ocsp.r2m02.amazontrust.com/
471
URL
ocsp.r2m02.amazontrust.com/
IP
Hash
008489a78f34707d419432b0567b82e2
c0759ef9267e68ab672ecedc14f87f6aa561659b
6285e4c205f911ad68594006ce0e441ed74da6287a8d79ee3f44a462bcfb3e07
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 20:33:04 GMT
Last-Modified: Fri, 09 Jun 2023 19:44:56 GMT
Server: ECAcc (dcb/7EDB)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XSsquTa-1PAX9P15fTPBCdJfJ1MnnwEoeP4t8ReMjPiqdUoccgw8XA==
Age: 2888
www.uplify.us/s/8g1pi
5709
IP
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash
5d2e72438edb952382a007968ace561a
fdf225c5bb2130c778fd34f9b6801d38412a30eb
9f6d87003c1f346ecf3af846b015c8ffd5bed10e67515fa29ce6fe73db2e744d
GET /s/8g1pi HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 5709
date: Fri, 09 Jun 2023 20:33:04 GMT
x-amzn-requestid: 364d331b-d615-4ba0-978f-f1b5c290e16d
set-cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; samesite=lax
uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=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; expires=Fri, 09 Jun 2023 22:33:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
x-amz-apigw-id: GRLkGHseFiAFpVQ=
cache-control: no-cache, private
x-amzn-trace-id: Root=1-64838c80-46a3b9623c075acf4fc8ab8d;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:04 GMT
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BIBuxMQsuPbS846Uo3AV2FX5L-ansOpkif3GmPjMzttyNFLlYNmWmg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471
IP
Hash
df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471
IP
Hash
df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471
IP
Hash
fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NH83P56
43447
URL
www.googletagmanager.com/gtm.js?id=GTM-NH83P56
IP
Magic
ASCII text, with very long lines (2271)
Hash
cae1963d17ac11b8295cd9f91688f1d1
f8ecf35718945a0cf818e60f83d6d621fd550425
bb7569e88ccdcec00425790191c411e35dd8e2b7d21f9f219a03d8c1129be739
GET /gtm.js?id=GTM-NH83P56 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 09 Jun 2023 20:33:05 GMT
expires: Fri, 09 Jun 2023 20:33:05 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Jun 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43447
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js
2888
URL
cdn.jsdelivr.net/npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js
IP
Magic
ASCII text, with very long lines (6214)
Hash
58a7299a8a191226f70b91cc0f9eaec1
cfc5d92bb87ead1eb0e8db8708c0e30cfaf4d80d
0dafb7d9c2796c16bf31d4f78b12c38406835bf7a380da2a71c8f0feec80fc44
GET /npm/@fingerprintjs/fingerprintjs-pro@3/dist/fp.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.8.3
x-jsd-version-type: version
etag: W/"1939-z8XZK7h+rR6w6NuHCMDjDPr02A0"
content-encoding: br
accept-ranges: bytes
date: Fri, 09 Jun 2023 20:33:05 GMT
age: 31323
x-served-by: cache-fra-eddf8230132-FRA, cache-bma1626-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2888
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471
IP
Hash
fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
1462
URL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash
48c83af1050df023d6245307e174e36a
60413aa015555f792db867886b82a1336276427b
79bea97fd71aa6ee6c1abbc06d5f1ac7f5fe816ed37a154b200f1cdb80abdecd
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "8F36278B0B641E81942B25C9557163503BEC589F"
Expires: Sat, 10 Jun 2023 08:00:00 GMT
Last-Modified: Fri, 09 Jun 2023 20:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 703
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25ca1ff4b503-OSL
unpkg.com/axios@0.25.0/dist/axios.min.js
92785
URL
unpkg.com/axios@0.25.0/dist/axios.min.js
IP
Magic
ASCII text, with very long lines (17808)
Hash
3f3c2540b53a9f09d04c2a826716fcf2
43485e7ade28135f2a1cca4d4710a1956094e4da
b00828aa594968071f062841833553f98541845061e2d1c3144da47acce5940d
GET /axios@0.25.0/dist/axios.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4615-Q0heet4oE18qHMpNRxChlWCU5No"
via: 1.1 fly.io
fly-request-id: 01H2ATVNPWCE8ZNSS8VA00PEEJ-fra
cf-cache-status: HIT
age: 204407
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d4c25c64c9ffab4-OSL
content-encoding: br
X-Firefox-Spdy: h2
fpnpmcdn.net/v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js
41429
URL
fpnpmcdn.net/v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js
IP
Magic
Unicode text, UTF-8 text, with very long lines (65286)
Hash
e62e2979bb6dd7130cf090a7a3e7ce35
e7180c3a104e59bfff82945c71d344d9f86eb263
5dfc0302b3485c6fcee0870ee2f3c1f8ff3ee0a89586b57ec4a22666da557da3
GET /v3/PHmDJuZDG3kbWeSZhC0M/loader_v3.8.3.js HTTP/1.1
Host: fpnpmcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: CloudFront
date: Wed, 07 Jun 2023 15:34:57 GMT
cache-control: public, max-age=3438, s-maxage=580966
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
etag: W/"5xgMOhBOWb//gpRccdNE2fhusmM"
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: yf1juu2jGF_1AbNhkmNTMerI68PEnnC39_qVK2ELkTFDs_1-7wXnjA==
age: 190688
X-Firefox-Spdy: h2
eun1.fptls.com/
120
IP
Magic
ASCII text, with no line terminators
Hash
7580af6c08f95f4ab65c3e8316b5d9c6
69608b9ce4786badb9ed63a4081ba83af55fd3bc
f210ae407a65016609c04051ec74cbc9f7b0751eaffcf471467b0979df959400
GET / HTTP/1.1
Host: eun1.fptls.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=2592000, immutable, private
strict-transport-security: max-age=63072000; includeSubDomains
content-type: text/plain; charset=utf-8
content-length: 120
date: Fri, 09 Jun 2023 20:33:05 GMT
X-Firefox-Spdy: h2
www.uplify.us/favicon.ico
590
URL
www.uplify.us/favicon.ico
IP
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash
01c83aa85e97b7e10df53150d530cfe3
b548a3cb9d8418c0577390a1a8ba2a6ee1d9db4e
2dfecd7f696563c2c6d526c0f25588769cf5a1917211831eaeeafb6ad761bb73
GET /favicon.ico HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/s/8g1pi
Cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=eyJpdiI6ImNJenVhVnNpVzZsa0VzSkhZcVNHaEE9PSIsInZhbHVlIjoid2QvOGlqV2FMa2krMzZSMm5Hb1kxSjdpSGpkUlJ4S3FuemRxTElXeFNxWm4rcDZ5ODV0S3k4RE94bUl5ZEx2SHBXUXUwRFdlT1ZMaFhUQ2hPbWNUNHhsbmVJRk9OMkdxWks0WlY3czJUVzc0b0tkREV3ckZQSXM0UTM5YVcwWnE2VU9uRlF4ZVI5MDEyaDJ4d2tKeW5BbGY0cWUrSVRSTGVSY1NJSnI2N0NPdlU3WHVpZzFPNmJ6RC9ZT0ZGcGxNVklsQldCN0V6OG12ZXltL0ZVYnBwait0UU1YeWpvdWFtdS9YaUlrUW1EbFlVbWpIOTdRdFdDc3RBZkZwVkFRK0tEQ1BrOHNsR0RxK3pHNStuUnlmZ3RpcjBMN1h2VkJ1d3doa3E0M3VsRmJ4Qm1NQUgzWlB5K1psb1JlR1o4azRyZzBLZUxZaWp4VFFMYi9pN015SXZ3bm9LL0FMWS9RMEhVb2RMay9aa05wdVc0ZWdYQVdKeWUzSlFMUTVlODNyIiwibWFjIjoiM2ZjNDVmZjRmOGVhMDlhZWYzNjc5NTllMjIwN2QxZDI5NDk4ZjgxMDE1NzNlZDFmZWNhZTZlMDE3ZjI3ODc1MiIsInRhZyI6IiJ9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
content-length: 590
location: https://d1pqg1uhsn461w.cloudfront.net/82d0fd9c-ca82-479b-a1af-1a20577bb65c/favicon.ico
date: Fri, 09 Jun 2023 20:33:05 GMT
x-amzn-requestid: 112ad06e-a0ba-4357-83b1-0319521b5f14
x-amz-apigw-id: GRLkTEzeFiAFvmw=
cache-control: max-age=3600, public
x-amzn-trace-id: Root=1-64838c81-2a01d2043b78569947ed530e;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:05 GMT
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9GTfz5Et7cFPvrxQ4UBEzcM1JQ6aLHs8RW_WDmER0zLkJ-angFz4hw==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
fc6e41649cc0efc5cb00014f48d20f0e
4a9925637880487dc9ada35bd4c84c0579ab6497
b3e1b0ab2a845f3c8d4e1d875ccfbe7efd170d1e68d66f258d52c782f0e1c622
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 17:12:31 GMT
ETag: "4a9925637880487dc9ada35bd4c84c0579ab6497"
Last-Modified: Fri, 09 Jun 2023 17:12:32 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25cbedebb4f3-OSL
mytopf.com/js/code.js
14562
IP
ASN
#205830 Mrgroup Investments Limited
Magic
ASCII text, with very long lines (653)
Hash
c4306f1cccb8e2a27efc246ea00c7225
85209ed41159f7e837fbb67ee9a4a51c0b3b42f2
6ecf6a9d464bca62342eeded280696113e2faeb2411e61adddda71ba3011284c
GET /js/code.js HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Jun 2023 14:46:04 GMT
Set-Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::; path=/; expires=Sun, 09-Jun-24 20:33:05 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
ETag: W/"6478af2c-898d"
Expires: Fri, 09 Jun 2023 21:33:05 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: *
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: max-age=3600, private
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
472
IP
Hash
e3150775c6717d68b242c5a9c65b7915
cacc261b8f875ed6ead31be5ca9349dfa29a0289
be588563fd4c901a718c5ad79143a83b8a1ee2dcd0ae84a76aa5288f4737ad89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452
42
URL
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452
IP
Magic
GIF image data, version 89a, 1 x 1\012- data
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-2WQGPK6K4Z&cid=1819400242.1686342785>m=45je3671&aip=1&z=1058917452 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 09 Jun 2023 20:33:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472
IP
Hash
e3150775c6717d68b242c5a9c65b7915
cacc261b8f875ed6ead31be5ca9349dfa29a0289
be588563fd4c901a718c5ad79143a83b8a1ee2dcd0ae84a76aa5288f4737ad89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mytopf.com/counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919
43
URL
mytopf.com/counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919
IP
ASN
#205830 Mrgroup Investments Limited
Magic
GIF image data, version 89a, 1 x 1\012- data
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /counter?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;lvid=1686342785597%3A1686342785625%3A1%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.10224840775266919 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1_NxWA0VkXoI00000s1iP4oI:::0-0-0-99de542:CAASELC12BaXfMlWgp8W5069juQaYHsEM83TdKEQU23OA_7LF5ZQnycTxvj1kKA7m0Sc5bnBd64hEO_PbGIwyJ0qPzBZPaUAGCFpf_wDXM6bLJeEq8TQ5bLH_42TlhEqIGeEIEpACpSgnhg7WGc_vFaM8GHeCg; path=/; expires=Sun, 09-Jun-24 20:33:06 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
FTID=0; path=/; expires=Thu, 01-Jan-70 00:00:01 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656
43
URL
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656
IP
ASN
#205830 Mrgroup Investments Limited
Magic
GIF image data, version 89a, 1 x 1\012- data
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;nt=0/0/1686342783472/////31/34/35/35/238/39/238/615/617/799/1472/1498/1504/2182/2182/2183;ni=;lvid=1686342785597%3A1686342785658%3A2%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.686485001955739;e=RT/load;et=1686342785656 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: FTID=1RMYgQ0tkIII:1686342785:0:::
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:06 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASEIwgtNm8c1ethEBTWkLimT8aYNj8Gpgxtqb0P1c_T9UJM3x2wEgSfBFi-Jktz7PM0g4TRZoJlc_za5Kl9shnB67VhI3z9GMr90N5jnDrRjRQsY54hvblM6hGV9HsDOy5mwOyma-rzZKp58AtKpOzgXOChQ; path=/; expires=Sun, 09-Jun-24 20:33:06 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
FTID=0; path=/; expires=Thu, 01-Jan-70 00:00:01 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1
0
URL
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&_gaz=1&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_s=1&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.uplify.us
date: Fri, 09 Jun 2023 20:33:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
471
URL
ocsp.r2m02.amazontrust.com/
IP
Hash
61cd46b06f8d9f9e65f445bdeb9bb90c
af59c53bc04d3627cc20c7c75183bc1ef63d4f30
678f64e4ca7f0a8b8d3b2d90f07a18492f0196b37f454abeedca2221e87e4754
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Fri, 09 Jun 2023 20:33:08 GMT
Server: ECAcc (dcb/7339)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GG4YiwTVvEd2sYcuTtAgzAOu0Lw9oHKoyJcBLMh1wQNMhwI8wmQLLg==
fp.uplify.us/?ci=js/3.8.14
1030
URL
fp.uplify.us/?ci=js/3.8.14
IP
Hash
e089351ca009d8efdd38a8600248d040
b0b4b67081a3f459f9c61093062ed5ea5e7a7dbb
2e2770aa12b8b2f1944dbb81c8d5c1a0242dfeb20d2ea27ac98d77da8a53b62b
POST /?ci=js/3.8.14 HTTP/1.1
Host: fp.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 3359
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: _ga_2WQGPK6K4Z=GS1.1.1686342785.1.0.1686342785.60.0.0; _ga=GA1.1.1819400242.1686342785; tmr_lvid=74e673ad275e084a498f51728ea2de10; tmr_lvidTS=1686342785597
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 20:33:08 GMT
content-type: text/plain
content-length: 1030
server: nginx/1.22.1
access-control-allow-credentials: true
access-control-allow-origin: https://www.uplify.us
access-control-expose-headers: Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'
referrer-policy: no-referrer
set-cookie: _iidt=d0JaNvDe6BQzrjaIqruhdB8Okv4pywa12Jw0bzynO6+pTAKteRjXf52CGAdE/rhbJex+dvoYoV7/y32BgV35VK5BF41aizVgRg==; Path=/; Domain=uplify.us; Expires=Sat, 08 Jun 2024 20:33:08 GMT; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=63072000
vary: Origin
x-content-type-options: nosniff
x-frame-options: DENY
X-Firefox-Spdy: h2
www.uplify.us/api/v1/creative/product/link/593/streamer_link/real
15
URL
www.uplify.us/api/v1/creative/product/link/593/streamer_link/real
IP
Magic
JSON data\012- , ASCII text, with no line terminators
Hash
28ec1eee5f4049e3c4f2135069c1d2c8
3505519507ca1c2a089c46e100b80408ca278421
edc48cd3b0bc4fa7ba23aad40b8508a17d370ca38be174bae2a2f64634e65a2b
POST /api/v1/creative/product/link/593/streamer_link/real HTTP/1.1
Host: www.uplify.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-XSRF-TOKEN: eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0=
Content-Length: 34
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/s/8g1pi
Cookie: XSRF-TOKEN=eyJpdiI6ImRUNzlRY3pUOTRvNzdGNkJicXQ5UXc9PSIsInZhbHVlIjoiSnI5d0hTTTRucENBMXc1aW9qYlZNUVpPWGxtZ1A2VEZSVkdaSk5EN3NMbndHMWMvSEdiOWY3WDkydy9qT3JPbXVqbjJtaWpwMHFJSW95MkNrT3l3ckxWTFBRakRqcTFNRERVT2dxTFJwYjBhVUpBckQxMnBJbTB0NGV1T2UxWE0iLCJtYWMiOiI0NjAyMTExZjVhOTYzMmZhNWQyZGQzZmQ0MDczOGY0NWY2NDY3MjU3ZDllNTFjZjYwZDRlZWIwOTdlNGJjOGE3IiwidGFnIjoiIn0%3D; uplify_session=eyJpdiI6IlZFLzJ4VytOV2hyNko5RktpbFdnTHc9PSIsInZhbHVlIjoiTG1vNkpkOXd5M1N5N09SU002RkgrZ3BsVU0xQjF2MG5ZUVVlc1YwbktPMWlHbTJ4ZGc2dWJoQ1V5MWhxR0pYT3QyaWQvcmZzL1RscU9raFZDckxuNFRhb3YvWG1jT2tUY1d5aURIZ2pidEZRcmdNL2I1N3l6YzlCbnVKRjFmVXciLCJtYWMiOiI2Yjc4ZGNjMGJmOTU2MjhkZTYzOTVmNzdkMDFjY2Q0MWRhYTA0OWY3YTJlMThjNGQxNDkxYTIzODZjODEyNzY2IiwidGFnIjoiIn0%3D; HjQ3lzHjKFxb7oiKgXHCYrFPmvNqXsVWKlvphx1Y=eyJpdiI6ImNJenVhVnNpVzZsa0VzSkhZcVNHaEE9PSIsInZhbHVlIjoid2QvOGlqV2FMa2krMzZSMm5Hb1kxSjdpSGpkUlJ4S3FuemRxTElXeFNxWm4rcDZ5ODV0S3k4RE94bUl5ZEx2SHBXUXUwRFdlT1ZMaFhUQ2hPbWNUNHhsbmVJRk9OMkdxWks0WlY3czJUVzc0b0tkREV3ckZQSXM0UTM5YVcwWnE2VU9uRlF4ZVI5MDEyaDJ4d2tKeW5BbGY0cWUrSVRSTGVSY1NJSnI2N0NPdlU3WHVpZzFPNmJ6RC9ZT0ZGcGxNVklsQldCN0V6OG12ZXltL0ZVYnBwait0UU1YeWpvdWFtdS9YaUlrUW1EbFlVbWpIOTdRdFdDc3RBZkZwVkFRK0tEQ1BrOHNsR0RxK3pHNStuUnlmZ3RpcjBMN1h2VkJ1d3doa3E0M3VsRmJ4Qm1NQUgzWlB5K1psb1JlR1o4azRyZzBLZUxZaWp4VFFMYi9pN015SXZ3bm9LL0FMWS9RMEhVb2RMay9aa05wdVc0ZWdYQVdKeWUzSlFMUTVlODNyIiwibWFjIjoiM2ZjNDVmZjRmOGVhMDlhZWYzNjc5NTllMjIwN2QxZDI5NDk4ZjgxMDE1NzNlZDFmZWNhZTZlMDE3ZjI3ODc1MiIsInRhZyI6IiJ9; _ga_2WQGPK6K4Z=GS1.1.1686342785.1.0.1686342785.60.0.0; _ga=GA1.1.1819400242.1686342785; tmr_lvid=74e673ad275e084a498f51728ea2de10; tmr_lvidTS=1686342785597; _iidt=d0JaNvDe6BQzrjaIqruhdB8Okv4pywa12Jw0bzynO6+pTAKteRjXf52CGAdE/rhbJex+dvoYoV7/y32BgV35VK5BF41aizVgRg==; _vid_t=YiHK+aRZ0ju1vdTs/R8B8wNs0LHY1tF+QTL0XE16Zz+GMDtvhtEVZFj4SxCo2X6GhqI2XjB3Bh8WU//f7dJR0I4v4JDi8Dr7Ng==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 15
date: Fri, 09 Jun 2023 20:33:08 GMT
x-amzn-requestid: a4fbdc46-8cdb-48f9-aed5-c85158d55e4a
access-control-allow-origin: https://www.uplify.us
x-ratelimit-remaining: 119
x-amz-apigw-id: GRLktFFOliAFj0w=
vary: Origin
cache-control: no-cache, private
x-ratelimit-limit: 120
x-amzn-trace-id: Root=1-64838c84-33da85286964229b7b56dd1a;Sampled=0;lineage=a45d5871:0
x-amzn-remapped-date: Fri, 09 Jun 2023 20:33:08 GMT
access-control-allow-credentials: true
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dFHm4Qi4q9xII-qZlsHXDVqSRb2MDzlEIxPyWg4q-EggCUgOwrFFog==
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
939
URL
ocsp.globalsign.com/gseccovsslca2018
IP
Hash
c124adb8b6fa245e7a7a3d47a3e4de60
27342342007e326476cec6645c2a7e8a97a5a875
66a20c0a47fd40fa7fc3beafc81a5ceddc6e76350990918b629ff8fd2a320ecf
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:08 GMT
Content-Type: application/ocsp-response
Content-Length: 939
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:46:19 GMT
ETag: "27342342007e326476cec6645c2a7e8a97a5a875"
Last-Modified: Fri, 09 Jun 2023 18:46:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3502
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25de0aa7b4f3-OSL
trk.mail.ru/c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061
302 Found
138
URL
User Request
GET
HTTP/2
trk.mail.ru/c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061
IP
Certificate
IssuerGlobalSign nv-sa
Subject*.mail.ru
Fingerprint30:2C:F5:F6:72:1F:20:49:CA:73:C2:FD:1E:80:EC:27:FA:98:9B:99
ValidityTue, 18 Oct 2022 16:38:03 GMT - Sun, 19 Nov 2023 16:38:02 GMT
Magic
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash
aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET /c/zewp68?mt_network=Twitch&mt_creative=video&mt_adset=pictureinpicture&mt_sub1=&mt_sub2=media-cloud05062023&mt_sub3=cpm&mt_sub4=desktop&mt_sub1=19061 HTTP/1.1
Host: trk.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 09 Jun 2023 20:33:08 GMT
content-type: text/html
content-length: 138
set-cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA; path=/; expires=Sun, 09-Jun-24 20:33:08 GMT; domain=.mail.ru; HttpOnly; SameSite=None; Secure
location: https://cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
a0045e1a0b121e946bef5a26acb6d17c
434c8a8ea6efb2bf77693bafe1d8792d1ffbd7ad
b51807ee374f9dc1b9b5e1be8e3c8e5ad188500b1a7ec155e02298796c93f8ba
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 16:41:18 GMT
ETag: "434c8a8ea6efb2bf77693bafe1d8792d1ffbd7ad"
Last-Modified: Fri, 09 Jun 2023 16:41:19 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 673
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25df7d46b4f3-OSL
cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
301 Moved Permanently
162
URL
User Request
GET
HTTP/1.1
cloud.mail.ru/promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
IP
Certificate
IssuerGlobalSign nv-sa
Subject*.cloud.mail.ru
FingerprintA0:11:5B:DE:A8:08:10:77:6E:84:C0:67:94:12:BB:AE:A5:37:0D:C4
ValidityThu, 16 Feb 2023 10:14:20 GMT - Tue, 19 Mar 2024 10:14:19 GMT
Magic
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /promo/summer?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023 HTTP/1.1
Host: cloud.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uplify.us/
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/html
Content-Length: 162
Location: https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Connection: keep-alive
X-Host: cld-front1.q
X-UA-Compatible: IE=Edge
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' blob: data: https://static.mail.corpcloud.mail.ru https://auth.mail.ru https://portal.mail.ru https://bar.love.mail.ru https://xray.mail.ru https://ad.mail.ru https://mc.yandex.ru https://an.yandex.ru https://yandex.ru https://firebase.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://vk.com https://ok.ru https://corsapi.imgsmail.ru https://top-fwz1.mail.ru https://r3.mail.ru https://cloud.mail.ru https://uploader.cloud.mail.ru https://zipview.mail.ru; script-src 'self' 'report-sample' 'nonce-kPEKrYFJdS' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://limg.imgsmail.ru; img-src blob: data: https://static.mail.corpcloud.mail.ru https://rs.mail.ru https://filin.mail.ru https://an.mail.ru https://b2.mail.ru https://ad.mail.ru https://top-fwz1.mail.ru https://trk.mail.ru https://xray.mail.ru https://stat.radar.imgsmail.ru https://img1.imgsmail.ru https://www.tns-counter.ru https://www.google-analytics.com https://counter.yadro.ru https://r.mradx.net https://d.mradx.net https://an.yandex.ru https://bs.yandex.ru https://mc.yandex.ru https://avatars.mds.yandex.net https://ad.adriver.ru https://vk.com https://*.userapi.com https://wcm-ru.frontend.weborama.fr https://cloud.imgsmail.ru https://thumb.cloud.mail.ru https://cloud.mail.ru https://r3.mail.ru https://docs.mail.ru https://apf.mail.ru https://zipview.mail.ru https://mail.radar.imgsmail.ru https://favicon.yandex.net; style-src 'self' 'report-sample' 'unsafe-inline' https://static.mail.corpcloud.mail.ru https://limg.imgsmail.ru https://r.mradx.net https://fonts.googleapis.com https://cloud.imgsmail.ru https://cloud.mail.ru; font-src 'self' data: https://static.mail.corpcloud.mail.ru https://fonts.googleapis.com https://fonts.gstatic.com https://yastatic.net https://cloud.imgsmail.ru https://top-fwz1.mail.ru https://cloud.mail.ru; media-src 'self' https://cloud-common-static.hb.bizmrg.com https://r.mradx.net https://top-fwz1.mail.ru https://cloud.mail.ru; object-src blob: 'self'; worker-src 'self'; manifest-src 'self' https://static.mail.corpcloud.mail.ru; frame-src 'self' https://o2.mail.ru https://www.google.com https://top-fwz1.mail.ru https://cloud.mail.ru https://amr.mrgcdn.ru https://zipview.mail.ru; frame-ancestors 'self'; child-src 'self'; upgrade-insecure-requests ; report-uri https://cspreport.mail.ru/cloud/;
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 09 Jun 2022 20:33:09 GMT
X-XSS-Protection: 1; mode=block
cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
200 OK
81526
URL
User Request
GET
HTTP/1.1
cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
IP
Certificate
IssuerGlobalSign nv-sa
Subject*.cloud.mail.ru
FingerprintA0:11:5B:DE:A8:08:10:77:6E:84:C0:67:94:12:BB:AE:A5:37:0D:C4
ValidityThu, 16 Feb 2023 10:14:20 GMT - Tue, 19 Mar 2024 10:14:19 GMT
Magic
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (54038), with CRLF line terminators
Hash
4bcb5393be413950cba22fe80981168c
a009f1e0050ba005edbf5e334881e31a232f310e
afd6f0beacbaf5ed4fe14f32b76ea6b93769c338942e2f0c0ca4deaa168ea690
GET /promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023 HTTP/1.1
Host: cloud.mail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uplify.us/
DNT: 1
Connection: keep-alive
Cookie: VID=2A_Wm408kLoI00000s1iP4oI:::0-0-0-99de544:CAASEM56OU18JcJdQs8i1BZxM6caYLY4JEpl9C6XuDC5J634sZ2BXlacqfykr8b2KfbdMTerDFVH_nvqGqM37uv1yMPpRPajTc3ZyJvwM1H_mqR8vlu8XzVoPye36czMIXpca2txIrC_LbjYS2Nllc-0Gn9zWA
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Req-Id: LxzFdka6aB
X-server: lightning
X-page-id:
X-timing: 0.0515279769897461
X-timestamp: 1686342789
X-Host: cld-front1.q
X-Upstream-Time: -
X-UA-Compatible: IE=Edge
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; form-action 'self'; connect-src 'self' blob: data: https://static.mail.corpcloud.mail.ru https://auth.mail.ru https://portal.mail.ru https://bar.love.mail.ru https://xray.mail.ru https://ad.mail.ru https://mc.yandex.ru https://an.yandex.ru https://yandex.ru https://firebase.googleapis.com https://www.google-analytics.com https://stats.g.doubleclick.net https://vk.com https://ok.ru https://corsapi.imgsmail.ru https://top-fwz1.mail.ru https://r3.mail.ru https://cloud.mail.ru https://uploader.cloud.mail.ru https://zipview.mail.ru; script-src 'self' 'report-sample' 'nonce-LxzFdka6aB' 'strict-dynamic' 'unsafe-inline' 'unsafe-eval' https://limg.imgsmail.ru; img-src blob: data: https://static.mail.corpcloud.mail.ru https://rs.mail.ru https://filin.mail.ru https://an.mail.ru https://b2.mail.ru https://ad.mail.ru https://top-fwz1.mail.ru https://trk.mail.ru https://xray.mail.ru https://stat.radar.imgsmail.ru https://img1.imgsmail.ru https://www.tns-counter.ru https://www.google-analytics.com https://counter.yadro.ru https://r.mradx.net https://d.mradx.net https://an.yandex.ru https://bs.yandex.ru https://mc.yandex.ru https://avatars.mds.yandex.net https://ad.adriver.ru https://vk.com https://*.userapi.com https://wcm-ru.frontend.weborama.fr https://cloud.imgsmail.ru https://thumb.cloud.mail.ru https://cloud.mail.ru https://r3.mail.ru https://docs.mail.ru https://apf.mail.ru https://zipview.mail.ru https://mail.radar.imgsmail.ru https://favicon.yandex.net; style-src 'self' 'report-sample' 'unsafe-inline' https://static.mail.corpcloud.mail.ru https://limg.imgsmail.ru https://r.mradx.net https://fonts.googleapis.com https://cloud.imgsmail.ru https://cloud.mail.ru; font-src 'self' data: https://static.mail.corpcloud.mail.ru https://fonts.googleapis.com https://fonts.gstatic.com https://yastatic.net https://cloud.imgsmail.ru https://top-fwz1.mail.ru https://cloud.mail.ru; media-src 'self' https://cloud-common-static.hb.bizmrg.com https://r.mradx.net https://top-fwz1.mail.ru https://cloud.mail.ru; object-src blob: 'self'; worker-src 'self'; manifest-src 'self' https://static.mail.corpcloud.mail.ru; frame-src 'self' https://o2.mail.ru https://www.google.com https://top-fwz1.mail.ru https://cloud.mail.ru https://amr.mrgcdn.ru https://zipview.mail.ru; frame-ancestors 'self'; child-src 'self'; upgrade-insecure-requests ; report-uri https://cspreport.mail.ru/cloud/;
Strict-Transport-Security: max-age=15768000; includeSubDomains; preload
Pragma: no-cache
Cache-Control: no-cache
Expires: Thu, 09 Jun 2022 20:33:09 GMT
X-XSS-Protection: 1; mode=block
Content-Encoding: gzip
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109
200 OK
43
URL
POST
HTTP/1.1
mytopf.com/tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109
IP
ASN
#205830 Mrgroup Investments Limited
Requested by
https://www.uplify.us/s/8g1pi
Certificate
IssuerGlobalSign nv-sa
Subjectmytopf.com
Fingerprint4E:23:FB:8C:88:95:D4:DD:CE:AE:21:B2:77:8C:10:23:99:12:FA:85
ValidityTue, 18 Apr 2023 14:40:41 GMT - Sun, 19 May 2024 14:40:40 GMT
Magic
GIF image data, version 89a, 1 x 1\012- data
Hash
9bb191c6827273aa978cab39a3587950
25d8043336eb799e52b1a0e15ff6b95e09c24e35
24e480e4659fbae818853a38f8a3036f529f539024dc3e772c0b594ce02ea9db
POST /tracker?js=13;id=3277676;u=https%3A//www.uplify.us/s/8g1pi;st=1686342784944;title=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo;s=1280*1024;vp=1280*1024;touch=0;hds=1;frame=0;flash=;sid=b6f3ba10d7b952d2;ver=60.3.0;tz=0%2FUTC;ni=;detect=0;lvid=1686342785597%3A1686342788695%3A3%3A74e673ad275e084a498f51728ea2de10;opts=dl%2Cjst-gtag;visible=true;_=0.866611821422503;e=RT/unload;et=1686342788694;pvt=3750;vtauto=3109 HTTP/1.1
Host: mytopf.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASEIwgtNm8c1ethEBTWkLimT8aYNj8Gpgxtqb0P1c_T9UJM3x2wEgSfBFi-Jktz7PM0g4TRZoJlc_za5Kl9shnB67VhI3z9GMr90N5jnDrRjRQsY54hvblM6hGV9HsDOy5mwOyma-rzZKp58AtKpOzgXOChQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Set-Cookie: VID=1xNXTJ2d-dII00000s1iP4oI:::0-0-0-99de542:CAASENQ85SKH8ULSVlGUdCULcWQaYMoXoCc1OA98xzUEYFaqmupSdOtiedWaExWMJW5ladSm6PwqBJzb2r7W35DxLJRoRp4NLr_34udP71DB3Ivf3BjZJ9ZcbT5DzBKSYp0_OYXj_rwWGRlwXsYbcSZVtqLnFw; path=/; expires=Sun, 09-Jun-24 20:33:09 GMT; domain=.mytopf.com; HttpOnly; SameSite=None; Secure
Access-Control-Allow-Origin: https://www.uplify.us
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: GET, POST, HEAD, PUT, OPTIONS
Access-Control-Allow-Headers: *
AMP-Access-Control-Allow-Source-Origin: https://www.uplify.us
Access-Control-Expose-Headers: AMP-Access-Control-Allow-Source-Origin
Timing-Allow-Origin: https://www.uplify.us
X-Content-Type-Options: nosniff
P3P: CP="NOI DSP COR NID CUR PSA OUR NOR"
Cache-Control: private, no-cache, no-store, max-age=0
Pragma: no-cache
Accept-CH: DPR, Width, Viewport-Width, Downlink, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
Accept-CH-Lifetime: 86400
ocsp.pki.goog/gts1c3
471
IP
Hash
fc8e1ec54c50413f6e09e63a85414e7c
929ef6a2a5150200fe2bacfc03245b53be30e46f
9441071bcc600b4efd8d0e6f03237f7cccb737b30125bd1095051a5acdf23ec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 20:33:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
57757c4fc14cede98e5ec5f4b7ef1189
0c8e5663c4f9da61309b2375d484ad276d362694
0bff8e6f6a9190055f043962d3b68d4a15e77488f49fe01cbf6fa00490e6c106
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 16:22:10 GMT
ETag: "0c8e5663c4f9da61309b2375d484ad276d362694"
Last-Modified: Fri, 09 Jun 2023 16:22:11 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3535
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e31c4ab4f3-OSL
www.googletagmanager.com/gtag/js?id=UA-43037165-12
200 OK
47577
URL
GET
HTTP/2
www.googletagmanager.com/gtag/js?id=UA-43037165-12
IP
Requested by
https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Magic
ASCII text, with very long lines (2271)
Hash
77d92b82c3d55aff600e8296cfe49427
ea2d0a21db1482a4c368c9da9582060bd1ec298e
bfbabb9b7106d6af98f01954a0d5c3d60eac3c621b00d857eeee969f01f5f3ac
GET /gtag/js?id=UA-43037165-12 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
vary: Origin, Accept-Encoding
access-control-allow-origin: https://cloud.mail.ru
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
date: Fri, 09 Jun 2023 20:33:09 GMT
expires: Fri, 09 Jun 2023 20:33:09 GMT
cache-control: private, max-age=900
last-modified: Fri, 09 Jun 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
01adabe65dd6c88274e106bbdc7608eb
afa1f0c96787949cbc623732476019496900125a
b11b66b528ad15e8e8e6b835da96ab54299d2b60881c77b4b6f4ae21f772f97d
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 19:58:13 GMT
ETag: "afa1f0c96787949cbc623732476019496900125a"
Last-Modified: Fri, 09 Jun 2023 19:58:14 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1617
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e39d73b4f3-OSL
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
244b3a579980d57c32956879f70823e6
f6ee380834ea54064410b5f54c873396dda30571
9436739a94b922d93d69bdf135417d48f62c44863464a741b8ef7f2e5636ae3a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:45:27 GMT
ETag: "f6ee380834ea54064410b5f54c873396dda30571"
Last-Modified: Fri, 09 Jun 2023 18:45:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 46
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e3a9f61bfa-OSL
ocsp.globalsign.com/gsrsaovsslca2018
1432
URL
ocsp.globalsign.com/gsrsaovsslca2018
IP
Hash
244b3a579980d57c32956879f70823e6
f6ee380834ea54064410b5f54c873396dda30571
9436739a94b922d93d69bdf135417d48f62c44863464a741b8ef7f2e5636ae3a
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 13 Jun 2023 18:45:27 GMT
ETag: "f6ee380834ea54064410b5f54c873396dda30571"
Last-Modified: Fri, 09 Jun 2023 18:45:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 46
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d4c25e3ad7eb4f3-OSL
r.mradx.net/img/BC/44BE61.css
200 OK
2747
URL
GET
HTTP/1.1
r.mradx.net/img/BC/44BE61.css
IP
Requested by
https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate
IssuerGlobalSign nv-sa
Subject*.mradx.net
Fingerprint38:D6:C5:0B:2A:4C:E9:B0:EC:D4:29:0C:45:9B:1F:CE:96:79:CD:7E
ValidityThu, 14 Jul 2022 08:28:17 GMT - Tue, 15 Aug 2023 08:28:16 GMT
Magic
ASCII text, with very long lines (13285), with no line terminators
Hash
280c3244db36bba7cbe2966ff1742524
bc44be6194ec20fc5be671558a70d9792572905e
c44de69c95bddbb0a4ac20445ed63f989fee9bbd0510ed3df35ec2dc8f1561f3
GET /img/BC/44BE61.css HTTP/1.1
Host: r.mradx.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cloud.mail.ru
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 09 Jun 2023 20:33:09 GMT
Content-Type: text/css
Last-Modified: Thu, 05 Dec 2019 16:54:01 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"5de93629-33e5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Content-Encoding: gzip
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png
200 OK
90489
URL
GET
HTTP/2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png
IP
Requested by
https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate
IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
Magic
PNG image data, 1040 x 692, 8-bit colormap, non-interlaced\012- data
Hash
1de769a0667acf8f2d9fab551c75e910
9a04a33844e933994b1b84da23c1b4cb87f77d39
fe8cb82166c8c7bcc97bec9d7dcd5c5335fd40360c5122afcd3965bc3c2cac3c
GET /cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png HTTP/1.1
Host: cloud.imgsmail.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloud.mail.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Jun 2023 20:33:09 GMT
content-type: image/png
content-length: 90489
last-modified: Tue, 30 May 2023 12:06:52 GMT
x-rgw-object-type: Normal
etag: "1de769a0667acf8f2d9fab551c75e910"
x-amz-request-id: tx000000000000004c45f0c-0064785070-294b2ac-default
x-gg-cache-date: Thu, 01 Jun 2023 08:01:52 GMT
x-cdn-node: matrix2.i
x-req-id: 24c40d5a908174b1f747fe598f17c474
x-cdn-ucs: HIT
x-content-type-options: nosniff
vary: Origin
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90
204 No Content
0
URL
POST
HTTP/3
region1.analytics.google.com/g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90
IP
Requested by
https://www.uplify.us/s/8g1pi
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2WQGPK6K4Z>m=45je3671&_p=306049287&cid=1819400242.1686342785&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1686342785&sct=1&seg=0&dl=https%3A%2F%2Fwww.uplify.us%2Fs%2F8g1pi&dt=Uplify%20%7C%20The%20Next%20Generation%20of%20Livestream%20Advertising%20on%20Twitch%2C%20YouTube%20and%20Trovo&en=scroll&epn.percent_scrolled=90 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uplify.us
DNT: 1
Connection: keep-alive
Referer: https://www.uplify.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.uplify.us
date: Fri, 09 Jun 2023 20:33:09 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png
200 OK
1518
URL
GET
HTTP/2
cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png
IP
Requested by
https://cloud.mail.ru/promo/summer/?utm_source=Twitch&utm_medium=cpm&utm_content=pictureinpicture&utm_campaign=media-cloud05062023&utm_term=&erid=&mt_sub3=cpm&mt_sub4=desktop&mt_click_id=mt-zewp68-1686342788-4021853142&mt_network=Twitch&mt_adset=pictureinpicture&mt_creative=video&mt_sub2=media-cloud05062023
Certificate
IssuerGlobalSign nv-sa
Subject*.mail.ru
FingerprintC2:57:3D:5B:D1:AC:57:DD:A0:01:53:9B:7C:18:D8:D6:EB:D5:BD:7E
ValidityThu, 16 Feb 2023 10:42:58 GMT - Tue, 19 Mar 2024 10:42:57 GMT
54.230.111.71
104.16.123.175
95.163.41.56
87.230.98.74
185.76.9.15![URL cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/tools-slider/tools1%402x.png](/search?q=http.url.addr:"cloud.imgsmail.ru%2fcloud.landings%2f159524%2fstatic%2f72074e4%2flanding%2fcloud-new%2fimg%2ftools-slider%2ftools1%25402x.png"){kind=link}
![URL cloud.imgsmail.ru/cloud.landings/159524/static/72074e4/landing/cloud-new/img/cloudapp/cloud-app-qr.png](/search?q=http.url.addr:"cloud.imgsmail.ru%2fcloud.landings%2f159524%2fstatic%2f72074e4%2flanding%2fcloud-new%2fimg%2fcloudapp%2fcloud-app-qr.png"){kind=link}