downloadx.getuploader.com/g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe
104.21.56.247301 Moved Permanently 0 B URL HTTP/1.1 downloadx.getuploader.com/g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe
IP 104.21.56.247:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe HTTP/1.1
Host: downloadx.getuploader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 20 Mar 2023 11:10:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 20 Mar 2023 12:10:00 GMT
Location: https://downloadx.getuploader.com/g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aoeDZQIxfhx7Tblu5KeMLtLPpwKbwSvnVceyYjnKphoLf3713hYDGg%2FLwHMG4mk7O451yWmRvLA73u358xPTZXiXo9aONsCaRgyZqEBZFSk7yhNFxg%2FjQtqw6E3od6hMMcCKw46snZM2QAHn"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aad8192cb041c06-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e304a3fc0c2f01af0e94fcefe0ca40
833969e75e5e13e823c8d97ee59a9821eb157ee3
c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7"
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13290
Expires: Mon, 20 Mar 2023 14:51:30 GMT
Date: Mon, 20 Mar 2023 11:10:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2221
Expires: Mon, 20 Mar 2023 11:47:01 GMT
Date: Mon, 20 Mar 2023 11:10:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5285a032a285729d3e4a546310ed052d
d370c14bbc2d168cc3703bcb6b94ea0ece26e69d
a811aac1eb89de0666a7de8d3eda1dc3affa7ce5353219211a1beee1211536b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A811AAC1EB89DE0666A7DE8D3EDA1DC3AFFA7CE5353219211A1BEEE1211536B5"
Last-Modified: Mon, 20 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7829
Expires: Mon, 20 Mar 2023 13:20:29 GMT
Date: Mon, 20 Mar 2023 11:10:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 10:14:54 GMT
content-type: application/json
age: 3306
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: WSlmyha01UGFWDpwqak/qsvZNpf95RqL88zJmcEIt4bGT8N62rIDIe+OXL0k8ovOPmrHUU0T1Mo=
x-amz-request-id: 2QRJ0H5VKWSSJXR6
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 10:52:44 GMT
age: 1036
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 10:17:21 GMT
age: 3159
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10720
Expires: Mon, 20 Mar 2023 14:08:41 GMT
Date: Mon, 20 Mar 2023 11:10:01 GMT
Connection: keep-alive
push.services.mozilla.com/
54.191.242.233101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.242.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4cQYVXnJv8utIOhsbYhw5A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: s4Qe8DnqFbgWsnX0cLb9eK5wU0Y=
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 358d6bc1dc9848b4a9aee61316086fea
fb76e89028bdfc4d7034fd6c757ade5d1289928d
fa8fc0ab65536b21f6c9c7af4c6b8e6525f9f28da5d98af1675a46f8c3461470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3443
Cache-Control: max-age=110574
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Etag: "64173e85-1d7"
Expires: Tue, 21 Mar 2023 17:52:56 GMT
Last-Modified: Sun, 19 Mar 2023 16:55:33 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 358d6bc1dc9848b4a9aee61316086fea
fb76e89028bdfc4d7034fd6c757ade5d1289928d
fa8fc0ab65536b21f6c9c7af4c6b8e6525f9f28da5d98af1675a46f8c3461470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5000
Cache-Control: max-age=112131
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Etag: "64173e85-1d7"
Expires: Tue, 21 Mar 2023 18:18:53 GMT
Last-Modified: Sun, 19 Mar 2023 16:55:33 GMT
Server: ECAcc (ska/F77E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 358d6bc1dc9848b4a9aee61316086fea
fb76e89028bdfc4d7034fd6c757ade5d1289928d
fa8fc0ab65536b21f6c9c7af4c6b8e6525f9f28da5d98af1675a46f8c3461470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4035
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Last-Modified: Mon, 20 Mar 2023 10:02:47 GMT
Server: ECAcc (amb/6AD5)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 358d6bc1dc9848b4a9aee61316086fea
fb76e89028bdfc4d7034fd6c757ade5d1289928d
fa8fc0ab65536b21f6c9c7af4c6b8e6525f9f28da5d98af1675a46f8c3461470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: max-age=112291
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Etag: "64173e85-1d7"
Expires: Tue, 21 Mar 2023 18:21:33 GMT
Last-Modified: Sun, 19 Mar 2023 16:55:33 GMT
Server: ECAcc (amb/6B35)
X-Cache: HIT
Content-Length: 471
ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.2/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32047)
Hash 7a83c39ee44cf30d4e6d9a8d5c74276e
175f5e717c0fd96485d4371234d4c54355753c2b
ab02740b3bd7f47ad3a0ebc2571a67e1d00dfef34bb04e87adb08b0b61381d8e
GET /ajax/libs/jquery/1.11.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33495
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 07:53:27 GMT
expires: Fri, 15 Mar 2024 07:53:27 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 357395
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d2b91b87a3060a36d0002f6338924521
b216a0ae0e118f942207ae6c51a5309393fe79f4
835446923abce8bde27c74317de5388462f43f7cbf93293a15891a2a2554e406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 7b9696c5a484fe48a260ec0ac6f4c2dc
5fa72a6aae12370de4d88d0aa205f293e5a85c5b
578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MPTR4MP
142.250.74.136200 OK 48 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MPTR4MP
IP 142.250.74.136:0
File type ASCII text, with very long lines (2206)
Hash a3c74cbac695e573dfef639b34e5da95
b252368a09f4d97eacf506394629cbf78f203eae
41fb58565b4368ff336b66b9acc0fce5e060f2b6135c90cf78f9442ae1279dcb
GET /gtm.js?id=GTM-MPTR4MP HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 11:10:02 GMT
expires: Mon, 20 Mar 2023 11:10:02 GMT
cache-control: private, max-age=900
last-modified: Mon, 20 Mar 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47485
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 11:10:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 11:10:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 11:10:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2736
Expires: Mon, 20 Mar 2023 11:55:38 GMT
Date: Mon, 20 Mar 2023 11:10:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d2b91b87a3060a36d0002f6338924521
b216a0ae0e118f942207ae6c51a5309393fe79f4
835446923abce8bde27c74317de5388462f43f7cbf93293a15891a2a2554e406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe5aed2-e0b3-446a-8b49-6e9e2197196c.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe5aed2-e0b3-446a-8b49-6e9e2197196c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f2892f63d474ec0b9b0cd8ca15c46d3e
f71cfaf9607c4aa0906e28410842af2dd7092619
d4c7c4bc26c302782bcefb7035d6461942cc675752f19040aa774e11907df805
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe5aed2-e0b3-446a-8b49-6e9e2197196c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7816
x-amzn-requestid: e86f9c05-a39f-4930-b629-b15446eef173
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDUKGV2IAMF_8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f4d-1650737e08d7323f6fe11d59;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: HACqhUHXyt5GEvgzsXO-AhRuMkSFYpShU6LMTZvaFcLUud_zyayXJg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 9adef5b1c5fc9ca80d6f4f8d19e103a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:37:03 GMT
etag: "f71cfaf9607c4aa0906e28410842af2dd7092619"
content-type: image/jpeg
age: 48779
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: xfkObFQbeYQQjIJ4FWQ7xKbH5FPxBQ1vkTDCwWCM6IcAAu8H31BNhQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 07:04:48 GMT
age: 14714
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dd89721d1aeaf671e76434c7d8a4ad7
a3dedec80d68e8f0326548d03b0e594ffc87ecd1
ff593609540ed01673c58483ce57a40cc712000d32427ccf2486fd0035728448
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6839
x-amzn-requestid: c478a5c6-cb9b-4324-be41-b79c32f99570
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDU6GKyoAMF6uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f52-180dc15d2627e08d3182a761;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: QBgnZBxWku97O-CIkgmOTJe5g2DCZOozVhHj_0ViEP6w7hDeXPhmeg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:14:42 GMT
age: 46520
etag: "a3dedec80d68e8f0326548d03b0e594ffc87ecd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a940b362660fdee25faaa51e08c439b
85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c
18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8195
x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDFESEDGoAMFQ8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: hZeMhs-Z5fNn0pvRUSkNcGau_K6EG9EQtDktbLUth0uEveafUgCxeQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:14:44 GMT
age: 46518
etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 302595cc68fe8cf12121d0f652b3194d
e5532a3fed552246e8a63ea2ba75e174273a7b9f
6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7695
x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDETIHf8oAMFxEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: 388_JExXl_vwNTUh_69QfjoGz-cNeQwwrp6kpAP1Hhv3VvtgeeXbrw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:55:31 GMT
age: 47671
etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1533684819dcbf9e77684c19eb86465
489f8f036efd23ce36085af127af7d6c794fe00b
9154a471013bd0972fad93ea4eeaf4b23f66dd1534e0d9cc302263aca0f94bd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12424
x-amzn-requestid: 64a89fbe-4ac0-4059-a481-37c30ae36928
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B8eOuEG2oAMF1Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6414dd91-0492160f3e8196a23fc53eda;Sampled=0
x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: tx--67yg-v6sA1zslsl2iUXzLbdnWhU-cMqTDpxldZg-qog8-urKcA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 12:29:11 GMT
etag: "489f8f036efd23ce36085af127af7d6c794fe00b"
content-type: image/jpeg
age: 81651
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn-fluct.sh.adingo.jp/f.js?G=1000013128
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000013128
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000013128 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:02 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-fluct.sh.adingo.jp/f.js?G=1000023489
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000023489
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000023489 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:02 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-fluct.sh.adingo.jp/f.js?G=1000013129
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000013129
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000013129 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:02 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-fluct.sh.adingo.jp/f.js?G=1000023491
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000023491
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000023491 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:02 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn-fluct.sh.adingo.jp/f.js?G=1000013126
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000013126
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000013126 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:02 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 358d6bc1dc9848b4a9aee61316086fea
fb76e89028bdfc4d7034fd6c757ade5d1289928d
fa8fc0ab65536b21f6c9c7af4c6b8e6525f9f28da5d98af1675a46f8c3461470
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5161
Cache-Control: max-age=112291
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:02 GMT
Etag: "64173e85-1d7"
Expires: Tue, 21 Mar 2023 18:21:33 GMT
Last-Modified: Sun, 19 Mar 2023 16:55:33 GMT
Server: ECAcc (amb/6B35)
X-Cache: HIT
Content-Length: 471
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 9a7c925a00918fab259b7eabab8c9bb8
a0ce0ff5db91c4f8202ac91a071f70cfb0117388
c1b5a1eff2a0808407820642371696bedc8e4c8c9df884b48f2bee551b91d6c7
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 20 Mar 2023 11:10:03 GMT
Etag: "6414a3eb-1d7"
Last-Modified: Mon, 20 Mar 2023 10:29:43 GMT
Server: ECAcc (dcb/737C)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Vs6WMBQhd7nQyods_OJh7snivgPbc7lqq1iGfipsJ4baIK3D4zCCHg==
Age: 2420
cdn-guile.akamaized.net/interstitial/ad/dc798f0fbdadcc7642eac4b198b698440e15753a/provider.js
184.51.252.150200 OK 924 B URL HTTP/1.1 cdn-guile.akamaized.net/interstitial/ad/dc798f0fbdadcc7642eac4b198b698440e15753a/provider.js
IP 184.51.252.150:0
ASN #20940 Akamai International B.V.
Hash 5b6e8a19f73a2ebacb4c5df4316f7e53
5667bd40a20a958352ac6f2d2b48b9dd8763782c
0a709db88fc3367694ad5e43cba5ab5e30b13e5e494bb53479f05313ca9e2dd8
GET /interstitial/ad/dc798f0fbdadcc7642eac4b198b698440e15753a/provider.js HTTP/1.1
Host: cdn-guile.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: IvoNhZMoreI0fEIsacm62wWD+Ac+7IGhstFvrPKKbJccfRNBNxtYoSGhkuIW2RxjVonErxh/SN4=
x-amz-request-id: Q2TRW07PFW9CS31G
Last-Modified: Tue, 25 Jan 2022 08:52:42 GMT
ETag: "5b6e8a19f73a2ebacb4c5df4316f7e53"
Accept-Ranges: bytes
Content-Type: text/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 924
Expires: Mon, 20 Mar 2023 11:10:03 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Mon, 20 Mar 2023 11:10:03 GMT
Connection: keep-alive
Access-Control-Expose-Headers: Server,Range,Content-Range
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Origin,Range,Cache-Control
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
cdn-guile.akamaized.net/interstitial/public/js/itsads/itsads.min.js.gz
184.51.252.150200 OK 19 kB URL HTTP/1.1 cdn-guile.akamaized.net/interstitial/public/js/itsads/itsads.min.js.gz
IP 184.51.252.150:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (60650)
Hash 390b900ffcb1939a586ac66788c61576
b3099f4893be4cb8398e682efebe2c17231fb50c
332acf5df798ced705f3bc6bc24059808c9db68f01711e84cfb890e40ca39f15
GET /interstitial/public/js/itsads/itsads.min.js.gz HTTP/1.1
Host: cdn-guile.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: fGRdC/LHqpjvaTQXAr1RT4AsDPLzbHYyniJbsI0gEjBWZ2QqYOGuuCItWN1ddFo5BA+uH/vFNcQ=
x-amz-request-id: PWBVT05MCATGG1QJ
Last-Modified: Tue, 17 May 2022 07:06:44 GMT
ETag: "390b900ffcb1939a586ac66788c61576"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 19123
Expires: Mon, 20 Mar 2023 11:10:03 GMT
Cache-Control: max-age=0, no-cache
Pragma: no-cache
Date: Mon, 20 Mar 2023 11:10:03 GMT
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Expose-Headers: Server,Range,Content-Range
Access-Control-Max-Age: 86400
Access-Control-Allow-Credentials: false
Access-Control-Allow-Headers: Origin,Range,Cache-Control
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
cdn-fluct.sh.adingo.jp/f.js?G=1000013127
130.211.14.194200 OK 2.7 kB URL HTTP/2 cdn-fluct.sh.adingo.jp/f.js?G=1000013127
IP 130.211.14.194:0
File type HTML document, ASCII text, with very long lines (2746)
Hash cf5ec206a0bc2705586f1c0fb0bd458b
8872c9a617edeac4015db57b131a49968f8c4540
94f36b60ffa01cf673284849dc3558bc77f69ade38897f6b9d88d831e803bf7e
GET /f.js?G=1000013127 HTTP/1.1
Host: cdn-fluct.sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 11:10:03 GMT
content-type: application/javascript; charset=utf-8
content-length: 2747
last-modified: Mon, 12 Apr 2021 01:23:17 GMT
etag: "cf5ec206a0bc2705586f1c0fb0bd458b"
expires: Mon, 20 Mar 2023 12:10:03 GMT
cache-control: max-age=3600
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sh.adingo.jp/?G=1000023491&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=71087625556136&guid=ON
54.95.95.140200 OK 24 kB URL HTTP/2 sh.adingo.jp/?G=1000023491&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=71087625556136&guid=ON
IP 54.95.95.140:0
Hash 24a904ab9e37cce1b56c31fa4819bf2f
f7be129354b07ba601d4125b999d0cdf5a4038e5
6f75b2ea5aa0988bde6542910f0b6f23498cc81ddee34dcc3a7fcfeb938beb4b
GET /?G=1000023491&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=71087625556136&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:04 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=e962e289efba371a15f0bacd2f83b041; expires=Tue, 19-Mar-2024 11:10:04 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:04 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash bf242903ee4f445c6a7ad323320079fa
8ca77f1195abbad4bc4adc575d2f57389a4a78a1
e920123c2b678a1b9e588e18f212b8212cea3ad2a2cd508a56e43356bd5e8b43
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128967
Date: Mon, 20 Mar 2023 11:10:05 GMT
Etag: "64178633-1d7"
Expires: Tue, 21 Mar 2023 22:59:32 GMT
Last-Modified: Sun, 19 Mar 2023 22:01:23 GMT
Server: ECAcc (dcb/7EDD)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zxMzNv2T356V-C8EqnXjluOOEfTzqW2cqE6iPDl6b0VJxtmjAQzN5Q==
Age: 3489
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 21e3cd1fb22c46785892bcf3afde65d0
36545e8fc16f1f61032dd706bc1191662f0c762f
25bfcea8f69a6fd720e76dd63d921e8db143da18d00bec44a56cdb490d77fbac
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=110790
Date: Mon, 20 Mar 2023 11:10:05 GMT
Etag: "6417332e-1d7"
Expires: Tue, 21 Mar 2023 17:56:35 GMT
Last-Modified: Sun, 19 Mar 2023 16:07:10 GMT
Server: ECAcc (nya/79F3)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: WR0NZ_vX-Cyge2GphqDI-ljZK2gkD2NVLhm1Pg2r6XOqsnuB4rQQww==
Age: 6565
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 38aba1eca265756a08c6fbd89c679356
ac5778c7e3aab8033688a8c26c576e36aa2a4333
ca5a905fe8a53a6eefa53d8f1364897bc420398de786c0c5faef4cd88fecc5a7
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163811
Date: Mon, 20 Mar 2023 11:10:05 GMT
Etag: "64180ba0-1d7"
Expires: Wed, 22 Mar 2023 08:40:16 GMT
Last-Modified: Mon, 20 Mar 2023 07:30:40 GMT
Server: ECAcc (dcb/7EFC)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: m5i3efgwI7aaD2Yr4_HgRRMeI9u2XumvoUZMK65FHmEiaXGFz-uGew==
Age: 4176
send-guile.sonicmoov.com/mc.php?type=imp&file=%2Fad%2Fsonicmoov%2Fdc798f0fbdadcc7642eac4b198b698440e15753a&cli=sonicmoov_dc798f0fbdadcc7642eac4b198b698440e15753a
35.74.24.228200 OK 43 B URL HTTP/1.1 send-guile.sonicmoov.com/mc.php?type=imp&file=%2Fad%2Fsonicmoov%2Fdc798f0fbdadcc7642eac4b198b698440e15753a&cli=sonicmoov_dc798f0fbdadcc7642eac4b198b698440e15753a
IP 35.74.24.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /mc.php?type=imp&file=%2Fad%2Fsonicmoov%2Fdc798f0fbdadcc7642eac4b198b698440e15753a&cli=sonicmoov_dc798f0fbdadcc7642eac4b198b698440e15753a HTTP/1.1
Host: send-guile.sonicmoov.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Cache-Control: no-cache
Content-Type: image/gif
Date: Mon, 20 Mar 2023 11:10:05 GMT
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Server: openresty
Content-Length: 43
Connection: keep-alive
sh.zucks.net/opt/native/api/v2?frameid=364849
52.69.222.35200 398 B URL HTTP/1.1 sh.zucks.net/opt/native/api/v2?frameid=364849
IP 52.69.222.35:0
File type JSON data\012- , ASCII text, with very long lines (449), with no line terminators
Hash 516d325e85923a7bd91789710826f17c
5e6a433a3c6e38c0cd1c85c65dfaa243f8498ffa
1c3df42b9e7befe97f2d81184f1f0ca9510fc04a20ea8f5b67a89fa0670e4354
GET /opt/native/api/v2?frameid=364849 HTTP/1.1
Host: sh.zucks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ux.getuploader.com
Cache-Control: no-cache, must-revalidate, no-cache="set-cookie"
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Mon, 20 Mar 2023 11:10:05 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 20 Mar 2023 11:10:05 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
pragma: no-cache
Set-Cookie: AWSELB=41A171131E9B8C939F7087DC96908658B57851A864DB5A9CADE4CC17E511E458A79EB0DF51A1F11CDBC719CC9340337AEBC1FD94654A31DCCDF2E2CE31C196D1311531A084;PATH=/;MAX-AGE=3600
AWSELBCORS=41A171131E9B8C939F7087DC96908658B57851A864DB5A9CADE4CC17E511E458A79EB0DF51A1F11CDBC719CC9340337AEBC1FD94654A31DCCDF2E2CE31C196D1311531A084;PATH=/;MAX-AGE=3600;SECURE;SAMESITE=None
vary: accept-encoding
X-Content-Type-Options: nosniff
transfer-encoding: chunked
Connection: keep-alive
sh.adingo.jp/?G=1000013127&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=59206330092697&guid=ON
54.95.95.140200 OK 5.1 kB URL HTTP/2 sh.adingo.jp/?G=1000013127&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=59206330092697&guid=ON
IP 54.95.95.140:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3158)
Hash 5f4dae85537837aa11468a28067d4e47
c2870741b3a43469230cf3fd7f14281a6e316f5b
eaff38b1477f781f644fee8db563bada24d9814e23cf02bbbe32eabdd2d5d9f9
GET /?G=1000013127&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=59206330092697&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:05 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=4ca8294255241469b29652c30f6ba875; expires=Tue, 19-Mar-2024 11:10:04 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:04 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2
sh.adingo.jp/?G=1000023489&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=82902078182391&guid=ON
54.95.95.140200 OK 3.2 kB URL HTTP/2 sh.adingo.jp/?G=1000023489&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=82902078182391&guid=ON
IP 54.95.95.140:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1286)
Hash 72bbced5e37b30a1c0e808eba4695115
4bb95a3088af5c29012bd9fdfc68a1bc7b7ce045
9a9c17805063f30263512ac15b7e1d5e0232ea858de03007d3d14d9192992913
GET /?G=1000023489&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=82902078182391&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:05 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=f2d76e5995d4040212f44ad8748ea7bc; expires=Tue, 19-Mar-2024 11:10:05 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:05 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash cbcd6c2d2bc35e3d46d2873f1711778e
a1905b597c4b780a2fd3ba5677645d535f9c33af
55e18762b82e47e04a93cd2b323187327240d21dd04a2599a70d862a3d0b057f
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 20 Mar 2023 11:10:06 GMT
Last-Modified: Mon, 20 Mar 2023 09:55:04 GMT
Server: ECAcc (nya/7970)
X-Cache: Miss from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 5V--iH8Jv5-8DA6LCX2o0LUoMmfQs0lvRxk6r6s9ejy0nieoe7l8OA==
Age: 4502
k.zucks.net/i/?k=ZGOK&p=jKQBHYbnbCPXnl2qrMtK0qH4QPJkiYi41-X1kxIckWmbSSCHOnwgZAhvtV8hfLIDg6eAM0Etv2R7sJcN6O1O4gKUrVvI-pndwzMl7ggMQ9mFoWdS0_JOUoodacg1THmavCY_YITQW591NijY3QmNhGcKx5gqRDM9zeYqewWEDHF7RN6gvjht2wh2u0IFkh0PW27SDfKe3voqqnaABb8d_EZqw8n7k0RhEs1ljUl85FLZ6uyv4VQK3qU12ndMZ4kgwanj6A7p8vMEHh3VaOFvIF5iiQrZWuFj8eqFF-x998NKzHdXQvIsj_sUNkU0RpoMW01PkzgBzcFRH1drXLpl5qZap6Z-jeOH&v=cIp4fq5DL_Y&l=517&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2
18.176.98.96200 OK 2 B URL HTTP/1.1 k.zucks.net/i/?k=ZGOK&p=jKQBHYbnbCPXnl2qrMtK0qH4QPJkiYi41-X1kxIckWmbSSCHOnwgZAhvtV8hfLIDg6eAM0Etv2R7sJcN6O1O4gKUrVvI-pndwzMl7ggMQ9mFoWdS0_JOUoodacg1THmavCY_YITQW591NijY3QmNhGcKx5gqRDM9zeYqewWEDHF7RN6gvjht2wh2u0IFkh0PW27SDfKe3voqqnaABb8d_EZqw8n7k0RhEs1ljUl85FLZ6uyv4VQK3qU12ndMZ4kgwanj6A7p8vMEHh3VaOFvIF5iiQrZWuFj8eqFF-x998NKzHdXQvIsj_sUNkU0RpoMW01PkzgBzcFRH1drXLpl5qZap6Z-jeOH&v=cIp4fq5DL_Y&l=517&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2
IP 18.176.98.96:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /i/?k=ZGOK&p=jKQBHYbnbCPXnl2qrMtK0qH4QPJkiYi41-X1kxIckWmbSSCHOnwgZAhvtV8hfLIDg6eAM0Etv2R7sJcN6O1O4gKUrVvI-pndwzMl7ggMQ9mFoWdS0_JOUoodacg1THmavCY_YITQW591NijY3QmNhGcKx5gqRDM9zeYqewWEDHF7RN6gvjht2wh2u0IFkh0PW27SDfKe3voqqnaABb8d_EZqw8n7k0RhEs1ljUl85FLZ6uyv4VQK3qU12ndMZ4kgwanj6A7p8vMEHh3VaOFvIF5iiQrZWuFj8eqFF-x998NKzHdXQvIsj_sUNkU0RpoMW01PkzgBzcFRH1drXLpl5qZap6Z-jeOH&v=cIp4fq5DL_Y&l=517&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2 HTTP/1.1
Host: k.zucks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://ux.getuploader.com
Cache-Control: no-cache, must-revalidate
Content-Type: application/json
Date: Mon, 20 Mar 2023 11:10:07 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 20 Mar 2023 11:10:07 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
pragma: no-cache
Server: nginx
Set-Cookie: ID=ab8bc60c984f443353b627e14d3c0d5b; expires=Tue, 19-Mar-2024 11:10:07 GMT; Max-Age=31536000; path=/; domain=.zucks.net; secure; SameSite=None
X-Content-Type-Options: nosniff
Content-Length: 2
Connection: keep-alive
k.zucks.net/i/?k=ZGOK&p=iNdwApqSmiOxBAWDU_sNOgAbV-nZoZG0OCBEV0YeGDq6JIyQRoBdzRU82XZ3wMnCz2VC6y_o9ZJe0zgzUzLAN_mi6hIHZJb-LLklYUYCwBp-vkAsMIg1FgOWmIHiiOdP6j9GM3HiNqYrLVclluNVIX9IoKRwQvAEXxPX82JrR4us_kq1x9TjMrp1ELCk9euWz1X5p4eYqBWOlkpsynSCS5sZPiJpdAPfMU6XDJQUe_48cOuKAV3BTYSnY1XVbiuc-934AR0yfP774z01oBGGP_Vy5RDH88TgnLftjrTvPa6Gx8_tqm9cHKW8F9D7XRDcp0iAQ-1-WZXJYKRdE27vdryxfB-2tWEx&v=J0sfQJ4snRg&l=274&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2
18.176.98.96200 OK 2 B URL HTTP/1.1 k.zucks.net/i/?k=ZGOK&p=iNdwApqSmiOxBAWDU_sNOgAbV-nZoZG0OCBEV0YeGDq6JIyQRoBdzRU82XZ3wMnCz2VC6y_o9ZJe0zgzUzLAN_mi6hIHZJb-LLklYUYCwBp-vkAsMIg1FgOWmIHiiOdP6j9GM3HiNqYrLVclluNVIX9IoKRwQvAEXxPX82JrR4us_kq1x9TjMrp1ELCk9euWz1X5p4eYqBWOlkpsynSCS5sZPiJpdAPfMU6XDJQUe_48cOuKAV3BTYSnY1XVbiuc-934AR0yfP774z01oBGGP_Vy5RDH88TgnLftjrTvPa6Gx8_tqm9cHKW8F9D7XRDcp0iAQ-1-WZXJYKRdE27vdryxfB-2tWEx&v=J0sfQJ4snRg&l=274&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2
IP 18.176.98.96:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /i/?k=ZGOK&p=iNdwApqSmiOxBAWDU_sNOgAbV-nZoZG0OCBEV0YeGDq6JIyQRoBdzRU82XZ3wMnCz2VC6y_o9ZJe0zgzUzLAN_mi6hIHZJb-LLklYUYCwBp-vkAsMIg1FgOWmIHiiOdP6j9GM3HiNqYrLVclluNVIX9IoKRwQvAEXxPX82JrR4us_kq1x9TjMrp1ELCk9euWz1X5p4eYqBWOlkpsynSCS5sZPiJpdAPfMU6XDJQUe_48cOuKAV3BTYSnY1XVbiuc-934AR0yfP774z01oBGGP_Vy5RDH88TgnLftjrTvPa6Gx8_tqm9cHKW8F9D7XRDcp0iAQ-1-WZXJYKRdE27vdryxfB-2tWEx&v=J0sfQJ4snRg&l=274&loc=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2 HTTP/1.1
Host: k.zucks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://ux.getuploader.com
Cache-Control: no-cache, must-revalidate
Content-Type: application/json
Date: Mon, 20 Mar 2023 11:10:07 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 20 Mar 2023 11:10:07 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
pragma: no-cache
Server: nginx
Set-Cookie: ID=b329dacd275f510231023cfe0e4e560b; expires=Tue, 19-Mar-2024 11:10:07 GMT; Max-Age=31536000; path=/; domain=.zucks.net; secure; SameSite=None
X-Content-Type-Options: nosniff
Content-Length: 2
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 144b1ef119867455fe2e003f4e40e673
6b7a3c8a808bc885d656a362963dcbab3eed87d2
1e2e6e5fc6e7aa7b736a49ffc0afa9bf98890c2606040fd1738da86ef0cd4760
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1E2E6E5FC6E7AA7B736A49FFC0AFA9BF98890C2606040FD1738DA86EF0CD4760"
Last-Modified: Mon, 20 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7775
Expires: Mon, 20 Mar 2023 13:19:42 GMT
Date: Mon, 20 Mar 2023 11:10:07 GMT
Connection: keep-alive
omt.shinobi.jp/css/ninja_onetag.css?202104220043
202.228.215.62200 OK 27 kB URL HTTP/2 omt.shinobi.jp/css/ninja_onetag.css?202104220043
IP 202.228.215.62:0
ASN #4694 IDC Frontier Inc.
File type Unicode text, UTF-8 text, with very long lines (684), with overstriking
Hash 50d0c8c43133532c7912185b6482c55f
fcf019355abe887a1dc1056971111ff070fdfa6e
c0c4686d6ca7fd6f3d798711d11e1e106fb40487bec0a700d2f42d2c3d7a6eed
GET /css/ninja_onetag.css?202104220043 HTTP/1.1
Host: omt.shinobi.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Mon, 20 Mar 2023 11:10:08 GMT
content-type: text/css
content-length: 26609
accept-ranges: bytes
expires: Tue, 21 Mar 2023 11:10:08 GMT
etag: "304a1cd3:67f1:615179ac:0"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
216.58.211.3200 OK 4.2 kB URL HTTP/2 www.gstatic.com/_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css
IP 216.58.211.3:0
File type ASCII text, with very long lines (23228), with no line terminators
Hash 8f89ebd6757f0474347497a9545d3cc2
014d050331fcdbcff8cbf854b4c926286e0c104a
015111236a8db21de30b2af7d2d24221a9f358fe83137f4651707f4728043585
GET /_/translate_http/_/ss/k=translate_http.tr.vneFu3d_4ck.L.F4.O/d=0/rs=AN8SPfrNa1b9K5rCmaIpu9SqE3A5sBDBfg/m=el_main_css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 4205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 02:38:58 GMT
expires: Fri, 15 Mar 2024 02:38:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 12 Mar 2023 00:11:57 GMT
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
age: 376270
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 20 Mar 2023 09:53:25 GMT
expires: Mon, 20 Mar 2023 11:53:25 GMT
cache-control: public, max-age=7200
age: 4603
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widgets.outbrain.com/outbrain.js
88.221.17.67200 OK 72 kB URL HTTP/2 widgets.outbrain.com/outbrain.js
IP 88.221.17.67:0
File type ASCII text, with very long lines (1610)
Hash 7257fe4a843d6738e5b0fc49fe9912ef
4ce4b92391f7024bd98785397b5af7f5dd13d91f
63294fc762ac2fbf8e4c702a3f4777fd7f47283b76c6fc8394a5844f33edb567
GET /outbrain.js HTTP/1.1
Host: widgets.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 71675
x-traceid: dae67d9be5aef49941c4184ed94d3ae7
etag: "17-tKPEue0rBi+Vl4P+CAUI/Sbs6+s"
last-modified: Sun, 19 Mar 2023 08:24:49 GMT
cache-control: max-age=14500
content-encoding: gzip
vary: Accept-Encoding
date: Mon, 20 Mar 2023 11:10:08 GMT
edge-cache-tag: widget-cheetah
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.17iCMyjz7Iw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrG3-YmeWvQ9kTiUgbxQCyTQjyEOg/m=el_main
142.250.74.74200 OK 75 kB URL HTTP/2 translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.17iCMyjz7Iw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrG3-YmeWvQ9kTiUgbxQCyTQjyEOg/m=el_main
IP 142.250.74.74:0
File type ASCII text, with very long lines (1665)
Hash 7f74ec5e63195411cc0b6c52ab5f184c
19bbc2f6a588de2838ea52051dcc34216fffb6a1
e6726c2436f9d0cfc8b46d87d51f4e6f12aa59d5baffeeafc4d4c52fcf5f3f78
GET /_/translate_http/_/js/k=translate_http.tr.no.17iCMyjz7Iw.O/d=1/exm=el_conf/ed=1/rs=AN8SPfrG3-YmeWvQ9kTiUgbxQCyTQjyEOg/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 75113
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 10:31:14 GMT
expires: Fri, 15 Mar 2024 10:31:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 16 Mar 2023 04:40:30 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 347934
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.html?count=none&lang=en&url=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2%23TZ2eAdK.twitter_tweet_count_no_m&text=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp
93.184.220.66200 OK 20 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.html?count=none&lang=en&url=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2%23TZ2eAdK.twitter_tweet_count_no_m&text=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32037)
Hash c9e33d67ec2f4717fb5d65f0dd4b75a1
c2742ed141ef6b4f34714317760b75a9cb6e4798
8921eb1bed95fb3f0706056629065531632e947afc09bd58d82a08836df070e2
GET /widgets/tweet_button.html?count=none&lang=en&url=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2%23TZ2eAdK.twitter_tweet_count_no_m&text=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 291
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=utf-8
Date: Mon, 20 Mar 2023 11:10:08 GMT
Etag: "30e33f768d8f99a8698c07af48147217+gzip"
Last-Modified: Tue, 24 Jan 2023 21:42:10 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
x-amz-server-side-encryption: AES256
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 20518
www.google-analytics.com/j/collect?v=1&_v=j99&a=1690867297&t=pageview&_s=1&dl=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&ul=en-us&de=UTF-8&dt=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=697058525&gjid=1982385256&cid=1234859312.1679310609&tid=UA-796478-3&_gid=1783202812.1679310609&_r=1&_slc=1>m=45He33f0n81MPTR4MP&z=292321658
142.250.74.174200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1690867297&t=pageview&_s=1&dl=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&ul=en-us&de=UTF-8&dt=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=697058525&gjid=1982385256&cid=1234859312.1679310609&tid=UA-796478-3&_gid=1783202812.1679310609&_r=1&_slc=1>m=45He33f0n81MPTR4MP&z=292321658
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1690867297&t=pageview&_s=1&dl=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&ul=en-us&de=UTF-8&dt=KMSAuto%20Net.exe%20(KMSAuto%20Net.exe)%20%E3%83%80%E3%82%A6%E3%83%B3%E3%83%AD%E3%83%BC%E3%83%89%20%7C%20%E5%80%8B%E4%BA%BA%E7%94%A8%20%7C%20uploader.jp&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAACAAI~&jid=697058525&gjid=1982385256&cid=1234859312.1679310609&tid=UA-796478-3&_gid=1783202812.1679310609&_r=1&_slc=1>m=45He33f0n81MPTR4MP&z=292321658 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://ux.getuploader.com
date: Mon, 20 Mar 2023 11:10:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
88.221.17.67200 OK 43 B URL HTTP/2 widget-pixels.outbrain.com/widget/detect/px.gif?ch=1
IP 88.221.17.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /widget/detect/px.gif?ch=1 HTTP/1.1
Host: widget-pixels.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 43
content-type: image/gif
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3:1601475749.911431"
last-modified: Wed, 30 Sep 2020 14:22:29 GMT
server: AkamaiNetStorage
cache-control: max-age=2592000
expires: Wed, 19 Apr 2023 11:10:09 GMT
date: Mon, 20 Mar 2023 11:10:09 GMT
access-control-request-headers: X-OB-STG,X-OB-PRD
timing-allow-origin: *, *
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-796478-3&cid=1234859312.1679310609&jid=697058525&gjid=1982385256&_gid=1783202812.1679310609&_u=YEBAAEAAAAAAACAAI~&z=1538688896
108.177.14.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-796478-3&cid=1234859312.1679310609&jid=697058525&gjid=1982385256&_gid=1783202812.1679310609&_u=YEBAAEAAAAAAACAAI~&z=1538688896
IP 108.177.14.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-796478-3&cid=1234859312.1679310609&jid=697058525&gjid=1982385256&_gid=1783202812.1679310609&_u=YEBAAEAAAAAAACAAI~&z=1538688896 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://ux.getuploader.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 20 Mar 2023 11:10:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sh.zucks.net/opt/native/api/v2?frameid=397787
52.69.222.35200 879 B URL HTTP/1.1 sh.zucks.net/opt/native/api/v2?frameid=397787
IP 52.69.222.35:0
Hash 6cf3f33d6e799bacbce7df21974e4c70
612261103c3c3d9e6bbd4561d2c42c170ecb6da4
64ef4a3ca3b211f06b9cf896da8c72bba6e0506a1a28a1eb0236f30f3a94ba92
GET /opt/native/api/v2?frameid=397787 HTTP/1.1
Host: sh.zucks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Cookie: AWSELBCORS=41A171131E9B8C939F7087DC96908658B57851A864DB5A9CADE4CC17E511E458A79EB0DF51A1F11CDBC719CC9340337AEBC1FD94656882718A8B4A5FEFF597B0754C9516EF; ID=b329dacd275f510231023cfe0e4e560b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ux.getuploader.com
Cache-Control: no-cache, must-revalidate
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Mon, 20 Mar 2023 11:10:08 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 20 Mar 2023 11:10:09 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
pragma: no-cache
vary: accept-encoding
X-Content-Type-Options: nosniff
transfer-encoding: chunked
Connection: keep-alive
sh.zucks.net/opt/native/api/v2?frameid=397788
52.69.222.35200 401 B URL HTTP/1.1 sh.zucks.net/opt/native/api/v2?frameid=397788
IP 52.69.222.35:0
File type JSON data\012- , ASCII text, with very long lines (449), with no line terminators
Hash e1410b78ce2f186501a84735ef0cd88e
39ccf53d72b01945c50952e58cad70163be10a65
8a034f4b9d56ef554ad4d8518baeceaa965e9828677b591433bcedfb487a440a
GET /opt/native/api/v2?frameid=397788 HTTP/1.1
Host: sh.zucks.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ux.getuploader.com
Connection: keep-alive
Referer: https://ux.getuploader.com/
Cookie: AWSELBCORS=41A171131E9B8C939F7087DC96908658B57851A864DB5A9CADE4CC17E511E458A79EB0DF51A1F11CDBC719CC9340337AEBC1FD94656882718A8B4A5FEFF597B0754C9516EF; ID=b329dacd275f510231023cfe0e4e560b
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://ux.getuploader.com
Cache-Control: no-cache, must-revalidate
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Date: Mon, 20 Mar 2023 11:10:08 GMT
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Mon, 20 Mar 2023 11:10:09 GMT
P3P: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
pragma: no-cache
vary: accept-encoding
X-Content-Type-Options: nosniff
Content-Length: 401
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2e64fc6f9ae4228dd2fc48d61e1d8841
ae781abd01bae215d2ccc65fe308aaa4e3df6706
f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 11:10:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ux.getuploader.com/zund/download/2
172.67.157.57200 OK 0 B URL HTTP/2 ux.getuploader.com/zund/download/2
IP 172.67.157.57:0
GET /zund/download/2 HTTP/1.1
Host: ux.getuploader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: text/html; charset=UTF-8
vary: Host,Accept-Encoding
set-cookie: uploader=sm8ipeb0icvr9ddml2h0g9kp94; expires=Thu, 19-Mar-2048 17:10:02 GMT; path=/; domain=.getuploader.com; secure
p3p: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JoCyI3gaqRwsGg4mI8oqOk3vUY%2F15dz5ZWeYbwf5yWhibcYNjRAktV6I%2BQgdTl0MIeG71TWAXMODZekWRwkFe1JJIumLVvcoPyw4%2FsmMiGQUcuR2i3HEc%2FyxrgQ9G8tYJ037Uy8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7aad819c0cafb515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.2/js/bootstrap.min.js
188.114.98.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.2/js/bootstrap.min.js
IP 188.114.98.234:0
GET /bootstrap/3.3.2/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"046ba2b5f4cff7d2eaaa1af55caa9fd8"
last-modified: Mon, 25 Jan 2021 22:03:58 GMT
cdn-cachedat: 02/18/2022 14:59:30
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 860
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 3252692ca0d83c92dd061fd30811354c
cdn-cache: HIT
cf-cache-status: HIT
age: 14932169
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7aad81a0bcf31bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
j.zucks.net.zimg.jp/j?f=304649
54.230.111.90200 OK 0 B URL HTTP/2 j.zucks.net.zimg.jp/j?f=304649
IP 54.230.111.90:0
GET /j?f=304649 HTTP/1.1
Host: j.zucks.net.zimg.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
date: Mon, 20 Mar 2023 11:10:05 GMT
expires: Mon, 20 Mar 2023 11:15:06 GMT
last-modified: Mon, 20 Mar 2023 11:10:02 GMT
p3p: CP='NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA'
x-content-type-options: nosniff
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: frgMdY0xdesuXFi2YF2EDubPRXe5V4D9j8qXEAwp-omQ7yq3Cobv0Q==
X-Firefox-Spdy: h2
sh.adingo.jp/?G=1000013126&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=54318144199265&guid=ON
54.95.95.140200 OK 0 B URL HTTP/2 sh.adingo.jp/?G=1000013126&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=54318144199265&guid=ON
IP 54.95.95.140:0
GET /?G=1000013126&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=54318144199265&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:04 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=6172fdc72a770cebeb86b4e449583805; expires=Tue, 19-Mar-2024 11:10:04 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:04 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2
omt.shinobi.jp/tsumugi?location=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&source_key=ec1bc02c52f424a7fb57778dd76b5ee3&st=0&rd=0.9206486586449093
202.228.215.62200 OK 0 B URL HTTP/2 omt.shinobi.jp/tsumugi?location=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&source_key=ec1bc02c52f424a7fb57778dd76b5ee3&st=0&rd=0.9206486586449093
IP 202.228.215.62:0
ASN #4694 IDC Frontier Inc.
GET /tsumugi?location=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&source_key=ec1bc02c52f424a7fb57778dd76b5ee3&st=0&rd=0.9206486586449093 HTTP/1.1
Host: omt.shinobi.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty
date: Mon, 20 Mar 2023 11:10:08 GMT
content-type: text/javascript; charset=utf-8
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: JSESSIONID=g2qm0qjaxl2a1ukx5z0f1v3qn;Path=/
X-Firefox-Spdy: h2
downloadx.getuploader.com/g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe
172.67.157.57302 Found 0 B URL HTTP/2 downloadx.getuploader.com/g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe
IP 172.67.157.57:0
GET /g/61ff3752-5328-4969-b030-6eb4a010e467/zund/2/kmsauto%20net.exe HTTP/1.1
Host: downloadx.getuploader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 20 Mar 2023 11:10:01 GMT
content-type: text/html; charset=UTF-8
location: https://ux.getuploader.com/zund/download/2
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gKYh0k%2FZ9VPrm9O%2FXBmE9WxT%2BZLwu7ayoSC3OpU0IkW8%2FVgkMTqIK8JLMUDljy3OkM0%2FBu4P2A3gSscFteNkGDBlqvKVNMoAj5V1UexoA%2BRMhAGvvuOwqVFNXS%2F1Lho%2FxhtLiW4fYOcChxbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7aad8194a807b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.2/css/bootstrap.min.css
188.114.98.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.2/css/bootstrap.min.css
IP 188.114.98.234:0
GET /bootstrap/3.3.2/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:02 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:58 GMT
cdn-cachedat: 12/27/2021 13:27:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: df545ddc7e67286bc5b3389bb00950e2
cdn-cache: HIT
cf-cache-status: HIT
age: 24754852
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7aad81a0acc71bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
sh.adingo.jp/?G=1000013129&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=75650693016010&guid=ON
54.95.95.140200 OK 0 B URL HTTP/2 sh.adingo.jp/?G=1000013129&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=75650693016010&guid=ON
IP 54.95.95.140:0
GET /?G=1000013129&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=75650693016010&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:03 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=3470a0bd27c23f6f09accb1bd1dad128; expires=Tue, 19-Mar-2024 11:10:03 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:03 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
142.250.74.142200 OK 0 B URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 142.250.74.142:0
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 20 Mar 2023 11:10:02 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+944; expires=Wed, 19-Mar-2025 11:10:02 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sh.adingo.jp/?G=1000013128&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=3370849019047&guid=ON
54.95.95.140200 OK 0 B URL HTTP/2 sh.adingo.jp/?G=1000013128&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=3370849019047&guid=ON
IP 54.95.95.140:0
GET /?G=1000013128&href=https%3A%2F%2Fux.getuploader.com%2Fzund%2Fdownload%2F2&serial=3370849019047&guid=ON HTTP/1.1
Host: sh.adingo.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ux.getuploader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 20 Mar 2023 11:10:06 GMT
content-type: application/x-javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
set-cookie: ID=6aedbfce9f0075794c16754fc28e33b1; expires=Tue, 19-Mar-2024 11:10:06 GMT; Max-Age=31536000; path=/; domain=.adingo.jp; secure; SameSite=None
x-content-type-options: nosniff
last-modified: Mon, 20 Mar 2023 11:10:06 GMT
pragma: no-cache
cache-control: no-cache, must-revalidate
expires: Mon, 26 Jul 1997 05:00:00 GMT
p3p: CP=NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa HISa OUR SAMa OTRa STP UNI STA
content-encoding: gzip
X-Firefox-Spdy: h2