&rtt_var=572&sent=23&recv=17&lost=0&retrans=0&sent_bytes=12423&recv_bytes=1495&delivery_rate=14266009&cwnd=257&unsent_bytes=0&cid=1712b3738e2236d3&ts=530&x=0"
X-Firefox-Spdy: h2
|
|
| cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css | 104.21.13.187 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-stat1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css IP104.21.13.187:443
Requested byhttps://baimhalamanwebsite.blogspot.com/?m=1 CertificateIssuerGoogle Trust Services Subjectcreative-stat1.com Fingerprint18:F6:86:93:3A:D8:DA:68:65:4C:2B:F2:EF:96:B3:CC:B7:E9:56:36 ValidityFri, 18 Oct 2024 15:49:17 GMT - Thu, 16 Jan 2025 15:49:16 GMT
Hash3d4123dbfb33d27a5cfdfcfa91df6783 e7d0eeeec54b848f0bc3da8685fa3bc88429d660 cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887
GET /sb/ssp/utility/social-media/instagram/new/4/css/animate.css HTTP/1.1
Host: cdn.creative-stat1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://baimhalamanwebsite.blogspot.com
DNT: 1
Connection: keep-alive
Referer: https://baimhalamanwebsite.blogspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 08 Dec 2024 03:11:03 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:43 GMT
etag: W/"65aa84ff-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qRTaat4T6loOA9NkeCYRWRyRYMTP%2FixSmsL%2Fow7Hs7C5izPMxCB4u5%2FQN7muJu4A25nC%2BHUFlTUjlXISsdO2s8eB8sCIVkAy4mVTmwQO3nv7j8aYMFSYGJKaaHRwfrEHfXZzDHabFVQ4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ee990dd498f56bb-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=902&min_rtt=444&rtt_var=779&sent=17&recv=15&lost=0&retrans=0&sent_bytes=6988&recv_bytes=1495&delivery_rate=9621262&cwnd=257&unsent_bytes=0&cid=1712b3738e2236d3&ts=527&x=0"
X-Firefox-Spdy: h2
|
|
0.0.0.0