zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
188.114.97.1301 Moved Permanently 0 B URL HTTP/1.1 zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
IP 188.114.97.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 23 Mar 2023 14:04:00 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 23 Mar 2023 15:04:00 GMT
Location: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d7wA5tGWjq2N7XkbaKAGznCg3Jr5xDe%2FVO5bLzgPdi5LyqJXrZfdcXiiNdQTjsOyZvVp6Gz3e6lelESXi8Pee%2FilHiYhWbiB%2BBZc%2B6HKrW7Dls2FFbM%2FwHNoMPQTn4mufw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7ac7389498e1b51e-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6008
Expires: Thu, 23 Mar 2023 15:44:08 GMT
Date: Thu, 23 Mar 2023 14:04:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 65fc860bc043f3fb83bdc3debdcd322d
418010755deae099ef1284e402813c5837a10f42
d93d50c523c7f735987aba09db628259441eb75efe713a2df3c214e1fb8b5171
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D93D50C523C7F735987ABA09DB628259441EB75EFE713A2DF3C214E1FB8B5171"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5052
Expires: Thu, 23 Mar 2023 15:28:12 GMT
Date: Thu, 23 Mar 2023 14:04:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 51a5d4696a6090c295850554508b51ce
c44e143c2223546e64b19f543b8101aaf3b11e97
8794223d5e8d4d276c35e2fdcc24bf99694240634dd749cd9b5bf874dec055cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8794223D5E8D4D276C35E2FDCC24BF99694240634DD749CD9B5BF874DEC055CF"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10455
Expires: Thu, 23 Mar 2023 16:58:15 GMT
Date: Thu, 23 Mar 2023 14:04:00 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Mar 2023 13:15:05 GMT
content-type: application/json
age: 2935
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rnb0WpLRElfe44dzv/SOiK8AAruaysCGBVEdkwIhO0vFsFKYHPtREs3GwE9FOi1oaoQvXujhQXQ=
x-amz-request-id: 45F60153V3VGR0TF
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Mar 2023 13:59:59 GMT
age: 241
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
zeroupload.com/cache/themes/spirit/logo_inverse.png
188.114.96.1200 OK 6.3 kB URL HTTP/2 zeroupload.com/cache/themes/spirit/logo_inverse.png
IP 188.114.96.1:0
File type PNG image data, 431 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 856825ef23856ec8f9a80285773eb573
ac37ffefb0a0b3c5c0b378212072bb912ee0281f
c5229b08c020a064d2cb4ce038f4641e065a795a5cb90f2becd81b93d5277070
GET /cache/themes/spirit/logo_inverse.png HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: image/png
content-length: 6346
last-modified: Thu, 09 Feb 2023 11:31:34 GMT
etag: "63e4d996-18ca"
expires: Thu, 23 Mar 2023 17:54:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2576558
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KEac8O0hXE3AZ7J8%2B0soGKUQlCKjA3h2MUpxquzF3gQlgQfyp4yLp39azQm%2F5BkR3YIX3hen70Ye25trX6%2Frkeae9oZZm2AhnuPvKK2f4Tj3K5DLD5VBQUEJhmLL7sEjWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac738972cc1b524-OSL
X-Firefox-Spdy: h2
zeroupload.com/cache/themes/spirit/logo.png
188.114.96.1200 OK 6.3 kB URL HTTP/2 zeroupload.com/cache/themes/spirit/logo.png
IP 188.114.96.1:0
File type PNG image data, 431 x 94, 8-bit/color RGBA, non-interlaced\012- data
Hash 856825ef23856ec8f9a80285773eb573
ac37ffefb0a0b3c5c0b378212072bb912ee0281f
c5229b08c020a064d2cb4ce038f4641e065a795a5cb90f2becd81b93d5277070
GET /cache/themes/spirit/logo.png HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: image/png
content-length: 6346
last-modified: Thu, 09 Feb 2023 11:31:34 GMT
etag: "63e4d996-18ca"
expires: Thu, 23 Mar 2023 17:54:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2576558
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNpGgqi9%2FtQy4X6JwqqtsWDw4%2BFtAbR7ZE62hJbOA2CsJc5rb4yi7pcQh9j9qN64aTpuH7h%2FB%2BRwbwu5foMXwS9ByfuszYAShPWk2Jr%2FeBO3iC4nGVeYTLTLjEAVtUP5nA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac738972cc4b524-OSL
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/flickity.css
188.114.96.1200 OK 1.2 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/flickity.css
IP 188.114.96.1:0
Hash 01668dd19910b1652fbe0256315f5c64
1ce054e4a5f422d0a287b95cf1e001a39330fe7d
e39cc48791a1e6e62e8559e31c2e033dee6f3ebd0b134bc66620338561c70c95
GET /themes/spirit/assets/frontend/css/flickity.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
vary: Accept-Encoding
etag: W/"5f71f2a4-958"
expires: Thu, 23 Mar 2023 16:05:31 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tgdd0wMIlwRljm74Fc6XjcGEnr%2FgQ7e2dHUxr%2F6PkQct8IM1nheHL%2FBIo97K7L4PkNRv%2BPjhaVNQWbLQrcIzxf5taFIJ3iYyUAS29tviKCDD6cYXvJ1eJdqJYHOV1zBeFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971ca0b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/socicon.css
188.114.96.1200 OK 2.2 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/socicon.css
IP 188.114.96.1:0
Hash 5bfc423b618ff138ebd0f73f08c9e017
c378a04ca37eefae58ef1ac1fa834a2f6febda33
52fce808f2436324369131144ede2f34f52dcc81685d120e2b4e7686f71e3d26
GET /themes/spirit/assets/frontend/css/socicon.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
vary: Accept-Encoding
etag: W/"5f71f2a4-2443"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qTPT4WjizQn9v4ZBILjTQ1DMZX2FKgCuorN0cN3pD5SLI0PCN04uSugNdMeQFuOdXpEF3zekR6faQpvT6U6QEPgc99KY58rHUvTdQkK6LdBf%2B0lQUUhk6Tf1ER%2Fa9VUinw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971c9bb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/bootstrap.min.css
188.114.96.1200 OK 13 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/bootstrap.min.css
IP 188.114.96.1:0
File type ASCII text, with very long lines (65324)
Hash ed3f133c7a167966a191b43a40ffff14
71b31406e6ba727c6eb95f4d2b17ba5cfdd36da0
4ac107b7c4fb31e104fa17e254b0e075fa143ff5e7aa4c3fced33abfcc1571fd
GET /themes/spirit/assets/frontend/css/bootstrap.min.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
etag: W/"5f71f2a4-12c75"
expires: Thu, 23 Mar 2023 16:15:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OlSZTvv0bTLrA6ubwodCp6ltZJ2xOghjg%2F6g7cbYIdu1U6vXjUoxTP5qgcW6PlLaFqiluJQkcyz0HgEhjiyYA4Ul%2BiJR0Y9XZGn9iSgIlKSt0FCRmE%2FaEKrCh8LlPw9nEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971c96b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
img.icons8.com/ios-glyphs/25/fa314a/cursor--v1.png
185.76.9.25200 OK 348 B URL HTTP/2 img.icons8.com/ios-glyphs/25/fa314a/cursor--v1.png
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash e18f8d6c0552fbd6c40532014678a98b
22f6035f53791331d535dc3489731cff5fbdd7c7
6184cf171e0cb0a37ed28261c8ad93ae0ef12c9d4183c0a4f8712539653ef5c3
GET /ios-glyphs/25/fa314a/cursor--v1.png HTTP/1.1
Host: img.icons8.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: image/png
content-length: 348
vary: Origin
access-control-allow-origin: *
icon-id: 71212
icon-size: 25
icon-format: png
last-modified: Thu, 09 Mar 2023 10:03:12
version: 0.0.29
from-mongo-cache: false
from-redis-cache: false
not-found-platform: false
cache-control: public, max-age=302400
strict-transport-security: max-age=15724800; includeSubDomains
server: CDN77-Turbo
x-77-nzt: AblMCRQpWAH/S1IAAA
x-77-nzt-ray: af585630a564e1f9505c1c648b2f5428
x-accel-expires: @1679861573
x-cache: HIT
x-age: 21067
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-QDB60Q47TN
142.250.74.168200 OK 84 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-QDB60Q47TN
IP 142.250.74.168:0
File type ASCII text, with very long lines (30260)
Hash ba2997f9515b0d4126f2e1528b352b9d
17ac76e61b22b87bb5a525185df0c782714a80d4
9cdad8d3f3e68d931e2024e7b853fa651e1d8f7fb6e2dc3d748fefb250939261
GET /gtag/js?id=G-QDB60Q47TN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 23 Mar 2023 14:04:00 GMT
expires: Thu, 23 Mar 2023 14:04:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83655
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/typed.min.js
188.114.96.1200 OK 2.0 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/typed.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (3949), with no line terminators
Hash 9b2328da9e59482812bad00b321c394e
78a35ba07c6598f5703a8c62837a8cea7fbe001b
a145b1c88b7e8fbf33a9936d23f672cf26b73a441e0ddc04724b6d626a387f6f
GET /themes/spirit/assets/frontend/js/typed.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-f6d"
expires: Thu, 23 Mar 2023 16:16:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9uE4xx%2FpmItptPF4IsZj1YWqb7USVPu8tMwhKGSRe1P0eEp0WUYw%2FMUYw34tId0VWv23zQDJLEznqxEHY7yIpL4nAdn6s2UMoCHb7pXiCktGZQppy%2FKBSX9QRzOOp%2BXt1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973ccfb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/custom.css
188.114.96.1200 OK 2.5 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/custom.css
IP 188.114.96.1:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 937cfab685fac70099ebdbf56591a68b
2ee0fd1c60749dae4d24cdb4a01ea1063aeabd4e
2350933ddf7009116a83b789107c4081646bc3a8aeb053a18648bf24cd62537a
GET /themes/spirit/assets/frontend/css/custom.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Thu, 04 Feb 2021 16:28:50 GMT
vary: Accept-Encoding
etag: W/"601c20c2-22e8"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=No8uPYkaUraP0eYt6x74Qi5VcfNUJbO5qNpIwuFkvNZt4SIjl4VIheF75YDwGbhXVeU1RBW18JZMIEYkQUND7I3ycxmFETR7HaEjvS6BAN9WKKLfLr%2F5ov7MV0cWz69g6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738972cb1b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/datepicker.js
188.114.96.1200 OK 12 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/datepicker.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (12692), with CRLF line terminators
Hash a52e8e1ce8b833ab1cc9dbb9baf95ba0
aa89aabfc90da21fa3bc7a597fed7685c574d6dd
764d16cbb8fe65889ad18576ba89b3bd65e8ad1c9c5dacb8c5e31c86c26762cb
GET /themes/spirit/assets/frontend/js/datepicker.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-51ef"
expires: Thu, 23 Mar 2023 16:29:45 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B3LseXqG6%2B3lU97%2Bpnwuf%2FGwDka8zQdyliV9doxylkiRsns0YcuDz%2Fwp0j5hBKFyM5dRvVDNjNRCpLWc1CNe7yW%2FeeFX4HTyRZ7otbIWlCicd83VT8oH5r0AQ0%2FYN3A%2F0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973cd6b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
142.250.74.138200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
IP 142.250.74.138:0
Hash 365f48798866b40d02382791d1c2f9b6
725058df3990302580ca64925a6bc7ead2bde1c2
73b6af976a9f673ae4a52859aed06ea7cb1461146f0f479c153dcc1230010a3d
GET /css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 14:04:00 GMT
date: Thu, 23 Mar 2023 14:04:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/granim.min.js
188.114.96.1200 OK 83 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/granim.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (10573)
Hash 4a088a656d375b6c5e1fffb66f6eef2e
93dacf893817fec645395ed5aa5d2c4aabb382a3
88b6988956b8896559a6ce5da017852c00ea4da3a558c41d2ab66ddf206a9ae7
GET /themes/spirit/assets/frontend/js/granim.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-298a"
expires: Thu, 23 Mar 2023 16:16:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ugswNyCtILWIthK2A3IAc8Tgq6PktZw%2FREzGEyjvsweg5t22oy0zayFTpNabVGMrgUd2UBE%2BrSZx%2BAt0yWU63hEkeOEDkTr8b0TfUBUkjqcVLuHNoRyBUvm6GHykT5icw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973cd8b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.3200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.3:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 71929
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
142.250.74.3200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP 142.250.74.3:0
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 13:43:46 GMT
expires: Tue, 19 Mar 2024 13:43:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
age: 260414
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
188.114.96.1200 OK 5.0 kB URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
IP 188.114.96.1:0
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash a9a8c24cea41bed7ef78ed1d12d48291
cd86d71e15b97ab602e0e39bb6e9bbaf6779f4d7
3b379c83d1c0b117cec88debed9390723daffc2fb99cf51cc2175c47169d190e
GET /themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: image/png
content-length: 5016
last-modified: Mon, 28 Sep 2020 14:26:42 GMT
etag: "5f71f2a2-1398"
expires: Thu, 23 Mar 2023 17:59:09 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 2574343
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z07OeevZzgT0Pfel%2FC9lK07zOLr3jTpoBqz2aPMaIt7hVYPAiUZg54ubvBSGr%2FiHul0OfKw14VyQXOXm85Xpqa5P%2BMoBDtJ3rvSJoMX94%2BO4pjaUxtVJ74Y4rNjnCP3cuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac73899681cb524-OSL
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
188.114.96.1200 OK 447 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
IP 188.114.96.1:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f3d5da06fe8d5a2425d5d229285e5eea
01032b864f3c74bbf44771e2ba41eeb2251fad90
d11d596429d3543bfb07191a87a67a8c22e198113c6f3a109158a5a85bf82f26
GET /themes/spirit/assets/frontend/img/favicon/favicon-16x16.png HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: image/png
content-length: 447
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
etag: "5f71f2a0-1bf"
expires: Thu, 23 Mar 2023 17:54:43 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20548
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IBADBnroa3WgCznfX%2BNk%2B2spqHRfxBXvgNOEUbhoNzdF7mhcLwRpse52T3sKPNp%2FWPqByftYFwiBxmuSc9zljfcKM%2B3cU7LnngEugju%2F0scpunUj8vC7YBbbT5UZQYtVvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac73899681fb524-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 097d447e049e3b41f92a4695b1b0c3c7
f39c9ef8d22bee41d940bf719c75b2cfae9291d5
459e0e586fca9a4720e4e25fa59978368c9d373ee86575a7b40d0ef4262043ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 281 B IP 172.64.155.188:0
Hash 48938a670c11e6b4900d5b8400efb8db
be43839df8026dd2bc8c72431dca49328b8eeb86
8a72dbf22d5f2e3e3c251ea9084cc935d30fbf349a6447ea76802d83e2a4cd38
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 14:04:00 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:43:16 GMT
Expires: Thu, 30 Mar 2023 04:43:15 GMT
Etag: "be43839df8026dd2bc8c72431dca49328b8eeb86"
Cache-Control: max-age=570554,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac73899de0a0b4d-OSL
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3137948974307715
142.250.74.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-3137948974307715
IP 142.250.74.162:0
File type ASCII text, with very long lines (3599)
Hash f4bc6c946c0783f7d8887dee7f2f9983
dfaf13b6280ca4a84a575cf6b3bbfabeec4212ad
20630206e2a6daaf5061bbfceef42a3bdbb47da6f883a2ace2c2bdddcc0807bf
GET /pagead/js/adsbygoogle.js?client=ca-pub-3137948974307715 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 23 Mar 2023 14:04:00 GMT
expires: Thu, 23 Mar 2023 14:04:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 17823374015930322028
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48928
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d09ed5b5ccfa429cf3ded7d6634ce586
e1d26f666c2b0ecf75aa847b3ee907c41514b588
b5536c7e81811b1a5ffeb8dcc80a08f14b4c5ed5ddb2c53b4b52f84c721beeed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 281 B IP 172.64.155.188:0
Hash 48938a670c11e6b4900d5b8400efb8db
be43839df8026dd2bc8c72431dca49328b8eeb86
8a72dbf22d5f2e3e3c251ea9084cc935d30fbf349a6447ea76802d83e2a4cd38
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Mar 2023 14:04:01 GMT
Content-Type: application/ocsp-response
Content-Length: 281
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 04:43:16 GMT
Expires: Thu, 30 Mar 2023 04:43:15 GMT
Etag: "be43839df8026dd2bc8c72431dca49328b8eeb86"
Cache-Control: max-age=570553,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ac73899dadc0afa-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Mar 2023 13:17:23 GMT
age: 2798
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 050ca4dc2182e0a27573b0d9f32b7834
bec14dc5af0d0b32210470673511acd8db404308
b6129b9d1848f75265dca4446c5399927bdaf15c7b49c083765847b0fe276eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B6129B9D1848F75265DCA4446C5399927BDAF15C7B49C083765847B0FE276EAF"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13259
Expires: Thu, 23 Mar 2023 17:45:00 GMT
Date: Thu, 23 Mar 2023 14:04:01 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 15a79d87680ced9baa769b58a70a08c9
5a6bd5d054b135b021d03f3148a249aa274d5930
9e075624b17dbee04f9cd5544c2f0f053f4fadfc49ab3572edd5f350c35a7816
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.a-ads.com/a-ads-banners/426613/250x250?region=eu-central-1
148.251.233.147200 OK 296 kB URL HTTP/2 static.a-ads.com/a-ads-banners/426613/250x250?region=eu-central-1
IP 148.251.233.147:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 250 x 250\012- data
Size 296 kB (296510 bytes)
Hash c4829ac094e1d011019db86e9d8fd964
446fbd7c46496b16956d2626ddc048b0fe4ae48d
82aa770a7777965f7d0d71ad3e9c7af49f4c087b9fed136acb558b7e776fafdd
GET /a-ads-banners/426613/250x250?region=eu-central-1 HTTP/1.1
Host: static.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ad.a-ads.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: image/gif
content-length: 296510
x-amz-id-2: y/LrCJcaGKX259D0tYW2bJXHJzErnoi/zpz5umY2SF79vDawJTBLPjaDTPnLkQHpv98brAl5tmE=
x-amz-request-id: XH8CAR1CSE2DW1YQ
x-amz-replication-status: COMPLETED
last-modified: Sun, 20 Nov 2022 16:37:41 GMT
etag: "c4829ac094e1d011019db86e9d8fd964"
cache-control: max-age=315360000
x-amz-version-id: .1ZXRIdVThEOPNQ6oiKNq85bdoExYJNa
expires: Thu, 31 Dec 2037 23:55:55 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=zeroupload.com&callback=_gfp_s_&client=ca-pub-3137948974307715
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=zeroupload.com&callback=_gfp_s_&client=ca-pub-3137948974307715
IP 216.58.207.226:0
File type ASCII text, with very long lines (395), with no line terminators
Hash 40cef176a392480f9d2d7d1cfb2b359d
05fba642abaa017476a8254aea6d05cbd27826d7
0a6720fe624d319d707ab16bca6e1987e0725fd553cf37d7cc44e0deddcf40c1
GET /gampad/cookie.js?domain=zeroupload.com&callback=_gfp_s_&client=ca-pub-3137948974307715 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 23 Mar 2023 14:04:01 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8795e5b287f501dc39ee441cd6bd7125
9d420cfc40477940eff7fcfc1aee2c7731fd17a5
a2f6bc52d276e1f73a3e823606457e033bccf8eca8631940a55c298f952451ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=zeroupload.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=zeroupload.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=zeroupload.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 23 Mar 2023 14:04:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=zeroupload.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=zeroupload.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=zeroupload.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 23 Mar 2023 14:04:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 15a79d87680ced9baa769b58a70a08c9
5a6bd5d054b135b021d03f3148a249aa274d5930
9e075624b17dbee04f9cd5544c2f0f053f4fadfc49ab3572edd5f350c35a7816
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9f0607231b4674d2bfb5a6798b0b4093
6c14f5c952e413365703144951b09b7126ff8e2d
869816689cb9507d294d69f953e8ea33452a177d405816ad86f729b123ceaa98
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8795e5b287f501dc39ee441cd6bd7125
9d420cfc40477940eff7fcfc1aee2c7731fd17a5
a2f6bc52d276e1f73a3e823606457e033bccf8eca8631940a55c298f952451ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ormh0be050631DDtSUnD0w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KiUFbFVoogGotHSgiIQEnS81tcM=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1e0119e488c4b31ca1eb177628ed9414
2f243d2c11d4a6a1aac850b5325a85aa94c28bf2
9fdcc7cf7fc0b1afec05df8fd806d17d9a5f656166369dcb737a128ddd4e2bb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1e0119e488c4b31ca1eb177628ed9414
2f243d2c11d4a6a1aac850b5325a85aa94c28bf2
9fdcc7cf7fc0b1afec05df8fd806d17d9a5f656166369dcb737a128ddd4e2bb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1e0119e488c4b31ca1eb177628ed9414
2f243d2c11d4a6a1aac850b5325a85aa94c28bf2
9fdcc7cf7fc0b1afec05df8fd806d17d9a5f656166369dcb737a128ddd4e2bb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230321/r20110914/client/qs_click_protection_fy2021.js
142.250.74.65200 OK 8.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230321/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (2465)
Hash 9da78d3accd905d5cc426fad37ef9ce9
c1c5ebc107844e165679f2b069763d10cf8d226d
79578369b938e27d7a0e3b6d02e048ef340d848e12e7b2465acb1e52dc24eeaa
GET /pagead/js/r20230321/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8627
x-xss-protection: 0
date: Thu, 23 Mar 2023 01:59:57 GMT
expires: Thu, 06 Apr 2023 01:59:57 GMT
cache-control: public, max-age=1209600
etag: 8620137988422272387
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 43444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-QDB60Q47TN>m=45je33k0&_p=591965672&cid=1081578375.1679580249&ul=en-us&sr=1280x1024&_s=1&sid=1679580249&sct=1&seg=0&dl=https%3A%2F%2Fzeroupload.com%2F84e5dbe67b32e592%2FEPLAN_Pro_Panel_2022.0.3.17561.rar&dt=%7B%20Download%20Page%20%7D%20-%20Zero%20Upload&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-QDB60Q47TN>m=45je33k0&_p=591965672&cid=1081578375.1679580249&ul=en-us&sr=1280x1024&_s=1&sid=1679580249&sct=1&seg=0&dl=https%3A%2F%2Fzeroupload.com%2F84e5dbe67b32e592%2FEPLAN_Pro_Panel_2022.0.3.17561.rar&dt=%7B%20Download%20Page%20%7D%20-%20Zero%20Upload&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-QDB60Q47TN>m=45je33k0&_p=591965672&cid=1081578375.1679580249&ul=en-us&sr=1280x1024&_s=1&sid=1679580249&sct=1&seg=0&dl=https%3A%2F%2Fzeroupload.com%2F84e5dbe67b32e592%2FEPLAN_Pro_Panel_2022.0.3.17561.rar&dt=%7B%20Download%20Page%20%7D%20-%20Zero%20Upload&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://zeroupload.com
date: Thu, 23 Mar 2023 14:04:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 2f9541035d4465eda3c438ff9fed5491
04f1747240118a215082135df9175de332ecf41f
2aaa73ca46027d8b75b6503f79561460296d4a8d5617d1159296d7b4e2d19b8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1437
Cache-Control: max-age=151347
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641c02e8-138"
Expires: Sat, 25 Mar 2023 08:06:29 GMT
Last-Modified: Thu, 23 Mar 2023 07:42:32 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 2f9541035d4465eda3c438ff9fed5491
04f1747240118a215082135df9175de332ecf41f
2aaa73ca46027d8b75b6503f79561460296d4a8d5617d1159296d7b4e2d19b8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1437
Cache-Control: max-age=151347
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641c02e8-138"
Expires: Sat, 25 Mar 2023 08:06:29 GMT
Last-Modified: Thu, 23 Mar 2023 07:42:32 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 2f9541035d4465eda3c438ff9fed5491
04f1747240118a215082135df9175de332ecf41f
2aaa73ca46027d8b75b6503f79561460296d4a8d5617d1159296d7b4e2d19b8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5500
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Last-Modified: Thu, 23 Mar 2023 12:32:22 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 9095e56c7010bfcbe5b75b9178fb743e
29a3c046eb4aa112b5fb0a4b3be76f1239d66ad5
b65f391c272bc8d9d84f50f0a90f67e33a221f7edc458e10cc746914c5c5366a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1151
Cache-Control: max-age=120473
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641b8b6d-1d7"
Expires: Fri, 24 Mar 2023 23:31:55 GMT
Last-Modified: Wed, 22 Mar 2023 23:12:45 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAAJSMZcMmwVHYEFFcHGRr_HvXRyAPhrUHAAASAAAKDkFRVURBUVlCQVFFQkFR&wp=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg
178.250.1.10200 OK 0 B URL HTTP/2 rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAAJSMZcMmwVHYEFFcHGRr_HvXRyAPhrUHAAASAAAKDkFRVURBUVlCQVFFQkFR&wp=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg
IP 178.250.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAAJSMZcMmwVHYEFFcHGRr_HvXRyAPhrUHAAASAAAKDkFRVURBUVlCQVFFQkFR&wp=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg HTTP/1.1
Host: rtb.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 184708
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAALZy87Ifxx8QEFFcHGQY99-WX0BdDUboAAASAAAKDkFRVUJBUVlCQVFFQkFR&wp=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA
178.250.1.10200 OK 0 B URL HTTP/2 rtb.nl3.eu.criteo.com/google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAALZy87Ifxx8QEFFcHGQY99-WX0BdDUboAAASAAAKDkFRVUJBUVlCQVFFQkFR&wp=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA
IP 178.250.1.10:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /google/auction/notify?profile=14&payload=kMHHFbOzWbAJmAKdg2ICAgAAALZy87Ifxx8QEFFcHGQY99-WX0BdDUboAAASAAAKDkFRVUJBUVlCQVFFQkFR&wp=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA HTTP/1.1
Host: rtb.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server-processing-duration-in-ticks: 158077
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
content-length: 0
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/lightbox.min.css
188.114.96.1200 OK 899 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/lightbox.min.css
IP 188.114.96.1:0
Hash e76f108678b27d9d5375176e39207c3a
d0e4a86aa9af949e42a263740d789b8336ccf4ff
3e114d89355d14c13a157b41a7ff61a40392a7beb7c202aae65b2e04b1b49aca
GET /themes/spirit/assets/frontend/css/lightbox.min.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 14:26:46 GMT
vary: Accept-Encoding
etag: W/"5f71f2a6-e54"
expires: Thu, 23 Mar 2023 16:15:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wt%2FAWG3bNreWdMwVUTBQB25FGoGJiUGzW2rMnAUrR0wYiA6ItkZZtvObdUwXsEpNqa6rta3J6F5ImE5k3tde4aHhzYcTSHNjNkkXLTACeipvSnUrEFBXlOJTvashuDYKmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971c9eb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/webfont/1.6.28/webfontloader.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (2171)
Hash 44c72b9bddfecacc9114e84d685dd085
38f3ff57b9b64a38fc2153eb30564b7fc1c86349
c82afd4f2d89288b4b79244f0c24264810b11326670710ac8e28e7bfc87c7991
GET /ajax/libs/webfont/1.6.28/webfontloader.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04030-30d9"
last-modified: Mon, 04 May 2020 16:17:52 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1977993
expires: Tue, 12 Mar 2024 14:04:02 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TEKZQx2cYMhabd2tWWuUl2NPi3HVTZyaTnKEE2zGuWdir33TvC1KAZ%2B1faRJWXXils7BCCUlWoR2j4WDUeispj%2F1Cu8lYN0OvAIdShJwAUoTNcU8CKcXVgtHpHzesv39w6BqDzL0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ac738a18fddb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 67a39d390f45cb8cfff8cb90dfb27bc7
053a664e6897e229f43272444520bbfaf8d9e166
dc49cfbb82b833f0929f817ba0a0f03b8c4ddbe32baf472023d5a8d1994a0ed7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Last-Modified: Thu, 23 Mar 2023 13:15:04 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 67a39d390f45cb8cfff8cb90dfb27bc7
053a664e6897e229f43272444520bbfaf8d9e166
dc49cfbb82b833f0929f817ba0a0f03b8c4ddbe32baf472023d5a8d1994a0ed7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2337
Cache-Control: max-age=100828
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641b3a0d-138"
Expires: Fri, 24 Mar 2023 18:04:30 GMT
Last-Modified: Wed, 22 Mar 2023 17:25:33 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 67a39d390f45cb8cfff8cb90dfb27bc7
053a664e6897e229f43272444520bbfaf8d9e166
dc49cfbb82b833f0929f817ba0a0f03b8c4ddbe32baf472023d5a8d1994a0ed7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5646
Cache-Control: max-age=104137
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641b3a0d-138"
Expires: Fri, 24 Mar 2023 18:59:39 GMT
Last-Modified: Wed, 22 Mar 2023 17:25:33 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 67a39d390f45cb8cfff8cb90dfb27bc7
053a664e6897e229f43272444520bbfaf8d9e166
dc49cfbb82b833f0929f817ba0a0f03b8c4ddbe32baf472023d5a8d1994a0ed7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5646
Cache-Control: max-age=104137
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641b3a0d-138"
Expires: Fri, 24 Mar 2023 18:59:39 GMT
Last-Modified: Wed, 22 Mar 2023 17:25:33 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 67a39d390f45cb8cfff8cb90dfb27bc7
053a664e6897e229f43272444520bbfaf8d9e166
dc49cfbb82b833f0929f817ba0a0f03b8c4ddbe32baf472023d5a8d1994a0ed7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Last-Modified: Thu, 23 Mar 2023 13:15:04 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 312
static.criteo.net/flash/icon/close_button.svg
178.250.1.3200 OK 308 B URL HTTP/2 static.criteo.net/flash/icon/close_button.svg
IP 178.250.1.3:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash 1bfe2e290ec4440da74a2e2c249eae2b
0b888a3f9e27d1554f2e21d51e7a1c223d00dbd4
8ec89605fe3d580e9539c7b858e8f69ba4e26fe06377ebe04585397de23a7395
GET /flash/icon/close_button.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
content-length: 308
last-modified: Fri, 14 Feb 2020 13:51:32 GMT
etag: "5e46a5e4-134"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/back_button2.svg
178.250.1.3200 OK 293 B URL HTTP/2 static.criteo.net/flash/icon/back_button2.svg
IP 178.250.1.3:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with CRLF line terminators
Hash d9f776bdc698e1bc9c6a1977218019cd
5763cfb5ac79adf0fa7f03a82bad04eea2dca243
725e869434fef8013208ed4c233d29744f9b363f867dcfb8f23e862880fa699a
GET /flash/icon/back_button2.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
content-length: 293
last-modified: Thu, 28 Apr 2022 09:09:48 GMT
etag: "626a59dc-125"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
accept-ranges: bytes
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 5722981d94a99adbbe3e49b6295aa828
01b00862f7c21d23626a08b4fe0ded8cc0d04d3c
a2750c410a610dd4090a5fc85961cf8f0f28a63d67f73b037a91a10a44aac810
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5937
Cache-Control: max-age=162346
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641c1c4b-138"
Expires: Sat, 25 Mar 2023 11:09:48 GMT
Last-Modified: Thu, 23 Mar 2023 09:30:51 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 5722981d94a99adbbe3e49b6295aa828
01b00862f7c21d23626a08b4fe0ded8cc0d04d3c
a2750c410a610dd4090a5fc85961cf8f0f28a63d67f73b037a91a10a44aac810
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5937
Cache-Control: max-age=162346
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641c1c4b-138"
Expires: Sat, 25 Mar 2023 11:09:48 GMT
Last-Modified: Thu, 23 Mar 2023 09:30:51 GMT
Server: ECAcc (ska/F776)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
192.229.221.95200 OK 312 B IP 192.229.221.95:0
Hash 5722981d94a99adbbe3e49b6295aa828
01b00862f7c21d23626a08b4fe0ded8cc0d04d3c
a2750c410a610dd4090a5fc85961cf8f0f28a63d67f73b037a91a10a44aac810
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5937
Cache-Control: max-age=162346
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:02 GMT
Etag: "641c1c4b-138"
Expires: Sat, 25 Mar 2023 11:09:48 GMT
Last-Modified: Thu, 23 Mar 2023 09:30:51 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 312
cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=a9xVEXQ2B0KaGDcWER7To3_vPJ2SYIXVipazLYMdADNNeJYPSoI4v1Br8DWAmNWguKTC_PoyKP0lGCKyCpE-5hdE4QMxrWWuXE8QAJLB2-QzfFZ7xw1cZ4Cm9KdDNLYn5fxwHKwyMR0mlFbhLzhRtR2Yr9OJ0SmDdur3dhSbAwAxFAHeIDN2KHqTpSe0GxSAQZnXjDnXYpa5XZ-jeYrIsFt4uPv964r1UqYGy5ftx7UHO_qDlX4qP_FTW4E4RQdk9vJcELCESBpXpiFnMJoFftMdd15W8TLyZm0tUgP5b6eQ9DWqgauW_wWh_2pyb00Q9_qMSOmhL6t7h7ixJn7AoRK3qEC8os-Gp9g6765tWXnKZC_1YuSBCIlq80W4KfnCUhFgDSAhUzk8PokzyHw3e33H1R_xodMEGgbP0RROCJX2RDYM
178.250.1.6200 OK 24 kB URL HTTP/2 cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=a9xVEXQ2B0KaGDcWER7To3_vPJ2SYIXVipazLYMdADNNeJYPSoI4v1Br8DWAmNWguKTC_PoyKP0lGCKyCpE-5hdE4QMxrWWuXE8QAJLB2-QzfFZ7xw1cZ4Cm9KdDNLYn5fxwHKwyMR0mlFbhLzhRtR2Yr9OJ0SmDdur3dhSbAwAxFAHeIDN2KHqTpSe0GxSAQZnXjDnXYpa5XZ-jeYrIsFt4uPv964r1UqYGy5ftx7UHO_qDlX4qP_FTW4E4RQdk9vJcELCESBpXpiFnMJoFftMdd15W8TLyZm0tUgP5b6eQ9DWqgauW_wWh_2pyb00Q9_qMSOmhL6t7h7ixJn7AoRK3qEC8os-Gp9g6765tWXnKZC_1YuSBCIlq80W4KfnCUhFgDSAhUzk8PokzyHw3e33H1R_xodMEGgbP0RROCJX2RDYM
IP 178.250.1.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e2abb5f48334e3f668d2766f48cf535a
dc1904430c97388b5df4086040c946d44aab1b0c
ef971b558651f6c48f81fb16b76d39494eb2f6cf980a8595898b20ca6275f2fd
GET /delivery/lg.php?cppv=3&cpp=a9xVEXQ2B0KaGDcWER7To3_vPJ2SYIXVipazLYMdADNNeJYPSoI4v1Br8DWAmNWguKTC_PoyKP0lGCKyCpE-5hdE4QMxrWWuXE8QAJLB2-QzfFZ7xw1cZ4Cm9KdDNLYn5fxwHKwyMR0mlFbhLzhRtR2Yr9OJ0SmDdur3dhSbAwAxFAHeIDN2KHqTpSe0GxSAQZnXjDnXYpa5XZ-jeYrIsFt4uPv964r1UqYGy5ftx7UHO_qDlX4qP_FTW4E4RQdk9vJcELCESBpXpiFnMJoFftMdd15W8TLyZm0tUgP5b6eQ9DWqgauW_wWh_2pyb00Q9_qMSOmhL6t7h7ixJn7AoRK3qEC8os-Gp9g6765tWXnKZC_1YuSBCIlq80W4KfnCUhFgDSAhUzk8PokzyHw3e33H1R_xodMEGgbP0RROCJX2RDYM HTTP/1.1
Host: cat.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1729137
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi
178.250.1.15200 OK 82 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fd7a97c6c16c276a637bb4c2575025f7
f38adf164843d52f3f1ebb6853f516ada69296ed
5bf7d7f9bf52189a0d494c218dd7e5b32d28fecbb0c0b857f15af974c76b579c
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 82488
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:17 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc9e00742283e4fe78994b7505df1fd14_06-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=99UHJYBHUL3IQIM4u50rXGHc
178.250.1.15200 OK 78 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc9e00742283e4fe78994b7505df1fd14_06-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=99UHJYBHUL3IQIM4u50rXGHc
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 4e60523c6035ab0376ad91ac9bffd57a
21b509c16513313dcb9253cf1343295b4583ef6d
5401bf32b29fa7239541c6ff11c22a7d387bd86add772b4fc260680d61fe48fd
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc9e00742283e4fe78994b7505df1fd14_06-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=99UHJYBHUL3IQIM4u50rXGHc HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 77764
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:17 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t
178.250.0.139200 OK 26 kB URL HTTP/2 pix.eu.criteo.net/img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t
IP 178.250.0.139:0
File type PNG image data, 711 x 251, 8-bit/color RGBA, non-interlaced\012- data
Hash 33545a3553b4fb3d5fe074bc9d8c259f
16d1d1502f99a3005ff40e6d0ef64762a133a762
53ed1ce9ba333700c026cf9311d7b42afbd1a0665e7da882ec038896d0b2cd90
GET /img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30104449
expires: Wed, 06 Mar 2024 00:24:51 GMT
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 25663
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/png
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG
178.250.1.15200 OK 58 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2bade8fc183c2c876ec584a3dd301172
5a44b543b8be88ae6488e5945b648f3ef6d1067e
41cc3a7b78d290f383ce76898875cf1df96851f8e0bf3907e6a93fe0647d618d
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57552
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:17 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t
178.250.1.15200 OK 24 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t
IP 178.250.1.15:0
File type PNG image data, 711 x 251, 8-bit/color RGBA, non-interlaced\012- data
Hash 0440b11fbc5571a0e36d719e53cc354d
b2f1fdcf79d01598138970597f76a5c8d33a8f76
74d550b6fe3b25d8a1f7aba4f7ae3c322b32b2ae6704e84c9f1cb4aece4d252a
GET /img/img?h=556&m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fc026f2865e684504a703efcc519d0fe5_amanti-ag_logo-v1_rgb-neg_01-4x.png&v=3&w=2396&s=9nmv3lQ5kp0AIPoqwnA8dr3t HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 24031
content-type: image/png
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sat, 09 Mar 2024 09:00:09 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6
178.250.1.15200 OK 89 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d9d9da3ee6f63b85e8fa5585fe5ddf40
6103dcb1d785046983aa96ecf9af3c85320d75cb
77c06e0bfcaf6ea94a93475dc66c8bdded6bdf9a9b70daa2a46b291c8f77fcd5
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6 HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 88568
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Sun, 10 Mar 2024 12:59:43 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc
178.250.1.15200 OK 86 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c3fd1bf2bb51c2c3193fc2b687fb881f
538df16e61216595e175adb280976a2804f9b934
2eaa0feeda4856527cee9e63708e409c30ba876d9ddac1e9d370cd3b3935be2d
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 86002
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:18 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg&u=%7CUv0ANixBSqUiW6UE0uSvQZSNsOUrtJRd2fKXfqmTnyk%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuU9g-xmVzAmWcXRpN024b_ysyJj2SJnmbBNTDConAaF0Lwlcr2W5elJpXcxtMSBPL3zMeBSEJYZAFnQ3Dqv_cbdc-xqvUn8J8f3Ajsbox7jykMLtIVRjgOA8gpYBuNJXPUFE5h_ll47TDGPbEw_WvJyYxt9w0IAeONDeJb9mNBrDNDLoLSkrvuTO4gcafURAnRNLB63oX0aNqWWrMDfSnvX5Sb7l9DHcLCp4svhmqqZjgu5LRGdLqmQGjDFbsUNJmhLSvirWOFwzNVymV8q4Rou0vPxn4RzDln0OtL9_55-YmpjpFpS7QXnPcr6BdcGS0TD31IMyLnHVbpS3fTc8y8qykoQUkhKXzIOYAtOGoY8FUYGDYwG9Zoqd6vMGHFg8KZpyqFVmQaKaCjTb1Us-9jiHTHWmMI1kqsJRwmEMUAAyzLvTsn4yZKYyIdR5A-UEPnsODlGeQduMcd-SkntHLwv1Sm01LQvhMVoKP5o3L3JyBxp8vR9_Io&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCg-k4UVwcZMSRIM2P-cAPnu-v0ALJntKxXM2jlvdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTMxMzc5NDg5NzQzMDc3MTXIAQmpAlNuIrwJT7I-qAMBqgTnAU_QEOG6otp5PetuPhtI9Y-upKfpLK4MxR99SnslJSrzbQqlUQoa3T8ePEg9ilRtn15aQrRJRnIWt6zN7UrTgS7-B5WwqhqB6Nupko5paXe-T-9feqYF7Zt_vyunSW2KvsG8SBSvkrjRWVq_YDLpw8eo8BnqncwPEi-hX55-CWkFdD0USaKlkQq1_E4HOX_BzCSZHod0PrJ5B8_652X0jpK4aCj7fRXRLUb3Q8A7Vs_gKcBZ-d3779fa05NpYKYmOGNtRSGSSqi70sKmtG5vqABgZ_E560qDXWmv9Ny0v-vB5zHnNWnKeIAG5Z2j2f_44cwQoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2kkiCt2ExlRhkr8C_I5wKTqWDs6Q%26client%3Dca-pub-3137948974307715%26adurl%3D
178.250.1.17200 OK 127 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg&u=%7CUv0ANixBSqUiW6UE0uSvQZSNsOUrtJRd2fKXfqmTnyk%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuU9g-xmVzAmWcXRpN024b_ysyJj2SJnmbBNTDConAaF0Lwlcr2W5elJpXcxtMSBPL3zMeBSEJYZAFnQ3Dqv_cbdc-xqvUn8J8f3Ajsbox7jykMLtIVRjgOA8gpYBuNJXPUFE5h_ll47TDGPbEw_WvJyYxt9w0IAeONDeJb9mNBrDNDLoLSkrvuTO4gcafURAnRNLB63oX0aNqWWrMDfSnvX5Sb7l9DHcLCp4svhmqqZjgu5LRGdLqmQGjDFbsUNJmhLSvirWOFwzNVymV8q4Rou0vPxn4RzDln0OtL9_55-YmpjpFpS7QXnPcr6BdcGS0TD31IMyLnHVbpS3fTc8y8qykoQUkhKXzIOYAtOGoY8FUYGDYwG9Zoqd6vMGHFg8KZpyqFVmQaKaCjTb1Us-9jiHTHWmMI1kqsJRwmEMUAAyzLvTsn4yZKYyIdR5A-UEPnsODlGeQduMcd-SkntHLwv1Sm01LQvhMVoKP5o3L3JyBxp8vR9_Io&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCg-k4UVwcZMSRIM2P-cAPnu-v0ALJntKxXM2jlvdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTMxMzc5NDg5NzQzMDc3MTXIAQmpAlNuIrwJT7I-qAMBqgTnAU_QEOG6otp5PetuPhtI9Y-upKfpLK4MxR99SnslJSrzbQqlUQoa3T8ePEg9ilRtn15aQrRJRnIWt6zN7UrTgS7-B5WwqhqB6Nupko5paXe-T-9feqYF7Zt_vyunSW2KvsG8SBSvkrjRWVq_YDLpw8eo8BnqncwPEi-hX55-CWkFdD0USaKlkQq1_E4HOX_BzCSZHod0PrJ5B8_652X0jpK4aCj7fRXRLUb3Q8A7Vs_gKcBZ-d3779fa05NpYKYmOGNtRSGSSqi70sKmtG5vqABgZ_E560qDXWmv9Ny0v-vB5zHnNWnKeIAG5Z2j2f_44cwQoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2kkiCt2ExlRhkr8C_I5wKTqWDs6Q%26client%3Dca-pub-3137948974307715%26adurl%3D
IP 178.250.1.17:0
Size 127 kB (127089 bytes)
Hash aa2c6a2ff34c7b79c9a9b598f52a9823
ac73f6480f09eae10698b1fb47be377fcef6deee
e2ddf2c3eb21a492ab9cc9bc7e2f8387a40a2829d85c22d8caf5564181c0a6a3
GET /delivery/r/afr.php?z=ZBxcUQAICMQCHkfNAAv3nvakJt8fzYs-Y5M8cg&u=%7CUv0ANixBSqUiW6UE0uSvQZSNsOUrtJRd2fKXfqmTnyk%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuU9g-xmVzAmWcXRpN024b_ysyJj2SJnmbBNTDConAaF0Lwlcr2W5elJpXcxtMSBPL3zMeBSEJYZAFnQ3Dqv_cbdc-xqvUn8J8f3Ajsbox7jykMLtIVRjgOA8gpYBuNJXPUFE5h_ll47TDGPbEw_WvJyYxt9w0IAeONDeJb9mNBrDNDLoLSkrvuTO4gcafURAnRNLB63oX0aNqWWrMDfSnvX5Sb7l9DHcLCp4svhmqqZjgu5LRGdLqmQGjDFbsUNJmhLSvirWOFwzNVymV8q4Rou0vPxn4RzDln0OtL9_55-YmpjpFpS7QXnPcr6BdcGS0TD31IMyLnHVbpS3fTc8y8qykoQUkhKXzIOYAtOGoY8FUYGDYwG9Zoqd6vMGHFg8KZpyqFVmQaKaCjTb1Us-9jiHTHWmMI1kqsJRwmEMUAAyzLvTsn4yZKYyIdR5A-UEPnsODlGeQduMcd-SkntHLwv1Sm01LQvhMVoKP5o3L3JyBxp8vR9_Io&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCg-k4UVwcZMSRIM2P-cAPnu-v0ALJntKxXM2jlvdwwI23ARABIABgw4SAgJgYggEXY2EtcHViLTMxMzc5NDg5NzQzMDc3MTXIAQmpAlNuIrwJT7I-qAMBqgTnAU_QEOG6otp5PetuPhtI9Y-upKfpLK4MxR99SnslJSrzbQqlUQoa3T8ePEg9ilRtn15aQrRJRnIWt6zN7UrTgS7-B5WwqhqB6Nupko5paXe-T-9feqYF7Zt_vyunSW2KvsG8SBSvkrjRWVq_YDLpw8eo8BnqncwPEi-hX55-CWkFdD0USaKlkQq1_E4HOX_BzCSZHod0PrJ5B8_652X0jpK4aCj7fRXRLUb3Q8A7Vs_gKcBZ-d3779fa05NpYKYmOGNtRSGSSqi70sKmtG5vqABgZ_E560qDXWmv9Ny0v-vB5zHnNWnKeIAG5Z2j2f_44cwQoAYhqAemvhuoB5bYG6gHqpuxAqgHg62xAqgH_56xAqgH35-xAtgHANIIDwiA4YAQEAEyAqoCOgKAQPoLAggBgAwB0BUBgBcB%26num%3D1%26sig%3DAOD64_2kkiCt2ExlRhkr8C_I5wKTqWDs6Q%26client%3Dca-pub-3137948974307715%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=3dUsaF-6eBnVlKvor2WXi4IFodsQMTzB-ElN-eVLozwbdI7_JrDgHQvaFdEVaJIkfQEQqph-37sY8G9BnH6FQqVcreZwwLK_-EKJBa8URmcrj3-OzkzMQVYFYsbx0XQvZUDigV9OzT65YWl7RRtkwcansUpzWXx-gsOuwIdu5vod2uaDl5MFSDDPQ9w8rKdaARhiglf0nkJnL_CXut9tK3DJ_BQLmOHrkMvgMrLpVy7v5sW_FPV_Dg6ST70"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 20921194
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX
178.250.1.15200 OK 141 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 141 kB (140850 bytes)
Hash 3bd913772f26901e36ad558e4cba5fa8
2f92692eb1a5de0e73bcccfb0620fe8f8914b583
bdad826c5fe56606ef3689a6b0fda98184604f451ef9d1eccc737993fc1d70ae
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 140850
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:18 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F5b8b82e72549427fa3743caed9ce710e_05-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=o51WWZ9WFaSbp6_7prfczBr_
178.250.1.15200 OK 160 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F5b8b82e72549427fa3743caed9ce710e_05-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=o51WWZ9WFaSbp6_7prfczBr_
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 160 kB (160128 bytes)
Hash 22b7063b481d7015f52948059636e53a
87968aa3fe1e11a0e05115e3d915f7f9051fc869
4cfb4d52f417fd40e0a454347a2c2f6f0b10b066280384624c2146b1f46a4855
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F5b8b82e72549427fa3743caed9ce710e_05-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=o51WWZ9WFaSbp6_7prfczBr_ HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 160128
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:17 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_
178.250.1.15200 OK 190 kB URL HTTP/2 imageproxy.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_
IP 178.250.1.15:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 190 kB (189754 bytes)
Hash 2961f698f50af9556bab5f2549de7625
3da99aa54f6c9c87d50efb05d2ee564fcb4dde61
61c1507a3548dda446499967a029df436da70f182edb49ceaadcd80eacee027f
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_ HTTP/1.1
Host: imageproxy.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 189754
content-type: image/webp
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Kestrel
cache-control: public, max-age=31104000
expires: Tue, 12 Mar 2024 06:50:17 GMT
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy.svg
178.250.1.3200 OK 82 kB URL HTTP/2 static.criteo.net/flash/icon/privacy.svg
IP 178.250.1.3:0
Hash ae43d862a74697047d317c184484a759
31b26fafc2bd74120f72d1ffa13c19b01f0e327c
c973ed2c87ce8a2903c4c413eb4b565891a80a490d2ed5c512d676adaaab68d2
GET /flash/icon/privacy.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
last-modified: Wed, 19 Feb 2020 10:57:21 GMT
etag: W/"5e4d1491-646"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc
178.250.0.139200 OK 90 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 483587a2fe2162321003f61b9a89ed23
d78362dc733fc7e1d9baa724d14c152a37bde775
b1155b0b268311a8152145ebd796044397bb0f952feff629155f400fa70d43e6
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F412b13f6413947ac81b46c958c1d37fd_09-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=fzyfNur6prR6yM6Fh0_gmNmc HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=27977952
expires: Sat, 10 Feb 2024 09:43:15 GMT
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 90028
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG
178.250.0.139200 OK 61 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 259e092b15faae263de4c424602b80e6
3fd23c209d7a1e8824f2eb7f5f3ab176d2381514
6b17fc0b1f469c1eaaaecc9cbef4514b24ab4ba7bfe5dcb8973715486da568b3
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F468b07467da84258a19c1cca82a23dcc_04-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=GxMEk3T2B-JjTV1P8PPB00MG HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30772185
expires: Wed, 13 Mar 2024 17:53:47 GMT
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 60686
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F76e9c8c741814172ba76955df8d26f20_01-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=DTGSHeZcrH93noCcpG7SLmYx
178.250.0.139200 OK 89 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F76e9c8c741814172ba76955df8d26f20_01-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=DTGSHeZcrH93noCcpG7SLmYx
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 5a40e2e6b6fe795d31af9fddd40bf5ac
13447c5ae6d58957d9270d4c06c29ebf9f00d38f
f1da99ba57477cdf34627367aa46c2331e86151484ef68b4301abb999eba23a6
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F76e9c8c741814172ba76955df8d26f20_01-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=DTGSHeZcrH93noCcpG7SLmYx HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30651260
expires: Tue, 12 Mar 2024 08:18:22 GMT
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 89178
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX
178.250.0.139200 OK 146 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 146 kB (146170 bytes)
Hash 33ca02774165fa1762b724c66585f286
5ed7ff761c7e007ecb91f42937e60fc2ac4f38db
3b19737657ba00258e6cbcfc529eea4c3be5853e2c1deeec7733b40c33489b90
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa8295fa1a4ba45ac95653858f0b4f865_07-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=wLvAjUDpCyr72fLTn01zWWOX HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30727366
expires: Wed, 13 Mar 2024 05:26:48 GMT
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 146170
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6
178.250.0.139200 OK 93 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f05a4c60919c3d68b6106788f20ee4c4
71a646bfe464a2e578065604f1bf69bcab22ea61
3dd17d0cb9832353d5eff9692eb7b35428afb07224dc8d8232a15d74b0071937
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2F31715631c881408187088b7f7a9c8786_08-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=ELvqyoV_wS48whFvYnYyrSI6 HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=30840403
expires: Thu, 14 Mar 2024 12:50:46 GMT
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 92958
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi
178.250.0.139200 OK 87 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2b7d59b477b74eb7a226e13ecc842264
1918e29fa956fe3625c9b63fdecdad5994b93083
3f99caaf387f98419e8698cb42873724e717f1321eb08afcb8b3131f02acf9f5
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fe20f8b80312e49b3b9dcd6e86a2bdadf_03-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=WAeZ0357pVZqLHq_gsI7xDzi HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30680305
expires: Tue, 12 Mar 2024 16:22:28 GMT
date: Thu, 23 Mar 2023 14:04:01 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 87074
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/criteo_logo_2021.svg
178.250.1.3200 OK 170 kB URL HTTP/2 static.criteo.net/flash/icon/criteo_logo_2021.svg
IP 178.250.1.3:0
Size 170 kB (170150 bytes)
Hash 156a67c87df18eaf361fcd72e5fa9037
9c6d620c35865f4440d226985cfad265476e0952
b115cdd07bba1ad1894faedaa7be4622a0398afbf7a9f5824d81926935a56f0a
GET /flash/icon/criteo_logo_2021.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
last-modified: Thu, 27 May 2021 13:21:59 GMT
etag: W/"60af9cf7-891"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_
178.250.0.139200 OK 196 kB URL HTTP/2 pix.eu.criteo.net/img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_
IP 178.250.0.139:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x628, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 196 kB (196188 bytes)
Hash 923423e46b448533f4efb9761c99c656
8bc2013ed417c957e751e70107c7ad5be75b7aca
7dedbcefb9b2703340bef399adf4eac1ad43af14c31eecf156919ed969d678ea
GET /img/img?m=0&partner=101628&q=80&r=0&u=http%3A%2F%2Fstatic.nl3.eu.criteo.net%2Fdesign%2Fdt%2F101628%2F230207%2Fa45f3afcc7d842bda318267608b34a10_02-amt-summer-camp-criteo-ad_horizontal02-2x.jpg&v=3&s=lCk1IwdHAsKsMNilqgGuDdl_ HTTP/1.1
Host: pix.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=30660548
expires: Tue, 12 Mar 2024 10:53:10 GMT
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
cross-origin-resource-policy: cross-origin
content-length: 196188
last-modified: Wed, 4 Jun 2008 06:06:06 GMT
content-type: image/webp
timing-allow-origin: *
vary: Origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA&u=%7CUv0ANixBSqUoINUgHksVQSQA3CKo3rlPbvahT6ZTtNQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uvjYy_az68kZxGbvGy5S6NMhUtZtE8z3OdtKdLX-liRSrufTUvI-cHIIvjQgnsOEvBfbVx4IXjPRfMr-xy5N5xNCLOGGSmD5XwpbY7qBH-WVMCikYzyU6On7JLof_YL_8nwY0ZBfMi7YSCoFhNxeiJjCbL3toUZ-dKjpCXTNWlvVfKQ0C5j5psay9uyaDNgLx4OaFnl_ehQgLYSYB7QPD4JU0-LvAZP6spEOYFAcw1Pq0tm93U6lLdRlgFnYzRPt1vK6rDzvfbxIgOHY9TOLli02kQ_6iS7h4tn-VanUPhTfaWPC1srHBDcfdhHmeWH1f5qGgEWlp3nmvd3SexmNVbJqOv6Y7SAy-ZXBwoqZipDzPF9pztZLNiyeO6QaG0YhBSuDM1IO00T4mas0I_7lAdYmO5JUAkYu5lo4S8wbrzwcxolAY1mxWd3qe-s8eSt0YZvmNPBfSqM9JjxJletz9l8aR1aUBJQDHMfQOcql80_19NyKkBPTC8-&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC5D9-UVwcZMzMIPGNiQahgbT4Dcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCyWCAv-1Jsj6oAwGqBOcBT9C711n_9kwOPQcZ475lgO62s47Z_cpvehOdq6I2aj_bIO5cAQSiQQrn1eJhmbrZoL_Wh6ylwHn4eJNhgVam_V5-EBPathDMo5zlJH2TZ3svUULeNvyY30y6cTXXJCY7mYKXHiooUbjONkNQEn19FtotXWXVmr-Hofpb6jr3r6UDqOgXQfx10DyhYJ-t8n4wxV-uREx9E8fmaGF7AVkBOy9Gpn5ElZzindweif-yB2KdK5-j84QjdJOStBJHDnROV9KpoV7YgUYd8mMWfrTyJ2AJTVQ9kLckGZ1CYmHRnsl7gB3sf5TRgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3tdkpq5KZykwLHDP-tcQl_wiWlTw%26client%3Dca-pub-3137948974307715%26adurl%3D
178.250.1.17200 OK 47 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA&u=%7CUv0ANixBSqUoINUgHksVQSQA3CKo3rlPbvahT6ZTtNQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uvjYy_az68kZxGbvGy5S6NMhUtZtE8z3OdtKdLX-liRSrufTUvI-cHIIvjQgnsOEvBfbVx4IXjPRfMr-xy5N5xNCLOGGSmD5XwpbY7qBH-WVMCikYzyU6On7JLof_YL_8nwY0ZBfMi7YSCoFhNxeiJjCbL3toUZ-dKjpCXTNWlvVfKQ0C5j5psay9uyaDNgLx4OaFnl_ehQgLYSYB7QPD4JU0-LvAZP6spEOYFAcw1Pq0tm93U6lLdRlgFnYzRPt1vK6rDzvfbxIgOHY9TOLli02kQ_6iS7h4tn-VanUPhTfaWPC1srHBDcfdhHmeWH1f5qGgEWlp3nmvd3SexmNVbJqOv6Y7SAy-ZXBwoqZipDzPF9pztZLNiyeO6QaG0YhBSuDM1IO00T4mas0I_7lAdYmO5JUAkYu5lo4S8wbrzwcxolAY1mxWd3qe-s8eSt0YZvmNPBfSqM9JjxJletz9l8aR1aUBJQDHMfQOcql80_19NyKkBPTC8-&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC5D9-UVwcZMzMIPGNiQahgbT4Dcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCyWCAv-1Jsj6oAwGqBOcBT9C711n_9kwOPQcZ475lgO62s47Z_cpvehOdq6I2aj_bIO5cAQSiQQrn1eJhmbrZoL_Wh6ylwHn4eJNhgVam_V5-EBPathDMo5zlJH2TZ3svUULeNvyY30y6cTXXJCY7mYKXHiooUbjONkNQEn19FtotXWXVmr-Hofpb6jr3r6UDqOgXQfx10DyhYJ-t8n4wxV-uREx9E8fmaGF7AVkBOy9Gpn5ElZzindweif-yB2KdK5-j84QjdJOStBJHDnROV9KpoV7YgUYd8mMWfrTyJ2AJTVQ9kLckGZ1CYmHRnsl7gB3sf5TRgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3tdkpq5KZykwLHDP-tcQl_wiWlTw%26client%3Dca-pub-3137948974307715%26adurl%3D
IP 178.250.1.17:0
Hash b0430a86fd07cca87b64bb32dd91cdf1
9565fd61ef790ecf2356d73b84ecc1e4959fc448
510880e7b762f801207f3680dccfdf51d213b7916f7dfc970d0e5eb4a7f18d4b
GET /delivery/r/afr.php?z=ZBxcUQAIJkwKwkbxAA0AoXpbU3v2lvBtU-0tgA&u=%7CUv0ANixBSqUoINUgHksVQSQA3CKo3rlPbvahT6ZTtNQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uvjYy_az68kZxGbvGy5S6NMhUtZtE8z3OdtKdLX-liRSrufTUvI-cHIIvjQgnsOEvBfbVx4IXjPRfMr-xy5N5xNCLOGGSmD5XwpbY7qBH-WVMCikYzyU6On7JLof_YL_8nwY0ZBfMi7YSCoFhNxeiJjCbL3toUZ-dKjpCXTNWlvVfKQ0C5j5psay9uyaDNgLx4OaFnl_ehQgLYSYB7QPD4JU0-LvAZP6spEOYFAcw1Pq0tm93U6lLdRlgFnYzRPt1vK6rDzvfbxIgOHY9TOLli02kQ_6iS7h4tn-VanUPhTfaWPC1srHBDcfdhHmeWH1f5qGgEWlp3nmvd3SexmNVbJqOv6Y7SAy-ZXBwoqZipDzPF9pztZLNiyeO6QaG0YhBSuDM1IO00T4mas0I_7lAdYmO5JUAkYu5lo4S8wbrzwcxolAY1mxWd3qe-s8eSt0YZvmNPBfSqM9JjxJletz9l8aR1aUBJQDHMfQOcql80_19NyKkBPTC8-&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DC5D9-UVwcZMzMIPGNiQahgbT4Dcme0rFcpfyT93DAjbcBEAEgAGDDhICAmBiCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCyWCAv-1Jsj6oAwGqBOcBT9C711n_9kwOPQcZ475lgO62s47Z_cpvehOdq6I2aj_bIO5cAQSiQQrn1eJhmbrZoL_Wh6ylwHn4eJNhgVam_V5-EBPathDMo5zlJH2TZ3svUULeNvyY30y6cTXXJCY7mYKXHiooUbjONkNQEn19FtotXWXVmr-Hofpb6jr3r6UDqOgXQfx10DyhYJ-t8n4wxV-uREx9E8fmaGF7AVkBOy9Gpn5ElZzindweif-yB2KdK5-j84QjdJOStBJHDnROV9KpoV7YgUYd8mMWfrTyJ2AJTVQ9kLckGZ1CYmHRnsl7gB3sf5TRgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_3tdkpq5KZykwLHDP-tcQl_wiWlTw%26client%3Dca-pub-3137948974307715%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=yiL3oV-6eBnVlKvo4cN5fEtAxDdFPGkuAH2mWbm-dVRx6OgIr9HxyKV23CMfMox7Bcea-pEXjaiQyAtj7CmsibL-8kfn0vN2VRzr6GUMQDYCF93fw9ZvgWwesWGJJSfukCWzR_yqugH5MZALBCi-bKgbZKE6rNMBbKObglgF44C0NE3PdsWpIhDkHo21eg0QI8y62vE6eVmKEbIfj_h7rjuo3KfQ2k_haT20UCfDiTEPtUBMa8_rQ4Nh8dCzlOn7L4CLNQ"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 20775063
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAIAiICHkUDAA6peSO7K_syMA_CQSfJlw&u=%7CUv0ANixBSqUuqw8QezxB9Ewb9QqVJhQcnCqa4Dnyc%2FQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuhIx7Na4hXluqNJKaFK1nREchZHgbpa-ESlLBDhLjBSNNIP4JyRGgXDEcu29mSG1w-iqGimYVeGp4Ey19DJdjgFOrUKkW9Y694MDR0lKI4qr5WSHJmgdABfqrX8FkZq7ryN473A_8H6YENmt-alRL8ikNAWzczazN5dG1U5b9NqmPCKdeAGVA3sociTyZut5QvCmBG_YpUuSccsVJAfdyvr0j1YbWhki37ewjonDD-db_makPtzHmpRrjkoVchDfjPQUofeWNTRDIfoiXVoOkuNJKiepWlJS7kmDcFb_GrpdZ5Ni3q3mEIttxpbFPh9hhdDNs_IdiazFigpzJsaMWDHEQ7TM09eZCLE3ITjDFFzlBqLibIG9KTIvHAsWGGdSssgnLsB9VtvophVtlVNHYQxqI7eNUutdbDN9tOD7gyzSMVf43IKzpBbhgRsMi2vEsjZzxUEJ0_77EikaFuY9dIuWAnzVynYAKOHbi-K9lRbYtCh3pwjSj2&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCB6cPUVwcZKKEIIOK-cAP-dK64AjJntKxXM2jlvdwwI23ARABIABguwaCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCU24ivAlPsj6oAwGqBOEBT9D7HUlDXZtmDNNsM0zN0atHSRD8K5AQ7YUtF8UEnufaiFdbjhicw7nyORZNg0OQaG1WUrhYFi7WueQQqwn1TawBv_CaZA62yMiMMwxZjxOqoYe1po4p_fGiDNHQzcYEXL6qpwMlxY2-RibgabqxVS1CvX62l3O4LlYk-yWKiPLOq4p8eqSIJxahbk1E9x7uL-x9yS7eMBOHcykMevAevQBbGMrbG3IdfVZjYASbx1vkdJpoJRo9AF75iu_jRnhzkxoqGHEL0Emood9fFv8Mi6I2kWpaqLtwAJobuIk5IbLYgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_16WK1rnIRvIPvP4SMSEkZ34GQUCA%26client%3Dca-pub-3137948974307715%26adurl%3D
178.250.1.17200 OK 47 kB URL HTTP/2 ads.eu.criteo.com/delivery/r/afr.php?z=ZBxcUQAIAiICHkUDAA6peSO7K_syMA_CQSfJlw&u=%7CUv0ANixBSqUuqw8QezxB9Ewb9QqVJhQcnCqa4Dnyc%2FQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuhIx7Na4hXluqNJKaFK1nREchZHgbpa-ESlLBDhLjBSNNIP4JyRGgXDEcu29mSG1w-iqGimYVeGp4Ey19DJdjgFOrUKkW9Y694MDR0lKI4qr5WSHJmgdABfqrX8FkZq7ryN473A_8H6YENmt-alRL8ikNAWzczazN5dG1U5b9NqmPCKdeAGVA3sociTyZut5QvCmBG_YpUuSccsVJAfdyvr0j1YbWhki37ewjonDD-db_makPtzHmpRrjkoVchDfjPQUofeWNTRDIfoiXVoOkuNJKiepWlJS7kmDcFb_GrpdZ5Ni3q3mEIttxpbFPh9hhdDNs_IdiazFigpzJsaMWDHEQ7TM09eZCLE3ITjDFFzlBqLibIG9KTIvHAsWGGdSssgnLsB9VtvophVtlVNHYQxqI7eNUutdbDN9tOD7gyzSMVf43IKzpBbhgRsMi2vEsjZzxUEJ0_77EikaFuY9dIuWAnzVynYAKOHbi-K9lRbYtCh3pwjSj2&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCB6cPUVwcZKKEIIOK-cAP-dK64AjJntKxXM2jlvdwwI23ARABIABguwaCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCU24ivAlPsj6oAwGqBOEBT9D7HUlDXZtmDNNsM0zN0atHSRD8K5AQ7YUtF8UEnufaiFdbjhicw7nyORZNg0OQaG1WUrhYFi7WueQQqwn1TawBv_CaZA62yMiMMwxZjxOqoYe1po4p_fGiDNHQzcYEXL6qpwMlxY2-RibgabqxVS1CvX62l3O4LlYk-yWKiPLOq4p8eqSIJxahbk1E9x7uL-x9yS7eMBOHcykMevAevQBbGMrbG3IdfVZjYASbx1vkdJpoJRo9AF75iu_jRnhzkxoqGHEL0Emood9fFv8Mi6I2kWpaqLtwAJobuIk5IbLYgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_16WK1rnIRvIPvP4SMSEkZ34GQUCA%26client%3Dca-pub-3137948974307715%26adurl%3D
IP 178.250.1.17:0
Hash 862e09243d28869d32ea5e0820ec6b22
62438ac5be19dd3ab9949f737d7c5998a63050d1
6f6231dee9b235e63a0fce620010e76a3bd919a21bd8149acb0ccf366adfd64b
GET /delivery/r/afr.php?z=ZBxcUQAIAiICHkUDAA6peSO7K_syMA_CQSfJlw&u=%7CUv0ANixBSqUuqw8QezxB9Ewb9QqVJhQcnCqa4Dnyc%2FQ%3D%7C&c1=d4_i42wbpE2NRhSHxThdXdeadzG9gosNB-Ap14Pg0HmFAf1GHAR2jhV7Kd6SKvkZ2c775jfyZY6fGSNGGFpANSWY8jeVe2k8ceL9E5_65uuhIx7Na4hXluqNJKaFK1nREchZHgbpa-ESlLBDhLjBSNNIP4JyRGgXDEcu29mSG1w-iqGimYVeGp4Ey19DJdjgFOrUKkW9Y694MDR0lKI4qr5WSHJmgdABfqrX8FkZq7ryN473A_8H6YENmt-alRL8ikNAWzczazN5dG1U5b9NqmPCKdeAGVA3sociTyZut5QvCmBG_YpUuSccsVJAfdyvr0j1YbWhki37ewjonDD-db_makPtzHmpRrjkoVchDfjPQUofeWNTRDIfoiXVoOkuNJKiepWlJS7kmDcFb_GrpdZ5Ni3q3mEIttxpbFPh9hhdDNs_IdiazFigpzJsaMWDHEQ7TM09eZCLE3ITjDFFzlBqLibIG9KTIvHAsWGGdSssgnLsB9VtvophVtlVNHYQxqI7eNUutdbDN9tOD7gyzSMVf43IKzpBbhgRsMi2vEsjZzxUEJ0_77EikaFuY9dIuWAnzVynYAKOHbi-K9lRbYtCh3pwjSj2&ct0=https://adclick.g.doubleclick.net/aclk%3Fsa%3DL%26ai%3DCB6cPUVwcZKKEIIOK-cAP-dK64AjJntKxXM2jlvdwwI23ARABIABguwaCARdjYS1wdWItMzEzNzk0ODk3NDMwNzcxNcgBCakCU24ivAlPsj6oAwGqBOEBT9D7HUlDXZtmDNNsM0zN0atHSRD8K5AQ7YUtF8UEnufaiFdbjhicw7nyORZNg0OQaG1WUrhYFi7WueQQqwn1TawBv_CaZA62yMiMMwxZjxOqoYe1po4p_fGiDNHQzcYEXL6qpwMlxY2-RibgabqxVS1CvX62l3O4LlYk-yWKiPLOq4p8eqSIJxahbk1E9x7uL-x9yS7eMBOHcykMevAevQBbGMrbG3IdfVZjYASbx1vkdJpoJRo9AF75iu_jRnhzkxoqGHEL0Emood9fFv8Mi6I2kWpaqLtwAJobuIk5IbLYgAblnaPZ__jhzBCgBiGoB6a-G6gHltgbqAeqm7ECqAeDrbECqAf_nrECqAffn7EC2AcA0ggPCIDhgBAQATICqgI6AoBA-gsCCAGADAHQFQGAFwE%26num%3D1%26sig%3DAOD64_16WK1rnIRvIPvP4SMSEkZ34GQUCA%26client%3Dca-pub-3137948974307715%26adurl%3D HTTP/1.1
Host: ads.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: text/html
server: Kestrel
cache-control: private, max-age=0, no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-max-age: 1000
cross-origin-resource-policy: cross-origin
p3p: CP='CUR ADM OUR NOR STA NID'
report-to: {"endpoints":[{"url":"https://csm.eu.criteo.net/heavyad?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g"}], "max_age": 86400}
link: <pix.eu.criteo.net>; rel=preconnect; crossorigin, <static.criteo.net>; rel=preconnect; crossorigin
server-processing-duration-in-ticks: 23302922
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-app.js
104.22.25.131200 OK 11 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-app.js
IP 104.22.25.131:0
File type ASCII text, with no line terminators
Hash d6c216057cf74941e0f97ec88d94f622
16436df71b609c5fa3bc6c0fc8a48fb990964755
8736738e0b0faaa14c0f076d537d62192e4f00172db7d37b5f64bca82a23559d
GET /_s/v4/app/64191eaee7b/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
age: 183943
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a59a59b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Thu, 23 Mar 2023 16:37:38 GMT
Date: Thu, 23 Mar 2023 14:04:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a0d3d7099bbc5fed74a6e78e1a3096bf
96afaf8b3ac053577c56aca5f4a20d8655ecb771
c8ff32c6809a506d4c656d3200dbfc6682c156c3de0647d13ab8f07a6f9a38ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C8FF32C6809A506D4C656D3200DBFC6682C156C3DE0647D13AB8F07A6F9A38BA"
Last-Modified: Tue, 21 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9216
Expires: Thu, 23 Mar 2023 16:37:38 GMT
Date: Thu, 23 Mar 2023 14:04:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e89d0b1281259e7399294fb5fa19d2b
5035ed41f497c97faefae9cdaf42dc07ab468557
f404d286deab5b4759be6e554e6488faab3b4f7988a86eb57520dac4e0d6a192
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F261caab9-983c-4eb1-9fca-fd73dc738e9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10284
x-amzn-requestid: e4d2c324-d0b0-436d-9739-29269e62aed0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM6hjEqtIAMFvXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b713c-5a5bd6b60c1f52ab580f1757;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:21:00 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: g53sZY66fiEL8H79MzI7c7rqI-c-XxMvgB3myz79aw_lE9Aqgc66LQ==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 07:32:23 GMT
age: 23499
etag: "5035ed41f497c97faefae9cdaf42dc07ab468557"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-common.js
104.22.25.131200 OK 51 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-common.js
IP 104.22.25.131:0
File type ASCII text, with very long lines (65466)
Hash 742b45a8b3b9ecaa4be088666a67052b
554003053bdfe73aa3dc5bb835c4a0bc50783810
fbf95b5fd1e77c95f72c3c8496e193ff525196536028a2bf546199aafd9a4ab3
GET /_s/v4/app/64191eaee7b/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"46a0e02a4565e239dc27dd03b88074ee"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 183943
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a58a52b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-main.js
104.22.25.131200 OK 7.5 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-main.js
IP 104.22.25.131:0
File type ASCII text, with no line terminators
Hash ce3ee76c03dbee1d42da95702bd1b479
2a0f7afd1a1a5637d5d078323de159a29fe9dcd5
b16a664699e23df2fc70fcabbc92fd191054e33792bd1796e47962d645d75a15
GET /_s/v4/app/64191eaee7b/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:13 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
age: 183943
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a57a38b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-vendors.js
104.22.25.131200 OK 69 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-vendors.js
IP 104.22.25.131:0
File type Unicode text, UTF-8 text, with very long lines (65464)
Hash 81b589d59979dd04467b40269cef8651
097276e2fc4821d69a603d314a2fe5ab1fad6cf0
f82b6fbbc68197673d9652e75a5c5c283b9bfb3d03f155d7cac1501dd97d2f7d
GET /_s/v4/app/64191eaee7b/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:13 GMT
etag: W/"27a109773b0fdd12c9737166eb5719c2"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 183943
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a58a4eb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-runtime.js
104.22.25.131200 OK 6.7 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-runtime.js
IP 104.22.25.131:0
File type ASCII text, with very long lines (2306), with no line terminators
Hash 2b4d303a00a9cc0a61937451176305e5
2b54750d63d02eae8491f9aa6aa4205c5b5c8d9e
be57b4d0ba403863ea4254fe1346fe97e1dcb17e08a64397601af5a647a1ab88
GET /_s/v4/app/64191eaee7b/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"1c6eb263727e4e9201f8b1de00d72eb1"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 183943
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a59a57b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4a771935927950222124e14b56046df
d07fe53e4ac41048497b2732c017f6666c3eda9e
4e8388626074646c2336711be0a170ceab367c343648a32d2389dd87640251d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a816157-9568-4e7f-a034-14b2f1982949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4912
x-amzn-requestid: d8fcf495-12af-42ae-ad69-0ea07b1a8669
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM8H3Fl1IAMFYgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b73cb-01cbd1981a57e53b3d3cde93;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:31:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 4xGMCVWy2EXLLN8keteGLQvQjOp6KH97rkn_FK10eyng0-5EudcOig==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Mar 2023 21:43:33 GMT
etag: "d07fe53e4ac41048497b2732c017f6666c3eda9e"
content-type: image/jpeg
age: 58829
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=3dUsaF-6eBnVlKvor2WXi4IFodsQMTzB-ElN-eVLozwbdI7_JrDgHQvaFdEVaJIkfQEQqph-37sY8G9BnH6FQqVcreZwwLK_-EKJBa8URmcrj3-OzkzMQVYFYsbx0XQvZUDigV9OzT65YWl7RRtkwcansUpzWXx-gsOuwIdu5vod2uaDl5MFSDDPQ9w8rKdaARhiglf0nkJnL_CXut9tK3DJ_BQLmOHrkMvgMrLpVy7v5sW_FPV_Dg6ST70&sds=2&rev=85392&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=3dUsaF-6eBnVlKvor2WXi4IFodsQMTzB-ElN-eVLozwbdI7_JrDgHQvaFdEVaJIkfQEQqph-37sY8G9BnH6FQqVcreZwwLK_-EKJBa8URmcrj3-OzkzMQVYFYsbx0XQvZUDigV9OzT65YWl7RRtkwcansUpzWXx-gsOuwIdu5vod2uaDl5MFSDDPQ9w8rKdaARhiglf0nkJnL_CXut9tK3DJ_BQLmOHrkMvgMrLpVy7v5sW_FPV_Dg6ST70&sds=2&rev=85392&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=3dUsaF-6eBnVlKvor2WXi4IFodsQMTzB-ElN-eVLozwbdI7_JrDgHQvaFdEVaJIkfQEQqph-37sY8G9BnH6FQqVcreZwwLK_-EKJBa8URmcrj3-OzkzMQVYFYsbx0XQvZUDigV9OzT65YWl7RRtkwcansUpzWXx-gsOuwIdu5vod2uaDl5MFSDDPQ9w8rKdaARhiglf0nkJnL_CXut9tK3DJ_BQLmOHrkMvgMrLpVy7v5sW_FPV_Dg6ST70&sds=2&rev=85392&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=yiL3oV-6eBnVlKvo4cN5fEtAxDdFPGkuAH2mWbm-dVRx6OgIr9HxyKV23CMfMox7Bcea-pEXjaiQyAtj7CmsibL-8kfn0vN2VRzr6GUMQDYCF93fw9ZvgWwesWGJJSfukCWzR_yqugH5MZALBCi-bKgbZKE6rNMBbKObglgF44C0NE3PdsWpIhDkHo21eg0QI8y62vE6eVmKEbIfj_h7rjuo3KfQ2k_haT20UCfDiTEPtUBMa8_rQ4Nh8dCzlOn7L4CLNQ&sds=2&rev=85392&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=yiL3oV-6eBnVlKvo4cN5fEtAxDdFPGkuAH2mWbm-dVRx6OgIr9HxyKV23CMfMox7Bcea-pEXjaiQyAtj7CmsibL-8kfn0vN2VRzr6GUMQDYCF93fw9ZvgWwesWGJJSfukCWzR_yqugH5MZALBCi-bKgbZKE6rNMBbKObglgF44C0NE3PdsWpIhDkHo21eg0QI8y62vE6eVmKEbIfj_h7rjuo3KfQ2k_haT20UCfDiTEPtUBMa8_rQ4Nh8dCzlOn7L4CLNQ&sds=2&rev=85392&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=yiL3oV-6eBnVlKvo4cN5fEtAxDdFPGkuAH2mWbm-dVRx6OgIr9HxyKV23CMfMox7Bcea-pEXjaiQyAtj7CmsibL-8kfn0vN2VRzr6GUMQDYCF93fw9ZvgWwesWGJJSfukCWzR_yqugH5MZALBCi-bKgbZKE6rNMBbKObglgF44C0NE3PdsWpIhDkHo21eg0QI8y62vE6eVmKEbIfj_h7rjuo3KfQ2k_haT20UCfDiTEPtUBMa8_rQ4Nh8dCzlOn7L4CLNQ&sds=2&rev=85392&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78815ec28cdd11dab4f66f2eaab35658
c6fd7f2a657d87c6e7641be6fc69913c427cd26a
f99b9d279c7ddfe7916dde9c7390be1f225e330ffa662bd7ae603ceed76e44c3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Mar 2023 14:04:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
216.58.207.228200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 6e7d14b58831b7e9119414a08c0669d1
e604e4fdaf9328315e905fbfc090677c2103677d
ed33f4164df6c7e859f21e0f050a6824d6786652e48ebadef600ead55aec7a77
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Thu, 23 Mar 2023 14:04:03 GMT
date: Thu, 23 Mar 2023 14:04:03 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-LSJe3BKQZ_R3ZdaKQhN8Sw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/languages/en.js
104.22.25.131200 OK 34 kB URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/languages/en.js
IP 104.22.25.131:0
File type ASCII text, with CRLF, LF line terminators
Hash cb48d48c83ba4b70f5487d48952c2bc6
24196d9bd4cf94bf31275a8fb90247fea6d75c3c
28b8ce1031570de3d2bb01ba9bbecb13fdeb10a2d679a503f4ea2cee2f0d545f
GET /_s/v4/app/64191eaee7b/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:13 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
age: 211715
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aa6a37b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
csm.eu.criteo.net/all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true
178.250.0.162200 OK 0 B URL HTTP/2 csm.eu.criteo.net/all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true
IP 178.250.0.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /all?cppv=3&cpp=kQGq71-6eBnVlKvo54lfOknRYcpz1iRuI07-QxR4methQ4dHqvsLPv03R1LWRBACQe5bxqm3-rAK-QRhvmYD_SMZ-1MuInModKBI7mQQ5U1XL-yD2Dqjkbc9407-u9oYwF8O4jlfNJUiBEStVD05TuQIrf6OMuNK065yIIvmM-oWzJvFIqV_-yI0u8AOdddfDJfSkPjQ3wH5BSoksL73zAF81W39GMAxEYwWDYiaiukYG75Ja7luMab15CpYVA2E6RL24g&sds=2&rev=85392&sendBeacon=true HTTP/1.1
Host: csm.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 35
Origin: https://ads.eu.criteo.com
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
server: Finatra
content-length: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=61519116d326717cb6837f25&widgetId=1fgj9tggh&sv=undefined
104.22.25.131200 OK 4.6 kB URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=61519116d326717cb6837f25&widgetId=1fgj9tggh&sv=undefined
IP 104.22.25.131:0
File type Unicode text, UTF-8 text, with very long lines (3165), with no line terminators
Hash b0aae31d2da4738668a4359191e705e8
c217e9df712107e3620795e64849ff255a3092c5
6f67f20a0c238da8355e14728264cb4fdd6b9095959dd4dc27317b91385872cb
GET /v1/widget-settings?propertyId=61519116d326717cb6837f25&widgetId=1fgj9tggh&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://zeroupload.com/
Origin: https://zeroupload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-d9gd
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-89-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a66b85b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zeroupload.com/cdn-cgi/apps/head/VKAe3Te_4Mlk9kdOurVHEvd-qbk.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/cdn-cgi/apps/head/VKAe3Te_4Mlk9kdOurVHEvd-qbk.js
IP 188.114.96.1:0
GET /cdn-cgi/apps/head/VKAe3Te_4Mlk9kdOurVHEvd-qbk.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: +VHD7Yyfwe1NY7a8tnYB30ySUXNTUKH57bjWLglRHZ5WqLoI2TePB+dQ4lFrPIcWWZRu054ErQk=
x-amz-request-id: 3AMZC2N9W540XDFJ
cache-control: public, max-age=31536000
last-modified: Sun, 11 Sep 2022 09:09:18 GMT
x-amz-version-id: x4G8_YBMdOTbM1c8hfaaEiQ36p0bLI7l
etag: W/"c356332cdee9abb0f4b5f3c62d3ba36e"
cf-cache-status: HIT
age: 5166271
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4bVIRQaZNdkUw61SdpSsyp2BOTIUdwkSZK2BHKgtTr6dM2UpQrpJQ9TYuSkd30xf%2BwT%2BPmR8fkVr2795cc6MNdO4XtfOfWLeV2BD5rXvpd6Q8CpyLssafMA53%2FgafKuNGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ac738971c95b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/icon?family=Material+Icons
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons
IP 142.250.74.138:0
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 23 Mar 2023 14:04:00 GMT
date: Thu, 23 Mar 2023 14:04:00 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/jquery.dataTables.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-10fe4"
expires: Thu, 23 Mar 2023 17:10:33 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LiLgAtT539LvDPVXEeKsAFyhdyAf2k8LnwQflfXRX%2BVxSUDTtMaspVHEda5NJgGJe4Z9yLv0jiRQTq%2BBz2VKbWx5YMsWk4CcSLFUmkOGub1LlhpHjTYEEyhJac2%2BOJWqvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738972cc8b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/jquery.steps.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/jquery.steps.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/jquery.steps.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-3621"
expires: Thu, 23 Mar 2023 09:11:59 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YZBKwUh7nDyiJKKWPKjn9gtp4Iwtjh5mzqYqEuOsnPOc65rh3mP2gqg3AM3%2FbC%2Fd9kRUcgddhtfQJaqiLfg1PaldAtwnZ5X8GQNuOe%2BKUEl8GUD%2BLs2iLqvgONIF9rXh6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973ce0b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-vendor.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-vendor.js
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: application/javascript
age: 183943
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a57a3bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-f163fcd0.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-f163fcd0.js
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/js/twk-chunk-f163fcd0.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:13 GMT
etag: W/"a92075fd9ac5ba130387a80453676099"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 211702
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aa9a97b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/jquery.steps.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/jquery.steps.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/jquery.steps.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
vary: Accept-Encoding
etag: W/"5f71f2a4-1606"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ioZiLpHtwHo4b8cWcqzabUno0%2FFO9geo2n3%2ByyzIcSXBqReeBXdJPdaJwtnXEJm5kvuPvNoB9vLzFGKlsfXesM7UNHe2bzHWcVXnSC6qqiFJiwwjc2depv5ptKyHMv6bSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971ca5b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/adchoices_en.svg
178.250.1.3200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/adchoices_en.svg
IP 178.250.1.3:0
GET /flash/icon/adchoices_en.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:27:58 GMT
etag: W/"5e42b9ee-759"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/smooth-scroll.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-1776"
expires: Thu, 23 Mar 2023 16:16:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u7IeQE2w%2Bxzv0AD0aMMplGvVTcboIwsqHGxS06vV01IPdy6ASpqON97Xjm2ay0mJH3wS605AmvWzvodU8qp%2BaGloi3FCfk5dldH5aEWDjyzCppceMhotd9M8s7qycO9Ryw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973ce6b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/countdown.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/countdown.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/countdown.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-14db"
expires: Thu, 23 Mar 2023 16:15:10 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NA6An5Kr6tyn1O3fU%2BPpgfWG7JfJEUAtNvClmpiMZuTOCvit8WRwYZE5JrhuU2Nz4Hujt74KpitUh3WsJhA3ENECOU3Kt4h8lgVqBAKZNa2JNi0%2BcT5nmgLjt7%2Frr7kLQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973ce5b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
104.22.25.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.25.131:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://zeroupload.com/
Origin: https://zeroupload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
x-served-by: visitor-application-preemptive-87hk
access-control-allow-origin: https://zeroupload.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738a67bb4b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/stack-interface.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/stack-interface.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/stack-interface.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
vary: Accept-Encoding
etag: W/"5f71f2a4-c0a"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IFZYrMoUcHrILmdDYfzw6SyBjFvUXwkFkxYteFiSJOivdElsZhIHHBUOZHy6x%2Fm6mnEb3E7e2C7%2Bw18dq%2BRx4OUN0ZixFUAbxQvN9MiyYSm5nsI191V%2F4FW60bijEhWttg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971c98b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/iconsmind.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/iconsmind.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/iconsmind.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
etag: W/"5f71f2a4-178bf"
expires: Thu, 23 Mar 2023 16:16:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YeO%2FzMSu%2FrBQOjB25eSpVZCYDfZvNXz%2B3t1IH13E0GTVrVmZWLrUDTbZki37DW7KJbahgMbhrQ8BFZJa5IZHWh1wgG7wZOzqzvobvcRDep8tTb9Eo%2FGWEhShS5TElM1%2FGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971ca1b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-2d0b9454.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-2d0b9454.js
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"09c3819d373bd4178a620d721429fada"
age: 211702
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aa9a92b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-32507910.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-32507910.js
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/js/twk-chunk-32507910.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
etag: W/"3f0102d3a92644cf9e2e2437a1344c65"
age: 211702
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aa9a9ab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/61519116d326717cb6837f25/1fgj9tggh
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/61519116d326717cb6837f25/1fgj9tggh
IP 104.22.25.131:0
GET /61519116d326717cb6837f25/1fgj9tggh HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://zeroupload.com
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-64191eaee7b"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 7142
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac73898ddd2b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/cookiealert.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/cookiealert.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/cookiealert.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
etag: W/"5f71f2a4-3051"
expires: Thu, 23 Mar 2023 16:15:29 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V0BMKN1tIjlWpZg%2F1KumfU984EW6%2FWlqaUybIN0RvGPideEdjhPpHlKyN%2Fb%2BqP%2FNup6OgbAkzgI4RKVCLxhfOCRJ8W57QfvGxa3SuG5ajRUX90QcINLQNdyF40a7QcSDow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971ca7b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
ad.a-ads.com/1791684?size=250x250
148.251.233.147200 OK 0 B URL HTTP/2 ad.a-ads.com/1791684?size=250x250
IP 148.251.233.147:0
ASN #24940 Hetzner Online GmbH
GET /1791684?size=250x250 HTTP/1.1
Host: ad.a-ads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: text/html;charset=utf-8
vary: Accept-Encoding, Accept-Encoding
status: 200 OK
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-powered-by: Phusion Passenger(R)
x-original-referer: https://zeroupload.com/
x-robots-tag: noindex, nofollow, nosnippet, noarchive
content-encoding: gzip
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/font-awesome.min.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/font-awesome.min.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/font-awesome.min.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
etag: W/"5f71f2a4-e6eb"
expires: Thu, 23 Mar 2023 16:16:40 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=efmewTrxeiDU2uE0GlKBKxNKlgjHUstDK9Elm5684V66aBbQ2ImytLm9jPFlPVYvMb6SU2zyIgOi%2BBRG8kCWp611tKd1ohaegZZWL5h%2FL96pELpk2d471K1FlCk1cNd%2BwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971cacb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/css/theme.css
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/css/theme.css
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/css/theme.css HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 28 Sep 2020 14:26:44 GMT
etag: W/"5f71f2a4-301d8"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o9GzMrEbtKjzBeEtp%2F3NeiIeVibGnH0njbEaPuXJOAH2xdLVEJT48RTLm4tL5iud20HeqMG2VNi4PGLgI5LeQ0IDZG47m9OilIk45Qqq3b8k3B7cS8yfEG9A8COVudC4UA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738971cabb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/animejs/animejs.js
178.250.1.3200 OK 0 B URL HTTP/2 static.criteo.net/animejs/animejs.js
IP 178.250.1.3:0
GET /animejs/animejs.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: text/javascript
last-modified: Tue, 26 Mar 2019 17:44:11 GMT
etag: W/"5c9a64eb-3181"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/scripts.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/scripts.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/scripts.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Wed, 14 Oct 2020 16:17:02 GMT
vary: Accept-Encoding
etag: W/"5f87247e-1b521"
expires: Thu, 23 Mar 2023 17:11:06 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8kw83FB8HVsPtc4XNc9UY%2F6bTkDK9loC7Co4ZmCmnpWhoTj4HUB5CHShuQNX2bqtbkCabKfPO%2F6lya%2FF6O2hPGkRFnwKd3oUmpdp5UXSER0Ey68Rrfyk%2FKMfXZi4NxFOLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738974cf8b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/cookiealert.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/cookiealert.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/cookiealert.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-72c"
expires: Thu, 23 Mar 2023 16:16:55 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BJ7CqSvoksL2M%2BEkS4huF8KskQaDdj2SLUcgNO%2BZ26zhKqwSkcmYH5hV%2BmtB2CP%2BrPGS5FtCBU3DsDdl99lXDNToPC8XtnLVALNKY9T7ZtGgx4X6IYqBwkk3w9cMzMk4cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738974cf9b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/css/min-widget.css
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/css/min-widget.css
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24960
access-control-allow-origin: *
age: 211702
etag: W/"80df9814fe6b98404ccc1df3c455ceaa"
last-modified: Tue, 21 Mar 2023 03:06:12 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aaeb2db50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=V-O2qHQ2B0KaGDcWER7To3_vPJ0VJd-JILb-BNqEIUWTCqebF9mDlcAYCuN_SKnU1cktXzt60XQDnomzY6VX6cAZGk-luV-dQIm8PpfbqiSSkrr31FeYL5mUl9RbWgfRIiIvxCIg2QNAJLhvRXlUFAETsjtVML1kynf5N7YtEmwG8JugDYXwkrHbZKaonaybQeffCoVzKpiWORtp5kDe9TcY8NbNFL8rXbTt1IQDn1OK0xiyI8TBIdHxmoPObuFfNO_Lj7LSjGdViTGhQCsItKEXoGqjg1JEYDUcICF9Gs0877NUene_XLh82K4zo9lGbHvNreMJ2LgVmUuzcrqeCTQuuY44l66YG5iwUeiSIsbRhVxUtNfj3FKLpo3yh29Ys2h1wGnXar7Y_k6qw-9peVlXArIsRyYA14azOv9k8JCzZbAJ
178.250.1.6200 OK 0 B URL HTTP/2 cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=V-O2qHQ2B0KaGDcWER7To3_vPJ0VJd-JILb-BNqEIUWTCqebF9mDlcAYCuN_SKnU1cktXzt60XQDnomzY6VX6cAZGk-luV-dQIm8PpfbqiSSkrr31FeYL5mUl9RbWgfRIiIvxCIg2QNAJLhvRXlUFAETsjtVML1kynf5N7YtEmwG8JugDYXwkrHbZKaonaybQeffCoVzKpiWORtp5kDe9TcY8NbNFL8rXbTt1IQDn1OK0xiyI8TBIdHxmoPObuFfNO_Lj7LSjGdViTGhQCsItKEXoGqjg1JEYDUcICF9Gs0877NUene_XLh82K4zo9lGbHvNreMJ2LgVmUuzcrqeCTQuuY44l66YG5iwUeiSIsbRhVxUtNfj3FKLpo3yh29Ys2h1wGnXar7Y_k6qw-9peVlXArIsRyYA14azOv9k8JCzZbAJ
IP 178.250.1.6:0
GET /delivery/lg.php?cppv=3&cpp=V-O2qHQ2B0KaGDcWER7To3_vPJ0VJd-JILb-BNqEIUWTCqebF9mDlcAYCuN_SKnU1cktXzt60XQDnomzY6VX6cAZGk-luV-dQIm8PpfbqiSSkrr31FeYL5mUl9RbWgfRIiIvxCIg2QNAJLhvRXlUFAETsjtVML1kynf5N7YtEmwG8JugDYXwkrHbZKaonaybQeffCoVzKpiWORtp5kDe9TcY8NbNFL8rXbTt1IQDn1OK0xiyI8TBIdHxmoPObuFfNO_Lj7LSjGdViTGhQCsItKEXoGqjg1JEYDUcICF9Gs0877NUene_XLh82K4zo9lGbHvNreMJ2LgVmUuzcrqeCTQuuY44l66YG5iwUeiSIsbRhVxUtNfj3FKLpo3yh29Ys2h1wGnXar7Y_k6qw-9peVlXArIsRyYA14azOv9k8JCzZbAJ HTTP/1.1
Host: cat.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1739344
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-4fe9d5dd.js
104.22.25.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/64191eaee7b/js/twk-chunk-4fe9d5dd.js
IP 104.22.25.131:0
GET /_s/v4/app/64191eaee7b/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:03 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 03:06:13 GMT
etag: W/"5f434bdd806571a4e1b385bee9316ff6"
age: 211703
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ac738aa9a8eb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
IP 188.114.96.1:0
GET /84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, no-cache
pragma: no-cache
strict-transport-security: max-age=31536000
cf-cache-status: BYPASS
set-cookie: filehosting=trkvo7uknu7v83sn0hid9sram0; expires=Fri, 24-Mar-2023 14:04:00 GMT; Max-Age=86400; path=/
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=evYDJaqgGaGMem2uoXqHMlEBml6og%2BOeb6io0XTmNv1oVJi7W2Suq5HaPIWRJDIxFnk8OmKqn0ZlgTiTnWMIBblZOA7zRhSMK6xyHrU2%2BfzVk9%2F%2FBylbnzk7rm5t1vcElQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac73895eb01b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=1M5NJ3Q2B0KaGDcWER7To3_vPJ31VY8c7YuRBUKz8iMEHSViF_d3XGD9_x8QpD_P6D9FJ4md6HRZPIMuQW06w9M-GnyMJ3WYl1FSH8-LnbRvypWks3_56ZrrSiOsmHgIXkOU_Z-G37-E7tOBdJqTu67o1zY90kQJxJa9hU94CREQ23FWS0wC0EEc2fYAdNx84OPBGJeLXRe5ps1EUf-r9IUuaa1szNtIPAEJG2UGlDGcciUnM2RxTRNxyzw7Pol0TXAvt2fPz25HEjkS92jaHSJGidyzhZd2zJFawtFcJVsQ7PVmsIX8NwQVGp3Rb0L4uEmAQXcHe0V0MFJUz0Hj3UAy5IWU_yA_66TKZwd18DedlZm2tVr1e6C8j-VZBMiGjD7sKQCJt_SwAIEAVFbmvCv_raqc5QHQGsxql1pLRPlHApuN
178.250.1.6200 OK 0 B URL HTTP/2 cat.nl3.eu.criteo.com/delivery/lg.php?cppv=3&cpp=1M5NJ3Q2B0KaGDcWER7To3_vPJ31VY8c7YuRBUKz8iMEHSViF_d3XGD9_x8QpD_P6D9FJ4md6HRZPIMuQW06w9M-GnyMJ3WYl1FSH8-LnbRvypWks3_56ZrrSiOsmHgIXkOU_Z-G37-E7tOBdJqTu67o1zY90kQJxJa9hU94CREQ23FWS0wC0EEc2fYAdNx84OPBGJeLXRe5ps1EUf-r9IUuaa1szNtIPAEJG2UGlDGcciUnM2RxTRNxyzw7Pol0TXAvt2fPz25HEjkS92jaHSJGidyzhZd2zJFawtFcJVsQ7PVmsIX8NwQVGp3Rb0L4uEmAQXcHe0V0MFJUz0Hj3UAy5IWU_yA_66TKZwd18DedlZm2tVr1e6C8j-VZBMiGjD7sKQCJt_SwAIEAVFbmvCv_raqc5QHQGsxql1pLRPlHApuN
IP 178.250.1.6:0
GET /delivery/lg.php?cppv=3&cpp=1M5NJ3Q2B0KaGDcWER7To3_vPJ31VY8c7YuRBUKz8iMEHSViF_d3XGD9_x8QpD_P6D9FJ4md6HRZPIMuQW06w9M-GnyMJ3WYl1FSH8-LnbRvypWks3_56ZrrSiOsmHgIXkOU_Z-G37-E7tOBdJqTu67o1zY90kQJxJa9hU94CREQ23FWS0wC0EEc2fYAdNx84OPBGJeLXRe5ps1EUf-r9IUuaa1szNtIPAEJG2UGlDGcciUnM2RxTRNxyzw7Pol0TXAvt2fPz25HEjkS92jaHSJGidyzhZd2zJFawtFcJVsQ7PVmsIX8NwQVGp3Rb0L4uEmAQXcHe0V0MFJUz0Hj3UAy5IWU_yA_66TKZwd18DedlZm2tVr1e6C8j-VZBMiGjD7sKQCJt_SwAIEAVFbmvCv_raqc5QHQGsxql1pLRPlHApuN HTTP/1.1
Host: cat.nl3.eu.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:01 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP="NON DSP COR CURa PSA PSD OUR BUS NAV STA"
server-processing-duration-in-ticks: 1945444
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/jquery-3.1.1.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-152b5"
expires: Thu, 23 Mar 2023 17:06:07 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=flZeqTbUKbmzTejshvCLXEU12aEhCrhaqMY6k201IvnqAgwloAuJ8gS3TZA58qLBkYc5itXbqrAF7PMFBuhANkit3mH21fmNrAVsNBdX40lY%2FteCtMlaRyQnoSnzWCsXmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738972cc5b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
zeroupload.com/themes/spirit/assets/frontend/js/flickity.min.js
188.114.96.1200 OK 0 B URL HTTP/2 zeroupload.com/themes/spirit/assets/frontend/js/flickity.min.js
IP 188.114.96.1:0
GET /themes/spirit/assets/frontend/js/flickity.min.js HTTP/1.1
Host: zeroupload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://zeroupload.com/84e5dbe67b32e592/EPLAN_Pro_Panel_2022.0.3.17561.rar
Cookie: filehosting=trkvo7uknu7v83sn0hid9sram0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Mar 2023 14:04:00 GMT
content-type: application/javascript
last-modified: Mon, 28 Sep 2020 14:26:40 GMT
vary: Accept-Encoding
etag: W/"5f71f2a0-d265"
expires: Thu, 23 Mar 2023 16:54:57 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 20550
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z7xlhBUOoU4EkHDBs03xCz%2FRdgGXL6INL2D6cL6tYqYfUD%2Fta3tNTILgq2dP8QTZ0F496ObwCJC2cPjgC4FeDbIVvaiPty1ZMPjdIlf6hG4ZcSoKVYL6%2Bpe%2BEvo3aVTxlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ac738973cccb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.criteo.net/flash/icon/privacy_small.svg
178.250.1.3200 OK 0 B URL HTTP/2 static.criteo.net/flash/icon/privacy_small.svg
IP 178.250.1.3:0
GET /flash/icon/privacy_small.svg HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ads.eu.criteo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 23 Mar 2023 14:04:02 GMT
content-type: image/svg+xml
last-modified: Tue, 11 Feb 2020 14:30:28 GMT
etag: W/"5e42ba84-6aa"
expires: Sun, 17 Mar 2024 14:04:02 GMT
cache-control: max-age=31104000, public
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2