letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
302 Moved Temporarily 138 B URL HTTP/1.1 letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
IP
ASN #210848 Telkom Internet LTD
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /1V0to/Sonority.v20230112-GoldBerg.zip HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Fri, 13 Jan 2023 16:07:01 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Server: nginx centminmod
X-Powered-By: centminmod
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13378
Expires: Fri, 13 Jan 2023 19:49:59 GMT
Date: Fri, 13 Jan 2023 16:07:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4826412809ac0196f13ac1ef44e357e5
793c81d2f90cfaa245dc89fc7a6090cbee846b26
11be07342f3aa4e059ddc3149337895d55bc71e30ad045dc72e4cca4be4c6951
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11BE07342F3AA4E059DDC3149337895D55BC71E30AD045DC72E4CCA4BE4C6951"
Last-Modified: Wed, 11 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7829
Expires: Fri, 13 Jan 2023 18:17:30 GMT
Date: Fri, 13 Jan 2023 16:07:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8091
Expires: Fri, 13 Jan 2023 18:21:52 GMT
Date: Fri, 13 Jan 2023 16:07:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 13 Jan 2023 15:48:52 GMT
content-type: application/json
age: 1089
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xGxVf+18MG2HrfKZBX58yOElRp2cDcCVUuVDgm2YQ2hUT1YVOtDZYfO/LX1LZv6Kwa0m6rsXEIQ=
x-amz-request-id: QWVZE12EJK669R58
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 13 Jan 2023 16:03:00 GMT
age: 241
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
letsupload.io/cache/themes/spirit/logo_inverse.png
200 OK 12 kB URL HTTP/2 letsupload.io/cache/themes/spirit/logo_inverse.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 307 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e7068c602aa75b45c1bf60860251c65
abb37260776999382d7cdf9df4bcd20e9985cb44
d162b5fab298aa43c9555929facf4274044d4cbe92e7eda200290ff576a18268
GET /cache/themes/spirit/logo_inverse.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: image/png
content-length: 12259
last-modified: Tue, 05 Jan 2021 18:42:37 GMT
vary: Accept-Encoding
etag: "5ff4b31d-2fe3"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/cache/themes/spirit/logo.png
200 OK 12 kB URL HTTP/2 letsupload.io/cache/themes/spirit/logo.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 307 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash 3e7068c602aa75b45c1bf60860251c65
abb37260776999382d7cdf9df4bcd20e9985cb44
d162b5fab298aa43c9555929facf4274044d4cbe92e7eda200290ff576a18268
GET /cache/themes/spirit/logo.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: image/png
content-length: 12259
last-modified: Tue, 05 Jan 2021 18:42:37 GMT
vary: Accept-Encoding
etag: "5ff4b31d-2fe3"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/images/file_icons/512px/zip.png
200 OK 44 kB URL HTTP/2 letsupload.io/themes/spirit/assets/images/file_icons/512px/zip.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 790aadb4959167d12326fbddeea8ac47
09eac90276ba712ce49a302644ee399aa42f4be6
f1f1edb104291a0b7e28d44e542f7777cad594de397874f886381893bdc6af4b
GET /themes/spirit/assets/images/file_icons/512px/zip.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: image/png
content-length: 43493
last-modified: Mon, 28 Sep 2020 20:29:06 GMT
vary: Accept-Encoding
etag: "5f724792-a9e5"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/plugins/webdav/assets/img/mobile_icons_inverted.png
200 OK 3.1 kB URL HTTP/2 letsupload.io/plugins/webdav/assets/img/mobile_icons_inverted.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 195 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash cd93ac859eb1bab650f820ee09b821c9
8d4e30a9ae453744911ecbbcb82bf6113a94f6ec
8bb063904473a1de32aacb8ab6111bb464086a63eaa8cf17971dc4a389f5f0da
GET /plugins/webdav/assets/img/mobile_icons_inverted.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: image/png
content-length: 3062
last-modified: Sun, 18 Oct 2020 09:15:10 GMT
vary: Accept-Encoding
etag: "5f8c079e-bf6"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/img/adblock/primary.jpg
200 OK 13 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/img/adblock/primary.jpg
IP
ASN #210848 Telkom Internet LTD
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 601x155, components 3\012- data
Hash 0fc3ab39bcdfd3c8d38de7d89b292ada
a89f51203f0b0db4cd1c7f18388f9a84d008efa4
c661391117b70efa486492ff5439d6239ed6bfcca5cf1319ba4ebe7c37cdc72f
GET /themes/spirit/assets/frontend/img/adblock/primary.jpg HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: image/jpeg
content-length: 12809
last-modified: Mon, 28 Sep 2020 20:26:42 GMT
vary: Accept-Encoding
etag: "5f724702-3209"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/stack-interface.css
200 OK 1.4 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/stack-interface.css
IP
ASN #210848 Telkom Internet LTD
Hash 184a87ea7fa58996efbb7724f426b1ac
1a788b314807be7aebff0d15daed662ede7ecbe5
3132c72f54315fe6d2d2eaf38161389c6b63485cdfdb4fbda2b8c021db8cc34b
GET /themes/spirit/assets/frontend/css/stack-interface.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-c0a"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/socicon.css
200 OK 2.2 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/socicon.css
IP
ASN #210848 Telkom Internet LTD
Hash 61b3f7b8b9523f2a51041a70e89c7fd2
bf84979444a59cf0e98732c4e1e7843604c2143f
aaa20c0a1f01389af8d2f3c04c2d29341824af768312205353d4854a8bedfc45
GET /themes/spirit/assets/frontend/css/socicon.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-2443"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 709dbdc77e1779e7c77865fa27f2573a
8781ced82c5109fbe49e8897844c7c1b89f4c340
8b02e05fc2de10b7aa4115870138f3b4e2a1f79a844924d7c50072b002405dc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
200 OK 0 B URL HTTP/2 letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
IP
ASN #210848 Telkom Internet LTD
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /1V0to/Sonority.v20230112-GoldBerg.zip HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, no-cache
date: Fri, 13 Jan 2023 16:07:01 GMT
server: nginx centminmod
x-powered-by: centminmod
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631
200 OK 4.3 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631
IP
ASN #210848 Telkom Internet LTD
File type Web Open Font Format (Version 2), TrueType, length 4292, version 1.0\012- data
Hash ae072782b361d2afdbf43db08d3cfb73
f3db2e65b53d97491672f8631e21d6d05905cc88
31205df908aed9881f6d2d3ae7d38975252bf99e38268978b4236dc3c314754b
GET /themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://letsupload.io/themes/spirit/assets/frontend/css/stack-interface.css
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: font/woff2
content-length: 4292
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: "5f724704-10c4"
server: nginx centminmod
x-powered-by: centminmod
expires: Sat, 13 Jan 2024 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2b9bf5b236c9ee7e42d2a9c99582ca78
d68c8fce2a2e304a62f432fc90eb15bf8b667618
47eddff7140f71e9517f80a18359685aa31222367c46b9d25dc3f066e6d71ee1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "47EDDFF7140F71E9517F80A18359685AA31222367C46B9D25DC3F066E6D71EE1"
Last-Modified: Wed, 11 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18986
Expires: Fri, 13 Jan 2023 21:23:27 GMT
Date: Fri, 13 Jan 2023 16:07:01 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash df489559868985b8815baa1cfaaff191
cb804ae84a7d8c2b6580c97caa484cfb515c1435
ecfca9383aa4ff0bc88dc975918610d1406ac9198e68d26a731a589b073b3ead
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bcda166666b85fee269f7730df586193
457edf4c21c0ae930d8810a679fd65f8918c3c94
aaf5548dadfd15830e48f5d696dde22b1984bc0f5a5e0e5591a9c007ded325df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://letsupload.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:52:41 GMT
expires: Tue, 09 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 335661
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bcda166666b85fee269f7730df586193
457edf4c21c0ae930d8810a679fd65f8918c3c94
aaf5548dadfd15830e48f5d696dde22b1984bc0f5a5e0e5591a9c007ded325df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
letsupload.io/themes/spirit/assets/frontend/js/flickity.min.js
200 OK 14 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/flickity.min.js
IP
ASN #210848 Telkom Internet LTD
File type ASCII text, with very long lines (32032)
Hash a0302875c2415d1268a1793038383281
8d0bc0c2338fa0f0161e6debe9d4732c43a70857
b54bd9b39bd1246defe53bf5fafbeb06a4c96d87d7a292b790f00011e350c005
GET /themes/spirit/assets/frontend/js/flickity.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-d265"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
varechphugoid.com/1clkn/21164
200 OK 26 B URL HTTP/1.1 varechphugoid.com/1clkn/21164
IP
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
GET /1clkn/21164 HTTP/1.1
Host: varechphugoid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 13 Jan 2023 16:07:02 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Sat, 14-Jan-2023 16:07:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Sat, 14-Jan-2023 16:07:02 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 61bb4089f7af524712ded4fae3af4c6d
5409426bba53489d59e10e780c0225dcd6078702
eab6e646cbc7922ed5f627ce173f5e780ddd3143017a676389d1aea6429531e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAB6E646CBC7922ED5F627CE173F5E780DDD3143017A676389D1AEA6429531E5"
Last-Modified: Wed, 11 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12967
Expires: Fri, 13 Jan 2023 19:43:09 GMT
Date: Fri, 13 Jan 2023 16:07:02 GMT
Connection: keep-alive
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://letsupload.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 09 Jan 2023 18:56:10 GMT
expires: Tue, 09 Jan 2024 18:56:10 GMT
cache-control: public, max-age=31536000
age: 335452
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash bcda166666b85fee269f7730df586193
457edf4c21c0ae930d8810a679fd65f8918c3c94
aaf5548dadfd15830e48f5d696dde22b1984bc0f5a5e0e5591a9c007ded325df
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
waisheph.com/tag.min.js
200 OK 24 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash a262d97e6ed7edb63fbb1b4e5cf621df
d261ad46302efa929a539c7435dd862bdf504ced
c48f0b38a9c9d1ab31c6265c577cf4dae2e16f2c43a1a93e82e4e079d2e5228b
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: text/javascript; charset=utf-8
content-length: 23586
content-encoding: br
x-trace-id: 110937c629583378d4a1340c1cd6f41a
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 13 Jan 2023 11:14:52 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
200 OK 5.0 kB URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash a9a8c24cea41bed7ef78ed1d12d48291
cd86d71e15b97ab602e0e39bb6e9bbaf6779f4d7
3b379c83d1c0b117cec88debed9390723daffc2fb99cf51cc2175c47169d190e
GET /themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: image/png
content-length: 5016
last-modified: Mon, 28 Sep 2020 20:26:42 GMT
vary: Accept-Encoding
etag: "5f724702-1398"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:02 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
200 OK 447 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png
IP
ASN #210848 Telkom Internet LTD
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f3d5da06fe8d5a2425d5d229285e5eea
01032b864f3c74bbf44771e2ba41eeb2251fad90
d11d596429d3543bfb07191a87a67a8c22e198113c6f3a109158a5a85bf82f26
GET /themes/spirit/assets/frontend/img/favicon/favicon-16x16.png HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: image/png
content-length: 447
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: "5f724700-1bf"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:02 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8cc52774ab3484d0822a3d82e6f07808
5b04ca320efd8ef0dbd54cc5059b4a20e08559b3
35c1eeeec58bb211b48084a19fbe6c5798eb1e5d2618a0f9d6a1f9105c505dd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35C1EEEEC58BB211B48084A19FBE6C5798EB1E5D2618A0F9D6A1F9105C505DD6"
Last-Modified: Thu, 12 Jan 2023 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6522
Expires: Fri, 13 Jan 2023 17:55:44 GMT
Date: Fri, 13 Jan 2023 16:07:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 13 Jan 2023 15:17:25 GMT
age: 2977
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
waisheph.com/5/5303181/?oo=1&aab=1
200 OK 5.7 kB URL HTTP/2 waisheph.com/5/5303181/?oo=1&aab=1
IP
Hash d44cc7725655c9d2c1e16835a5179623
02e3c31f54b18084b807f3aff502208a8a9fa447
9c7c56b1b592fd43b39440cc9e3d7a92e8658a15204da41dbd7be3834d9c9e83
Analyzer Verdict Alert quad9 Sinkholed
GET /5/5303181/?oo=1&aab=1 HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://letsupload.io
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: application/json
x-trace-id: 73270bd2945032ccb01c6ee85c3577b1
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://letsupload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=5ea159d2bcd24516a38e810947898681; expires=Sat, 13 Jan 2024 16:07:02 GMT; path=/; secure; SameSite=None
oaidts=1673626022; expires=Sat, 13 Jan 2024 16:07:02 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (4885)
Hash adf028f3be93a69d7f244186bced85c4
f5bbaa5f39925c5b9c1b7b6bb73db8efcace4ef5
58e50a5da2bf1858bda3acaacb1a96c9db6abc1b780108d00f8fce6b2e58538a
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 13 Jan 2023 16:07:02 GMT
expires: Fri, 13 Jan 2023 16:07:02 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8183416306361420165
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49525
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash c1cc8833602dd5e367a6233f2fd9a368
88ccf284313388951cc3eb3534022c403bce8f94
814c643caa1b930bcd10ed0f83968bd7b2d313075bbdd5bb7428e3b9aa87219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd55eef5d93812ac34c48d9ede90b3f9
7d826a64f3d4cbcd679339f91e0da1021a45bf28
93fbbacb5668fc52f20b7a48ea6d75752867299df8201eb805c2ef42493b43ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93FBBACB5668FC52F20B7A48EA6D75752867299DF8201EB805C2EF42493B43EF"
Last-Modified: Wed, 11 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8327
Expires: Fri, 13 Jan 2023 18:25:49 GMT
Date: Fri, 13 Jan 2023 16:07:02 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash b1e3535cab3c1ac295b1412126a9325c
d1bdf1b8663817ae34b6182db29d6b20666779e7
90c4ecd4b0782647fd78110b5bacfb73d2b05aae4de789a90318574407dfb565
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2555
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Last-Modified: Fri, 13 Jan 2023 15:24:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/html/r20230111/r20190131/zrt_lookup.html
200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230111/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230111/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 12 Jan 2023 22:41:44 GMT
expires: Thu, 26 Jan 2023 22:41:44 GMT
cache-control: public, max-age=1209600
age: 62718
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=5ea159d2bcd24516a38e810947898681
200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=5ea159d2bcd24516a38e810947898681
IP
File type JSON data\012- , ASCII text
Hash bc3b5da7c867a69d9b8ccc07107f57de
a6c892c85f01bde142dc22f256e43959e0fec425
6bfccfacb8ce4e0ad941f3b35c99d87ac55e79ed5a958af1437e916fe0257c29
GET /gid.js?userId=5ea159d2bcd24516a38e810947898681 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://letsupload.io
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://letsupload.io
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=5ea159d2bcd24516a38e810947898681; expires=Sat, 13 Jan 2024 16:07:02 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qhD4ZkG/sQst27anuzB6fg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cGW6RB2P8HKu7Wgiq5RbD74GVOQ=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash aabd4cb92d42e0c9e2d3860118029a6c
53325cdd89f9a117ac79dff7cedfd6370b07f33b
d9bc7a65b7e179ebd42170d0d43372e90739264df1f87a511ee0aab5ab012e85
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f470fcf03756e4a33360d6bc6ec68e57
f77b27b3d863702b4cf27fef568b77799e315eb7
ddff960d5ed6c560a5509c4144a2cece8a2267dbf33c828646115c3e30a43eda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 56ed86c6ba574264fcbaf67b5a233a23
2af652f21e1e6ba1d58ee28027af55017a5206c8
8c25f30c1fc2d7cc7650a6af7f788de0297b9f52ec8806a40797a84345103860
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=letsupload.io
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=letsupload.io
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=letsupload.io HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 13 Jan 2023 16:07:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=letsupload.io&callback=_gfp_s_&client=ca-pub-2032633001482750&gpid_exp=1
200 OK 255 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=letsupload.io&callback=_gfp_s_&client=ca-pub-2032633001482750&gpid_exp=1
IP
File type ASCII text, with very long lines (393), with no line terminators
Hash ea2eee066f84ad091b6d45667749bb3e
27fc796abe32e561a090fb35ffa6299cce0fb152
8c4c767942ee7b3c25b87920efcd033bdfa450d92304c46b2e9e23a678c3ba28
GET /gampad/cookie.js?domain=letsupload.io&callback=_gfp_s_&client=ca-pub-2032633001482750&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 13 Jan 2023 16:07:02 GMT
server: cafe
cache-control: private
content-length: 255
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=letsupload.io
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=letsupload.io
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=letsupload.io HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 13 Jan 2023 16:07:02 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 815f1a1e0adac55b38019d2af17b9bbe
6e04467e75f83b4a692cf6716b5b564274a487c7
6d8326d418f56d57221790353c7b220088d63c133901e0b500accb5e420811db
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f470fcf03756e4a33360d6bc6ec68e57
f77b27b3d863702b4cf27fef568b77799e315eb7
ddff960d5ed6c560a5509c4144a2cece8a2267dbf33c828646115c3e30a43eda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f96f3b88eebd362c0208a60d27e28068
f244f8dfbc2677fbddcf0024ff7cf343e24205bb
9b3586a498232da2b246b2bd158d7fd75eb9b4ac00ed750bbe670f1b54fe0f2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s4.histats.com/stats/0.php?4434016&@f16&@g1&@h1&@i1&@j1673626006447&@k0&@l1&@mSonority.v20230112-GoldBerg.zip%20-%20LetsUpload%20Unlimited%20Cloud%20Storage&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:189292489&@b3:1673626006&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&@w
200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?4434016&@f16&@g1&@h1&@i1&@j1673626006447&@k0&@l1&@mSonority.v20230112-GoldBerg.zip%20-%20LetsUpload%20Unlimited%20Cloud%20Storage&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:189292489&@b3:1673626006&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&@w
IP
File type ASCII text, with no line terminators
Hash 6045fdc89eca3c474504f611d5944dce
3682b093d5cb7a2121fb880f5d688af6bdd1bd61
6402bc2ef6e98daa91153326f63c9183f849e5fba46e9a3e490ac608c3680cd8
GET /stats/0.php?4434016&@f16&@g1&@h1&@i1&@j1673626006447&@k0&@l1&@mSonority.v20230112-GoldBerg.zip%20-%20LetsUpload%20Unlimited%20Cloud%20Storage&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:189292489&@b3:1673626006&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 13 Jan 2023 16:07:02 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7bf33c6a5a1878d023943069a4c32ab1
c2459f2c7df0f4d819f8a0217f1d9f63ae542922
5d4db2d9840990cb624f3219d1b3297a16750f6fcc2342b7c0d7f6a9b810689b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Fri, 13 Jan 2023 16:07:03 GMT
expires: Fri, 13 Jan 2023 16:07:03 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 12 Jan 2023 07:22:01 GMT
expires: Fri, 12 Jan 2024 07:22:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 117902
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69c011429c0b1f8a0c091474b207c240
fe2c5e1854a65d8a2b669fc54aa0c827f07e428b
409f967eeebf5472cb0d2a917b9285e52b21950f672c6c37a19285d3375edc7f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 16:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
waisheph.com/?rb=P7kX05VL1YUMQD7Yo8a3sUXJmTVND7xdMeBuyzuQqu9nJZmN1KD4MX_uGoBcGqcVcgngDBIsXPFE5SZRfZuac9pq9JKnWn3J2dc_VVQOE6HNYd01JF85nhd-Tx8S4Bf3W68s_uuJLRbynWxMUTh0TXweK_6S5P3CtssrvgTkbajP_iAMLd_VBJqt6_h2HZLFuJxIp4Vq69lvOX0rr-AB0jqHar4MSxqXR4ufzpnZ7io%3D&request_ab2=0&zoneid=5303181&js_build=iclick-v1.470.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.470.0&bs=8b23c400-86cb-456d-b5ac-a843e1eabc0b&userId=5ea159d2bcd24516a38e810947898681&m=link
200 OK 1.9 kB URL HTTP/2 waisheph.com/?rb=P7kX05VL1YUMQD7Yo8a3sUXJmTVND7xdMeBuyzuQqu9nJZmN1KD4MX_uGoBcGqcVcgngDBIsXPFE5SZRfZuac9pq9JKnWn3J2dc_VVQOE6HNYd01JF85nhd-Tx8S4Bf3W68s_uuJLRbynWxMUTh0TXweK_6S5P3CtssrvgTkbajP_iAMLd_VBJqt6_h2HZLFuJxIp4Vq69lvOX0rr-AB0jqHar4MSxqXR4ufzpnZ7io%3D&request_ab2=0&zoneid=5303181&js_build=iclick-v1.470.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.470.0&bs=8b23c400-86cb-456d-b5ac-a843e1eabc0b&userId=5ea159d2bcd24516a38e810947898681&m=link
IP
File type JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2455), with no line terminators
Hash 9f442f7e0e0e64bead6d56c2d23e2e6d
88f1e51dab70e70a9c316953e39ebe90b4c3323c
8733dea22a2250578c76f05ad45b7a38c227beda4cf607d6e58dd5e3f4cc3f77
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=P7kX05VL1YUMQD7Yo8a3sUXJmTVND7xdMeBuyzuQqu9nJZmN1KD4MX_uGoBcGqcVcgngDBIsXPFE5SZRfZuac9pq9JKnWn3J2dc_VVQOE6HNYd01JF85nhd-Tx8S4Bf3W68s_uuJLRbynWxMUTh0TXweK_6S5P3CtssrvgTkbajP_iAMLd_VBJqt6_h2HZLFuJxIp4Vq69lvOX0rr-AB0jqHar4MSxqXR4ufzpnZ7io%3D&request_ab2=0&zoneid=5303181&js_build=iclick-v1.470.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fletsupload.io%2F1V0to%2FSonority.v20230112-GoldBerg.zip&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.470.0&bs=8b23c400-86cb-456d-b5ac-a843e1eabc0b&userId=5ea159d2bcd24516a38e810947898681&m=link HTTP/1.1
Host: waisheph.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://letsupload.io/
Origin: https://letsupload.io
Connection: keep-alive
Cookie: OAID=5ea159d2bcd24516a38e810947898681; oaidts=1673626022
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 16:07:02 GMT
content-type: application/json
x-trace-id: e78c81219a45be7728892bc6ae5c61e4
access-control-allow-origin: https://letsupload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=5ea159d2bcd24516a38e810947898681; expires=Sat, 13 Jan 2024 16:07:02 GMT; path=/; secure; SameSite=None
oaidts=1673626022; expires=Sat, 13 Jan 2024 16:07:02 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Fri, 20 Jan 2023 16:07:02 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20590
Expires: Fri, 13 Jan 2023 21:50:14 GMT
Date: Fri, 13 Jan 2023 16:07:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20590
Expires: Fri, 13 Jan 2023 21:50:14 GMT
Date: Fri, 13 Jan 2023 16:07:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20590
Expires: Fri, 13 Jan 2023 21:50:14 GMT
Date: Fri, 13 Jan 2023 16:07:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20590
Expires: Fri, 13 Jan 2023 21:50:14 GMT
Date: Fri, 13 Jan 2023 16:07:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c276d1876bfcc6ec4dfb94bcdd2f6c8
177a80d7d4d3fc273a712cada41abdd87b138a6c
abceeefeec2fc658e285a2898e38a36643501bfa1d66f33e216f100e456a8c06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb840d484-56de-4f38-ad4b-0cb93e4b1274.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8785
x-amzn-requestid: 4844b27a-1080-4d95-9a35-c8ab7cdd9acb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eph7sEajoAMF_gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07d17-2520efc6579a4fbc25cdb515;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RKH9tjX9MxE-NWDVWa4KZqrXKnzx-2200m_vm18DyYeWII0U6NgsVA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 22:00:02 GMT
etag: "177a80d7d4d3fc273a712cada41abdd87b138a6c"
content-type: image/jpeg
age: 65222
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba61442e6ededd7b49f6244613df0e63
385f45b5920174ca20bcc2d9c02eedb4641f48a9
5e5cd1fd026dc72d0c3c5032fbae17f3383c64ee2714808c892c094353f31012
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5990
x-amzn-requestid: 54a83ca0-eb61-4212-8c98-e1e182b860ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ejsZiEeBoAMF7kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be2770-3565b4d43d28ee3c0fd16ed0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:05:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SUICoi37lPgXPQu4PTLCmc-6l2G9SHKz8f2qhZgHBMEbuuSi5zMiaQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 03:38:24 GMT
age: 44920
etag: "385f45b5920174ca20bcc2d9c02eedb4641f48a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 06:50:08 GMT
age: 33416
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb3062f9905c7c6f159cd203f5fdfe64
bcf17c475a27fae03369d1677dc0bedf6793e6b2
33dc1a810207f498c28b764cc26afa00b16594629ae6777957ccffd8e2c51f8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9432
x-amzn-requestid: 2835c1c8-0a8e-4985-be89-d641d5425971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eph50HONIAMF3vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07d0b-53c6156514cdb1a463add03b;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EOLxwKB_KBf_zkLlBLFn9nrDGM-FfONoTWUGR2093kLhka3wkb6yhg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 22:02:02 GMT
age: 65102
etag: "bcf17c475a27fae03369d1677dc0bedf6793e6b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd84f54-ebf2-41ef-8410-e13aa2b1ac20.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd84f54-ebf2-41ef-8410-e13aa2b1ac20.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 697ff76a0e75f868952156aacd36f8f4
2c36581bbf7c2b8035d4c95897822458dafa9b7a
213a7e73d3bd2a497cb3f8faf84ce2d10d30024c71fd31d73fa18c6046568d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd84f54-ebf2-41ef-8410-e13aa2b1ac20.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: 1f02b2ae-883b-4c53-a943-f3cd2c04b445
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ecadbH_VIAMF6uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb3def-763829210f35765b6753a16b;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 22:04:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4KiOyhD7CmNurgLvBM1MYL1VqFuZZ9WhRadEsm0eXf5MUI6e-3HC2Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 12:26:51 GMT
age: 13213
etag: "2c36581bbf7c2b8035d4c95897822458dafa9b7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e514f1b711f68a1699f9d0d269ca9a8a
71621fabcc4ae2a8c3180e22e63fac1217c4032f
cc10cadc4477cc6faa1973343b9019b1b4bc94e5ec9fab114a4b755f24872f35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9697
x-amzn-requestid: 6279e4e0-7268-422a-878c-3983bffa37d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: edG9MHqjoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb8521-59063fac03eb407d74cabd38;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 03:08:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LdM05QUvlJcxt8IaDM9Wr4_CM5-SrhsBRAkVcdkVxNiyrJveNFHK9g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 05:12:42 GMT
age: 39262
etag: "71621fabcc4ae2a8c3180e22e63fac1217c4032f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/theme.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/theme.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/theme.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-301d8"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/jquery.dataTables.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/jquery.dataTables.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-10fe4"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/typed.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/typed.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/typed.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-f6d"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/smooth-scroll.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/smooth-scroll.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/smooth-scroll.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-1776"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
200 OK 0 B URL HTTP/2 letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
IP
ASN #210848 Telkom Internet LTD
GET /1V0to/Sonority.v20230112-GoldBerg.zip HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j; expires=Sat, 14-Jan-2023 16:07:01 GMT; Max-Age=86400; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, no-cache
date: Fri, 13 Jan 2023 16:07:01 GMT
server: nginx centminmod
x-powered-by: centminmod
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/bootstrap.min.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/bootstrap.min.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/bootstrap.min.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-12c75"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/icon?family=Material+Icons
200 OK 0 B URL HTTP/2 fonts.googleapis.com/icon?family=Material+Icons
IP
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 13 Jan 2023 16:07:01 GMT
date: Fri, 13 Jan 2023 16:07:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/font-awesome.min.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/font-awesome.min.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-e6eb"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/custom.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/custom.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/custom.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Thu, 04 Feb 2021 22:28:50 GMT
vary: Accept-Encoding
etag: W/"601c7522-22e8"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/granim.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/granim.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/granim.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-298a"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/flickity.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/flickity.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/flickity.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-958"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/iconsmind.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/iconsmind.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/iconsmind.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-178bf"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/jquery.steps.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/jquery.steps.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/jquery.steps.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:44 GMT
vary: Accept-Encoding
etag: W/"5f724704-1606"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/jquery-3.1.1.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-152b5"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/datepicker.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/datepicker.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/datepicker.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-51ef"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/countdown.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/countdown.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/countdown.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-14db"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/css/lightbox.min.css
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/css/lightbox.min.css
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/css/lightbox.min.css HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: text/css
last-modified: Mon, 28 Sep 2020 20:26:46 GMT
vary: Accept-Encoding
etag: W/"5f724706-e54"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/jquery.steps.min.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/jquery.steps.min.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/jquery.steps.min.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 28 Sep 2020 20:26:40 GMT
vary: Accept-Encoding
etag: W/"5f724700-3621"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/themes/spirit/assets/frontend/js/scripts.js
200 OK 0 B URL HTTP/2 letsupload.io/themes/spirit/assets/frontend/js/scripts.js
IP
ASN #210848 Telkom Internet LTD
GET /themes/spirit/assets/frontend/js/scripts.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 13 Jan 2023 16:07:01 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 14 Oct 2020 22:17:02 GMT
vary: Accept-Encoding
etag: W/"5f8778de-1b521"
server: nginx centminmod
x-powered-by: centminmod
expires: Sun, 12 Feb 2023 16:07:01 GMT
access-control-allow-origin: *
cache-control: max-age=2592000, public, must-revalidate, proxy-revalidate, immutable, stale-while-revalidate=86400, stale-if-error=604800
content-encoding: br
X-Firefox-Spdy: h2
letsupload.io/js/adsx.js
200 OK 0 B IP
ASN #210848 Telkom Internet LTD
GET /js/adsx.js HTTP/1.1
Host: letsupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/1V0to/Sonority.v20230112-GoldBerg.zip
Cookie: filehosting=gtfdqrmmjlel9llor2g3gbcd6j
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, no-cache
date: Fri, 13 Jan 2023 16:07:01 GMT
server: nginx centminmod
x-powered-by: centminmod
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i
IP
GET /css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://letsupload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 13 Jan 2023 16:07:01 GMT
date: Fri, 13 Jan 2023 16:07:01 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
31.43.191.130
34.117.237.239
23.109.87.9
93.184.220.29
149.56.240.132
95.101.11.115
0.0.0.0