GET /wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
 172.67.174.215
HTTP/1.1 403 Forbidden
Content-Type: text/html; charset=UTF-8
Date: Tue, 28 Mar 2023 08:50:04 GMT
Transfer-Encoding: chunked
Connection: close
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Resource-Policy: same-origin
Permissions-Policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i9HNtkzNGKuA1TZ8DWR0J%2BuXYJrOGeQEwwM7BQezaA3j9QencbePkPNVQB3QmiPXxA86w80lmMbslVMoQKFIhadcYzED%2FYf%2BRvHLOU7%2F0fx5RluciQeuNt%2BC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aee9f972c8db515-OSL
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3645
Expires: Tue, 28 Mar 2023 09:50:49 GMT
Date: Tue, 28 Mar 2023 08:50:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F48CBE4D605E660A45267400E0ADD4F7BC7CD523C450376ECD8E3A7F094ABF56"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2655
Expires: Tue, 28 Mar 2023 09:34:19 GMT
Date: Tue, 28 Mar 2023 08:50:04 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13227
Expires: Tue, 28 Mar 2023 12:30:31 GMT
Date: Tue, 28 Mar 2023 08:50:04 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 28 Mar 2023 08:15:49 GMT
age: 2055
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 8alw9rVPSDh+5esc2Qt9rS4CpX51lAMbNlom6Ul8a9TTEFfMeHteQu3A80dPXPEywliNXc+8eXk=
x-amz-request-id: J6AT96HP7TY8D984
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 28 Mar 2023 08:01:58 GMT
age: 2886
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Connection: keep-alive
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: text/css
Date: Tue, 28 Mar 2023 08:50:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 12:30:57 GMT
ETag: W/"6419a381-19c8"
Server: cloudflare
CF-RAY: 7aee9f996e920b06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 28 Mar 2023 10:50:04 GMT
Cache-Control: max-age=7200, public
Content-Encoding: gzip
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Tue, 28 Mar 2023 08:50:04 GMT
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /cdn-cgi/images/trace/jsch/js/transparent.gif?ray=7aee9f972c8db515 HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Connection: keep-alive
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Tue, 28 Mar 2023 08:50:04 GMT
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 21 Mar 2023 12:30:57 GMT
ETag: "6419a381-2a"
Server: cloudflare
CF-RAY: 7aee9f9a1f390b06-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Expires: Tue, 28 Mar 2023 10:50:04 GMT
Cache-Control: max-age=7200, public
Accept-Ranges: bytes
|
GET /cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=7aee9f972c8db515 HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH&__cf_chl_rt_tk=fWKyzUCJuVqIUDYkUrE4iBpq7ihAks3y26tbQ1v7rio-1679993404-0-gaNycGzNBjs
Connection: keep-alive
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Date: Tue, 28 Mar 2023 08:50:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=0, must-revalidate
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4LgLruKkYUzv9sPCDBHORqRt8BEzF5m7B4qE11lszTwAtC0j%2FMEQ676rV62kQF7f9%2BdkPAZ8gVbV38DfQTHXZRLCuVv202B00u349kWmTT5yRcSPbbcEd4zb"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aee9f9a1e03b512-OSL
Content-Encoding: gzip
|
GET /favicon.ico HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Connection: keep-alive
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: image/x-icon
Date: Tue, 28 Mar 2023 08:50:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 17:10:34 GMT
ETag: W/"636d308a-13e"
Expires: Sun, 24 Sep 2023 06:25:00 GMT
Cache-Control: max-age=15552000
CF-Cache-Status: HIT
Age: 4380
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mpmkikq0gZP3epYuzKxXFseEBXfe2pxhRpFb5PKb2N4mvF3Y9U2f%2BQMFJRcKPMv2SLFcoU53U5FTl9EurSr%2BFwA6xEp5sFWLJxBQcJ0TwkxtQdw7gnNEeOEI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aee9f9a6e53b512-OSL
Content-Encoding: gzip
|
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1106062:1679990721:bL_yF1Gf5FtmN5YJilfLUGUXWwmQAv_tENPixJP9PSQ/7aee9f972c8db515/e482334c9683513 HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Content-type: application/x-www-form-urlencoded
CF-Challenge: e482334c9683513
Content-Length: 1887
Origin: http://13dl.to
Connection: keep-alive
Cookie: cf_chl_2=e482334c9683513
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: text/plain; charset=UTF-8
Date: Tue, 28 Mar 2023 08:50:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
cf_chl_gen: OpY1QrWXIFgT4pz80Ug7lfCrqPO1cGwJWpbIM7iB/n7Ft12Dic3zw919uw481VoYib7VrPmVcNL7xDwGN1FjNlHXZgR9beZ+VE94fkHW1VQkEZg+gJrJq00OfZmIfjkqeN2XmCqrIcT1Th6sxaw1S3doI6SHYFCm55ImDGY0zpPO8bxeh6fVWiCSh5YR6He7cbqWOrYTWskvLnONW1jwuAxjKEy5gMaBInFYPq1wQOKI4OW1l3bOYRC/2H9goAvXbLv7YemNk8IzR2XaquBOCJZw0WQi0eMg2JhJW4nrY/L+gDR+MFiS5L06otnTumY5ovrvxgCkqgzk6np+xCtGqjG/OJLlQW7p8uCuu2G7uP/5PtnmGh7G+TbgOWGD96H4$aJOpfDv0/sClL9cFHl0TtQ==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8%2FiLD4j4zyS8nvroRn4msdWl5fMrnX%2BOxgeZ6M12weBK3l3TL%2FV%2FYkAzyVidptdofgBsP0DFeiEcHObdjp7K4GOJ8q%2FDfhXarM31ld5cHRfibOPqK6fxhXWi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee9f9b5f69b512-OSL
Content-Encoding: gzip
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
35.241.9.150
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 28 Mar 2023 08:17:24 GMT
age: 1960
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560"
Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14657
Expires: Tue, 28 Mar 2023 12:54:22 GMT
Date: Tue, 28 Mar 2023 08:50:05 GMT
Connection: keep-alive
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IUu+eE6W8Qgf1B+JfsrHkA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
54.148.119.23
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iDXWT9h0bVGQAtLSlS8A1WVAM+o=
|
GET /cdn-cgi/challenge-platform/h/b/img/7aee9f972c8db515/1679993404705/hFUU5EMbif2JTy4 HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Connection: keep-alive
Cookie: cf_chl_2=e482334c9683513
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: image/png
Date: Tue, 28 Mar 2023 08:50:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CpHrlGrbU%2Fc3OmjkSTB2Im2adyAlAAjoav%2FEpQPAiHz9jv%2F8eApAMzg0fPOreS0WPmhuVvXRlv%2FxuymUflNppG9GnvI046vJYxEgcKMWApzrlX4ofbnVCK8y"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7aee9fa65e20b512-OSL
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Tue, 28 Mar 2023 10:59:38 GMT
Date: Tue, 28 Mar 2023 08:50:06 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Tue, 28 Mar 2023 10:59:38 GMT
Date: Tue, 28 Mar 2023 08:50:06 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Tue, 28 Mar 2023 10:59:38 GMT
Date: Tue, 28 Mar 2023 08:50:06 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7772
Expires: Tue, 28 Mar 2023 10:59:38 GMT
Date: Tue, 28 Mar 2023 08:50:06 GMT
Connection: keep-alive
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6970
x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Cdn3zGn7oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 23:12:05 GMT
age: 34681
etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9859
x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRP5DG2BoAMFrdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:50:10 GMT
age: 39596
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10744
x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbogF0poAMFTAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: uCaEsILUx4u_fBJ7J9CgQanUW-BmV69mFvGRjZ0roFWluE_joVyVrA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:21 GMT
age: 39705
etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b52cdb6-fba9-4cd0-86e0-0d86c6c552fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5753
x-amzn-requestid: 50e6db48-a3db-4370-be33-fe0167564b9d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbofEWhoAMFQkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220c9c-3245359e633022301b959458;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: zu3XEBObpyM8hpYDfqk8-CexBVYxyiJofRNJp1jSd4zBJwbGjFtyIQ==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 21:48:31 GMT
age: 39695
etag: "818ffa87758531c2951e5aa7f8a38bb42422027e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72713d4b-dac7-4d4c-bfff-c16bd305c5b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6542
x-amzn-requestid: 1106a670-cf68-4e3d-b5af-3013407acc5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbsjGAaoAMF5GQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cb6-726c7ba02ddb31182834d82d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:58 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: TTkQTse69m-F42cDPL9Ekonn48FG74B_3jFCpvBEa7au89m0_JE3og==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 536063cb28bfc05fcb7a78183dd89b72.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:06:45 GMT
age: 38601
etag: "cfe8cd953330252e15594f403e2f38ec56acdfd7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1785453a-90eb-4278-bb45-ecb2d234399e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9900
x-amzn-requestid: d88cf54d-3818-48d5-9040-d682a832e2c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdcviGu0IAMF9rQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220e63-16ec623d72fcab2020a48440;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:45:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: xPL3DJuJm4ktdHpZ9ll_0nD32BJWiKj-4HC6RFOZk9BKF8NwrEqgnA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 22:14:14 GMT
age: 38152
etag: "dda231e3d1c10019aaf1bcb3dafec0e29e46792f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1106062:1679990721:bL_yF1Gf5FtmN5YJilfLUGUXWwmQAv_tENPixJP9PSQ/7aee9f972c8db515/e482334c9683513 HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Content-type: application/x-www-form-urlencoded
CF-Challenge: e482334c9683513
Content-Length: 16576
Origin: http://13dl.to
Connection: keep-alive
Cookie: cf_chl_2=e482334c9683513
|
172.67.174.215
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Tue, 28 Mar 2023 08:50:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
set-cookie: cf_chl_rc_ni=;Expires=Mon, 27 Mar 2023 08:50:06 GMT;SameSite=Strict
cf_chl_out: GsbKbmAb+Pzh4pjNY+DgYO6m87XMWoJ7oR8P7++wsFfllnLR3BPxxWgnrgCDRz6AU2CBRnOI9g87mrQI1o4soLAjHTt/zq5ptdYZ8Nd0sWM=$Ab/d+ENSOrcCj1W3tZqHGw==
cf_chl_out_s: PwzVWhWICw5lB7N4HT+eB1YGMTKZGV8rfuxJfZYOwD7zZesld0vToBEiwMN6ye2gjY+uATmna3xfjGJMxkhIgRdoYxzliuyj7VwIXXcQjdudLxuLCUG2SfXhBh0yQYR11Yi43e+DPqz1tKnCOcyOqpPBAXI8IU3VRDTjJ9e89l/ZJUH+e/S3I4xDXVoAp2DG$BuhhwSn/HrW1Mh8bgC/Esg==
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FERQntY%2Bq%2FsnbUPFFbn8%2Bo5mv%2FjctpDQ3xlpbSl6FM2K4o2J12PJMgGCVQeAPZ6dx2pVooFlWaLfoZl9CkWIfO%2FQO1lINoqihLEcRUvYOnwzUeQ2J2kRD7bC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee9fa8a941b512-OSL
Content-Encoding: gzip
|
POST /wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH&__cf_chl_tk=fWKyzUCJuVqIUDYkUrE4iBpq7ihAks3y26tbQ1v7rio-1679993404-0-gaNycGzNBjs
Content-Type: application/x-www-form-urlencoded
Content-Length: 1670
Origin: http://13dl.to
Connection: keep-alive
Cookie: cf_chl_2=e482334c9683513
Upgrade-Insecure-Requests: 1
|
172.67.174.215
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Date: Tue, 28 Mar 2023 08:50:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: cf_chl_2=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.13dl.to
cf_clearance=eV.LU_PrApbxV0woWj5Na8TumeWQFJcVYdqXYTDlBzk-1679993404-0-150; path=/; expires=Wed, 27-Mar-24 08:50:06 GMT; domain=.13dl.to; HttpOnly
Location: http://13dl.to/wp/zip/wp-ads3/?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH
Cache-Control: max-age=1
Expires: Tue, 28 Mar 2023 08:50:07 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XGoz3GkQZlrwBWvdjc8P6EdKBgWUtY3bWplnrXoAnewpaCNRtHykbSTm%2Bo7tQPBGZCeSrRo1AibyTVTqx42md06YbZ0IfML1ayI%2BuyJ%2BveOgAEnjV7MRKryP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee9fa929f9b512-OSL
|
GET /wp/zip/wp-ads3/?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH HTTP/1.1
Host: 13dl.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://13dl.to/wp/zip/wp-ads3?url=zq2l1qeeX2WjxKafl8yUpNSiY6bI1mWYy9CclGSam26bbpOcZ8ZonGabbJeVymRgyJJmbcaZZmiVm5jH&__cf_chl_tk=fWKyzUCJuVqIUDYkUrE4iBpq7ihAks3y26tbQ1v7rio-1679993404-0-gaNycGzNBjs
Connection: keep-alive
Cookie: cf_chl_2=e482334c9683513; cf_clearance=eV.LU_PrApbxV0woWj5Na8TumeWQFJcVYdqXYTDlBzk-1679993404-0-150
Upgrade-Insecure-Requests: 1
|
172.67.174.215
HTTP/1.1 302 Found
Content-Type: text/html; charset=UTF-8
Date: Tue, 28 Mar 2023 08:50:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.2.34
Location: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cache-Control: max-age=1
Expires: Tue, 28 Mar 2023 08:50:08 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sBwy06Gmbez0GaA%2B0NgQKId23JCMs3a4oJ7bGGlv4MUViOdBJgr3rTMZ9K78NRMzFCZaVKgbHyupWqGdgQHVptve8t1rhNNz3aLni1BjcxSc4wCgUm9%2BN5zK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7aee9fa9aaaab512-OSL
|
GET /file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
 195.211.222.2
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: lang=en; expires=Wed, 18 Jul 2029 05:49:51 GMT; Max-Age=199054784; path=/
lang=en; expires=Wed, 18 Jul 2029 05:49:51 GMT; Max-Age=199054784; path=/
PHPSESSID=penl0vdp6nbacic482jpv7agr9; path=/; secure; HttpOnly
download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; path=/; SameSite=Lax
http_referrer=deleted; expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; path=/; SameSite=Lax
buyed_from_dl=1; path=/; SameSite=Lax
file_id=718550181; path=/; SameSite=Lax
tag=deleted; expires=Thu, 01 Jan 1970 00:00:01 GMT; Max-Age=0; path=/; SameSite=Lax
__token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; path=/; secure; HttpOnly; SameSite=Lax
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Pragma: no-cache, no-cache
Cache-Control: no-store, no-cache, must-revalidate, no-cache,must-revalidate
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
|
GET /css/all.css?v=26 HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: text/css
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:53 GMT
ETag: W/"641c19b9-b5b3"
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /javascript/main.js?v=1 HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 3478
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-d96"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /javascript/ddsmoothmenu.js HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 8199
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-2007"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /css/ddsmoothmenu.css HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: text/css
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: W/"641c19b8-9ae"
Content-Encoding: gzip
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
|
GET /gtag/js?id=UA-25516484-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
142.250.74.40
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Mar 2023 08:50:07 GMT
expires: Tue, 28 Mar 2023 08:50:07 GMT
cache-control: private, max-age=900
last-modified: Tue, 28 Mar 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:50:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /javascript/jquery-3.4.1.min.js HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 88145
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-15851"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /shield/www.rapidgator.net HTTP/1.1
Host: shield.sitelock.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
45.60.14.54
HTTP/1.1 200 OK
Content-Type: image/gif; charset=ISO-8859-1
Etag: "4435dfb4"
Content-Length: 35
Cache-Control: max-age=5400, public
Expires: Tue, 28 Mar 2023 10:20:06 GMT
Date: Tue, 28 Mar 2023 08:50:06 GMT
Set-Cookie: visid_incap_275317=4MLg8oEnToaooMdigVkT3j6qImQAAAAAQUIPAAAAAAA7SkUUDyJSmsq+eOzN5EiR; expires=Tue, 26 Mar 2024 22:28:08 GMT; HttpOnly; path=/; Domain=.sitelock.com
incap_ses_277_275317=pvPmJROG3BVmEIr8mhrYAz6qImQAAAAABcmBdqNn8CSaTPkluI8Jtg==; path=/; Domain=.sitelock.com
X-CDN: Imperva
X-Iinfo: 13-42325102-0 0CNN RT(1679993406768 16) q(0 -1 -1 -1) r(0 -1)
|
GET /images/bg-body.gif HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1120
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:53 GMT
ETag: "641c19b9-460"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/bg-container.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1018
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-3fa"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/bg-header.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 8685
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-21ed"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/rapid_android2.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 201318
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-31266"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/bullet-menu.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 980
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-3d4"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /js/250/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
2.18.172.123
HTTP/2 200 OK
content-type: application/javascript
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 116332
x-check-cacheable: YES
date: Tue, 28 Mar 2023 08:50:07 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
|
GET /images/bg-lang.gif HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1485
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:53 GMT
ETag: "641c19b9-5cd"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/logo.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 6587
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-19bb"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/bg-overall.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 993
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-3e1"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/bg-arrow.gif HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1578
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-62a"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
2.18.172.123
HTTP/2 200 OK
content-type: text/html
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 28 Mar 2023 08:50:07 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
|
GET /images/table-download-bg.gif HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1160
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:53 GMT
ETag: "641c19b9-488"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/ico-clock.jpg HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/jpeg
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 2474
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-9aa"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/ico-not-avaliable.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1348
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-544"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/ico-file-descr.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1584
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-630"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/table-download-top.gif HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/gif
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 2192
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-890"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /images/btn-download.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1825
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-721"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "9F816AEC1DB140FD860A1AF796EBAE0219880B0277DA254BFAD554BAAA7E83D7"
Last-Modified: Tue, 28 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6155
Expires: Tue, 28 Mar 2023 10:32:42 GMT
Date: Tue, 28 Mar 2023 08:50:07 GMT
Connection: keep-alive
|
GET /images/ico-avaliable.png HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/css/all.css?v=26
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/png
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 1354
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:52 GMT
ETag: "641c19b8-54a"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /f/sdk.js?z=557832 HTTP/1.1
Host: system-notify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
 157.90.33.122
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: nginx
date: Tue, 28 Mar 2023 08:50:07 GMT
content-length: 14468
content-encoding: gzip
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
|
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
23.38.201.146
HTTP/2 200 OK
content-type: application/x-javascript
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=14327
date: Tue, 28 Mar 2023 08:50:07 GMT
X-Firefox-Spdy: h2
|
GET /live/boost/xa-4f1d3bb56c6cc840/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
2.18.172.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-disposition: attachment; filename=1.txt
content-encoding: gzip
content-length: 47
cache-control: public, max-age=12, s-maxage=86400
date: Tue, 28 Mar 2023 08:50:07 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
GET /favicon.ico HTTP/1.1
Host: rapidgator.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?Referer=http://13dl.net
Cookie: lang=en; PHPSESSID=penl0vdp6nbacic482jpv7agr9; download_url=http%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net; buyed_from_dl=1; file_id=718550181; __token=dWtwUXBmbFhyZFU0V2ZrajVFUXBJZ09JaTRHfkZ1dXaHM5jYBvT0EcALV8cLVCWc5I1LvdYpq5SRsrfm6uWpSw%3D%3D; __atuvc=1%7C13; __atuvs=6422aa539b3743ae000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
|
195.211.222.2
HTTP/1.1 200 OK
Content-Type: image/x-icon
Server: nginx
Date: Tue, 28 Mar 2023 08:50:07 GMT
Content-Length: 3126
Connection: keep-alive
Last-Modified: Thu, 23 Mar 2023 09:19:53 GMT
ETag: "641c19b9-c36"
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
X-XSS-Protection: 1; mode=block, 1; mode=block
X-Content-Type-Options: nosniff, nosniff
Accept-Ranges: bytes
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
172.217.21.174
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 28 Mar 2023 08:05:11 GMT
expires: Tue, 28 Mar 2023 10:05:11 GMT
cache-control: public, max-age=7200
age: 2696
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
GET /static/counter.d27508c102582d608697.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
2.18.172.123
HTTP/2 200 OK
content-type: application/javascript
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-5fd2"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 8265
date: Tue, 28 Mar 2023 08:50:07 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
|
POST /event?z=557832 HTTP/1.1
Host: system-notify.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 82
Origin: https://rapidgator.net
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
157.90.33.122
HTTP/2 200 OK
server: nginx
date: Tue, 28 Mar 2023 08:50:07 GMT
content-length: 0
access-control-allow-origin: https://rapidgator.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
|
GET /live/red_lojson/300lo.json?si=6422aa53366f507b&bkl=0&bl=1&pdt=287&sid=6422aa53366f507b&pub=xa-4f1d3bb56c6cc840&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=rapidgator.net&fp=file%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=Download%20Hokuou_Kizoku_to_Moukinzuma_01-08.rar%2Cfile%20hosting%2Ccloud%20hosting%2Csafe%20and%20secure%20hosting%2Cfile%20sharing&colc=1679993427785&jsl=1&uvs=6422aa539b3743ae000&skipb=1&callback=addthis.cbs.jsonp__69151317898761980 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
2.18.172.123
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 28 Mar 2023 08:50:08 GMT
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
 104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:50:08 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 19:28:23 GMT
Expires: Mon, 03 Apr 2023 19:28:22 GMT
Etag: "a8c3cd456818fe12ea1ab537b0fd23cc44dd392b"
Cache-Control: max-age=556093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aee9fb089c3b51b-OSL
|
GET /url/shares.json?url=https%3A%2F%2Frapidgator.net%2Ffile%2F058955b63b8f586abe10cb15c70637ab%3FReferer%3Dhttp%3A%2F%2F13dl.net&callback=_ate.cbs.sc_httpsrapidgatornetfile058955b63b8f586abe10cb15c70637abrefererhttp13dlnet0 HTTP/1.1
Host: api-public.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rapidgator.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
2.18.172.123
HTTP/2 200 OK
content-type: application/json
server: nginx/1.15.8
cache-control: no-transform, must-revalidate, max-age=0, s-maxage=3600
surrogate-key: rapidgator.net/file/058955b63b8f586abe10cb15c70637ab?referer=http://13dl.net
last-modified: Tue, 28 Mar 2023 08:50:08 GMT
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 111
date: Tue, 28 Mar 2023 08:50:08 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 28 Mar 2023 08:50:08 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 27 Mar 2023 19:28:23 GMT
Expires: Mon, 03 Apr 2023 19:28:22 GMT
Etag: "a8c3cd456818fe12ea1ab537b0fd23cc44dd392b"
Cache-Control: max-age=556093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7aee9fb08b00b521-OSL
|
OPTIONS /sync?user_id=PV20WQUaepJ9T4GgKGj9GS HTTP/1.1
Host: uidsync.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://rapidgator.net/
Origin: https://rapidgator.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
|
157.90.33.122
HTTP/2 204 No Content
server: nginx
date: Tue, 28 Mar 2023 08:50:08 GMT
access-control-allow-origin: https://rapidgator.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
|
GET /sync?user_id=PV20WQUaepJ9T4GgKGj9GS HTTP/1.1
Host: uidsync.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rapidgator.net/
Content-Type: application/json
Origin: https://rapidgator.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
157.90.33.122
HTTP/2 200 OK
content-type: application/json; charset=utf-8
server: nginx
date: Tue, 28 Mar 2023 08:50:08 GMT
content-length: 62
access-control-allow-origin: https://rapidgator.net
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization, X-CSRF-Token
access-control-expose-headers: Authorization
cache-control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
pragma: no-cache
expires: Tue, 11 Jan 1994 00:00:00 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Bitness, Sec-CH-UA-Wow64
set-cookie: rauid=PV20WQUaepJ9T4GgKGj9GS; expires=Wed, 27 Mar 2024 08:50:08 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
|
104.21.47.248
188.114.96.1
23.227.38.74