firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 16:07:19 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rOBORTD9ZwB0vO6b3esHP7axJmKgPBYJCvGHgoCSgDCcHjQ6Qy3y_A==
Age: 3582
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c6fbb327ad25e3e11d457480410cd140
9b6944aa6b8b225acaf3094bc78d69732fb44b1d
71d2d9c9526777eb4ad103de6939e6427268c4fe96ac39ea1de38613440285de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71D2D9C9526777EB4AD103DE6939E6427268C4FE96AC39EA1DE38613440285DE"
Last-Modified: Sun, 25 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20601
Expires: Sun, 25 Sep 2022 22:50:22 GMT
Date: Sun, 25 Sep 2022 17:07:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20041
Expires: Sun, 25 Sep 2022 22:41:02 GMT
Date: Sun, 25 Sep 2022 17:07:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Li1dKHCpOHFpeoSwZSCv8K0nfEhts_cyz0xmBUR21TttCyHmXHPgng==
age: 45107
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 17:07:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gofile.io/d/DcEG9t
51.178.66.33200 OK 9.6 kB IP 51.178.66.33:0
Hash 683e5a4a9747fea5874308c294c7ab6a
0fe1f53708109f45507cc004b796372fcd6f20c2
f563a9a3f7f388f6fa038dd4c93a95c40836325754f8fad431dd151cb6e34516
GET /d/DcEG9t HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/html; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"7442-1836b5da010"
expect-ct: max-age=0
last-modified: Fri, 23 Sep 2022 17:20:41 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/dropzone/min/dropzone.min.css
51.178.66.33200 OK 1.6 kB URL HTTP/2 gofile.io/plugins/dropzone/min/dropzone.min.css
IP 51.178.66.33:0
File type ASCII text, with very long lines (9830), with no line terminators
Hash 77609fd287300b3ef17050224558326b
5f19ea52ee4c1102ecb1dcf371a5c8f892dbf1b1
63caf4b7a5c255a2aace78f0f36b066677b1207475ed149a1e7aff07a51b5e7b
GET /plugins/dropzone/min/dropzone.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"2666-17e08e1ef11"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 1649
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5260008c667f2e051d10eab6bd67d8ca
324827bd873152d2b373a22a9bacdcfbfeca68b9
a1441e4685fed0e6203cfd21612e7f0a717145310ca9ac9010d3da7dbfe09653
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Last-Modified: Sun, 25 Sep 2022 15:36:44 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
gofile.io/plugins/bootstrap-table/bootstrap-table.css
51.178.66.33200 OK 2.4 kB URL HTTP/2 gofile.io/plugins/bootstrap-table/bootstrap-table.css
IP 51.178.66.33:0
File type ASCII text, with very long lines (319)
Hash 461cccf368e8b5286a37dc06601b803e
427c4bc7bd8266c6671457c1f69112f22779bbf5
b7b98ee1b54def9b8026d095385ebdecf41af036ec06635b800a7f2c4e18313d
GET /plugins/bootstrap-table/bootstrap-table.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"275e-17e08e1eee1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 2430
X-Firefox-Spdy: h2
gofile.io/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css
51.178.66.33200 OK 2.0 kB URL HTTP/2 gofile.io/plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css
IP 51.178.66.33:0
File type ASCII text, with very long lines (11719), with CRLF line terminators
Hash ce98ee73e223dea14f34de45415046c3
c532f19402878ad1444df0f821030462ece562a9
ff3a9c26b58a4e974c85d8fe0448e4cbaac4fd8ad0368b905534e1b91271a762
GET /plugins/tempusdominus-bootstrap-4/css/tempusdominus-bootstrap-4.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"2ebf-17e08e1efd1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 1972
X-Firefox-Spdy: h2
gofile.io/plugins/tagsinput/tagsinput.css
51.178.66.33200 OK 776 B URL HTTP/2 gofile.io/plugins/tagsinput/tagsinput.css
IP 51.178.66.33:0
Hash 7986b7ed085d0323f895f682d1babf5f
f991289317e554bdeead5eb06e20d7c4026b06c9
5f9564daadf556468bcadda6658f2ae91ba76530e5a96c49b88505f79889a862
GET /plugins/tagsinput/tagsinput.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"8cc-17e08e1efd1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 776
X-Firefox-Spdy: h2
gofile.io/plugins/easymde/easymde.min.css
51.178.66.33200 OK 3.3 kB URL HTTP/2 gofile.io/plugins/easymde/easymde.min.css
IP 51.178.66.33:0
File type Unicode text, UTF-8 text, with very long lines (12309)
Hash 5f238cdf6bd1a337a12fd915d6869059
3f2c20525196e1129ef11d9e31071f395ee1f928
1da6df6831e344787220ba265f683178149c3ce0dce5172b415c0a06680af00f
GET /plugins/easymde/easymde.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"3099-17e08e1ef11"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 3252
X-Firefox-Spdy: h2
gofile.io/plugins/gofile/gofile.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/gofile/gofile.js
IP 51.178.66.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/gofile/gofile.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"0-17e08e1ef35"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5260008c667f2e051d10eab6bd67d8ca
324827bd873152d2b373a22a9bacdcfbfeca68b9
a1441e4685fed0e6203cfd21612e7f0a717145310ca9ac9010d3da7dbfe09653
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Last-Modified: Sun, 25 Sep 2022 15:36:44 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
gofile.io/plugins/blockies/blockies.min.js
51.178.66.33200 OK 727 B URL HTTP/2 gofile.io/plugins/blockies/blockies.min.js
IP 51.178.66.33:0
File type ASCII text, with very long lines (1370)
Hash 47f972b1ce2ab1464719432ae6cec585
3f31a5747f36d7a1d49615a6a5089badaaf8d0a3
bb5cae20edd92356ebe36b12905fbc99e57840bb8d076d501bcb60765268f0e3
GET /plugins/blockies/blockies.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"55b-17e08e1eedd"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 727
X-Firefox-Spdy: h2
ad.plus/adplus-advertising.svg
172.67.213.162200 OK 946 B URL HTTP/2 ad.plus/adplus-advertising.svg
IP 172.67.213.162:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (430)
Hash 4bf649e9e365a8b0271ece5aea68e7af
d5334a2ad9973796714dbb8a87cb1daad7be74b9
9d2adb75726d1292994177af2690ef4f462a34c8be509f96ecf3b61d0ddf1b8e
GET /adplus-advertising.svg HTTP/1.1
Host: ad.plus
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:01 GMT
content-type: image/svg+xml
last-modified: Sat, 04 Apr 2020 20:49:12 GMT
etag: W/"2df-5a27d2a9698fb"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4312
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BCEPeUb59uaDyWZYMOANZaQ%2B9ytY5YtKgV9aRHaJK7Qo06niL871Pdtb0avy0ipaP5DcZwH6C68EiAoPneXPfq0ylUZSSqe8imhxFNSv9J8ylLeCPRjqd48%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75055a8e4e3db527-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gofile.io/plugins/sha256/sha256.min.js
51.178.66.33200 OK 3.7 kB URL HTTP/2 gofile.io/plugins/sha256/sha256.min.js
IP 51.178.66.33:0
File type ASCII text, with very long lines (8830)
Hash 50ecdab061fd7e5833af2f95f05ab691
7b62ad67ffcf4162cdd875bf26769f33db0762fc
e2066bcd07c7b82537ce0533536ea6770b876eacd182f9d69f9146b86acddf8f
GET /plugins/sha256/sha256.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"2339-17e08e1efc5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 3701
X-Firefox-Spdy: h2
gofile.io/plugins/bootstrap/js/bootstrap.bundle.min.js
51.178.66.33200 OK 24 kB URL HTTP/2 gofile.io/plugins/bootstrap/js/bootstrap.bundle.min.js
IP 51.178.66.33:0
Hash 34f42f132c639f9bbb4f4b5dc47248c0
ee73ff6e3b5a4b1d6bce472fe07b2c5f2fb2d219
32e0cfa1271ebb3d8d77d78246ffe52683c3a39092f8c0bfd51d27f091961431
GET /plugins/bootstrap/js/bootstrap.bundle.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1499a-17e08e1eef1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/fontawesome-free/css/all.min.css
51.178.66.33200 OK 92 kB URL HTTP/2 gofile.io/plugins/fontawesome-free/css/all.min.css
IP 51.178.66.33:0
Hash 48ebfdd66d8a72eb67e49ee656064111
db4a955f5aa3b6b2a1e0c87bb3d63aae330e79c8
0fd90447b108895d07e588b332d128b6e87ffdc7d0bc282878f16be354c85138
GET /plugins/fontawesome-free/css/all.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"e7d0-17e08e1ef29"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gofile.io/plugins/moment/moment.min.js
51.178.66.33200 OK 32 kB URL HTTP/2 gofile.io/plugins/moment/moment.min.js
IP 51.178.66.33:0
Hash 66e89b2b237fefb0ee0325087d4d308d
6f771a604a304a0cccda53fd3d3a2342e3e956cb
de2d66b8e816f30f8d5d3b6b2040b4754bae6a2429434762b9e1ebd06e7ce562
GET /plugins/moment/moment.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"e5ee-17e08e1ef65"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gofile.io/plugins/fontawesome-free/webfonts/fa-brands-400.woff2
51.178.66.33200 OK 77 kB URL HTTP/2 gofile.io/plugins/fontawesome-free/webfonts/fa-brands-400.woff2
IP 51.178.66.33:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /plugins/fontawesome-free/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: public, max-age=0
content-type: font/woff2
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"12bdc-17e08e1ef2d"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 76764
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12580, version 1.0\012- data
Hash eaf55d1d3b7c4a30203d2d5226c49b6d
11b63b740965603ef544f261ef036d24e6bb1fb5
e286a9ef7d2064a4cf7026449941a557c7123aa84ef2a17cf79a38820f5474bc
GET /s/sourcesanspro/v21/6xK1dSBYKcSV-LCoeQqfX1RYOo3qPZ7nsDI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gofile.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:28:16 GMT
expires: Thu, 21 Sep 2023 19:28:16 GMT
cache-control: public, max-age=31536000
age: 337125
last-modified: Wed, 27 Apr 2022 16:19:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12956, version 1.0\012- data
Hash 1c772d9d0531b187db80bcfc199c1786
c0c04fb334190e10dffed0dcc5c817c2a6041a15
122854df4f39cf922db317714c2ff0eccab27a1028c14a5aa2211f48b7e0eade
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3ik4zwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gofile.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:28:30 GMT
expires: Thu, 21 Sep 2023 19:28:30 GMT
cache-control: public, max-age=31536000
age: 337111
last-modified: Wed, 27 Apr 2022 16:54:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2938
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:02 GMT
Last-Modified: Sun, 25 Sep 2022 16:18:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
gofile.io/dist/img/favicon96.png
51.178.66.33200 OK 2.9 kB URL HTTP/2 gofile.io/dist/img/favicon96.png
IP 51.178.66.33:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f26ee8cec553996e33f1abed6ac7c54
419a595fca343cc185f78b79ca63381e2a0c2711
b219f8d25a803cf594b6f74a5c47ccee7a6dcc5b4d0a98a22735c6382a4aba74
GET /dist/img/favicon96.png HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/png
date: Sun, 25 Sep 2022 17:07:02 GMT
etag: W/"b46-17e08e1eed5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 2911
X-Firefox-Spdy: h2
api.gofile.io/getGeo
51.178.66.33200 OK 221 B IP 51.178.66.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 72ef4dc0dadcc46710cd6b7b9471b23e
859ef36c6a24fa7b98aba8d1ec02540e627a97fc
393e5b1c2c13ce80825697dd6f09a1b0ec7f7c13c0a0ab38681398a687787549
GET /getGeo HTTP/1.1
Host: api.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD
access-control-allow-origin: https://gofile.io
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
content-type: application/json; charset=utf-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 17:07:02 GMT
etag: W/"dd-hZ7zbGok+nuYq6jR7AJUDmJ6l/w"
expect-ct: max-age=0
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 221
X-Firefox-Spdy: h2
plausible.gofile.io/js/plausible.js
149.202.85.166200 OK 1.3 kB URL HTTP/2 plausible.gofile.io/js/plausible.js
IP 149.202.85.166:0
File type ASCII text, with very long lines (1332), with no line terminators
Hash 5fce354514318424fd93ceb724f574d0
4555a156f92cf24c5e68b965597019655b893ac2
7eec3429c76cb48e5fd457c5afb71b7cf34bc4298d53023bae8aea715443b4a9
GET /js/plausible.js HTTP/1.1
Host: plausible.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
content-type: application/javascript
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 17:07:01 GMT
server: Cowboy
x-content-type-options: nosniff
content-length: 1332
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.126.109101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.126.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v4JBCPJW06/mhxio6hW2gg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: i9x/aw3CqLMyMJVoSHdRe226nn4=
ad-delivery.net/px.gif?ch=1&e=0.866115653674181
104.26.3.70200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=1&e=0.866115653674181
IP 104.26.3.70:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=1&e=0.866115653674181 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 04 Sep 2022 17:35:10 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1812946
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IYshKNh0jNLt98cFegBWP9XqFEEyezow6pq%2FEe4TCf03hp1ldc%2Bj9GuZPazvD0uEVekP8uoS0IImTMrc3g6yzT%2FRk32C1e3Wn8cSuNvMb4eex5MjJVPfy5AMUxd80iSlXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75055a93dc42b51b-OSL
X-Firefox-Spdy: h2
ad-delivery.net/px.gif?ch=2
104.26.3.70200 OK 43 B URL HTTP/2 ad-delivery.net/px.gif?ch=2
IP 104.26.3.70:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ADPycdt6VCtqtIBnBTdsF1vvDPQfLazGd9ibEd203R5L043lLiuyTx5erfdDBO4fPOmvTjQfhaq1ovVTvyGIn5JVehsmeQ
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Sun, 04 Sep 2022 17:35:10 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 1812946
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uBCkkHb3%2BKxegt9pqucpQE%2BUwHx4TFMiI5uh62pbNPUdU0dzSCtAkOUiFR0MFZaxjh9FEX5ayu%2FxPU6ZNik5rajxjJwCu%2FLPyBestcBZn%2FRcTuIHknibuYexcBKmWCD8gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75055a93dc40b51b-OSL
X-Firefox-Spdy: h2
api.gofile.io/createAccount
51.178.66.33200 OK 67 B URL HTTP/2 api.gofile.io/createAccount
IP 51.178.66.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b6bd24b691cfdf1f064e4a9a1bb64fc7
a23e592062d42076deffd6c36b4d81ed97fee10e
ec7d3d7e1b47828f47dc1282e08aabc86702159c9533fccaa78231d9411e1d98
GET /createAccount HTTP/1.1
Host: api.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD
access-control-allow-origin: https://gofile.io
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
content-type: application/json; charset=utf-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 17:07:02 GMT
etag: W/"43-oj5ZIGLUIHbe/9bDa02B7Zf+4Q4"
expect-ct: max-age=0
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 67
X-Firefox-Spdy: h2
api.gofile.io/getAccountDetails?token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB
51.178.66.33200 OK 296 B URL HTTP/2 api.gofile.io/getAccountDetails?token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB
IP 51.178.66.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bd4d653a144c1b9a43086a43b7c18958
f46eb626f2e2badf836beb2439c691cfe489dbd3
b561726f30641cf5df62473c4aa5317c22ff172205cd558e6ae4958a8d8fb456
GET /getAccountDetails?token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB HTTP/1.1
Host: api.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD
access-control-allow-origin: https://gofile.io
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
content-type: application/json; charset=utf-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 17:07:02 GMT
etag: W/"128-9G62JvLiut+Da+skOcaRz+SJ29M"
expect-ct: max-age=0
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 296
X-Firefox-Spdy: h2
plausible.gofile.io/api/event
149.202.85.166202 Accepted 2 B URL HTTP/2 plausible.gofile.io/api/event
IP 149.202.85.166:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /api/event HTTP/1.1
Host: plausible.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 83
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 202 Accepted
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
content-type: text/plain; charset=utf-8
date: Sun, 25 Sep 2022 17:07:02 GMT
server: Cowboy
x-request-id: Fxgpb86B3NNZ5-ygCKhD
content-length: 2
X-Firefox-Spdy: h2
cdn.intergient.com/pageos/1.8.17/videoCard.01fa78e7064a386f48fc.js
54.230.111.109200 OK 554 B URL HTTP/2 cdn.intergient.com/pageos/1.8.17/videoCard.01fa78e7064a386f48fc.js
IP 54.230.111.109:0
File type ASCII text, with very long lines (554), with no line terminators
Hash ce3cc474e63b7f656de18953fb710c43
6b26fb45ee828057aeba37058d531aa8d937dab9
df49112f965565d7af2a8ac08e7000ab6c2731ced4340c2b6c89a8097e94c2ea
GET /pageos/1.8.17/videoCard.01fa78e7064a386f48fc.js HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 554
last-modified: Tue, 13 Sep 2022 12:46:10 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 02:41:40 GMT
etag: "ce3cc474e63b7f656de18953fb710c43"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EcgbC1W7ufm7WCjk1e9UJzFhL43ys154n31yRXEgJEUto_CTMnwhjw==
age: 72116
X-Firefox-Spdy: h2
btloader.com/tag?o=5150306120761344&upapi=true
104.26.6.139304 Not Modified 0 B URL HTTP/2 btloader.com/tag?o=5150306120761344&upapi=true
IP 104.26.6.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tag?o=5150306120761344&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sun, 25 Sep 2022 16:50:54 GMT
If-None-Match: W/"ad521c88381140cd298ba2701fecc998"
TE: trailers
HTTP/2 304 Not Modified
date: Sun, 25 Sep 2022 17:07:02 GMT
cache-control: public, max-age=300, must-revalidate, stale-if-error=86400
etag: "ad521c88381140cd298ba2701fecc998"
last-modified: Sun, 25 Sep 2022 16:50:54 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 947
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p12IQvqfyn3%2BKNmXiEcfxbSH9nZc9fkWx%2BrfVnIh9mPZNyPkrh2fl2CRZ%2B72Y%2B6PTPeexWSyipAZFuurKIGnol3ZndCd2TC5fgyPpAftatbQr0syNfc2dRoOuuOx6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75055a94ff74b4f7-OSL
X-Firefox-Spdy: h2
cdn.intergient.com/pageos/js/libs/aws-sdk-kinesis.min.js.br
54.230.111.109200 OK 58 kB URL HTTP/2 cdn.intergient.com/pageos/js/libs/aws-sdk-kinesis.min.js.br
IP 54.230.111.109:0
File type ASCII text, with very long lines (31975), with escape sequences
Hash 575b9635960fa1d9b7ba4dafe1d2e7f5
85dcbcd21eeab5fc58e2ce83ba921609a706f2bc
aa8d6f75ef3c086ce9434961b51bac1dfe4a6a9e90e6bb8df07000fa8a5d8907
GET /pageos/js/libs/aws-sdk-kinesis.min.js.br HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 57858
date: Sun, 25 Sep 2022 03:14:34 GMT
last-modified: Tue, 15 Feb 2022 19:02:54 GMT
etag: "575b9635960fa1d9b7ba4dafe1d2e7f5"
content-encoding: br
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mP-qCfbUowtFMcRmp00OJYboyH_AeQ0Nzp0fjEt1uXNmfpi7EkehcQ==
age: 49949
X-Firefox-Spdy: h2
cdn.intergient.com/pageos/1.8.17/iframe/iframe.html
54.230.111.109200 OK 497 B URL HTTP/2 cdn.intergient.com/pageos/1.8.17/iframe/iframe.html
IP 54.230.111.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b11192ea36f90d5a274a7a5bd2f58f9f
8ad534f1adf6623c36c932194d29dbf3d327bd57
51c3a62182c9aa5909e28362a555f9cda72d12644d234245bc44cef9a6f40fed
GET /pageos/1.8.17/iframe/iframe.html HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 497
last-modified: Tue, 13 Sep 2022 12:46:10 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:02:54 GMT
etag: "b11192ea36f90d5a274a7a5bd2f58f9f"
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aq8cHPitUsesF6VvaHfgPwJl9--XQ5fEOTUN_J8_My2N7ZsKpMNehw==
age: 72115
X-Firefox-Spdy: h2
api.gofile.io/getContent?contentId=DcEG9t&token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB&websiteToken=12345
51.178.66.33200 OK 45 B URL HTTP/2 api.gofile.io/getContent?contentId=DcEG9t&token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB&websiteToken=12345
IP 51.178.66.33:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 95b54e6a7b0ccb08ef6cfc51fd760ca9
a1131e1296fdc87ee14051aeb71e2f0db149da56
39206bbb0dfce296c0fcb47fd82c62559a48c466a281c0d3af4f361b2f531127
GET /getContent?contentId=DcEG9t&token=Bk8IR61otII4cnjMsn3WwiLfpFqc3nZB&websiteToken=12345 HTTP/1.1
Host: api.gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS, PUT, DELETE, HEAD
access-control-allow-origin: https://gofile.io
content-security-policy: default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'self' https: data:;form-action 'self';frame-ancestors 'self';img-src 'self' data:;object-src 'none';script-src 'self';script-src-attr 'none';style-src 'self' https: 'unsafe-inline';upgrade-insecure-requests
content-type: application/json; charset=utf-8
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
date: Sun, 25 Sep 2022 17:07:02 GMT
etag: W/"2d-oRMeEpb9yH7hQFGutx4vDbFJ2lY"
expect-ct: max-age=0
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-length: 45
X-Firefox-Spdy: h2
z.moatads.com/playwireprebidheader597261727146/moatheader.js
23.38.201.146200 OK 79 kB URL HTTP/2 z.moatads.com/playwireprebidheader597261727146/moatheader.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (1838)
Hash 3d55f50ac0e6983bbd12434c7c6d418d
aeca7b6ce70558a37d48eb6321d7c5f24dbb6fef
eec2e9b34a9f23f688ce0cfffa4d3a8327058ba65de9115525b21eff98a16160
GET /playwireprebidheader597261727146/moatheader.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yfO6LnN0jY+M4RAl/jNjGmbmV+CGDuP1jywis9bjbaek/k7AOF9lt3EJt7nbunPUnAZT7cl6Gao=
x-amz-request-id: 1TFHN29K1M0BKE4R
last-modified: Wed, 21 Sep 2022 18:30:04 GMT
etag: "3d55f50ac0e6983bbd12434c7c6d418d"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
server: AmazonS3
content-length: 79076
vary: Accept-Encoding
cache-control: max-age=30659
date: Sun, 25 Sep 2022 17:07:02 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6a4a8e3b18e562b4bed71eefd913481
9ed32697f78f7b72531decd850de97499c6f2574
54041ea6df222d529d39122b6e7d2e21b082b7c1f28f5565b088e3941b7788f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.intergient.com/pageos/1.8.17/batchHandler.48b67d8f5be3c2f25514.js
54.230.111.109200 OK 75 kB URL HTTP/2 cdn.intergient.com/pageos/1.8.17/batchHandler.48b67d8f5be3c2f25514.js
IP 54.230.111.109:0
Hash 165383a81e6de2c6bbf899ddc3c6704f
ca6caa426ecfb888cd7760bfb004a6f1b032056f
a8fd6fc35c84f5fab04571b6767028b54be779a10f54d0c4df73ac123aca0c7d
GET /pageos/1.8.17/batchHandler.48b67d8f5be3c2f25514.js HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:46:10 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 03:00:24 GMT
etag: W/"54fee70c6729768e1d9c151cc2f3f4cb"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ImnD4IGnLYOuftCCXy3EStmw8wB4TmIWNR7E-qCpuqPTx-CNqFgpCg==
age: 51203
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.intergi.com/hera/releases/4.5.28/tyche.js
54.230.111.4200 OK 930 B URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/tyche.js
IP 54.230.111.4:0
File type ASCII text, with very long lines (930), with no line terminators
Hash 24fb05e7b1ff0946963a75e378cc3d78
7c2cecc5274b8efc6db4bf2dee65353426f44cd5
7efeddeb39e1c0e0d819fae050cb133371fd251c4845dd855c12b4bf0f5d6535
GET /hera/releases/4.5.28/tyche.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 930
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: jOjb9pFCpnnOFmUoJYUD892R8msp_13i
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 05:10:27 GMT
etag: "24fb05e7b1ff0946963a75e378cc3d78"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x_0gYtfTOM8qFntHuaKxj4z6eWeByXpw1g3_jMS_lxiehkSwPmNMfw==
age: 42999
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5469679028990347
142.250.74.130200 OK 58 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5469679028990347
IP 142.250.74.130:0
File type ASCII text, with very long lines (2910)
Hash 485b6f7595d9888f7b892a29ebf8f33b
ec9b27db76dabc86190694d7de9c4dc96654cde3
194b1c3a1016e595eaac84e70d8b63c84ecab01ff6575f4b8d1ff768ad792fb9
GET /pagead/js/adsbygoogle.js?client=ca-pub-5469679028990347 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sun, 25 Sep 2022 17:07:02 GMT
expires: Sun, 25 Sep 2022 17:07:02 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16823125826376065587
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 58040
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c6a4a8e3b18e562b4bed71eefd913481
9ed32697f78f7b72531decd850de97499c6f2574
54041ea6df222d529d39122b6e7d2e21b082b7c1f28f5565b088e3941b7788f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.intergient.com/pageos/1.8.17/88.53d45eac092b4513841f.js
54.230.111.109200 OK 41 kB URL HTTP/2 cdn.intergient.com/pageos/1.8.17/88.53d45eac092b4513841f.js
IP 54.230.111.109:0
File type ASCII text, with very long lines (53320)
Hash 7f31f11f9c832724d1d56bb628de6c69
36f94c4158eaa52de492a30f73fe7edab02f7d9b
184e2e7989a75a8955febf84e67fce291f777597b609a73353367e37b7a57162
GET /pageos/1.8.17/88.53d45eac092b4513841f.js HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:46:10 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 04:10:29 GMT
etag: W/"521b8dcb529c1fc9697d2140bc44c4e2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g8PB5YKnbc4AHHeoF_CKy_lah03KTQqtaNROG-sejXv2NXRHRFTC7g==
age: 46610
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cd8e3570655a88b47a20fb93af0fc0c5
6ebbd655af47cbe0788f5ea6a7d9cd457bda2f33
12bc57afd44ddf43fc3802ecc23e743660b146acff0958093fcea30e96b02f6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.intergi.com/hera/releases/4.5.28/lib/lib.37dee626aab965fa63d6.js
54.230.111.4200 OK 168 B URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/lib/lib.37dee626aab965fa63d6.js
IP 54.230.111.4:0
File type ASCII text, with no line terminators
Hash 55207ad611091d1e6eb6c264a431a7b5
3129eb40e04e8da41dbed15d59a633a7793b740c
cc6b3654648a3c72901bc3261e6b3d758e1646a42cf0df9250e90a54a5e5f485
GET /hera/releases/4.5.28/lib/lib.37dee626aab965fa63d6.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 168
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: Tao4wYQXx9sUk89_sFAd9yKoTU0aSk6b
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 02:35:26 GMT
etag: "55207ad611091d1e6eb6c264a431a7b5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jnEZPNFUoiylh2jbtgOeal2DQfrEIvLK0tiexGGmmSii7jkMpB2NOA==
age: 52297
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/635.c6832658487cc1354cf2.js
54.230.111.4200 OK 1.1 kB URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/635.c6832658487cc1354cf2.js
IP 54.230.111.4:0
File type ASCII text, with very long lines (1314), with no line terminators
Hash 30fe17d301646ae6f6e97143a20d8ce4
47afd4bf42ab73790d539402e5cc75d4301342d4
6f83eeebe84867048fbeeb526371f9309ffd14e8f9bcf9363363e84b6c384fc4
GET /hera/releases/4.5.28/635.c6832658487cc1354cf2.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: 1Heqx8IMn57KjDPJpqMJ1997Z_wiWWHW
server: AmazonS3
content-encoding: br
date: Sun, 25 Sep 2022 08:04:35 GMT
etag: W/"e6039b016665cb6b7e1f57fea4b52ee1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oRhwJuAdVlAkqew_YbVSXqemTlEjJhldgGOREKuVbugBAvhkhMDqpw==
age: 32548
X-Firefox-Spdy: h2
api.btloader.com/pv?tid=2WC8rpGjF&w=6259520371163136&o=5150306120761344&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&upapi=true
130.211.23.194204 No Content 0 B URL HTTP/2 api.btloader.com/pv?tid=2WC8rpGjF&w=6259520371163136&o=5150306120761344&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&upapi=true
IP 130.211.23.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pv?tid=2WC8rpGjF&w=6259520371163136&o=5150306120761344&cv=2.0.10-11-g48983ca&r=false&vr=1280x939&pageURL=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Sun, 25 Sep 2022 17:07:03 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/vfctweU0iRw
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/vfctweU0iRw
IP 142.250.74.3:0
Hash 660309bed5b284abb4263d65f48e3867
7021740f17da4bbbe71dd16987c1e59e69112be0
a0df422e5a16cf9b10595122ea44459bf2f2b967289c77b1664ea64124de7a6e
POST /s/gts1d4/vfctweU0iRw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 93e2a68018a1520711e0caeb03aa1413
248b5988b535010a7a5637d93ee066e5c1153bce
3c9b32ecac2a3e09be9712377d35fb3bdd599298dac14f46c437f43f405761ce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C9B32ECAC2A3E09BE9712377D35FB3BDD599298DAC14F46C437F43F405761CE"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4420
Expires: Sun, 25 Sep 2022 18:20:43 GMT
Date: Sun, 25 Sep 2022 17:07:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8b167b2e0b73da4a5c7158071819989d
286f6c4ecab8a55f664d79859c56d273f3e0598f
b80c52719db3e237a40114116fee9fedafab06d14467dd8060a9f932669d5786
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3798
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Last-Modified: Sun, 25 Sep 2022 16:03:45 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
id5-sync.com/g/v2/483.json
162.19.138.118200 216 B URL HTTP/1.1 id5-sync.com/g/v2/483.json
IP 162.19.138.118:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 26cee088e1ff664ed936f914d2b818e2
2a05ce255c3d7ef19940b98a3eff81a7728bb7af
8b50f2bb101cc66320d2056ecc57646633296448af21f1d797875ed1ac6128f2
POST /g/v2/483.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 133
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://gofile.io
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Sun, 25 Sep 2022 17:07:02 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
mb.moatads.com/yi/v2?ol=0&qn=%604%7BZEYwoqI%24%5BK%2BdLLU)%2CMm~t8!Z.%5BMhS%3A15.sn_003etW6~P6Jn)s)wC%24GL3jX%7BQqDOJ%3Eoy)G3p%2FhFjrR8whh%2B%7D%407%25w_2C%3FP%3ElK%3DbH%2FHm%24t3c%40LmE%3D%5EI5%5Dm%22%2Bx%7CoGq%3BR20qx7jQ8%24B2b%60RW3%3B%5Bvmjrz2KD5pf5%5BGc.uBlTVU%2F.%3Dh%3FtDJq%409BG&tf=1_nMzjG---CSa7H-IDtCXC-bW7qhB-LRwqH-nMzjG-&vi=111111&rc=0%2C0%2C0%2C0%2C0%2C1%2C0%2C0%2Cprobably%2Cprobably&rb=1-Oz7qA3PFBj7g4pVV8xztRIWnSYK6kwU2JeJbBer2APsOGgK%2Ftq%2F3Cytr&rs=1-hrBp6whWe0wLgg%3D%3D&sc=1&os=1-FA%3D%3D&qp=01000&is=BBBBB2BBEY4vGl2BBCBBtBBE1RmsqBBB8BsrBu0rCBE48CRBeeBS2hWTMBBQeQBOn2soYggyUig0CBlWZ0BNpKzisfZBBBBBiOfnE6Bkg7OxibBBBBBBBHCBBBBBBhIcb9YBoBXcBXBR7BiUUsJBCBBBBBBBBJWBBBj3BBBZeGB2BB05MCBBHBBCgEBBBBBB94UMgTdJMtEcpMBBBQBBBniBccBBBBBB47kNBBBBBBBBBBBBBhcjG6BBJM2L4Bk8Bw6BQmIBRBBCzmz1BBCTClBBrbBBC4ehueB57NG9aJeRzBBBBBBBBBBB&iv=8&qt=0&gz=0&hh=0&hn=0&tw=&qc=0&qd=0&qf=1280&qe=939&qh=1280&qg=1024&qm=0&qa=1280&qb=1024&qi=1280&qj=1002&to=000&po=1-0020002000002120&vy=&qr=0&url=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&pcode=playwireprebidheader597261727146&rx=118692449224&callback=MoatNadoAllJsonpRequest_78584983
52.19.173.146200 OK 337 B URL HTTP/2 mb.moatads.com/yi/v2?ol=0&qn=%604%7BZEYwoqI%24%5BK%2BdLLU)%2CMm~t8!Z.%5BMhS%3A15.sn_003etW6~P6Jn)s)wC%24GL3jX%7BQqDOJ%3Eoy)G3p%2FhFjrR8whh%2B%7D%407%25w_2C%3FP%3ElK%3DbH%2FHm%24t3c%40LmE%3D%5EI5%5Dm%22%2Bx%7CoGq%3BR20qx7jQ8%24B2b%60RW3%3B%5Bvmjrz2KD5pf5%5BGc.uBlTVU%2F.%3Dh%3FtDJq%409BG&tf=1_nMzjG---CSa7H-IDtCXC-bW7qhB-LRwqH-nMzjG-&vi=111111&rc=0%2C0%2C0%2C0%2C0%2C1%2C0%2C0%2Cprobably%2Cprobably&rb=1-Oz7qA3PFBj7g4pVV8xztRIWnSYK6kwU2JeJbBer2APsOGgK%2Ftq%2F3Cytr&rs=1-hrBp6whWe0wLgg%3D%3D&sc=1&os=1-FA%3D%3D&qp=01000&is=BBBBB2BBEY4vGl2BBCBBtBBE1RmsqBBB8BsrBu0rCBE48CRBeeBS2hWTMBBQeQBOn2soYggyUig0CBlWZ0BNpKzisfZBBBBBiOfnE6Bkg7OxibBBBBBBBHCBBBBBBhIcb9YBoBXcBXBR7BiUUsJBCBBBBBBBBJWBBBj3BBBZeGB2BB05MCBBHBBCgEBBBBBB94UMgTdJMtEcpMBBBQBBBniBccBBBBBB47kNBBBBBBBBBBBBBhcjG6BBJM2L4Bk8Bw6BQmIBRBBCzmz1BBCTClBBrbBBC4ehueB57NG9aJeRzBBBBBBBBBBB&iv=8&qt=0&gz=0&hh=0&hn=0&tw=&qc=0&qd=0&qf=1280&qe=939&qh=1280&qg=1024&qm=0&qa=1280&qb=1024&qi=1280&qj=1002&to=000&po=1-0020002000002120&vy=&qr=0&url=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&pcode=playwireprebidheader597261727146&rx=118692449224&callback=MoatNadoAllJsonpRequest_78584983
IP 52.19.173.146:0
File type ASCII text, with very long lines (337), with no line terminators
Hash d4bca4d5b84ad066d10275566d92adb3
ab9a5b7af55772518ad6eb3dbcfdb71fff97307e
1a69131f8b7d1e2c056f246e864a04275f364158568a9523a894a5bdf0d394cc
GET /yi/v2?ol=0&qn=%604%7BZEYwoqI%24%5BK%2BdLLU)%2CMm~t8!Z.%5BMhS%3A15.sn_003etW6~P6Jn)s)wC%24GL3jX%7BQqDOJ%3Eoy)G3p%2FhFjrR8whh%2B%7D%407%25w_2C%3FP%3ElK%3DbH%2FHm%24t3c%40LmE%3D%5EI5%5Dm%22%2Bx%7CoGq%3BR20qx7jQ8%24B2b%60RW3%3B%5Bvmjrz2KD5pf5%5BGc.uBlTVU%2F.%3Dh%3FtDJq%409BG&tf=1_nMzjG---CSa7H-IDtCXC-bW7qhB-LRwqH-nMzjG-&vi=111111&rc=0%2C0%2C0%2C0%2C0%2C1%2C0%2C0%2Cprobably%2Cprobably&rb=1-Oz7qA3PFBj7g4pVV8xztRIWnSYK6kwU2JeJbBer2APsOGgK%2Ftq%2F3Cytr&rs=1-hrBp6whWe0wLgg%3D%3D&sc=1&os=1-FA%3D%3D&qp=01000&is=BBBBB2BBEY4vGl2BBCBBtBBE1RmsqBBB8BsrBu0rCBE48CRBeeBS2hWTMBBQeQBOn2soYggyUig0CBlWZ0BNpKzisfZBBBBBiOfnE6Bkg7OxibBBBBBBBHCBBBBBBhIcb9YBoBXcBXBR7BiUUsJBCBBBBBBBBJWBBBj3BBBZeGB2BB05MCBBHBBCgEBBBBBB94UMgTdJMtEcpMBBBQBBBniBccBBBBBB47kNBBBBBBBBBBBBBhcjG6BBJM2L4Bk8Bw6BQmIBRBBCzmz1BBCTClBBrbBBC4ehueB57NG9aJeRzBBBBBBBBBBB&iv=8&qt=0&gz=0&hh=0&hn=0&tw=&qc=0&qd=0&qf=1280&qe=939&qh=1280&qg=1024&qm=0&qa=1280&qb=1024&qi=1280&qj=1002&to=000&po=1-0020002000002120&vy=&qr=0&url=https%3A%2F%2Fgofile.io%2Fd%2FDcEG9t&pcode=playwireprebidheader597261727146&rx=118692449224&callback=MoatNadoAllJsonpRequest_78584983 HTTP/1.1
Host: mb.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:03 GMT
content-type: text/html; charset=UTF-8
content-length: 337
server: Microsoft-IIS/6.0
cache-control: max-age=900
timing-allow-origin: *
etag: "ab9a5b7af55772518ad6eb3dbcfdb71fff97307e"
X-Firefox-Spdy: h2
id.crwdcntrl.net/id
52.213.127.205200 OK 63 B IP 52.213.127.205:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9c7c1dddbe22f2d17fea7e3fa78589cf
348ab960a0c55cbd75b8b8a2066a6599fd1e6bdc
505d0fc50fde638996ae546ac9647ee70dbd4e5c98e609d932482bb643b7915c
GET /id HTTP/1.1
Host: id.crwdcntrl.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:03 GMT
content-type: application/json;charset=utf-8
content-length: 63
p3p: CP=NOI DSP COR NID PSAa PSDa OUR UNI COM NAV
cache-control: no-cache
pragma: no-cache
expires: 0
x-server: 10.45.14.90
access-control-allow-credentials: true
access-control-allow-origin: https://gofile.io
server: Jetty(9.4.38.v20210224)
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6669610813a1e4e2786f7d3f8d40c867
05839bacff46752db344a755d43db959787ae225
1a33b29382a6cb0072b29d29981cd4b04f876b7c4614026f4e96017b8db2eb03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12328
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 17:07:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12328
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 17:07:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12328
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 17:07:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12328
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 17:07:03 GMT
Connection: keep-alive
adservice.google.com/adsid/integrator.js?domain=gofile.io
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=gofile.io
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=gofile.io HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 25 Sep 2022 17:07:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=gofile.io&callback=_gfp_s_&client=ca-pub-5469679028990347
172.217.21.162200 OK 198 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=gofile.io&callback=_gfp_s_&client=ca-pub-5469679028990347
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 15a2cf44651d9d70230855cdb96f67f2
bce087582e75314e48a350f922c1e27bf13b2e7e
3ef7f088ece9db0339eadda0f370730c1011b71308b71a8c7cc2bbb380bf4980
GET /gampad/cookie.js?domain=gofile.io&callback=_gfp_s_&client=ca-pub-5469679028990347 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 25 Sep 2022 17:07:03 GMT
server: cafe
cache-control: private
content-length: 198
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/runtime.e1e6fd1b354c0a3fc13d.js
54.230.111.4200 OK 14 kB URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/runtime.e1e6fd1b354c0a3fc13d.js
IP 54.230.111.4:0
Hash 339065f98b0d5bbfabd9f1362f4b4a83
d68238686f8bd07fad5d552591096ebd5139b928
84fcf2045b6350dac5563d0faa21cb60f793f428cd6c151d234c100b2b1e851f
GET /hera/releases/4.5.28/runtime.e1e6fd1b354c0a3fc13d.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: iJSigKRDHAkGJnvEmBJpMvu.EEoaXb3h
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 04:15:44 GMT
etag: W/"07e81176a9d050cbc461755ca1185907"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HLLWuni8Wa7Q4tZckFHfKMNtUYNX7wNP4qcbTG0MuSq0m_6WZaa5EA==
age: 48557
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5CzA52-o7GYViSJ4lna7ptv9dycJCUL-NLWOk-iCW-ZxDU_FQH_OoQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:51:18 GMT
age: 69345
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a89e7161745036637a66e8ab5b7efdf9
79c83cc27996b2339bd63764dbb2ae9744db6d70
13b990c3c6a9bee6def25d007e14628c52e427b6f4c718895b1817d5e8e59760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0737a7ae-3ae7-4fe5-b739-e988b295c795.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8715
x-amzn-requestid: d5e237f4-4c0e-4e3b-b3ae-ea1eb5b7cafc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JmTEAwIAMF_Mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d22f4-48a975a866edc1755858600f;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Sm6N8Un8XKHtGGZwxLd1aYygBns1l8siRvcc2w_9V2imJopvt8Ockw==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 07:09:15 GMT
age: 35868
etag: "79c83cc27996b2339bd63764dbb2ae9744db6d70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kdF6En2vbJhRH1bkYMOuNm5XOIsT1qs3FE281N1SKn1FbyW-oNZsEw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:06 GMT
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
age: 70197
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ebb5-2746-43ce-9354-d29ae28778f1.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ebb5-2746-43ce-9354-d29ae28778f1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75eb09cb0472d311d2deaf4475a2fb29
9e7b0fd5b7c45213e1808361867a254c8e313a30
c18626d0131533976be196823911d5146042e6bd8028389cb4f17a64ee0ec1e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16a0ebb5-2746-43ce-9354-d29ae28778f1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7690
x-amzn-requestid: e50abd36-e3d6-4177-ad5a-57ef7f743e1b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yv2HqHJqIAMFe9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63296a30-7de1ba3633620fed1eb26a04;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 07:22:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: x6m2265h0hSgCTluIqgbC-hSZiiyeqMR0qEwnYgXfjfxNa99trVEgA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 18:05:57 GMT
age: 82866
etag: "9e7b0fd5b7c45213e1808361867a254c8e313a30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hc0cpj1kMbAQqcM0ooSgEdS8nPP0m4FJD1bHdY7jN2OENNsJF_gluA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 08:16:33 GMT
age: 31830
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/vendor/npm.babel.816b6b897780bce545f1.js
54.230.111.4200 OK 2.3 kB URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/vendor/npm.babel.816b6b897780bce545f1.js
IP 54.230.111.4:0
Hash 49596fc9e6fc34349a293d99c7ee6aa6
c1f357054e679934719721c7e93f5eca55937c75
952e91170ddb435e39c651042eeb9f78f99646d34e1b0059926ddcd3b28aab5a
GET /hera/releases/4.5.28/vendor/npm.babel.816b6b897780bce545f1.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: 1oklWQSboPRKy2iSP_WoK7Plu09jF34h
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 01:53:58 GMT
etag: W/"4c1827dd36989b5b458ebcc0299e2c59"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZI0J6V2xWlyhQlOwQ8Nwt-QrbS3BcWz7V_h49o7imeU7mFOSqffT-w==
age: 54785
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 64c3219ff2f297715e33c6da842c2d89
07d1785110c6addc42558a0bf0b87156735f1383
7c477ccbf7ed22580b51c54cf8a82445003618fc93329ea35d380a3a5344d17f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6539
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Last-Modified: Sun, 25 Sep 2022 15:18:05 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 727
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6669610813a1e4e2786f7d3f8d40c867
05839bacff46752db344a755d43db959787ae225
1a33b29382a6cb0072b29d29981cd4b04f876b7c4614026f4e96017b8db2eb03
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ea6011094da3116e1bb049caa0e491e1
5809e1f5b0beee0282601045c0a152853c977565
25bd8112864ac34144820c6aecf49dec7ff9cfb863d864ca0ebbf55dee213414
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d5f86ddceacf0b5d14b5b74eb60e39e2
a197f1b182fc5aebc30ee5570d7c5e6d7a3f410d
0727801c97c941992fb3a3bf7cc6ca2c44e15326d6e3dc9f0f0b4af54f4908ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 25 Sep 2022 17:07:03 GMT
expires: Sun, 25 Sep 2022 17:07:03 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 13:42:03 GMT
expires: Mon, 25 Sep 2023 13:42:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 12300
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 17:07:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 01a7b3c108977cb602a6187f73831c15
1f823274b4220cf94f4f1150ba038519fd512e11
f090450b3bb10efbf33627c0cc624ee1579f4567991e47c010c7a6bf77c9bfc6
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 25 Sep 2022 17:07:03 GMT
date: Sun, 25 Sep 2022 17:07:03 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-EKoo8ONM0JwcbjW1e7XLsQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gofile.io/plugins/sweetalert2/dark.min.css
51.178.66.33200 OK 4.7 kB URL HTTP/2 gofile.io/plugins/sweetalert2/dark.min.css
IP 51.178.66.33:0
Hash f11b9676238545e1216fc3657184b42a
3cfe9e839a7aa1960c60e0f2001682320637181c
58e5742acc0d1ab4766a286a6a0030b41d3359270f5011f856c349789906bf67
GET /plugins/sweetalert2/dark.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"5fac-17e08e1efd1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=gofile.io
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=gofile.io
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=gofile.io HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 25 Sep 2022 17:07:03 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 44 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3498)
Hash 94b0bc367ba28149279e80db131698c5
e3d5266059ac644dc21754a58d0f82bc76ca4cdd
379b35055f2b21b83b896a4dfe4ce927efc987290e138e441327486e7765974f
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44525
date: Sun, 25 Sep 2022 17:07:04 GMT
expires: Sun, 25 Sep 2022 17:07:04 GMT
cache-control: private, max-age=3000
etag: "1663760195623328"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.intergient.com/1024419/73114/ramp.js
54.230.111.109200 OK 74 kB URL HTTP/2 cdn.intergient.com/1024419/73114/ramp.js
IP 54.230.111.109:0
File type ASCII text, with very long lines (63309), with no line terminators
Hash 6e849a5ae2f78abb449acf0f8f56886a
b342de81a654c64d3df02e4185988d55bff50711
0c8d2fd83f8bf1812be2f6d74acbaa17dd651323d1a7f9dce2e28023604d9af5
GET /1024419/73114/ramp.js HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: CloudFront
date: Sun, 25 Sep 2022 17:07:02 GMT
cache-control: max-age=600, public, must-revalidate
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vl8Yd1vE6Fj7pG9Y5Y148MrrNXGyWwbNcE9yQp_z07caWeo8g7Po4A==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1f5051c3f499024d165aa4e5ef988b06
5b188f277b8d9ff13a441c53e6b07f719b592283
dc72190cc32470631d2e5b417a25420512018a0b9a98af95f5db6a4876866fbb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 17:07:08 GMT
Last-Modified: Sun, 25 Sep 2022 15:57:41 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z7V8L5YVWereIOuBG3lHkdDxA_qQeD5kQ45rYQT-5mGDPql1WfzCEA==
Age: 4167
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1f5051c3f499024d165aa4e5ef988b06
5b188f277b8d9ff13a441c53e6b07f719b592283
dc72190cc32470631d2e5b417a25420512018a0b9a98af95f5db6a4876866fbb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 17:07:08 GMT
Last-Modified: Sun, 25 Sep 2022 15:57:41 GMT
Server: ECS (nyb/1D27)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dD6KiAxrozMisueHiGJQ_ElmzJXYL0Po3ynebDfubWH1JdIBuxfxJA==
Age: 4167
kinesis.us-east-1.amazonaws.com/
3.227.250.131200 OK 0 B URL HTTP/1.1 kinesis.us-east-1.amazonaws.com/
IP 3.227.250.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: kinesis.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: e71259d9-63bc-b0a2-bcb8-d52531aa0390
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Date: Sun, 25 Sep 2022 17:07:08 GMT
Content-Length: 0
kinesis.us-east-1.amazonaws.com/
3.227.250.131200 OK 146 B URL HTTP/1.1 kinesis.us-east-1.amazonaws.com/
IP 3.227.250.131:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2c645a8f036e5039b078b2ef2dd75e6b
b5d34ccd6381ddf2b4807d867608b990bcf7d1f0
49aa7987e84a062a5aab270dc7803c638d30986bce73aaf7f37c422286c72559
POST / HTTP/1.1
Host: kinesis.us-east-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.387.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Kinesis_20131202.PutRecords
X-Amz-Content-Sha256: 43044ce0b009d74ba0500d501f53f7cca2b2709137ecda252032b7a59e124645
X-Amz-Date: 20220925T170706Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIA44GIABD57PYVUX6G/20220925/us-east-1/kinesis/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=c609b1d180dc9ee0576fb0554cffccff311307eab21277d6801e4cc4a773f6aa
Content-Length: 941
Origin: https://gofile.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: c4c42e12-509f-a702-9f6e-a2ee4f5eb3f1
Access-Control-Allow-Origin: *
x-amz-id-2: FcAoIW7F0Jf4y76VOBhHR5XvIkwBvbtaPjA8cLYCPR8uGZKYZ1N0oTJlWVN78UD+C8Z3ag5cQ3NzJ2Hgto0Gb5K3ZIjq2HD3
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Date: Sun, 25 Sep 2022 17:07:08 GMT
Content-Type: application/x-amz-json-1.1
Content-Length: 146
gofile.io/dist/img/patreon.png
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/img/patreon.png
IP 51.178.66.33:0
GET /dist/img/patreon.png HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/png
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"19b3-17e08e1eed5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/sweetalert2/sweetalert2.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/sweetalert2/sweetalert2.min.js
IP 51.178.66.33:0
GET /plugins/sweetalert2/sweetalert2.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"bb5d-17e08e1efd1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/marked/marked.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/marked/marked.min.js
IP 51.178.66.33:0
GET /plugins/marked/marked.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"aca2-17e08e1ef59"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
btloader.com/tag?o=5150306120761344&upapi=true
104.26.6.139200 OK 0 B URL HTTP/2 btloader.com/tag?o=5150306120761344&upapi=true
IP 104.26.6.139:0
GET /tag?o=5150306120761344&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 17:07:02 GMT
content-type: application/javascript
cache-control: public, max-age=300, must-revalidate, stale-if-error=86400
etag: W/"ad521c88381140cd298ba2701fecc998"
last-modified: Sun, 25 Sep 2022 16:50:54 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 947
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ej7K0GaqrOAB32jccOUy4WipW28W1OIklajpTStA%2B3C6gWLzXea9RN2zribL5Ep3mwvffq%2FSHPKI3P26h3BMS6AjpqkHbmCswIqEJkfMXfxyPbqQ1S2c0OzZnyla9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75055a939d7eb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/vendor/npm.intersection-observer.312f6562336e9769b3ec.js
54.230.111.4200 OK 0 B URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/vendor/npm.intersection-observer.312f6562336e9769b3ec.js
IP 54.230.111.4:0
GET /hera/releases/4.5.28/vendor/npm.intersection-observer.312f6562336e9769b3ec.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: x0fWJRhgDHiCWIkQyAv3hotMuU5_z9eh
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 01:53:58 GMT
etag: W/"3fbf8b46b12b434ff5936e830c2d66be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ukQi0b0BRKmW-CYW8juycATNA6CU9jKzjJh7GbEYPKDKQ_LhFQdCEg==
age: 54845
X-Firefox-Spdy: h2
cdn.intergient.com/pageos/1.8.17/nielsen.b850d86715bcafaea630.js
54.230.111.109200 OK 0 B URL HTTP/2 cdn.intergient.com/pageos/1.8.17/nielsen.b850d86715bcafaea630.js
IP 54.230.111.109:0
GET /pageos/1.8.17/nielsen.b850d86715bcafaea630.js HTTP/1.1
Host: cdn.intergient.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:46:10 GMT
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 06:49:17 GMT
etag: W/"70341af160996aa15aad5fcd74fdda2a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E8ndwTVuR7FsOvTeVHXie3npK1FHHg3-DpWeWDPPKYi05kEG5-Brcg==
age: 37065
X-Firefox-Spdy: h2
gofile.io/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js
IP 51.178.66.33:0
GET /plugins/tempusdominus-bootstrap-4/js/tempusdominus-bootstrap-4.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"f094-17e08e1efd5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/plyr/plyr.css
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/plyr/plyr.css
IP 51.178.66.33:0
GET /plugins/plyr/plyr.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"938f-17e08e1efbd"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/dist/img/bmac.png
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/img/bmac.png
IP 51.178.66.33:0
GET /dist/img/bmac.png HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/png
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1858-17e08e1eed5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/tagsinput/tagsinput.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/tagsinput/tagsinput.js
IP 51.178.66.33:0
GET /plugins/tagsinput/tagsinput.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"5948-17e08e1efd1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/plyr/plyr.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/plyr/plyr.js
IP 51.178.66.33:0
GET /plugins/plyr/plyr.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1d2a5-17e08e1efbd"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/dist/img/user2-160x160.jpg
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/img/user2-160x160.jpg
IP 51.178.66.33:0
GET /dist/img/user2-160x160.jpg HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/jpeg
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1af9-17e08e1eedd"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,700&display=fallback
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,400i,700&display=fallback
IP 142.250.74.10:0
GET /css?family=Source+Sans+Pro:300,400,400i,700&display=fallback HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 25 Sep 2022 17:07:01 GMT
date: Sun, 25 Sep 2022 17:07:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gofile.io/plugins/bootstrap-table/bootstrap-table.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/bootstrap-table/bootstrap-table.min.js
IP 51.178.66.33:0
GET /plugins/bootstrap-table/bootstrap-table.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1d781-17e08e1eee5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/dist/css/adminlte.min.css
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/css/adminlte.min.css
IP 51.178.66.33:0
GET /dist/css/adminlte.min.css HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: text/css; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"151a3f-17e08e1eec1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/dropzone/min/dropzone.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/dropzone/min/dropzone.min.js
IP 51.178.66.33:0
GET /plugins/dropzone/min/dropzone.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1c06b-17e08e1ef11"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/dist/js/adminlte.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/js/adminlte.min.js
IP 51.178.66.33:0
GET /dist/js/adminlte.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"acd4-17e08e1eedd"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/easymde/easymde.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/easymde/easymde.min.js
IP 51.178.66.33:0
GET /plugins/easymde/easymde.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"4dd16-17e08e1ef11"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/main.424f554419d38d4eece1.js
54.230.111.4200 OK 0 B URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/main.424f554419d38d4eece1.js
IP 54.230.111.4:0
GET /hera/releases/4.5.28/main.424f554419d38d4eece1.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: ra0BcPwxPuTMPA9LTFddJPkpFY9Hj.Yw
server: AmazonS3
content-encoding: gzip
date: Sun, 25 Sep 2022 01:53:15 GMT
etag: W/"249ca34c607cc541ccbaeced41576cfd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GEIQNIST0WMrBixXCjcPbY3h1DMQu7w6W5RDBedjxfEkFoINGh4_wA==
age: 54828
X-Firefox-Spdy: h2
gofile.io/dist/img/logo-small.png
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/dist/img/logo-small.png
IP 51.178.66.33:0
GET /dist/img/logo-small.png HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: image/png
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"1d42-17e08e1eed5"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/jquery/jquery.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/jquery/jquery.min.js
IP 51.178.66.33:0
GET /plugins/jquery/jquery.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"15d9d-17e08e1ef45"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
gofile.io/plugins/qrcode/qrcode.min.js
51.178.66.33200 OK 0 B URL HTTP/2 gofile.io/plugins/qrcode/qrcode.min.js
IP 51.178.66.33:0
GET /plugins/qrcode/qrcode.min.js HTTP/1.1
Host: gofile.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=0
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Sun, 25 Sep 2022 17:07:01 GMT
etag: W/"4dda-17e08e1efc1"
expect-ct: max-age=0
last-modified: Thu, 30 Dec 2021 01:08:51 GMT
origin-agent-cluster: ?1
referrer-policy: no-referrer
strict-transport-security: max-age=15552000; includeSubDomains
vary: Accept-Encoding
x-content-type-options: nosniff
x-dns-prefetch-control: off
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-xss-protection: 0
X-Firefox-Spdy: h2
cdn.intergi.com/hera/releases/4.5.28/vendor/npm.lodash.39a04a8f1c96ade254ee.js
54.230.111.4200 OK 0 B URL HTTP/2 cdn.intergi.com/hera/releases/4.5.28/vendor/npm.lodash.39a04a8f1c96ade254ee.js
IP 54.230.111.4:0
GET /hera/releases/4.5.28/vendor/npm.lodash.39a04a8f1c96ade254ee.js HTTP/1.1
Host: cdn.intergi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 13 Sep 2022 12:47:09 GMT
x-amz-version-id: Rc5E3chGgWEgxyuSeYgt517IU2lQ3DBg
server: AmazonS3
content-encoding: br
date: Sun, 25 Sep 2022 02:20:03 GMT
etag: W/"51add7edf2782c9ddf9380a9a5d6c529"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5JjiSjUICxypduOBX9C9vgvFaPqVdAKnfv0js_XkrGWPP6SWKgmE7g==
age: 53220
X-Firefox-Spdy: h2