sendanywhe.re/8E518WQS
302 Moved Temporarily 145 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b3362064546860db06f06964293b50cc
bf330c1a9a33cd8a12c9a8c322a9bc85f6ff8fab
6d340ca2e4424d58e4b77cb3fa78bb51a0390240dab99dadfe08ec2c2e8eba27
GET /8E518WQS HTTP/1.1
Host: sendanywhe.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Date: Wed, 28 Sep 2022 10:21:44 GMT
Server: nginx/1.16.1
Location: https://send-anywhere.com/web/link/8E518WQS
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kXxa99W95ytLgHlyTIs_uBOLrjf5xDsIctbQcCZ0JpooHaCVbF2_vw==
Age: 26
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 10:17:40 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KhU4Y0E3BN4jVDDknRrtSTZcNpb79Nm54mExryySNNoosWjipjbbRA==
Age: 270
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7568
Expires: Wed, 28 Sep 2022 12:28:18 GMT
Date: Wed, 28 Sep 2022 10:22:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jOCTVYJHtjvj62J1jAcDs_OixQYTYRGQmwuBvxPGbuLnGInCUMaKkQ==
age: 17624
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ce183982c609d2e9c6788d83c9883b84
43f21eb4d7af355da114037573e39195e1d601f4
312168de14269d30d1e5eed347f8e8736211ef1da3f9f27674db7f6d32847873
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2103
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:11 GMT
Last-Modified: Wed, 28 Sep 2022 09:47:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 10:03:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1ZY95EDwWG_grL0kRwW3gzuBHm3dx2yiuY2hszsjUlXJJKnIWwzpJg==
Age: 3158
send-anywhere.com/web/link/8E518WQS
302 Found 140 B URL HTTP/2 send-anywhere.com/web/link/8E518WQS
IP
File type HTML document, ASCII text, with no line terminators
Hash c1c7718acf19fba59284326f4e64a3e2
ac058761b6a410c66921fe3f994e6959f0cc5ce5
906da35fac39688360d3cce1e6dcc7fce77c34588fcd14021a57169055b9e4a4
GET /web/link/8E518WQS HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 140
location: https://send-anywhere.com/web/downloads/8E518WQS
date: Wed, 28 Sep 2022 10:22:11 GMT
server: nginx/1.16.1
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: i18next=en-US; path=/; expires=Thu, 28 Sep 2023 10:22:11 GMT
vary: Accept
cache-control: no-cache
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6-0uG8y603nJmUL4zDA-Ig97FMdsGnHz822I_khirNy5pp_UvkuUJA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4871
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:11 GMT
Last-Modified: Wed, 28 Sep 2022 09:01:00 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
send-anywhere.com/web/downloads/8E518WQS
200 OK 9.4 kB URL HTTP/2 send-anywhere.com/web/downloads/8E518WQS
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1894)
Hash 72f831f679cd550b4ba85dd6f7226504
21d5acb8855c1e2868dc09eac0c2fff393482dfc
5009777f3fbae196719394cdc337732cf2ee344b8639b38c9c4ae32a6d13da5e
GET /web/downloads/8E518WQS HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: i18next=en-US
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 9380
date: Wed, 28 Sep 2022 10:22:11 GMT
server: nginx/1.16.1
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: i18next=en-US; path=/; expires=Thu, 28 Sep 2023 10:22:11 GMT
etag: W/"24a4-IdWsuIVcHiho3AnqwML/85NILfw"
cache-control: no-cache
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Rc5o2lpDtURGhNsI7TwDw0AN6Gj4-yu4Ekgg5yO3p0vc32VaUPvfSw==
X-Firefox-Spdy: h2
send-anywhere.com/assets/css/base/font.1664235044000.css?ut=811280
200 OK 2.2 kB URL HTTP/2 send-anywhere.com/assets/css/base/font.1664235044000.css?ut=811280
IP
Hash bc34581305eab8153b96233c0c0e543e
0d5b4e92735d2b9eebaaa8d0337095836835115c
7a37a7dd846a0e0b60dc7aafbecabe405c2d83f7a2185d1b36fc6c5ba6770eca
GET /assets/css/base/font.1664235044000.css?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 2162
date: Tue, 27 Sep 2022 08:35:26 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:48 GMT
etag: "6331ffc8-872"
expires: Wed, 27 Sep 2023 08:35:26 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: sk01YYd3zkH0EWKf9fo9KSrIkb_oh5a9hOTAeA-N6K1uj7vmokkP-w==
age: 92805
X-Firefox-Spdy: h2
send-anywhere.com/assets/css/base/font-roboto.1664235044000.css?ut=811280
200 OK 656 B URL HTTP/2 send-anywhere.com/assets/css/base/font-roboto.1664235044000.css?ut=811280
IP
Hash db04546d728dbc53b75ad5c9f161e5db
6d9637e39f3fbaf2a54d1467ae91b685212111e0
8e8b5a0b4e50196e99b823f22a7ed11b3408e2169f44ecfbc09738f1ee6c6b15
GET /assets/css/base/font-roboto.1664235044000.css?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 656
date: Tue, 27 Sep 2022 08:35:26 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:48 GMT
etag: "6331ffc8-290"
expires: Wed, 27 Sep 2023 08:35:26 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: AjITFyWLmuJ2HgisGq27d3dHmx6zOb7-ottSdVfzVKCUWzE-6Q6z4Q==
age: 92805
X-Firefox-Spdy: h2
send-anywhere.com/assets/css/base/font-awesome.min.1664235044000.css?ut=811280
200 OK 31 kB URL HTTP/2 send-anywhere.com/assets/css/base/font-awesome.min.1664235044000.css?ut=811280
IP
File type ASCII text, with very long lines (30933)
Hash 4b64bc8cb1a104bc51c3f2c8c32d1c4a
8145f05a6dd3351e37b6e2a01a6b8a2cc08d3d1a
3d721e8b87d0aa3f3a7d7fe2ed9a49da6c5a47cb2977c16a32ea87be19eb237d
GET /assets/css/base/font-awesome.min.1664235044000.css?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 31096
date: Tue, 27 Sep 2022 08:35:26 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:48 GMT
etag: "6331ffc8-7978"
expires: Wed, 27 Sep 2023 08:35:26 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -0Oh7enKcZqpC_BUQAqCCh2muLeMT6Zo5-_SrkIKL6McZczGWUCmLQ==
age: 92805
X-Firefox-Spdy: h2
send-anywhere.com/assets/css/base/sa-icon-font.1664235044000.css?ut=811280
200 OK 8.1 kB URL HTTP/2 send-anywhere.com/assets/css/base/sa-icon-font.1664235044000.css?ut=811280
IP
Hash 5921c75c6063efe526919fbb87091290
f6e7c4364bf4dbd281272fd94444e36d3dffad06
378df85808f18992a02c729575753613d1e35facf9a65abaa9af181b434fa828
GET /assets/css/base/sa-icon-font.1664235044000.css?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 8088
date: Tue, 27 Sep 2022 08:35:26 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:48 GMT
etag: "6331ffc8-1f98"
expires: Wed, 27 Sep 2023 08:35:26 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I-LAJpqysb3xkOLD0SLAphJrAd8zrgh1Sh8y4ZAL6z8twmglMFlh5g==
age: 92805
X-Firefox-Spdy: h2
send-anywhere.com/assets/js/criteo.1664235044000.js?ut=811280
200 OK 77 kB URL HTTP/2 send-anywhere.com/assets/js/criteo.1664235044000.js?ut=811280
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a3762d4fa5c3d2910638961070f1cdf
ae36461a45cbf09748edc977471ea09a431effae
cb0d4898e672ec6c78416c069d61c9ec41b45dd81a24e6001ed5d68a64dab782
GET /assets/js/criteo.1664235044000.js?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 76694
date: Tue, 27 Sep 2022 08:35:27 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:50 GMT
etag: "6331ffca-12b96"
expires: Wed, 27 Sep 2023 08:35:27 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KROR5w7MZWu1lNPxJvbbT2MAfEVhGI4wBTWCJQwiR000JsLQPnFlvw==
age: 92804
X-Firefox-Spdy: h2
send-anywhere.com/assets/js/header.1664235044000.js?ut=811280
200 OK 2.1 kB URL HTTP/2 send-anywhere.com/assets/js/header.1664235044000.js?ut=811280
IP
File type exported SGML document, ASCII text
Hash 0f1d3865ab847f69ee10d67700323be3
2a4f51f8881616c5261cd52aba14d02a07e885e8
740a65e5b0603f86e0939ab4e9e3ae835a8bdbaf75424a91757420570c22d2d5
GET /assets/js/header.1664235044000.js?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2052
date: Tue, 27 Sep 2022 08:35:26 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:50 GMT
etag: "6331ffca-804"
expires: Wed, 27 Sep 2023 08:35:26 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o3zOv6QfNH28tnxF0lOzv9U7b5CDMZdFAC-5Dq0TYFMbhdTq1SjYrA==
age: 92805
X-Firefox-Spdy: h2
send-anywhere.com/static/js/vendor.f38b0444.js
200 OK 1.7 MB URL HTTP/2 send-anywhere.com/static/js/vendor.f38b0444.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.7 MB (1719934 bytes)
Hash 160407cff275abea0a36afe7c213de6e
b1d3688a00ac8c59d266381fb023a6c69ecf7daf
0da39456702953e52a9d4af40a3871bb3fe9e493da8f0407ad367fccb3503146
GET /static/js/vendor.f38b0444.js HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 1719934
date: Tue, 27 Sep 2022 08:35:34 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 23:30:58 GMT
etag: "63323632-1a3e7e"
expires: Wed, 27 Sep 2023 08:35:34 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x9LUGk76jQU9G7JlfIoat3Ow9ETCCVD_B5nIGf6AB-jg4U7N_akz_g==
age: 92797
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ee7Ztjm9/vBDzBuzOVphJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qMzWFjZSWFrF5tsKnFRNOpAlP+o=
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5798
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:11 GMT
Last-Modified: Wed, 28 Sep 2022 08:45:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5799
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Last-Modified: Wed, 28 Sep 2022 08:45:34 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 278
cdn.cookielaw.org/scripttemplates/otSDKStub.js
200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
File type ASCII text, with very long lines (21747)
Hash cef0e6a73f52f72e73d57867726399ff
2611e0920611a653446508e5f3de017900cc49f2
97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Wed, 28 Sep 2022 06:44:40 GMT
etag: 0x8DAA11CEB8088F4
x-ms-request-id: 12f3da30-001e-017b-1809-d3f503000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2360
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1adbe4e1c0a-OSL
X-Firefox-Spdy: h2
wcs.naver.net/wcslog.js
200 OK 6.8 kB IP
File type ASCII text, with very long lines (20124), with no line terminators
Hash 843a08a1540a6ef318459433f0d7e92a
8b367a0abbbb3aa407b3285939b242dd90af8e10
e9c2885f3be79e610f1a995a5d9d403671417e056cdccf427416509263c11883
GET /wcslog.js HTTP/1.1
Host: wcs.naver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Tue, 14 Jun 2022 02:08:57 GMT
ETag: "62a7edb9-4e9c"
Server: nginx
Content-Type: application/javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1559
Expires: Wed, 28 Sep 2022 10:48:11 GMT
Date: Wed, 28 Sep 2022 10:22:12 GMT
Content-Length: 6834
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.css
200 OK 382 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.css
IP
File type ASCII text, with very long lines (1290), with no line terminators
Hash 0fdccbc9ab0563b984da415344206bc3
32e2fe3151bd7656667ba951d2512a57efbd0593
83ab14487f326759ee1070e7e24724a7667a9311966eb9539d6cd2056af610d7
GET /ajax/libs/slick-carousel/1.6.0/slick.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: text/css; charset=utf-8
content-length: 382
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-50a"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 746731
expires: Mon, 18 Sep 2023 10:22:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBEApfTbfH5BsBIb4pERM40fYeHhM0eBLiYzr8hmIIAnw%2FxQoe5jSegANOENEttNfXZJF4slrxSKv6HueZF%2B3Dx2iCqGouF%2Bp1foXSuQMpTZbojfl70qc5J9Mlqq6cLry6Z5Pbap"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751bc1adae3a0afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 538692a0cbeb2e09cd3af235e5553123
5a9231ebcec9889cf5b5e2450349ed4aee56fcbc
819ff8e41d20d247d0f4eaa714d072ad1a68e37eaba6fd663edea3ad1364998d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5515
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Last-Modified: Wed, 28 Sep 2022 08:50:17 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
apis.google.com/js/platform.js
200 OK 20 kB URL HTTP/2 apis.google.com/js/platform.js
IP
File type ASCII text, with very long lines (1277)
Hash b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Wed, 28 Sep 2022 10:22:12 GMT
expires: Wed, 28 Sep 2022 10:22:12 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
send-anywhere.com/assets/font/roboto/roboto-400.woff
200 OK 20 kB URL HTTP/2 send-anywhere.com/assets/font/roboto/roboto-400.woff
IP
File type Web Open Font Format, TrueType, length 19824, version 1.1\012- data
Hash bafb105baeb22d965c70fe52ba6b49d9
934014cc9bbe5883542be756b3146c05844b254f
1570f866bf6eae82041e407280894a86ad2b8b275e01908ae156914dc693a4ed
GET /assets/font/roboto/roboto-400.woff HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://send-anywhere.com/assets/css/base/font-roboto.1664235044000.css?ut=811280
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff
content-length: 19824
date: Tue, 02 Aug 2022 03:08:03 GMT
server: nginx/1.16.1
last-modified: Mon, 01 Aug 2022 17:10:14 GMT
etag: "62e808f6-4d70"
expires: Wed, 02 Aug 2023 03:08:03 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VbUI1zjqdBEt2NFR3SMGf3n4IGDxYSJSo27vlocWBVh0-4nI4pvVMg==
age: 4950849
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/a47bec7a-41fc-4cfb-a74c-2438233907e5.json
200 OK 1.6 kB URL HTTP/2 cdn.cookielaw.org/consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/a47bec7a-41fc-4cfb-a74c-2438233907e5.json
IP
File type JSON data\012- , ASCII text, with very long lines (3978), with no line terminators
Hash 261b8ec450a22f15b3cbaa4334d6ae57
6cab72d6820c34833c7e78d6ab4538b49b2ca7c1
fd57b5533de8156578c9825200b97533339f5ea381c690f5c9a375481b5e5490
GET /consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/a47bec7a-41fc-4cfb-a74c-2438233907e5.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/x-javascript
content-length: 1568
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: JhuOxFCiLxWzy6pDNNauVw==
last-modified: Wed, 18 May 2022 04:52:58 GMT
etag: 0x8DA388A47B6BCE0
x-ms-request-id: fdfbced7-b01e-0126-5079-6a0507000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59
expires: Wed, 28 Sep 2022 14:22:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1ae993eb51b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash ee73b7c4749adc3275f84075a14e1a5d
efa85ade8187474f415a7d971061878923be7b29
e692d91c8a7cee65886c19bc7ac2d7e706f1cb790ca64d20e74c68f40c9182d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3598
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Last-Modified: Wed, 28 Sep 2022 09:22:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtm.js?id=GTM-NQWTW75
200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NQWTW75
IP
File type ASCII text, with very long lines (2039)
Hash 16dfd8398790dc66fcd14e10f0033c2c
acaf6e5d79041fcada49bce6dbf38e505edf6e1f
812e2ad9a1d54a46fc8368dfab1da8f793365489b02ed1cbda1861e9609fee2f
GET /gtm.js?id=GTM-NQWTW75 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 10:22:12 GMT
expires: Wed, 28 Sep 2022 10:22:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 45727
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
send-anywhere.com/static/media/logo.40d00b5a.png
200 OK 11 kB URL HTTP/2 send-anywhere.com/static/media/logo.40d00b5a.png
IP
File type PNG image data, 560 x 160, 8-bit/color RGBA, interlaced\012- data
Hash 40d00b5adb8026396e6a129d0afbaa04
9a9d877d55117b276b57bed031fd1e37f63653e9
595ce98672716d048593078a59735472c0dbb39a3dfc5851ff5cb42fc11b3f52
GET /static/media/logo.40d00b5a.png HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 11117
date: Fri, 09 Sep 2022 10:31:29 GMT
server: nginx/1.16.1
last-modified: Thu, 01 Sep 2022 00:28:40 GMT
etag: "630ffcb8-2b6d"
expires: Sun, 09 Oct 2022 10:31:29 GMT
cache-control: max-age=2592000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 01PnEjLedxiUBDsJ5jC9ikCZ52MCsfbyGSwAqykNqLcGZQfvy_4-5A==
age: 1641043
X-Firefox-Spdy: h2
send-anywhere.com/static/js/app.79684095.js
200 OK 31 kB URL HTTP/2 send-anywhere.com/static/js/app.79684095.js
IP
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, SA-Icon \012- data
Hash 1fa471acc9596ef1c581ab652ccd0a1c
c16aeccbb5466b22ed429518735c06b743cd5b7f
a155f769a1430ac17a509c17f6533092f7fd99b889b3d4cf6c0bc431c22326d8
GET /static/js/app.79684095.js HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 2478059
date: Tue, 27 Sep 2022 08:37:51 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 23:30:58 GMT
etag: "63323632-25cfeb"
expires: Wed, 27 Sep 2023 08:37:51 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Vx_7OeU9DXsG61FM5Fe5pEvE70UANBkGd7UIX932kfC0u1nc2V9zKQ==
age: 92660
X-Firefox-Spdy: h2
send-anywhere.com/assets/font/roboto/roboto-700.woff
200 OK 20 kB URL HTTP/2 send-anywhere.com/assets/font/roboto/roboto-700.woff
IP
File type Web Open Font Format, TrueType, length 19888, version 1.1\012- data
Hash cf6613d1adf490972c557a8e318e0868
b2198c3fc1c72646d372f63e135e70ba2c9fed8e
468e579fe1210fa55525b1c470ed2d1958404512a2dd4fb972cac5ce0ff00b1f
GET /assets/font/roboto/roboto-700.woff HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://send-anywhere.com/assets/css/base/font-roboto.1664235044000.css?ut=811280
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff
content-length: 19888
date: Wed, 07 Sep 2022 06:13:11 GMT
server: nginx/1.16.1
last-modified: Thu, 01 Sep 2022 00:28:26 GMT
etag: "630ffcaa-4db0"
expires: Thu, 07 Sep 2023 06:13:11 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: g4yzjWSNSeV3oS8Z5H04VqNDCV4MCQyN4jiYR01sXOxIsgfXEOn74g==
age: 1829341
X-Firefox-Spdy: h2
send-anywhere.com/assets/font/roboto/roboto-300.woff
200 OK 20 kB URL HTTP/2 send-anywhere.com/assets/font/roboto/roboto-300.woff
IP
File type Web Open Font Format, TrueType, length 19916, version 1.1\012- data
Hash a1471d1d6431c893582a5f6a250db3f9
ff5673d89e6c2893d24c87bc9786c632290e150e
3ab30e780c8b0bcc4998b838a5b30c3bfe28edead312906dc3c12271fae0699a
GET /assets/font/roboto/roboto-300.woff HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://send-anywhere.com/assets/css/base/font-roboto.1664235044000.css?ut=811280
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff
content-length: 19916
date: Sun, 04 Sep 2022 11:24:41 GMT
server: nginx/1.16.1
last-modified: Thu, 01 Sep 2022 00:28:26 GMT
etag: "630ffcaa-4dcc"
expires: Mon, 04 Sep 2023 11:24:41 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LN9FC9KmZnMlA5actHMkSQm8Dszs10yAWPMrmzBCRvuXL6UeOqLsUQ==
age: 2069851
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-e8599ce48e3ee1681f9c49cea9065a1b.html
200 OK 186 B URL HTTP/2 js.stripe.com/v3/m-outer-e8599ce48e3ee1681f9c49cea9065a1b.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash e8599ce48e3ee1681f9c49cea9065a1b
ecf9f098801aa63d13e5c5f986affc8cab474c8a
0b6b1e81daa61b5578bd5ed74bacf04dff506bb4e4abe63082c0c5fd9616547a
GET /v3/m-outer-e8599ce48e3ee1681f9c49cea9065a1b.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 186
last-modified: Mon, 26 Sep 2022 20:12:07 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
timing-allow-origin: *
date: Wed, 28 Sep 2022 10:02:41 GMT
cache-control: max-age=31536000
etag: "e8599ce48e3ee1681f9c49cea9065a1b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EvFN864WeqtVvSzsSNRsVpOgWKuuDB6f-SgE-EN6hVR-wsT3g6SJbA==
age: 1172
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-b001761a9e7ca2dc271fb1cd264185bf.js
200 OK 526 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-b001761a9e7ca2dc271fb1cd264185bf.js
IP
File type ASCII text, with very long lines (526), with no line terminators
Hash d96c709017743c0759cf3853d1806ba5
72e21587610c49c8305a55e71f73fa88ed618205
ba2338aa6670580269c762f51c4291daef913201aa8f4d4fd166c1a878262652
GET /v3/fingerprinted/js/m-outer-b001761a9e7ca2dc271fb1cd264185bf.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-e8599ce48e3ee1681f9c49cea9065a1b.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 526
last-modified: Mon, 26 Sep 2022 20:12:06 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
date: Wed, 28 Sep 2022 10:19:53 GMT
cache-control: max-age=31536000
etag: "d96c709017743c0759cf3853d1806ba5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zmHwbQ-bQZjb1gIEFNCeLe6rCd7OwDnNES9hfQuncOJZhEQCWeewag==
age: 140
X-Firefox-Spdy: h2
m.servedby-buysellads.com/monetization.js
200 OK 18 kB URL HTTP/1.1 m.servedby-buysellads.com/monetization.js
IP
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 4d32e462762b8bab14aa8f1195813992
a16a386fb349eef7a0046cc23c686495ddb10cac
fbe0276864f56558fcab7d2b570dc83be5503a4a3b180cb77417c87124711e8d
GET /monetization.js HTTP/1.1
Host: m.servedby-buysellads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-id-2: hIGOdLyJDrLtf7Oj30jXtimqm1ESSff5iAT3hvgud3KZC5+klozrLvLu8fgXwl1BikNF/lM9K64=
x-amz-request-id: XNHQQ2GJX8ZSG6WE
Last-Modified: Fri, 03 Jun 2022 18:18:52 GMT
ETag: W/"4896c8077f50520418d4d1ab293b6545"
x-amz-meta-s3cmd-attrs: atime:1654280297/ctime:1654280295/gid:1000/gname:nathan/md5:4896c8077f50520418d4d1ab293b6545/mode:33204/mtime:1654280295/uid:1000/uname:nathan
Server: NetDNA-cache/2.2
Expires: Thu, 29 Sep 2022 10:22:12 GMT
Cache-Control: max-age=86400
X-Cache: HIT
Content-Encoding: gzip
m.stripe.network/inner.html
200 OK 930 B URL HTTP/2 m.stripe.network/inner.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash fc2e029628f163bb59adc6fa5a31161c
0f4547ae510d1bf36e3630d41bdab29d64c03d64
a5f27af9c0c6f37979ebafcac22eb3a613841a3d4e728f4577baf94e64d42f35
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 930
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
accept-ranges: bytes
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
date: Wed, 28 Sep 2022 10:17:34 GMT
cache-control: max-age=300, public
etag: "fc2e029628f163bb59adc6fa5a31161c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: buiy9_XPaaj2edmBfopx8Z6MTe_0A8nGns2StfUbYZSEl2-y8dgBNg==
age: 279
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js
200 OK 81 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/otBannerSdk.js
IP
File type ASCII text, with very long lines (65455)
Hash af27d9858b2a2e2b0912706c3aa815b1
10c1fa093e80cbcb3ba39b8e54e934b37cb3aa57
a736527d6f80163a1b0ec8f7f8a2902c7005b4ec61fce5295d9612df48a72d06
GET /scripttemplates/6.32.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/javascript
content-length: 81095
content-encoding: gzip
content-md5: ryfZhYsqLisJEnBsOqgVsQ==
last-modified: Fri, 18 Mar 2022 16:29:23 GMT
etag: 0x8DA08FC76466F7A
x-ms-request-id: 4e03c84a-e01e-0031-75f4-3a8331000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 2349
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1b1aa561c0a-OSL
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash a3dc910228cfb0d3870467a4afe1b8dd
dbb2720ede2ae9b4a6b5be01957d813bae697842
b2875b9076d9b9ed7cf40db6c9466d85fe0873fb7dce7aedb59ed7b17d340427
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1821
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:12 GMT
Last-Modified: Wed, 28 Sep 2022 09:51:51 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
200 OK 287 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
Hash 9f38c72af767a89f312b46e62ebc2cf4
785a196889b8e8a895be4a20255756450c4b5b3c
9d67a018bf61084f05b0e257081a931b6e38ddd08fba7dff955bc0a723b575d0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 751bc1aedca00b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/c8fdc98c-f0d0-48d7-9583-d241c2fc6e0f/en.json
200 OK 18 kB URL HTTP/2 cdn.cookielaw.org/consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/c8fdc98c-f0d0-48d7-9583-d241c2fc6e0f/en.json
IP
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Hash 3f2b0bc8588279ea012012651db4a893
bda94371636b6fd1c411c5eadf34030d4ac880c3
25799cea91257297030faa9984500ac71768fa177cddb1a27f41ec31347f69d2
GET /consent/a47bec7a-41fc-4cfb-a74c-2438233907e5/c8fdc98c-f0d0-48d7-9583-d241c2fc6e0f/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/x-javascript
content-length: 18396
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: PysLyFiCeeoBIBJlHbSokw==
last-modified: Wed, 18 May 2022 04:53:06 GMT
etag: 0x8DA388A4CAACD4D
x-ms-request-id: 029820da-b01e-0104-437c-6a6b31000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 59
expires: Wed, 28 Sep 2022 14:22:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1b30f9cb51b-OSL
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash c66e172d16232b990059de3e312ffa3e
4c9be6a94f089527698b726f50f4d12b59bd4fc1
e379b9f4f83fbc92e6391cb59ef048cd513f9d704679573f234ecb1a83b2384f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 06:26:36 GMT
Expires: Wed, 05 Oct 2022 06:26:35 GMT
Etag: "4c9be6a94f089527698b726f50f4d12b59bd4fc1"
Cache-Control: max-age=590062,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bc1b24d511c0e-OSL
ocsp.sectigo.com/
200 OK 472 B IP
Hash 94e7d2a7a56caaa1df8beffb4209009d
af0a60cfa5aef1629e02facac427a97c75ebaad4
037358f0fc0bf5d7b22b6e1248eb9ea8334a6a7caa22cbbe811b44ea445fceeb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:13 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 28 Sep 2022 10:16:02 GMT
Expires: Wed, 05 Oct 2022 10:16:01 GMT
Etag: "af0a60cfa5aef1629e02facac427a97c75ebaad4"
Cache-Control: max-age=603828,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 751bc1b1df490b59-OSL
srv.buysellads.com/ads/CESDCKJJ.json?segment=placement:send-anywherecom
200 OK 469 B URL HTTP/2 srv.buysellads.com/ads/CESDCKJJ.json?segment=placement:send-anywherecom
IP
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with very long lines (636), with no line terminators
Hash 359887567ba10328fbb770bdbbec235c
5b4d71310829452d74dcf8e61934019118393793
c5fa933861a56aef720759eeee290ef95c6dc120854c33aa85735ea835be6cdd
GET /ads/CESDCKJJ.json?segment=placement:send-anywherecom HTTP/1.1
Host: srv.buysellads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/json; charset=utf-8
server: //srv.buysellads.com
vary: Accept-Encoding
content-length: 469
date: Wed, 28 Sep 2022 10:22:13 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4946
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:22:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4946
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:22:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4946
Expires: Wed, 28 Sep 2022 11:44:39 GMT
Date: Wed, 28 Sep 2022 10:22:13 GMT
Connection: keep-alive
static.zdassets.com/web_widget/latest/web-widget-framework-f946e922bd3a194625ec.js
200 OK 56 kB URL HTTP/2 static.zdassets.com/web_widget/latest/web-widget-framework-f946e922bd3a194625ec.js
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash ffa454c5d103e7fa2fca52c3c9ab8462
4d00a3279b727533bfbec0fe92ff704e43c02868
6644b986a1a8be11b0db8c3602dfbebbae55e47aa02302a66785f229b3803e32
GET /web_widget/latest/web-widget-framework-f946e922bd3a194625ec.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: UPfMdFM5rMXpAVGC3UCGqZvolEXW9obw5S95yXk31vNIQhgS+sTttfupcdvCOCC7tTJYDTaoccA=
x-amz-request-id: QCVT93WX42ZYK37S
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 08:20:45 GMT
etag: W/"2e6239dd99b9e86e717b8eb3c1c8d59c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 21 Sep 2023 08:20:44 GMT
x-amz-version-id: OfPluWx04UFRk_evdpa1t4UW.QUvdFFU
cf-cache-status: HIT
age: 104818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KNOs%2By40H62aN9gUE0wMRXt0b4l2BtSNsrS1Z4p2v7ucitExI9MX3z9UhF1X8A0am2UJK%2Bf6cqpo%2BtJ80waA6VzIxv0IWaiX5OD1DGMijb4AVJ7nAWbyl%2FDq2%2F%2FqTwv4wKR0Sic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 751bc1b358921bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: L2Of12XTKmTF2EPL4MHpJvBW7GNS8gSRs3FuUMB-RUpTZaY8ew_o_w==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:26:00 GMT
age: 17773
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn4.buysellads.net/acceptable.gif?ch=1&rn=2.6038965242876846
200 OK 43 B URL HTTP/2 cdn4.buysellads.net/acceptable.gif?ch=1&rn=2.6038965242876846
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /acceptable.gif?ch=1&rn=2.6038965242876846 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: image/gif
content-length: 43
x-amz-id-2: C5A4mCYTORF1tNh3retgbuQaEwM4iLFQlVxNKsH0InkU0ugoUhzYckZJqW0zLzTDz97kaxaoH8ugf4jX9rRVlg==
x-amz-request-id: W3NKTTH5CY5HCMY5
last-modified: Fri, 19 Jul 2019 16:45:51 GMT
etag: "b4491705564909da7f9eaf749dbbfbb1"
accept-ranges: bytes
server: NetDNA-cache/2.2
expires: Sat, 23 Sep 2023 10:22:13 GMT
cache-control: max-age=31104000
x-cache: MISS
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pR4b1-lZZRMnWf-PdXFGXaHBCGAfOyp3AjeuCvtu5imWmf9N9l2wKQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:38 GMT
age: 45215
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn4.buysellads.net/acceptable.gif?ch=2&rn=2.6038965242876846
200 OK 43 B URL HTTP/2 cdn4.buysellads.net/acceptable.gif?ch=2&rn=2.6038965242876846
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /acceptable.gif?ch=2&rn=2.6038965242876846 HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: image/gif
content-length: 43
x-amz-id-2: 0MCVcGADLJjkcd1EWIOg63Ue30mQ0hPVNp1OPlLw6EOr9XLnsklWwMsHzby9jKDLaLuJ08skFdzCvGBnGMlGcw==
x-amz-request-id: W3NSM72FYN2G2Y18
last-modified: Fri, 19 Jul 2019 16:45:51 GMT
etag: "b4491705564909da7f9eaf749dbbfbb1"
accept-ranges: bytes
server: NetDNA-cache/2.2
expires: Sat, 23 Sep 2023 10:22:13 GMT
cache-control: max-age=31104000
x-cache: MISS
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: 626c21ec-f29b-4b69-b275-c22c864c2409
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3VmENnIAMFeTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c23-75eccc381fbd6e5d4ff59c06;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Eyy8qoYVCJbt6b6hTGJ-rOrYex9RuX1InyZbpHkeu9yQqPUEvowKcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:48:58 GMT
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
age: 45195
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 46e31aa06b8e86a9a5f9ba1cc3feca08
75df3341e30281fcbf78c7074980356fdf0be8e2
d1fd4f81b7e0f43de960f0ee024d9e87bcb395f032a4ab0360e3829d1ec8a42b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63a7aeb3-999a-4e57-9255-c40e0376d08e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5319
x-amzn-requestid: 74191b02-ebea-48bd-8522-f05bf8080f31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlOKFtsIAMFyGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321bf4-1f2daa9d7906bf9812e10953;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y0gjPs-l9_JD9F-LSH_i1uL2Nz0UcWCG-9PmDmRH8cN_cNAeSchJTA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:32:06 GMT
age: 46207
etag: "75df3341e30281fcbf78c7074980356fdf0be8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fcxclGRP3zfWwb6opjYU2bL9VAq_mCSNjFtfp9iMLq6tbZu57EDqpQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:04 GMT
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
age: 45129
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFlat.json
200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otFlat.json
IP
File type JSON data\012- , ASCII text, with very long lines (10856)
Hash f33aeb448b5934c684b6e7212bfa1fc1
8d56f2a627e96d153995f2461e5904cebdfb0293
f2666356b549cda2171a21761e3160bb866ae336ecf1a30fd1aab5b572558449
GET /scripttemplates/6.32.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/json
content-length: 2959
content-encoding: gzip
content-md5: 8zrrRItZNMaEtuchK/ofwQ==
last-modified: Fri, 18 Mar 2022 16:29:14 GMT
etag: 0x8DA08FC70DA836E
x-ms-request-id: 37cf6f34-701e-00f8-7caf-6913fb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 60
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1b3f905b51b-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcCenter.json
200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/v2/otPcCenter.json
IP
File type JSON data\012- , ASCII text, with very long lines (37720)
Hash b98951b9e685b52e6684eca68c6585a3
ab2127d67c9822e895caec017cc10668802f5fd6
890527152c26d7310348c3d9e29e950b588c1d9fd7eb722207bb862849723c9d
GET /scripttemplates/6.32.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/json
content-length: 11627
content-encoding: gzip
content-md5: uYlRueaFtS5mhOymjGWFow==
last-modified: Fri, 18 Mar 2022 16:29:16 GMT
etag: 0x8DA08FC723EC22F
x-ms-request-id: 8c337377-701e-007b-64af-69b356000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 60
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1b3f906b51b-OSL
X-Firefox-Spdy: h2
ads.vidoomy.com/send-anywhere_16293.js
200 OK 2.8 kB URL HTTP/1.1 ads.vidoomy.com/send-anywhere_16293.js
IP
File type ASCII text, with very long lines (1678)
Hash f985f5794578f6210aa59c08a34fa758
b0dbc0b050d0c8fa07914bf996e93e528acb6daa
695f99182a371648a913c70cbdcd0be4b2d471d20ee2c03a8d4550684a0b0549
GET /send-anywhere_16293.js HTTP/1.1
Host: ads.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:13 GMT
Server: Apache/2.4.54 (Amazon) OpenSSL/1.0.2k-fips PHP/7.0.33
X-Powered-By: PHP/7.0.33
Access-Control-Allow-Origin: *
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Pragma: no-cache
Content-Length: 2816
Keep-Alive: timeout=2, max=300
Connection: Keep-Alive
Content-Type: application/javascript
wcs.naver.com/m?u=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&e=&wa=ce4000b198d5a0&bt=-1&os=Linux%20x86_64&ln=en-US&sr=1280x1024&bw=1280&bh=939&c=24&j=N&jv=1.8&k=Y&ct=&cs=UTF-8&tl=Send%2520Anywhere&vs=0.8.6&nt=1664360529754&EOU
200 OK 43 B URL HTTP/2 wcs.naver.com/m?u=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&e=&wa=ce4000b198d5a0&bt=-1&os=Linux%20x86_64&ln=en-US&sr=1280x1024&bw=1280&bh=939&c=24&j=N&jv=1.8&k=Y&ct=&cs=UTF-8&tl=Send%2520Anywhere&vs=0.8.6&nt=1664360529754&EOU
IP
ASN #23576 NAVER Cloud Corp.
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /m?u=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&e=&wa=ce4000b198d5a0&bt=-1&os=Linux%20x86_64&ln=en-US&sr=1280x1024&bw=1280&bh=939&c=24&j=N&jv=1.8&k=Y&ct=&cs=UTF-8&tl=Send%2520Anywhere&vs=0.8.6&nt=1664360529754&EOU HTTP/1.1
Host: wcs.naver.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
set-cookie: NWB=43a3ed5e31087cd2dbb237209c2b72d0.1664360533234; Expires=Mon, 27-Sep-27 10:22:13 GMT; Domain=wcs.naver.com; Path=/; Secure; SameSite=None
NWB_LEGACY=43a3ed5e31087cd2dbb237209c2b72d0.1664360533234; Expires=Mon, 27-Sep-27 10:22:13 GMT; Domain=wcs.naver.com; Path=/
p3p: CP = "ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
server: wcs
accept-ch: Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform-Version
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Tue, 01 Jan 1980 09:00:00 GMT
x-content-type-options: nosniff
access-control-allow-credentials: true
X-Firefox-Spdy: h2
send-anywhere.com/assets/img/brand/logo-152.1664235044000.png?ut=811280
200 OK 1.4 kB URL HTTP/2 send-anywhere.com/assets/img/brand/logo-152.1664235044000.png?ut=811280
IP
File type PNG image data, 152 x 152, 8-bit colormap, interlaced\012- data
Hash 3dcd3effbb2150b5110388a160194f5e
63de69e42f58e5a4c62cf57e2a3d87ffb4c05fe0
e012a8dcca3ef9d8ff97b1c97c53147475bc3f5c24140e1adafe982399c03794
GET /assets/img/brand/logo-152.1664235044000.png?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529; _ga_8N28GK5LN8=GS1.1.1664360530.1.0.1664360530.60.0.0; _ga=GA1.1.1763478730.1664360530; device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Sep+28+2022+10%3A22%3A10+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=0cad5fa1-1e38-4cee-b2be-f75857a7558d&interactionCount=0&landingPath=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&groups=C0001%3A1%2CC0003%3A0%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1414
date: Tue, 27 Sep 2022 08:37:56 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 19:38:48 GMT
etag: "6331ffc8-586"
expires: Thu, 27 Oct 2022 08:37:56 GMT
cache-control: max-age=2592000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bHIb9f2PrFYSIWR55N7ih-iF5KDbvsOOjoKIWiVyXCmp76j4HA-uow==
age: 92657
X-Firefox-Spdy: h2
send-anywhere.com/assets/img/favicon.1664235044000.ico?ut=811280
200 OK 33 kB URL HTTP/2 send-anywhere.com/assets/img/favicon.1664235044000.ico?ut=811280
IP
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 5c62b4a09441d57bdea18bc171167bd2
f198b3f043932d7c7fd50d6acb49a189ebb788ce
deca0dec98157d876ad0e96ea471fe8cf33e561ff12830b324fef9086903b332
GET /assets/img/favicon.1664235044000.ico?ut=811280 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529; _ga_8N28GK5LN8=GS1.1.1664360530.1.0.1664360530.60.0.0; _ga=GA1.1.1763478730.1664360530; device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Sep+28+2022+10%3A22%3A10+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=0cad5fa1-1e38-4cee-b2be-f75857a7558d&interactionCount=0&landingPath=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&groups=C0001%3A1%2CC0003%3A0%2CC0002%3A0%2CC0004%3A0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 32988
date: Tue, 27 Sep 2022 08:35:31 GMT
server: nginx/1.16.1
last-modified: Mon, 26 Sep 2022 23:30:44 GMT
etag: "63323624-80dc"
expires: Wed, 27 Sep 2023 08:35:31 GMT
cache-control: max-age=31536000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: o2jSqaTtWB1jqgSO_4f8K-rCDPFZYy40TWv2tLGtrPr2fNjUvK7l0g==
age: 92802
X-Firefox-Spdy: h2
d31qbv1cthcecs.cloudfront.net/atrk.js
200 OK 4.3 kB URL HTTP/1.1 d31qbv1cthcecs.cloudfront.net/atrk.js
IP
File type ASCII text, with very long lines (4255), with no line terminators
Hash d89453438fbf10dcf4c13265c40d5160
02d5f4e46c94bf34e12b2d773f63f643ea2b3518
5e84ce936bc3e3844a5d9efb3ac7d28107fa17234fa2a6c2bf3491fc284f0d4f
GET /atrk.js HTTP/1.1
Host: d31qbv1cthcecs.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 4255
Connection: keep-alive
Date: Sat, 13 Aug 2022 04:02:04 GMT
Last-Modified: Tue, 27 Apr 2021 18:03:54 GMT
ETag: "d89453438fbf10dcf4c13265c40d5160"
Cache-Control: max-age=26920000
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HbrMHMb-7Xx6TVCuKsbU2iA_rzL7igdFOc2BWDpyS-vqJujsxYCg1Q==
Age: 3997210
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5048
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Last-Modified: Wed, 28 Sep 2022 08:58:05 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/tag/js/gpt.js
200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP
File type ASCII text, with very long lines (45165)
Hash 8ed7e617b3ea6ea344e725caefa63f5c
6e5c3e25cf3cc1e83d57ccc76546d8b3ab3bca71
1108a47417660ef195b59b02b4260e713ba12fb7c8f88a8ae3ccd01c6ab1857e
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27697
date: Wed, 28 Sep 2022 10:22:13 GMT
expires: Wed, 28 Sep 2022 10:22:13 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1347 / 78 of 1000 / last-modified: 1664354789"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5609
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Last-Modified: Wed, 28 Sep 2022 08:48:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
region1.analytics.google.com/g/collect?v=2&tid=G-8N28GK5LN8>m=2oe9q0&_p=932725675&_gaz=1&cid=1763478730.1664360530&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664360530&sct=1&seg=0&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&dt=Send%20Anywhere&en=page_view&_fv=1&_nsi=1&_ss=2
204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-8N28GK5LN8>m=2oe9q0&_p=932725675&_gaz=1&cid=1763478730.1664360530&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664360530&sct=1&seg=0&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&dt=Send%20Anywhere&en=page_view&_fv=1&_nsi=1&_ss=2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8N28GK5LN8>m=2oe9q0&_p=932725675&_gaz=1&cid=1763478730.1664360530&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664360530&sct=1&seg=0&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&dt=Send%20Anywhere&en=page_view&_fv=1&_nsi=1&_ss=2 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://send-anywhere.com
date: Wed, 28 Sep 2022 10:22:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7ed37e03b72b8da3fb7f6c476ae9a1f
c335157b42102c71f5431bc295b2b2542af781d4
66ad71fe8fc69a39c7852c1b8e1fe1308e8ccaf2a147ed1c3a6866d3b248f9a3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 75859869fb220406a7c97eb3fe21995d
d306028fa874fdd7edb0f3bc10c9995e3e269f83
db816d4a9746a6f3b7585627ccc732bf66d4e4ca1142a5771103344ebb530189
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4558
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Last-Modified: Wed, 28 Sep 2022 09:06:16 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
stats.g.doubleclick.net/g/collect?v=2&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1
204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://send-anywhere.com
date: Wed, 28 Sep 2022 10:22:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: mkR4o6tpdgviUv62cDzvlGF+hWuH21aYs4qDjJfofmpnlcP0OD6XH32cccIWdk0M1/ue3ybtWW++9FopEZuhzw==
content-length: 26840
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 10:22:13 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1961)
Hash 67822a5b1a6ea318594bf8032ed716af
55e66f2d35ddcc202823afc96ce4b6e9d3109119
deefa936758635e282177c9e385cd0e6d8a9c61af8b301183e1253f2a6b3ecb9
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7a78f463cbe6f9cf9390e19f44ee65d8
etag: "70ca515ad4fadb5971fc5907988e7e46"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 28 Sep 2022 10:24:38 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Z4IqWxpuoxhZS/gDLtcWrw==
x-fb-debug: /Y3yb6vanGuqWbhSPmOWKL7c4CVGvTjhupC331xmhGnvOjH3wnmXL81bf09aYtmXQCZwCXawKR27wKrBdhJZBQ==
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 28 Sep 2022 10:22:13 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1&z=2057418920
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1&z=2057418920
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-8N28GK5LN8&cid=1763478730.1664360530>m=2oe9q0&aip=1&z=2057418920 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 10:22:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (2910)
Hash 7d00e1d4e3c9daf676e378dfe6c2f470
e5d640e3dab4526744d94f6b4f83224caea58c00
063b8bcacb83724efc7c4b67b41f3b1350ab0736e3fc008997330554688227e5
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Wed, 28 Sep 2022 10:22:13 GMT
expires: Wed, 28 Sep 2022 10:22:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6092933752894178650
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57624
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58610/occ
302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 28 Sep 2022 10:22:13 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58610/occ?verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFUgNGMCEAEoTdqQlbjLlGn5gVyVgH4FEgEBAQFxNWM-YwAAAAAA_eMAAA&S=AQAAAg49jKSYBXRNTDtfbH-jhNc; Expires=Thu, 28 Sep 2023 16:22:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash fd9c95c1c24789f4041887b11468ab7e
bf202eeda47e79ac15d77325a02a1206bec63dcb
86f005e634685a4eb89dd87735b4cc0d91163be2912c470a529f0eb223531dbf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5609
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Last-Modified: Wed, 28 Sep 2022 08:48:44 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7ed37e03b72b8da3fb7f6c476ae9a1f
c335157b42102c71f5431bc295b2b2542af781d4
66ad71fe8fc69a39c7852c1b8e1fe1308e8ccaf2a147ed1c3a6866d3b248f9a3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.stripe.com/6
200 OK 156 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5cbc4897efc37c09779820c100c75746
19a12b474f1aa234a22a47209dd0a7d3817d5b67
6fd40bd7c75407f0c55dcc514da48625ab8b35c6adcc36f59c30fc92860b72d9
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2404
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:13 GMT
content-length: 156
set-cookie: m=16eef868-e455-4084-82c8-bffbeaa697b91bf8a6;Expires=Fri, 27-Sep-2024 10:22:13 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
send-anywhere.zendesk.com/embeddable_blip?type=settings&data=eyJzZXR0aW5ncyI6eyJ3ZWJXaWRnZXQiOnsib2Zmc2V0Ijp7InZlcnRpY2FsIjoiMzVweCJ9LCJwb3NpdGlvbiI6eyJob3Jpem9udGFsIjoibGVmdCJ9fX0sImJ1aWQiOiI2MDQzMDkxZjlhNTM0MjI0OTZjYmFjY2EwNzA5NTMyZiIsInN1aWQiOiIyYTc0NjA5NDNmZDY0ZTQxYWYzODhhMjcxYTIwM2FmMSIsInZlcnNpb24iOiJhMGRlNGZkIiwidGltZXN0YW1wIjoiMjAyMi0wOS0yOFQxMDoyMjoxMS4xMzNaIiwidXJsIjoiaHR0cHM6Ly9zZW5kLWFueXdoZXJlLmNvbS93ZWIvZG93bmxvYWRzLzhFNTE4V1FTIn0%3D
200 OK 0 B URL HTTP/2 send-anywhere.zendesk.com/embeddable_blip?type=settings&data=eyJzZXR0aW5ncyI6eyJ3ZWJXaWRnZXQiOnsib2Zmc2V0Ijp7InZlcnRpY2FsIjoiMzVweCJ9LCJwb3NpdGlvbiI6eyJob3Jpem9udGFsIjoibGVmdCJ9fX0sImJ1aWQiOiI2MDQzMDkxZjlhNTM0MjI0OTZjYmFjY2EwNzA5NTMyZiIsInN1aWQiOiIyYTc0NjA5NDNmZDY0ZTQxYWYzODhhMjcxYTIwM2FmMSIsInZlcnNpb24iOiJhMGRlNGZkIiwidGltZXN0YW1wIjoiMjAyMi0wOS0yOFQxMDoyMjoxMS4xMzNaIiwidXJsIjoiaHR0cHM6Ly9zZW5kLWFueXdoZXJlLmNvbS93ZWIvZG93bmxvYWRzLzhFNTE4V1FTIn0%3D
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embeddable_blip?type=settings&data=eyJzZXR0aW5ncyI6eyJ3ZWJXaWRnZXQiOnsib2Zmc2V0Ijp7InZlcnRpY2FsIjoiMzVweCJ9LCJwb3NpdGlvbiI6eyJob3Jpem9udGFsIjoibGVmdCJ9fX0sImJ1aWQiOiI2MDQzMDkxZjlhNTM0MjI0OTZjYmFjY2EwNzA5NTMyZiIsInN1aWQiOiIyYTc0NjA5NDNmZDY0ZTQxYWYzODhhMjcxYTIwM2FmMSIsInZlcnNpb24iOiJhMGRlNGZkIiwidGltZXN0YW1wIjoiMjAyMi0wOS0yOFQxMDoyMjoxMS4xMzNaIiwidXJsIjoiaHR0cHM6Ly9zZW5kLWFueXdoZXJlLmNvbS93ZWIvZG93bmxvYWRzLzhFNTE4V1FTIn0%3D HTTP/1.1
Host: send-anywhere.zendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-length: 0
access-control-allow-origin: *
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
x-request-id: a2bc9a1c3c9ecf5827de9c52bd70f6a2
last-modified: Wed, 28 Sep 2022 10:22:13 GMT
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YfXETPviC0BvbdYSrjigNGMbIjutNpI1avdLlo%2FooNeeSv0mL9h5qzsoxY4mfw0Eg0hbK6%2FrqERoKUF6Yjsrv%2FJP0P0gb283cX1WdYA2TUh0mKFMee2j32Yg7pWHhQn6n49gXNhyOd4oCvw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=852b22cf09c9776aeeb5278eaa9b4e0fb53bd076-1664360533; path=/; domain=.send-anywhere.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 751bc1b6ed98b503-OSL
X-Firefox-Spdy: h2
send-anywhere.com/web/key/inquiry/8E518WQS?_=1664360530585
200 OK 218 B URL HTTP/2 send-anywhere.com/web/key/inquiry/8E518WQS?_=1664360530585
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 18d80e26752a6796e853d0e6e32ec652
d554c50389d923305be5d61eb28b02a2db123f43
a4a6082b603384185e7b86fb2669c840fff7c07d6a43d7967d754ed04df785d5
GET /web/key/inquiry/8E518WQS?_=1664360530585 HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529; _ga_8N28GK5LN8=GS1.1.1664360530.1.0.1664360530.60.0.0; _ga=GA1.1.1763478730.1664360530; device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 218
date: Wed, 28 Sep 2022 10:22:13 GMT
server: nginx/1.16.1
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
set-cookie: i18next=en-US; path=/; expires=Thu, 28 Sep 2023 10:22:13 GMT
access_token=ODkyMTQwODQyOTQ1MToxNjY0MzYwNTMzMzA2; Max-Age=10800; Path=/; Expires=Wed, 28 Sep 2022 13:22:13 GMT; Secure; SameSite=None
etag: W/"da-1VTFA4nZIzBb5dYesosCotsSP0M"
cache-control: no-cache
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mSZjRb806kTHOBrVMhiZyKE3EfYN11tavgI1CYp5_WUeVCRwOD7k_w==
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220922/r20190131/zrt_lookup.html
200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220922/r20190131/zrt_lookup.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220922/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Tue, 27 Sep 2022 21:34:34 GMT
expires: Tue, 11 Oct 2022 21:34:34 GMT
cache-control: public, max-age=1209600
age: 46059
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
certify.alexametrics.com/atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=Send%20Anywhere%20-%20File%20transfer&time=1664360531145&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&random_number=18580872950&sess_cookie=7c4888df183839e44c7f729c617&sess_cookie_flag=1&user_cookie=7c4888df183839e44c7f729c617&user_cookie_flag=1&dynamic=true&domain=send-anywhere.com&account=eQzFo1IWx810/9&jsv=20130128&user_lang=en-US
200 OK 43 B URL HTTP/1.1 certify.alexametrics.com/atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=Send%20Anywhere%20-%20File%20transfer&time=1664360531145&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&random_number=18580872950&sess_cookie=7c4888df183839e44c7f729c617&sess_cookie_flag=1&user_cookie=7c4888df183839e44c7f729c617&user_cookie_flag=1&dynamic=true&domain=send-anywhere.com&account=eQzFo1IWx810/9&jsv=20130128&user_lang=en-US
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=Send%20Anywhere%20-%20File%20transfer&time=1664360531145&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&random_number=18580872950&sess_cookie=7c4888df183839e44c7f729c617&sess_cookie_flag=1&user_cookie=7c4888df183839e44c7f729c617&user_cookie_flag=1&dynamic=true&domain=send-anywhere.com&account=eQzFo1IWx810/9&jsv=20130128&user_lang=en-US HTTP/1.1
Host: certify.alexametrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 17 Jan 2011 20:41:40 GMT
x-amz-meta-alexa-last-modified: 20110117123941
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 28 Sep 2022 02:09:43 GMT
ETag: "221d8352905f2c38b3cb2bd191d630b0"
X-Cache: Hit from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: NjfcyKC0q0y4PJjBgInP5NwCmfyAuGa0LNeOGptp6-pQuMdiVEuvEQ==
Age: 29551
ups.analytics.yahoo.com/ups/58610/occ?verify=true
204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58610/occ?verify=true
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58610/occ?verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 28 Sep 2022 10:22:13 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBFUgNGMCEB6uKJOVc1cHKRocrXLQavcFEgEBAQFxNWM-YwAAAAAA_eMAAA&S=AQAAAqdmeEBgg4X8QlMJUGIS12o; Expires=Thu, 28 Sep 2023 16:22:13 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=send-anywhere.com
200 OK 93 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=send-anywhere.com
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash cfaf7a8f08c3b7609b30ca7e72501d4c
3d6a5cc0c9ca36fed2b5fd38e3966ec947907aaa
04cbfc0583d9ba6b4a3332fb62b49a0122d7703de50fe71104f2a75fc3d6b00b
GET /pagead/ppub_config?ippd=send-anywhere.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Wed, 28 Sep 2022 10:22:13 GMT
expires: Wed, 28 Sep 2022 10:22:13 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 93
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 10:37:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022092201.js
200 OK 131 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022092201.js
IP
File type ASCII text, with very long lines (65439)
Size 131 kB (131358 bytes)
Hash df845ed722ef75a7c63227120e4b518d
a0ad49bf945e2d39ea6d25f1f6b36aafd841cc0c
d243312116a7d4192106708f797d6735c6f98b0f557f71114f3072a98be69caa
GET /gpt/pubads_impl_2022092201.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 131358
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 11:18:49 GMT
expires: Mon, 25 Sep 2023 11:18:49 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 22 Sep 2022 08:36:30 GMT
content-type: text/javascript
age: 255804
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-a0de4fd.js
200 OK 93 kB URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-locales/classic/en-us-json-a0de4fd.js
IP
File type Unicode text, UTF-8 text, with very long lines (25705), with no line terminators
Hash 50d2aa12a35319ba556f2998ea4cf367
a855ed94239f4d45185d8f381b0eb52374fe0af8
1a3829e5ff1cfe57b52b6c76ff4da910c8743949528e2048d719bd50de46ad34
GET /web_widget/latest/classic/web-widget-locales/classic/en-us-json-a0de4fd.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: fMInThwCD2uwKOVs+eC8l6d+V/iTy2p55BBPATdU/S+HGXiP2PYjJZjrQNyqREzh6lNFTp6xp5Y=
x-amz-request-id: 9XZY86BSXKY6VN66
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 08:21:00 GMT
etag: W/"10d9a30eac6ed106c66673278428cd9d"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 21 Sep 2023 08:20:58 GMT
x-amz-version-id: 7bBhZnRcwtV7WkRcz6oJFZFlaImckvic
cf-cache-status: HIT
age: 104817
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FvBmen1xCnoTcVAkElJ5OXg8y4Ns5WEGWyTPbW0oqGNDOcxTEW13qMhj5azisVdkEBaa6ZUwbls1SYl3KSqWgMmvon2NxnC5uQ42UIkWSW8OnG2h50tXg6HyJg%2F5TiZ36BlW9Tc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 751bc1b70c3a1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
x.bidswitch.net/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146
302 Moved Temporarily 0 B URL HTTP/1.1 x.bidswitch.net/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Cache-Control: no-cache, no-store, must-revalidate
Date: Wed, 28 Sep 2022 10:22:14 GMT
Location: https://x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146
Set-Cookie: tuuid=765489af-2feb-4488-a0d4-a29b84e0a72c; path=/; expires=Thu, 28-Sep-2023 10:22:14 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664360534; path=/; expires=Thu, 28-Sep-2023 10:22:14 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1664360534; path=/; expires=Thu, 28-Sep-2023 10:22:14 GMT; domain=.bidswitch.net; samesite=none; secure
c=1664360534; path=/; expires=Thu, 28-Sep-2023 10:22:14 GMT; domain=.bidswitch.net; samesite=none; secure
Content-Length: 0
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b53218d56104aaa1f2feaf402bbbe695
39dac69437473f31fab4e3c46197cd0b2ce89770
91d9b51df3434a3f8f0d0c43ac983f54c3f68afed32d90e5989082cbca694f2d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:22:14 GMT
Last-Modified: Wed, 28 Sep 2022 09:41:12 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: i7R9TlKF81ZEBILwmoI0BQYfyLaxKe-U1VizsTHdwiIn2W7xzsBkIg==
Age: 2462
x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146
200 OK 43 B URL HTTP/1.1 x.bidswitch.net/ul_cb/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?ssp=vidoomy&user_id=985505778.52929621494690615.9124146 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: image/gif
Date: Wed, 28 Sep 2022 10:22:14 GMT
Content-Length: 43
Connection: keep-alive
redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
204 No Content 0 B URL HTTP/2 redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x.png HTTP/1.1
Host: redirect.prod.experiment.routing.cloudfront.aws.a2z.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 28 Sep 2022 10:22:14 GMT
server: Server
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531738&sw=1280&sh=1024&at=
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531738&sw=1280&sh=1024&at=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531738&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 10:22:14 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1341760472609957&ev=PageView&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531843&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664360531842.691582752&it=1664360531270&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1341760472609957&ev=PageView&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531843&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664360531842.691582752&it=1664360531270&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1341760472609957&ev=PageView&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531843&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664360531842.691582752&it=1664360531270&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 10:22:14 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531740&sw=1280&sh=1024&at=
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531740&sw=1280&sh=1024&at=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1333248186715658&ev=fb_page_view&dl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&rl=&if=false&ts=1664360531740&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 10:22:14 GMT
X-Firefox-Spdy: h2
send-anywhere.com/static/media/fullpage-ad-default.114855fe.png
200 OK 25 kB URL HTTP/2 send-anywhere.com/static/media/fullpage-ad-default.114855fe.png
IP
File type PNG image data, 4320 x 3072, 8-bit colormap, non-interlaced\012- data
Hash 114855fef2a09102165ea0f82fb52688
e034e3fd0a2b4362ca4595f9c2917ea5335bb20d
1a7b64e4f352350e6220d17ee15893c38da9d0ab4fb950bc22ac8a4897f90b71
GET /static/media/fullpage-ad-default.114855fe.png HTTP/1.1
Host: send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/web/downloads/8E518WQS
Cookie: i18next=en-US; wcs_bt=ce4000b198d5a0:1664360529; _ga_8N28GK5LN8=GS1.1.1664360530.1.0.1664360530.60.0.0; _ga=GA1.2.1763478730.1664360530; device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23; OptanonConsent=isGpcEnabled=0&datestamp=Wed+Sep+28+2022+10%3A22%3A10+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=0cad5fa1-1e38-4cee-b2be-f75857a7558d&interactionCount=0&landingPath=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&groups=C0001%3A1%2CC0003%3A0%2CC0002%3A0%2CC0004%3A0; __asc=7c4888df183839e44c7f729c617; __auc=7c4888df183839e44c7f729c617; _gid=GA1.2.1499683245.1664360531; _dc_gtm_UA-42081347-1=1; access_token=ODkyMTQwODQyOTQ1MToxNjY0MzYwNTMzMzA2; _fbp=fb.1.1664360531842.691582752
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 25433
date: Fri, 09 Sep 2022 02:34:18 GMT
server: nginx/1.16.1
last-modified: Thu, 01 Sep 2022 00:28:40 GMT
etag: "630ffcb8-6359"
expires: Sun, 09 Oct 2022 02:34:18 GMT
cache-control: max-age=2592000
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: MKLbinaK5gbD8CO81VH1rYGXly2Gzi7_sdF76BXq38F5sRXCnenO_A==
age: 1669676
X-Firefox-Spdy: h2
file-18-185-116-144.send-anywhere.com/api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=keyinfo&_=1664360531945
200 OK 40 B URL HTTP/1.1 file-18-185-116-144.send-anywhere.com/api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=keyinfo&_=1664360531945
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash e5e066106ceab2149a5599566108c7c0
1ab6995922badfd60d7a4bbe51ddcbf404ab398c
471f436942dbb8c70a28d70222cd232dc5ba507588d951c4a3f683dcb818d0f5
GET /api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=keyinfo&_=1664360531945 HTTP/1.1
Host: file-18-185-116-144.send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:14 GMT
Server: Apache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: OPTIONS, GET, POST
Content-Length: 40
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/json; charset=utf-8
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=send-anywhere.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=send-anywhere.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=send-anywhere.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 10:22:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
file-18-185-116-144.send-anywhere.com/api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=list&start_pos=0&end_pos=30&_=1664360532078
200 OK 2.6 kB URL HTTP/1.1 file-18-185-116-144.send-anywhere.com/api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=list&start_pos=0&end_pos=30&_=1664360532078
IP
File type JSON data\012- , ASCII text, with very long lines (2616), with no line terminators
Hash 326c53a6d89557e4e1c191836fe55e1b
7c033d20f0fff829206283680d1192defb9a1f2a
61084b2a38f3b98ab7cafae1760d46a430c5a3439024d38beb0fa8820cd3c133
GET /api/webfile/8E518WQS?device_key=9ceac7ae9e478c3c4d0b51d0c031f065a22e7db4e78cefd4ab1f705324f7dc23&mode=list&start_pos=0&end_pos=30&_=1664360532078 HTTP/1.1
Host: file-18-185-116-144.send-anywhere.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 10:22:14 GMT
Server: Apache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: OPTIONS, GET, POST
Content-Length: 2616
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/json; charset=utf-8
adservice.google.no/adsid/integrator.js?domain=send-anywhere.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=send-anywhere.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=send-anywhere.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 28 Sep 2022 10:22:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 631 B URL HTTP/2 vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
File type ASCII text, with very long lines (1009), with no line terminators
Hash c6bdd5038ffba07732e417549ccd1560
db2db6f7ed99b59dacaea7b19d820529d418903e
8c6fc880671ccb98362a36618fcaa2ca83acadc81dfd6f84ec88e668e7c0e588
GET /ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-type: application/xml
etag: "23da-5e7fbf52c16e8-gzip"
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
content-encoding: gzip
expires: Wed, 28 Sep 2022 10:22:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:14 GMT
content-length: 631
X-Firefox-Spdy: h2
ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 67 B URL HTTP/1.1 ads.stickyadstv.com/www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text
Hash b753854b354a90a85ac6ff282b64b05d
1da3eb0c1b574c639024a54a679db90e403fc1b7
291437ea71e62b1c35d4ec5d3c5ad02cfa930343b41b1472fba70243089c8bbe
GET /www/delivery/swfIndex.php?reqType=AdsSetup&protocolVersion=2.0&zoneId=7439281&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=UTF-8
Access-Control-Allow-Origin: https://send-anywhere.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1664360534589005-520
Content-Length: 67
Expires: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 28 Sep 2022 10:22:14 GMT
Connection: keep-alive
Set-Cookie: UID=b0aafa18c15f78d0a460c949d70cb70; Domain=ads.stickyadstv.com; Expires=Fri, 28-Oct-2022 10:22:14 GMT; Path=/
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash ef12641bb4d59312b43f4f06ae2cee73
5450eaf271bf466e6aa58b63d52b49b66c5f4a6f
894fd5dabf39c09179591f3305d88ef71eb467ddeb1fc5c568dc377c3a1317d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 1.2 kB URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (390)
Hash b3b83f60eed095e356f3c94f714e6118
cb0d4184566a420bd810bb88e3941b5172f348b6
b700a275b004272420edaea2fe460e3cf50ed1314065d45374d2e8fe033dfa99
GET /vast/vpaid-adapter/7585793?supportsJavascript=true&supportsFlash=true&_fw_gdpr=0&_fw_gdpr_consent=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: https://send-anywhere.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1664360534541072-518
Content-Length: 1198
Expires: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 28 Sep 2022 10:22:14 GMT
Connection: keep-alive
Set-Cookie: UID=ef25ea6c6159f78776352b517f1e10c; Domain=ads.stickyadstv.com; Expires=Fri, 28-Oct-2022 10:22:14 GMT; Path=/
sessionId=849994c941c47f8e1f34c56de65aea9; Domain=ads.stickyadstv.com; Path=/
a.vidoomy.com/api/adserver/ad/get?country=NO&domain=send-anywhere.com&format=1&unique=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78
200 OK 4.0 kB URL HTTP/2 a.vidoomy.com/api/adserver/ad/get?country=NO&domain=send-anywhere.com&format=1&unique=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78
IP
File type JSON data\012- , ASCII text, with very long lines (3014)
Hash 11d384ea0868be3e22a5ca1f640d711a
c5e36242bc8e14dfbf17cc76a6fa895a66161f00
64eaa1039c3a5b8bbf063ad8292d29db14dc7a842ce06a442af5a0304efef778
GET /api/adserver/ad/get?country=NO&domain=send-anywhere.com&format=1&unique=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&loop=0&player=molsdk&callType=round&vid=9e4947f35751465411fd1a4f5c358c78 HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:14 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://send-anywhere.com
access-control-expose-headers: X-Vd-C
vary: Origin
x-vd-c: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 19ca9dff115bc454b3d68185dd445137
a7ad26c4a679b8cd343b7d16d866ced6e2fb6fe7
41fd6902b525e0aa1e53a7d7890739cac72fef0d0af9450871b3d5e580d921c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5400
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Last-Modified: Wed, 28 Sep 2022 08:52:14 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ads.stickyadstv.com/vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 1.1 kB URL HTTP/1.1 ads.stickyadstv.com/vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
ASN #20940 Akamai International B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (361)
Hash 0aba45510b51dc32f95b6096e6738f39
43c25fa2b25dae8f32a6d3121941d056efa6af26
f447ff11aa6b873801438a7819a1af9a80162e975e660c7ce74f6a0fa7e6e14c
GET /vast/vpaid-adapter/9246177?supportsJavascript=true&supportsFlash=true&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: ads.stickyadstv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/xml;charset=ISO-8859-1
Access-Control-Allow-Origin: https://send-anywhere.com
Access-Control-Allow-Credentials: true
x-sticky-vk: 1664360534557068-506
Expires: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Wed, 28 Sep 2022 10:22:14 GMT
Content-Length: 1140
Connection: keep-alive
Set-Cookie: UID=ca695cdb8d7cbbd1e651f2e6a795c62e; Domain=ads.stickyadstv.com; Expires=Fri, 28-Oct-2022 10:22:14 GMT; Path=/
sessionId=367051fa9bb0164f82ce8ba7107289bd; Domain=ads.stickyadstv.com; Path=/
ocsp.digicert.com/
200 OK 471 B IP
Hash 19ca9dff115bc454b3d68185dd445137
a7ad26c4a679b8cd343b7d16d866ced6e2fb6fe7
41fd6902b525e0aa1e53a7d7890739cac72fef0d0af9450871b3d5e580d921c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5381
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Last-Modified: Wed, 28 Sep 2022 08:52:33 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
a.vidoomy.com/api/rtbserver/rtb?id=11983&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&l=EN&dt=2&c=NO&pid=60832&sid=16293&sname=send-anywhere.com&d=send-anywhere.com&sp=https://send-anywhere.com/web/downloads/8E518WQS&coppa=&gdpr=0&gdprcs=
204 No Content 0 B URL HTTP/2 a.vidoomy.com/api/rtbserver/rtb?id=11983&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&l=EN&dt=2&c=NO&pid=60832&sid=16293&sname=send-anywhere.com&d=send-anywhere.com&sp=https://send-anywhere.com/web/downloads/8E518WQS&coppa=&gdpr=0&gdprcs=
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/rtbserver/rtb?id=11983&w=400&h=225&skip=1&req_type=1&vpaid=1&ip=&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&l=EN&dt=2&c=NO&pid=60832&sid=16293&sname=send-anywhere.com&d=send-anywhere.com&sp=https://send-anywhere.com/web/downloads/8E518WQS&coppa=&gdpr=0&gdprcs= HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Wed, 28 Sep 2022 10:22:14 GMT
server: fasthttp
vary: Origin
access-control-allow-origin: https://send-anywhere.com
access-control-expose-headers: X-Vd-C
access-control-allow-credentials: true
X-Firefox-Spdy: h2
status.geotrust.com/
200 OK 471 B IP
Hash 8f87b729f8da2fe0f6809ed3aa8d66ca
cb96bd2fe059e3a705a98aff565d0c9d7b64e556
8c9fc44dfb18cfe42e6b28a026e2477a4587bf128811f7ecc55a1f3ea4acdd10
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5398
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Last-Modified: Wed, 28 Sep 2022 08:52:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
search.spotxchange.com/vast/2.0/271243?VPAID=JS&content_page_url=https://send-anywhere.com/web/downloads/8E518WQS&cb=942318&player_width=400&player_height=225®s0=0&user=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 79 B URL HTTP/1.1 search.spotxchange.com/vast/2.0/271243?VPAID=JS&content_page_url=https://send-anywhere.com/web/downloads/8E518WQS&cb=942318&player_width=400&player_height=225®s0=0&user=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
ASN #35220 SpotXchange, INC
File type XML 1.0 document text\012- XML document, ASCII text
Hash da3e93c7e93fe9042e8437060a62e496
cd98d23361e34a2589a5e5de32221dce2d29f283
b63012ca704337abcd6d19a5a7fd83f9a81102f82b78a1760184b86e21513aab
GET /vast/2.0/271243?VPAID=JS&content_page_url=https://send-anywhere.com/web/downloads/8E518WQS&cb=942318&player_width=400&player_height=225®s0=0&user=&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: search.spotxchange.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 10:22:14 GMT
Content-Type: text/xml;charset=UTF-8
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Access-Control-Allow-Origin: https://send-anywhere.com
Access-Control-Allow-Methods: POST, GET, PATCH, DELETE, OPTIONS
Access-Control-Allow-Headers:
Access-Control-Allow-Credentials: true
X-fe: 121
X-SpotX-Timing-Page: 0.006754
X-SpotX-Timing-Page-Require: 0.000332
X-SpotX-Timing-Page-Context: 0.000286
X-SpotX-Timing-Page-URI: 0.000009
X-SpotX-Timing-Page-Mux: 0.000786
X-SpotX-Timing-Page-Cookie: 0.000002
X-SpotX-Timing-Page-Exception: 0.000000
X-SpotX-Timing-Page-Misc: 0.001834
X-SpotX-Timing-SpotMarket: 0.003226
X-SpotX-Timing-SpotMarket-Primary: 0.003226
X-SpotX-Timing-SpotMarket-Secondary: 0.000000
X-SpotX-Timing-Transform: 0.000279
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 79
28f38f536b3e45bb8d5d3c565d9438a7.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
200 OK 3.1 kB URL HTTP/2 28f38f536b3e45bb8d5d3c565d9438a7.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5835)
Hash 3fa5e95a358d660ddb3c45769ae1357f
5f6164fbaf8cfbccfd061b00ae48dedfc16bbcd9
d32f4b680031c0e11222eb17385aa9d3b11d2903b05bff34c3d4eb6292631137
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 28f38f536b3e45bb8d5d3c565d9438a7.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Wed, 28 Sep 2022 10:22:14 GMT
expires: Thu, 28 Sep 2023 10:22:14 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 37f8c9b099621e627708f8b3cedd3d26
5a5de859649908f05ed6e45708620225be940ef2
63ab6b55c5b301a6eb55d68e5cf8ab0ff4434a45eae781bccd3f071030000ccf
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 10:22:14 GMT
Last-Modified: Wed, 28 Sep 2022 08:51:54 GMT
Server: ECS (nyb/1D0E)
X-Cache: Miss from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: J3OfyrFCuqEcT0TUMsOA1gKJq7NWpfFNiWK6ZO32uCZQElZWLc0ydw==
Age: 5420
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-42081347-1&cid=1763478730.1664360530&jid=1070619943&_u=YCDAiEABBAAAAE~&z=1120207737
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-42081347-1&cid=1763478730.1664360530&jid=1070619943&_u=YCDAiEABBAAAAE~&z=1120207737
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-42081347-1&cid=1763478730.1664360530&jid=1070619943&_u=YCDAiEABBAAAAE~&z=1120207737 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 10:22:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 042c38716faa379dfe35bfc0e350d539
f604c07161c10f251501fe5bf3ea534beb6ea865
2038294cc39316a8f13c431224609cd186f9e115b792f0b8f0f22f039c9d9ed8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 042c38716faa379dfe35bfc0e350d539
f604c07161c10f251501fe5bf3ea534beb6ea865
2038294cc39316a8f13c431224609cd186f9e115b792f0b8f0f22f039c9d9ed8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220922/r20110914/abg_lite_fy2021.js
200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220922/r20110914/abg_lite_fy2021.js
IP
File type ASCII text, with very long lines (1624)
Hash f46cc3169ffbd99218f62616e2dc44ea
f44964026d2af9900a059c88967c9e8d067def45
9c82ae03291d76510460e1468338fd9303e25ccbf65e94c66e7a3e2173d7b29c
GET /pagead/js/r20220922/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9559
x-xss-protection: 0
date: Wed, 28 Sep 2022 10:17:24 GMT
expires: Wed, 12 Oct 2022 10:17:24 GMT
cache-control: public, max-age=1209600
etag: 12142024561622733046
content-type: text/javascript; charset=UTF-8
age: 291
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/safeframe/1-0-38/js/ext.js
200 OK 7.0 kB URL HTTP/2 tpc.googlesyndication.com/safeframe/1-0-38/js/ext.js
IP
File type ASCII text, with very long lines (22914)
Hash c07b7158d8952a065369fecbf65729d0
180015f0fd4652b2c8db52b64f6e349c998c9247
9e839e298638648627182a8aab5d951465f0d1b5a647627bf1755bdc41d70dce
GET /safeframe/1-0-38/js/ext.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://28f38f536b3e45bb8d5d3c565d9438a7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 7022
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 21:33:58 GMT
expires: Tue, 26 Sep 2023 21:33:58 GMT
cache-control: public, immutable, max-age=31536000
age: 132497
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 28 Sep 2022 10:22:15 GMT
expires: Wed, 28 Sep 2022 10:22:15 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d4a553n24khrv.cloudfront.net/wp-content/uploads/2022/04/WebBG-2560%E2%80%8A%C3%97%E2%80%8A1666.png
200 OK 387 kB URL HTTP/2 d4a553n24khrv.cloudfront.net/wp-content/uploads/2022/04/WebBG-2560%E2%80%8A%C3%97%E2%80%8A1666.png
IP
File type PNG image data, 2560 x 1666, 8-bit/color RGBA, non-interlaced\012- data
Size 387 kB (387083 bytes)
Hash dfec9cb8e86d8667de7fa1e49e09ce71
c3463d7e458d98bffaca34e256bac18bb6c66529
fe7a422fb4164741abf240a2c7b6b398ac30c8027a017655666b3673b7080ffe
GET /wp-content/uploads/2022/04/WebBG-2560%E2%80%8A%C3%97%E2%80%8A1666.png HTTP/1.1
Host: d4a553n24khrv.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://28f38f536b3e45bb8d5d3c565d9438a7.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 387083
server: Apache
last-modified: Wed, 06 Apr 2022 02:18:35 GMT
accept-ranges: bytes
date: Wed, 28 Sep 2022 02:21:38 GMT
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KLlnyiAOiiQsmQX_vkjtnVHgWgXvumY67DYaxu9gAL7nOCd8mNxXTw==
age: 28836
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
200 OK 639 B URL HTTP/2 vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
IP
File type ASCII text, with very long lines (1025), with no line terminators
Hash 0c8f28fe712e8e8208de43a0834c2682
4550b03fe27f88d1acd40a4907f71d70184774c7
84d947462dd19e17b62ce7807530f84a6c6e5f0d7805de909eb6092da6ec3844
GET /ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-type: application/xml
etag: "23da-5e7fbf52c16e8-gzip"
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
content-encoding: gzip
expires: Wed, 28 Sep 2022 10:22:15 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:15 GMT
content-length: 639
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
200 OK 38 kB URL HTTP/2 vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
IP
File type ASCII text, with very long lines (782)
Hash f0c0f21f8fa5c71dc51aea1bec2dfeab
8bc1b201d4b0b916f8b2de71cb5de7b64667c8f4
034e01930ec9a85544fa3297b9f84b504301762fea37881054d5fdbf1eacd402
GET /ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 06 Sep 2022 06:03:39 GMT
etag: "277a2-5e7fbf52bc8c8-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 38047
content-type: application/javascript
cache-control: public, max-age=10800
date: Wed, 28 Sep 2022 10:22:15 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ads.pubmatic.com/AdServer/js/showad.js?
200 OK 14 kB URL HTTP/2 ads.pubmatic.com/AdServer/js/showad.js?
IP
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (38487)
Hash 751b09edcb904ff6d21eb22330c26183
57398512216e7134d1d9d981b8a857c143d1714c
32cd0ae8b1eb6cb163f0333b69031da1b8bc3b4202f27e126031a0fd23fb073a
GET /AdServer/js/showad.js? HTTP/1.1
Host: ads.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Jul 2022 05:32:20 GMT
server: Apache
accept-ranges: bytes
content-encoding: gzip
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC", CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
content-length: 13946
content-type: text/html
cache-control: max-age=166095
expires: Fri, 30 Sep 2022 08:30:30 GMT
date: Wed, 28 Sep 2022 10:22:15 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ib.adnxs.com/ut/v3/prebid
200 OK 160 B URL HTTP/1.1 ib.adnxs.com/ut/v3/prebid
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 117f98b2038cbbbc011330deae354092
28753487818222579f0ee0b948321f394379d8db
5b7fac7771c3bef662805e75198b06ea9ab84e6d9e3125e3878fb388d0135364
POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 761
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Wed, 28 Sep 2022 10:22:15 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 160
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://send-anywhere.com
AN-X-Request-Uuid: 7f7eeddd-2570-4df2-b7f2-10db057d1101
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
ocsp.digicert.com/
200 OK 471 B IP
Hash 9e7251335752be24603879a859ff3aab
68e536b5ba3f0fb860e8703d2dabcfeea7265d06
580794c7a382e604b6c568f48cfd3451fd6f512b2d772a18685b91b862ed3abc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4564
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 10:22:16 GMT
Last-Modified: Wed, 28 Sep 2022 09:06:12 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360534&wa=0&vadsId=-1&e=95&vc=2
200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360534&wa=0&vadsId=-1&e=95&vc=2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1664360534&wa=0&vadsId=-1&e=95&vc=2 HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:15 GMT
content-length: 0
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
200 OK 640 B URL HTTP/2 vpaid.pubmatic.com/ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,
IP
File type ASCII text, with very long lines (1025), with no line terminators
Hash de1507da248b54d81a5e815bd73ffc17
9a393d8c7bbc682f8319dbd098f202a7c7773679
f2524ef6b33bffa252b59970f20db87787958dd26d031ba751a274024573c8bf
GET /ads/video/vadtag.html?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr==&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-type: application/xml
etag: "23da-5e7fbf52c16e8-gzip"
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
vary: Origin, Accept-Encoding
content-encoding: gzip
expires: Wed, 28 Sep 2022 10:22:17 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:17 GMT
content-length: 640
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID] HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:16 GMT
content-length: 0
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&vadsId=-1&e=95&vc=2
200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&vadsId=-1&e=95&vc=2
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&vadsId=-1&e=95&vc=2 HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:17 GMT
content-length: 0
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1664360535&wa=0&e=96&ier=901&vadsId=[ADSERVINGID] HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:17 GMT
content-length: 0
X-Firefox-Spdy: h2
st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360537&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
200 OK 0 B URL HTTP/2 st.pubmatic.com/track?operId=7&p=156498&s=399115&a=1801592&ts=1664360537&wa=0&e=96&ier=901&vadsId=[ADSERVINGID]
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /track?operId=7&p=156498&s=399115&a=1801592&ts=1664360537&wa=0&e=96&ier=901&vadsId=[ADSERVINGID] HTTP/1.1
Host: st.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
date: Wed, 28 Sep 2022 10:22:17 GMT
content-length: 0
X-Firefox-Spdy: h2
vid-io-iad.springserve.com/vd/i?suuid=398ccf55&ps_id=357265&batch=1
200 OK 0 B URL HTTP/2 vid-io-iad.springserve.com/vd/i?suuid=398ccf55&ps_id=357265&batch=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /vd/i?suuid=398ccf55&ps_id=357265&batch=1 HTTP/1.1
Host: vid-io-iad.springserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1887
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:18 GMT
content-length: 0
server: nginx
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 38 kB URL HTTP/2 vpaid.pubmatic.com/ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
File type ASCII text, with very long lines (782)
Hash f0c0f21f8fa5c71dc51aea1bec2dfeab
8bc1b201d4b0b916f8b2de71cb5de7b64667c8f4
034e01930ec9a85544fa3297b9f84b504301762fea37881054d5fdbf1eacd402
GET /ads/video/PMAdMgr.js?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+6+7+9+11&sec=1&gdpr=0=&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=273341&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: vpaid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Tue, 06 Sep 2022 06:03:39 GMT
etag: "277a2-5e7fbf52bc8c8-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 38047
content-type: application/javascript
cache-control: public, max-age=10800
date: Wed, 28 Sep 2022 10:22:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
200 OK 0 B URL HTTP/2 a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:19 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://send-anywhere.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
200 OK 15 B URL HTTP/2 a.vidoomy.com/api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash b50bad5a0a0fe0924598b40fa1c156af
0be98811d2225646e060a5fb5c230b8ba8622b3e
9fae4226a39c5c4a5967827bd6d79897cf445e508714ea2cd03049277984618f
POST /api/adserver/tracking/e?event=AdTagRequest&format=1&country=NO&id=&domain=send-anywhere.com&u=cf9f336a-835c-4d7c-8568-ef735790d2d3&zoneId=20856&x-vd-c=n/a&execution=&duration=&player=molsdk&callType=round&requestStatus=&requestSize=&cStringStatus=&viewabilityMethod=INTERSECTIONOBSERVER HTTP/1.1
Host: a.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 26
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:19 GMT
content-type: application/json
content-length: 15
access-control-allow-credentials: true
access-control-allow-origin: https://send-anywhere.com
access-control-expose-headers: X-Vd-C
vary: Origin
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 45376
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ekr.zdassets.com/compose/877461a8-d910-4224-a4ad-2cbdc3192800
200 OK 0 B URL HTTP/2 ekr.zdassets.com/compose/877461a8-d910-4224-a4ad-2cbdc3192800
IP
GET /compose/877461a8-d910-4224-a4ad-2cbdc3192800 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:12 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"8fefd5855990ad1d4ad8de63860938d7"
x-request-id: a9e3cfba242afedf3078e39541ec4e13, a9e3cfba242afedf3078e39541ec4e13
x-runtime: 0.003743
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: HIT
age: 25
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FZJv2iCEDOkI7ncTBRIrxW0XbcCl76ktK04HjGxDNrosBbjuY7mNt8Md8%2Bn3YplgaU4qIA2fCkISfx3mHhfNcRaf991IdReoW%2BjyV1eU9omJVqEVlS%2Bmyj52fnE61kPaCfs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 751bc1aeaa45b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
send-anywhere.zendesk.com/embeddable/config
200 OK 0 B URL HTTP/2 send-anywhere.zendesk.com/embeddable/config
IP
GET /embeddable/config HTTP/1.1
Host: send-anywhere.zendesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
cache-control: public, max-age=60, stale-while-revalidate=600, stale-if-error=3600
x-zendesk-origin-server: embeddable-app-server-5d9ff9448d-6xtqj
x-request-id: ed0880b660fa0ef24bf98905a738c727
x-runtime: 0.002695
vary: Origin, Accept-Encoding
x-cached: STALE
last-modified: Wed, 28 Sep 2022 10:12:44 GMT
cf-cache-status: HIT
age: 24
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CZrg227oSuZttiKbEZbFAaY5adI7PMbLd3RFRX5sCaJnsrQMMfQCt9XncPqAdZgpyGkzSfssSKtKyMP9KIDlx7ztpK%2FXn4ITudUkZZISN7ghstZMoPh%2BMr%2FePbBbMwLv0KhTsPET8KH%2BKDE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cfruid=852b22cf09c9776aeeb5278eaa9b4e0fb53bd076-1664360533; path=/; domain=.send-anywhere.zendesk.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 751bc1b3f971b503-OSL
content-encoding: br
X-Firefox-Spdy: h2
player.vidoomy.com/player-nv/v0.0.34/vidoomy-sdk-mol.js
200 OK 0 B URL HTTP/2 player.vidoomy.com/player-nv/v0.0.34/vidoomy-sdk-mol.js
IP
ASN #60068 Datacamp Limited
GET /player-nv/v0.0.34/vidoomy-sdk-mol.js HTTP/1.1
Host: player.vidoomy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 12 Jan 2022 17:51:06 GMT
etag: W/"61df150a-24d3d"
access-control-allow-origin: *
x-accel-expires: @1664708705
server: CDN77-Turbo
x-77-nzt: AblMCQ15tCr/9IEKAA
x-77-nzt-ray: aNmKlnyhAY8
x-cache: HIT
x-age: 688628
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=970530&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS
200 OK 0 B URL HTTP/2 adx.adform.net/adx/?mid=970530&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS
IP
GET /adx/?mid=970530&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:14 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: https://send-anywhere.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
vpaid.springserve.com/production/vpaid_6d8da985.js
200 OK 0 B URL HTTP/2 vpaid.springserve.com/production/vpaid_6d8da985.js
IP
GET /production/vpaid_6d8da985.js HTTP/1.1
Host: vpaid.springserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 28 Jul 2022 16:39:44 GMT
server: AmazonS3
content-encoding: br
date: Sun, 28 Aug 2022 16:44:33 GMT
cache-control: max-age=2678400
etag: W/"9026fbc1fc8aafffe9b6d2458d235a3a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: N8VbU7k6tiuZkIPAYURL9xZn8nuiIfNAIAbpgAl4ydxMauHJ_3unrA==
age: 2655463
X-Firefox-Spdy: h2
vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=1664360536514&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,&kltstamp=2022-9-28%2010%3A22%3A16&ranreq=0.7624915580350894&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1
200 OK 0 B URL HTTP/2 vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=1664360536514&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,&kltstamp=2022-9-28%2010%3A22%3A16&ranreq=0.7624915580350894&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1
IP
GET /AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https://send-anywhere.com/web/downloads/8E518WQS&cb=1664360536514&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,&kltstamp=2022-9-28%2010%3A22%3A16&ranreq=0.7624915580350894&timezone=0&us_privacy=&SAVersion=2&inIframe=1&pageURL=&screenResolution=-1x-1&kdntuid=1&vwndh=0&vwndw=0&vwndurl=&vwndref=&vc=2&js=1&sec=1 HTTP/1.1
Host: vid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:19 GMT
content-type: application/xml; charset=utf-8
x-vdbg: 1:0/165:-1
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
IP
GET /scripttemplates/6.32.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://send-anywhere.com/
Origin: https://send-anywhere.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: text/css
content-md5: SHFDtZO2nDZuiPDW83p1IQ==
last-modified: Fri, 18 Mar 2022 16:29:27 GMT
x-ms-request-id: 13bdb469-d01e-0172-4daf-69ef8d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 60
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 751bc1b3f909b51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-8165-a0de4fd.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-8165-a0de4fd.js
IP
GET /web_widget/latest/classic/web-widget-8165-a0de4fd.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: axMhxkzIcvVjJqohixgBst3XOWoSIkfW+QZyla/TLUulZLdhQbnP/26DffNB60dXqqjmqsYOBmo=
x-amz-request-id: QCVN6JFB4W5NW14P
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 08:20:58 GMT
etag: W/"3fb1755f31689e15a362e7877ecd38ff"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 21 Sep 2023 08:20:57 GMT
x-amz-version-id: RTCO19aOFW9XLitCB9o2FwsyROmYV3jV
cf-cache-status: HIT
age: 104818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SwqhG%2FGYqdEuOaysqhrvQWGysAMns1NahBir%2FhWj6peTNPjwg8uN6gsj993No4dqNxqjPt2E%2B8chj5QZJqoSzftGN2xe9tVZI9mCkQNhcQJQ3lirXyMrQ5lKS2UUMjYIOX%2FdXg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 751bc1b50a391bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
adx.adform.net/adx/?mid=1036882&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS
200 OK 0 B URL HTTP/2 adx.adform.net/adx/?mid=1036882&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS
IP
GET /adx/?mid=1036882&t=2&url=https://send-anywhere.com/web/downloads/8E518WQS HTTP/1.1
Host: adx.adform.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:14 GMT
content-type: text/xml
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,Cache-Control,Accept-Encoding,X-Requested-With
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: https://send-anywhere.com
access-control-max-age: 86400
cache-control: no-cache, no-store, must-revalidate, no-transform
expires: -1
pragma: no-cache
p3p: CP="NOI DSP COR NID CURa ADMa DEVa TAIa PSAa PSDa OUR LEG NAV INT"
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360534878&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:15&ranreq=0.8933411316740496&timezone=0&depth=0
200 OK 0 B URL HTTP/2 vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360534878&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:15&ranreq=0.8933411316740496&timezone=0&depth=0
IP
GET /AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360534878&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:15&ranreq=0.8933411316740496&timezone=0&depth=0 HTTP/1.1
Host: vid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:17 GMT
content-type: application/xml; charset=utf-8
x-vdbg: 1:0/165:-1
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
js.stripe.com/v3/
200 OK 0 B IP
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Tue, 27 Sep 2022 19:25:00 GMT
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
content-encoding: br
date: Wed, 28 Sep 2022 10:21:50 GMT
cache-control: max-age=60
etag: W/"8ff0c4c02b02329cf046b03e911d2dda"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: P7gJSRGfg4yCfmu48vgj7PCSVXRhfJPV-d7FW6q7Bt0NHdHSDm-J7Q==
age: 26
X-Firefox-Spdy: h2
static.zdassets.com/web_widget/latest/classic/web-widget-5324-a0de4fd.js
200 OK 0 B URL HTTP/2 static.zdassets.com/web_widget/latest/classic/web-widget-5324-a0de4fd.js
IP
GET /web_widget/latest/classic/web-widget-5324-a0de4fd.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:13 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: jiUjS8i5ogBKsEY8pXtFP3p54eMkadqLldCsRkLKVi6JK+vQJnPnOKnzGA+9Xd4cTR1i8Xl1Sc4=
x-amz-request-id: QCVJWAWE00VBJ4R9
x-amz-replication-status: COMPLETED
last-modified: Wed, 21 Sep 2022 08:20:58 GMT
etag: W/"fe63a00c4999fd63f0b0c1bea23a82e7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Thu, 21 Sep 2023 08:20:57 GMT
x-amz-version-id: 8QZqPdR3EEy5MEkLovIhBiJkm4B5PkAM
cf-cache-status: HIT
age: 104818
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jYlreiYKVVsuyusNYwImYfAo74M%2Bc1jlx4UAJRqzOBDSm8Hbr58Gw6rAuJj4biXqRo8hy9WviCB1PHSgRR1u7yZHwMgXiOA%2FQgez9M30kTlHmM9KZCbvDv2t96lpQN78jghSOkk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 751bc1b50a3b1bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
vid.springserve.com/vast/357265?w=400&h=225&url=https://send-anywhere.com/web/downloads/8E518WQS&cb=513229&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
200 OK 0 B URL HTTP/2 vid.springserve.com/vast/357265?w=400&h=225&url=https://send-anywhere.com/web/downloads/8E518WQS&cb=513229&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,
IP
GET /vast/357265?w=400&h=225&url=https://send-anywhere.com/web/downloads/8E518WQS&cb=513229&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,, HTTP/1.1
Host: vid.springserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 10:22:14 GMT
content-type: application/xml;charset=UTF-8
server: nginx
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
set-cookie: ssid=9dab7b8f-dc4e-4587-90e1-519b179a75ad;Version=1;Domain=.springserve.com;Path=/;Max-Age=31449600;Secure;Expires=Wed, 27 Sep 2023 10:22:14 GMT;SameSite=None
sst=1664360534913;Version=1;Domain=.springserve.com;Path=/;Max-Age=31449600;Secure;Expires=Wed, 27 Sep 2023 10:22:14 GMT;SameSite=None
cache-control: max-age=0, no-cache, no-store
content-encoding: gzip
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
200 OK 0 B URL HTTP/2 m.stripe.network/out-4.5.42.js
IP
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 17 Mar 2022 19:03:12 GMT
server: Cloudfront
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-encoding: br
date: Wed, 28 Sep 2022 10:20:28 GMT
cache-control: max-age=300, public
etag: W/"21df7244385e5c0bdf32da01d0dad6c0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 28QNQFIxjU3L_gGY6eOTxc75v7PtO_h-HGB-kjwsVuKmccCba7HQww==
age: 107
X-Firefox-Spdy: h2
vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360533370&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:13&ranreq=0.7407852590403933&timezone=0&depth=0
200 OK 0 B URL HTTP/2 vid.pubmatic.com/AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360533370&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:13&ranreq=0.7407852590403933&timezone=0&depth=0
IP
GET /AdServer/AdServerServlet?adtype=13&pubId=156498&siteId=399115&adId=1801592&vadFmt=2&vapi=2&vminl=1&vmaxl=181&vh=225&vw=400&placement=1&vtype=1&vpos=1&vplay=2&vskip=0&vcom=0&vfmt=1+3+5+7+9+1+1+6&gdpr=0&gdpr_consent=&kadpageurl=https%3A%2F%2Fsend-anywhere.com%2Fweb%2Fdownloads%2F8E518WQS&schain=1.0,1!vidoomy.com,60832,1,54157261875294133853,,1664360534913,,&us_privacy=&cb=1664360533370&SAVersion=2&inIframe=1&pageURL=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&screenResolution=1280x1024&kdntuid=1&vwndh=150&vwndw=0&vwndurl=https%253A%252F%252Fsend-anywhere.com%252Fweb%252Fdownloads%252F8E518WQS&vwndref=&vc=2&js=1&sec=1&kltstamp=2022-9-28%2010:22:13&ranreq=0.7407852590403933&timezone=0&depth=0 HTTP/1.1
Host: vid.pubmatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://send-anywhere.com
Connection: keep-alive
Referer: https://send-anywhere.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 10:22:16 GMT
content-type: application/xml; charset=utf-8
x-vdbg: 1:0/165:-1
access-control-allow-origin: https://send-anywhere.com
access-control-allow-credentials: true
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
143.204.55.90
23.38.200.201
185.89.211.84
185.64.190.89
157.240.200.35
178.62.198.146
104.18.70.113
110.93.147.30
185.76.9.14