fastupload.io/en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar
301 Moved Permanently 0 B URL HTTP/1.1 fastupload.io/en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar HTTP/1.1
Host: fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 18:52:15 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 29 Jan 2023 19:52:15 GMT
Location: https://fastupload.io/en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar
Server-Timing: cf-q-config;dur=7.0000023697503e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1anQjpf7SDwRsup2T5kGsTTf%2FBgoWem9yH96rf7yFfgfzXR8HFRzU%2BYFh7eXoeayLNtMUoVbHyqFBSObcH9M5MhsIhOxnL9pRayDT%2B8thjHKz5uDbYFNjyJOK7IR7B0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 791429f438950b65-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3543
Expires: Sun, 29 Jan 2023 19:51:18 GMT
Date: Sun, 29 Jan 2023 18:52:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5959
Expires: Sun, 29 Jan 2023 20:31:34 GMT
Date: Sun, 29 Jan 2023 18:52:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 18:35:38 GMT
content-type: application/json
age: 997
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7795
Expires: Sun, 29 Jan 2023 21:02:10 GMT
Date: Sun, 29 Jan 2023 18:52:15 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: J0UeP657FjLo8uiTRWQWX0J7KHB5GVAvvQB5gxrui1kbLwQYzy1roVW5yvx0hJw+5bIrCRRl6IE=
x-amz-request-id: 6R7K54ZD6MW1XG25
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 18:21:29 GMT
age: 1846
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 18:52:15 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash c263e8f2af00f151fb71e65f077d26a6
2dd7a48ce043bc650a9d89920db723304554a1bf
621d2451f181bd7a89e99e3bcc1adc59123ed201f930a975a6d4a10177dd312f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "621D2451F181BD7A89E99E3BCC1ADC59123ED201F930A975A6D4A10177DD312F"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9846
Expires: Sun, 29 Jan 2023 21:36:21 GMT
Date: Sun, 29 Jan 2023 18:52:15 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 18:41:41 GMT
age: 635
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash c263e8f2af00f151fb71e65f077d26a6
2dd7a48ce043bc650a9d89920db723304554a1bf
621d2451f181bd7a89e99e3bcc1adc59123ed201f930a975a6d4a10177dd312f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "621D2451F181BD7A89E99E3BCC1ADC59123ED201F930A975A6D4A10177DD312F"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9845
Expires: Sun, 29 Jan 2023 21:36:21 GMT
Date: Sun, 29 Jan 2023 18:52:16 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4514
Expires: Sun, 29 Jan 2023 20:07:30 GMT
Date: Sun, 29 Jan 2023 18:52:16 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pGj4PZv8KxqUMSAcRDO1LA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MFufGq19TeZHsKzTjPY9a+P3pNo=
ocsp.pki.goog/gts1c3
200 OK 26 kB IP
Hash 8c5491dea75aebaa29ee1bb3b7c036e9
3d4f2eda8dcdacb72fc62b56dbd9aa70d3a45df9
6db78ac2d8122f88b7ca5fc074c71ca0c647a89d85b0faee2b3e39306c11ddb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash dafbce9cddefb80f89431fae84911f5d
a96636b8fb6878ebe8365d02a0f1678228094371
e69f032d1b3eefff93077f5948673d83b806d67a2827490e43d2f764eaf493fa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3148
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Last-Modified: Sun, 29 Jan 2023 17:59:49 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 3.3 kB IP
Hash 05c412d1051725ea61832e1598035cfd
46affb225e86399ebe65a3bcc609d8feb2e9eef9
82ff595d5a4b05ae29c7d82d4605a72c426281388f35bfc0e157c0e471332af1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?hl=en
200 OK 556 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=en
IP
File type ASCII text, with very long lines (850), with no line terminators
Hash f678bcfbe98b4039961065c12543bfd0
31a000bba532f910d036c24c795ef3636450e4c3
1dabb56e42c7b0a90264a0e7d8884e4111eed0e1b6321cab5f6e26440d63da8d
GET /recaptcha/api.js?hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 29 Jan 2023 18:52:17 GMT
date: Sun, 29 Jan 2023 18:52:17 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 343103
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.purpleads.io/agent.js?publisherId=ddc74de2e23af63f23a7ff54827cc584:9813b8faf0f782b412a34c40841ee5bab19a6c87f1efdf6d4bf112317433fcbbfa78da002c92e82ce3b8485a75e84526c53f0ac0cf2078913e42499e9646c20c
200 OK 21 kB URL HTTP/2 cdn.purpleads.io/agent.js?publisherId=ddc74de2e23af63f23a7ff54827cc584:9813b8faf0f782b412a34c40841ee5bab19a6c87f1efdf6d4bf112317433fcbbfa78da002c92e82ce3b8485a75e84526c53f0ac0cf2078913e42499e9646c20c
IP
Hash ddb03552932d4c793534e97c6ba5b0ad
6800cffb14630334057444dc15479fa513353489
e923bc0394e667899f307b08e33b9e3aaffe065c1714d9d090009786dbc4aa6a
GET /agent.js?publisherId=ddc74de2e23af63f23a7ff54827cc584:9813b8faf0f782b412a34c40841ee5bab19a6c87f1efdf6d4bf112317433fcbbfa78da002c92e82ce3b8485a75e84526c53f0ac0cf2078913e42499e9646c20c HTTP/1.1
Host: cdn.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 19872
date: Sun, 29 Jan 2023 10:15:52 GMT
last-modified: Thu, 26 Jan 2023 10:15:40 GMT
etag: "a4862f4863ac0228f9e002f8a8968d8f"
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q0Th-TbMUeRq_8uJlpYQe1us7hX9lySCVUxS-NXBsI8O7yxw9JlvCg==
age: 30986
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 07:51:59 GMT
expires: Thu, 25 Jan 2024 07:51:59 GMT
cache-control: public, max-age=31536000
age: 385218
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 452591
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d0a16ea52166e0a27a8d6c850bfeec40
cb35e768c325e3ef19c9935da8b0d6c1d39725dd
44d989cd1e0bfb8b9fb9af787dcca1125c4f136b9a1d80c8c868e4aa6c269491
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44D989CD1E0BFB8B9FB9AF787DCCA1125C4F136B9A1D80C8C868E4AA6C269491"
Last-Modified: Sat, 28 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=297
Expires: Sun, 29 Jan 2023 18:57:14 GMT
Date: Sun, 29 Jan 2023 18:52:17 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bc4f85f10a7b1edf6ebfbe82a311cf91
f3839fbd95954bf62907161a26ca7cd0bc5e7af0
26ed4a0e3ad4d11b24eb8ec96d2eb881ecb1af221abafa7d0923ad85d413afa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26ED4A0E3AD4D11B24EB8EC96D2EB881ECB1AF221ABAFA7D0923AD85D413AFA2"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=288
Expires: Sun, 29 Jan 2023 18:57:05 GMT
Date: Sun, 29 Jan 2023 18:52:17 GMT
Connection: keep-alive
serv.fastupload.io/www/delivery/asyncjs.php
200 OK 1.9 kB URL HTTP/2 serv.fastupload.io/www/delivery/asyncjs.php
IP
File type HTML document text\012- C source text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4435), with no line terminators
Hash e3a4ccdfb0566bbfe4bbd6d8862c5a1d
1d7461da48842d121b7fb3d0c8369f5cf254b8c5
2528a20db107f5adaa5d1528310e47f32517bc13bd50ca46ce001507e68a3496
GET /www/delivery/asyncjs.php HTTP/1.1
Host: serv.fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
x-powered-by: PHP/8.0.27
content-type: text/javascript;charset=UTF-8
etag: 5e3fbc5ad61ea44dd916c05204439601
expire: Sun, 29 Jan 2023 19:52:17 GMT
cache-control: private, max-age=3600
p3p: CP="CUR ADM OUR NOR STA NID"
content-length: 1908
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 18:52:17 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.clarity.ms/tag/fkezgyg43u
200 OK 1.2 kB URL HTTP/2 www.clarity.ms/tag/fkezgyg43u
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 10c59ed19ab653461d7fdea0eefd1218
5767ab8a4670f53ac705a80db986073e2e26dcb0
6a47a8ecd72268375ad4d863881509d428de3b8c6ea67fe4f448db7f84f724cd
GET /tag/fkezgyg43u HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=e7324b138a0643cf8474e303cca307b3.20230129.20240129; expires=Mon, 29 Jan 2024 18:52:17 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0YcDWYwAAAACR2BwQMvLtQ5tKO8zcCcZDQ1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 29 Jan 2023 18:52:16 GMT
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=2
200 OK 2.9 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=2
IP
ASN #60068 Datacamp Limited
Hash 12a5199f0744be61129b5a44595969cc
2b937d2118b0843916a8fa31cebe7b2adec4f18b
9f4023d6b59733677f7ee518046404538a755914ce699aa9b823464e28c37cc6
GET /s/gen.js?type=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400650
server: CDN77-Turbo
x-77-nzt: AblMCQ1spKL/F2UDAA
x-77-nzt-ray: c0a4cc28254104dc61c0d663117f7421
x-cache: HIT
x-age: 222487
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=3
200 OK 23 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=3
IP
ASN #60068 Datacamp Limited
Hash 1e8542b74b2e9c614c357f55b54fb170
a6c7a62939f3e1d2d97ca053a24144afee7158dc
53c3071da55f659e52228cc5eef753eef387d57bf78388b19a591057069656cc
GET /s/requestform.js?siteId=95146&formatId=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675429385
server: CDN77-Turbo
x-77-nzt: AblMCQ07qNL/2PQCAA
x-77-nzt-ray: c0a4cc28254104dc61c0d66340f8ee20
x-cache: HIT
x-age: 193752
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9952
Expires: Sun, 29 Jan 2023 21:38:09 GMT
Date: Sun, 29 Jan 2023 18:52:17 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 4581
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=19
200 OK 27 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=19
IP
ASN #60068 Datacamp Limited
Hash 88f66561067d83348c83f6b18adf041b
da428623646219a262a4904e0427197f94822c27
84c978a81639d56c7bb9d9df6cc03e7aaa6c00b12d07782eeeff8b92d9d70459
GET /s/requestform.js?siteId=95146&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675429385
server: CDN77-Turbo
x-77-nzt: AblMCQ3JcH3/2PQCAA
x-77-nzt-ray: c0a4cc28254104dc61c0d663cf1c2421
x-cache: HIT
x-age: 193752
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=2
200 OK 28 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=2
IP
ASN #60068 Datacamp Limited
Hash fb5f7c837f9132b1e2822691df878754
1f3fcbd62e553e84860a63cb3f18dcf65358182b
ca00bf0d49e87da37007d5fa7501c7fc3b1af359740b5dc681bf132988872115
GET /s/requestform.js?siteId=95146&formatId=2 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675429385
server: CDN77-Turbo
x-77-nzt: AblMCQ0ofOT/2PQCAA
x-77-nzt-ray: c0a4cc28254104dc61c0d6637c1f4e21
x-cache: HIT
x-age: 193752
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=19
200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP
ASN #60068 Datacamp Limited
Hash b0bbdd16116ded1cf8c9c3e25279293c
cf518cd6143a07fd2ccb7baabdb7115c8b87b07e
a2870930fd234a2e71de27fccb7aac028202bc138ae97fd3214513226466e60f
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400650
server: CDN77-Turbo
x-77-nzt: AblMCQ08+wL/F2UDAA
x-77-nzt-ray: c0a4cc28254104dc61c0d6630a2b7621
x-cache: HIT
x-age: 222487
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg
IP
Hash 625edba5e786d6581135f91638caf497
e9320c967cba033ae71aec6cec3faea41758e7a5
3ffcfa2bf3f3f6b72b40e0af98250e031ed59b277bf474fc759e8b00471799f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d2bbd93-ce5c-4300-9ac3-8ccdde169701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6875
x-amzn-requestid: 5fb13e91-8750-4dd9-90a2-f1218ea6009b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fS9t2E0AoAMF_LA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d10ff2-22e819312302377c4bf698ff;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 11:18:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QH_-DX5fiBhfS9MVH6pJi57mqFRRPSPf0iDbp_5BHE1jUqCZvvPesQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:21 GMT
age: 75956
etag: "7a311c79e311448941a8d624c1064b1a2d97cfbd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=3
200 OK 11 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=3
IP
ASN #60068 Datacamp Limited
Hash cc6e868011d0971eb5519465b4480028
6c2279552d331eeabe09d3a4a0b8eab9a95ac218
72c8463808f9cf044e1532917bc614aa0a1e87e764540de69f78035c75a2e887
GET /s/gen.js?type=3 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400649
server: CDN77-Turbo
x-77-nzt: AblMCQ1GMcD/GGUDAA
x-77-nzt-ray: c0a4cc28254104dc61c0d663226ee620
x-cache: HIT
x-age: 222488
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash ce143dfb1f16c1152ff16c28f9b9abbd
027f5562109f9d29ec9da37a536305236b1dbe0b
658ba2839035064f4c9a89cc05c10b33a1e3394cda6f23862d13a021e4363508
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 18:52:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:34:04 GMT
Expires: Fri, 03 Feb 2023 18:34:03 GMT
Etag: "027f5562109f9d29ec9da37a536305236b1dbe0b"
Cache-Control: max-age=430305,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79142a02a9f6b505-OSL
ocsp.digicert.com/
200 OK 279 B IP
Hash 0767fc7ddb73f943b21009ddaeb45a82
89fe2f49fe2174f38851485ac6b62d9a05f0a70e
a877ad3e9d589362eb3b2616a05633f28955972c1123a76816842a2879ef89fc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4950
Cache-Control: max-age=149481
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Etag: "63d651f5-117"
Expires: Tue, 31 Jan 2023 12:23:39 GMT
Last-Modified: Sun, 29 Jan 2023 11:01:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
www.statcounter.com/counter/counter.js
200 OK 15 kB URL HTTP/2 www.statcounter.com/counter/counter.js
IP
File type ASCII text, with very long lines (43632), with no line terminators
Hash c7c96ae98caf6b45dcd23eed1ac379dd
f301a7ca2eac7bc5efd6a6ee3fc5bd6400d47930
b9ad44132986999c5078d597182907ec3b3f7929002bcaa892194e48d845d6c2
GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 27 Jan 2023 16:43:55 GMT
etag: W/"63d3ff4b-aa70"
expires: Sun, 29 Jan 2023 22:52:32 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 28786
server: cloudflare
cf-ray: 79142a05fcb6b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 642d7bd20466695d56b535c3d3e7a1bf
1989ed6de3b77947276ea5a816d43a2b4865cd72
06a882f0f3a52296d88c24cd4bfca74081faeb181d22ab2cfd81fcf8688e5579
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3965
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Last-Modified: Sun, 29 Jan 2023 17:46:13 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 314
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e54443083549bd6813fddfea5871b95f
406a5d2b4debde0204e5994618b6269ef41c3e87
9d2b75c2320ba693d8c3b584d6384d6cd4516cbe092e6e5886b4ba975be628e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D2B75C2320BA693D8C3B584D6384D6CD4516CBE092E6E5886B4BA975BE628E3"
Last-Modified: Fri, 27 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10832
Expires: Sun, 29 Jan 2023 21:52:50 GMT
Date: Sun, 29 Jan 2023 18:52:18 GMT
Connection: keep-alive
ads.themoneytizer.com/IIQUniversalID.js
200 OK 12 kB URL HTTP/2 ads.themoneytizer.com/IIQUniversalID.js
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (52687), with no line terminators
Hash 8b92c73a7caa0bea29a6977e6383ec5d
1e9830bbc7fabc28fe2df902889b974f57c80714
846d9de97320f255fc3faf023677b7487506c68f7a6c667556c53f04f0657f60
GET /IIQUniversalID.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 18:48:43 GMT
expires: Sat, 28 Jan 2023 05:04:09 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055051
server: CDN77-Turbo
x-77-nzt: AblMCQ20dj//F8IAAA
x-77-nzt-ray: c0a4cc28254104dc62c0d6630995ac11
x-cache: HIT
x-age: 49687
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
200 OK 1.4 kB URL HTTP/2 cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP
File type ASCII text, with very long lines (1834)
Hash be3e6b36cf3e82036dc5a972438e0aec
653997b9d9ee695c88131ecf72aace889e99eda9
6310cfaa43efc7431f404678dda759c3bdb663c41aca0ecf2147329a857ca4fb
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: gzip
date: Sun, 29 Jan 2023 18:52:04 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3voqzlYXwNXKAWI-OB7nkJfi8sWOdqyB8Y5X80xqXflsdpjyLLArQA==
age: 23
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=95146&f=19&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=95146&f=19&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=95146&f=19&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 18:52:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:4DAC_36264064:01BB_63D6C062_239E6DC:2AED4
X-IPLB-Instance: 24858
ads.themoneytizer.com/moneybile.js
200 OK 22 kB URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP
ASN #60068 Datacamp Limited
Hash 3aed7c794b97106c3bc8f5442406d29d
ae70a29d4f4d5709da503a1f2334a5422806d1dc
7a4b88c08727b0ea2cd1b69c93da595aab86a1461b054566caed00dfca885c49
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Sat, 28 Jan 2023 05:04:09 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055051
server: CDN77-Turbo
x-77-nzt: AblMCQ2+RDT/F8IAAA
x-77-nzt-ray: c0a4cc28254104dc62c0d6633176c511
x-cache: HIT
x-age: 49687
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
serv.fastupload.io/www/delivery/asyncspc.php?zones=1&prefix=revive-0-&loc=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile
200 OK 517 B URL HTTP/2 serv.fastupload.io/www/delivery/asyncspc.php?zones=1&prefix=revive-0-&loc=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile
IP
File type JSON data\012- HTML document, ASCII text, with very long lines (871), with no line terminators
Hash 361f926ad78d1b72001dcc7d11a69d8f
991bb6d0dc5865ee642eab2ef994ffa726e68054
946b1759851163d352510ee6691d2fdd61b298940bf691daa9a504a0b7944eec
GET /www/delivery/asyncspc.php?zones=1&prefix=revive-0-&loc=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile HTTP/1.1
Host: serv.fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Cookie: _ga4=b110e2ad-b0b9-4215-9178-447d1aff633a; _clck=3saw07|1|f8o|0; sc_is_visitor_unique=rx12746718.1675018347.5EB813270D284F5842E9AFC491D031BB.1.1.1.1.1.1.1.1.1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.27
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
expires: 0
p3p: CP="CUR ADM OUR NOR STA NID"
set-cookie: OAID=01000111010001000101000001010010; expires=Mon, 29-Jan-2024 18:52:18 GMT; Max-Age=31536000; path=/; secure; SameSite=none
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
content-type: application/json
content-length: 517
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 18:52:18 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/sLl8T9V3y3s
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/sLl8T9V3y3s
IP
Hash f31f6847240b9771c7c44b5ae6630e39
91609600b62a1b5908a977b8a2ceabda696f0898
9dd63b1edcbfadd8f3cba23a2564ea869999b8aa371add98cf2eb74df2911192
POST /s/gts1d4/sLl8T9V3y3s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.statcounter.com/t.php?sc_project=12746718&u1=5EB813270D284F5842E9AFC491D031BB&java=1&security=68e22376&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//fastupload.io/en/3DGxcCZNokY8f9L/file&t=Fastupload.io%20%E2%80%94%20Download%20%E2%80%94%20DavinciRemover_Installer.rar&invisible=1&sc_rum_e_s=2929&sc_rum_e_e=2932&sc_rum_f_s=0&sc_rum_f_e=2921&get_config=true
200 OK 621 B URL HTTP/2 c.statcounter.com/t.php?sc_project=12746718&u1=5EB813270D284F5842E9AFC491D031BB&java=1&security=68e22376&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//fastupload.io/en/3DGxcCZNokY8f9L/file&t=Fastupload.io%20%E2%80%94%20Download%20%E2%80%94%20DavinciRemover_Installer.rar&invisible=1&sc_rum_e_s=2929&sc_rum_e_e=2932&sc_rum_f_s=0&sc_rum_f_e=2921&get_config=true
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 4234ff738fdcda2db0075029a5231a09
a7516d4c74c35a1444825cec5a5f8a0c04501c31
c55f68f24a4828f4bb19d3bdc787cebb8cecb43a323f47c89482cca0b92c8fb0
GET /t.php?sc_project=12746718&u1=5EB813270D284F5842E9AFC491D031BB&java=1&security=68e22376&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//fastupload.io/en/3DGxcCZNokY8f9L/file&t=Fastupload.io%20%E2%80%94%20Download%20%E2%80%94%20DavinciRemover_Installer.rar&invisible=1&sc_rum_e_s=2929&sc_rum_e_e=2932&sc_rum_f_s=0&sc_rum_f_e=2921&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12746718.1675018338.0; SameSite=None; Secure; Expires=Friday, 28-Jan-2028 13:52:18 EST; Path=/; Domain=.statcounter.com
is_visitor_unique=1675018338279769291; SameSite=None; Secure; Expires=Tuesday, 28-Jan-2025 13:52:18 EST; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79142a065d62b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
200 OK 21 kB URL HTTP/2 spl.zeotap.com/mapper.js?env=mWeb&eventType=pageview&zdid=1258
IP
File type Unicode text, UTF-8 text, with very long lines (50946), with LF, NEL line terminators
Hash 015445f195b18f35eee8facd070996df
f365b8baecfb106c7a4643cf3bb0cf4b2d852f97
fed01e192d8ae414e1b9705928e70ec285e5745f71c7bd94e8f2b32f894d5bfc
GET /mapper.js?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://fastupload.io
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79142a06de250afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=95146&f=2&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=95146&f=2&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=95146&f=2&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 18:52:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:7B64_36264064:01BB_63D6C062_23AC817:2A931
X-IPLB-Instance: 41595
www.clarity.ms/eus/s/0.7.1/clarity.js
200 OK 19 kB URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (56646)
Hash 66bec5cf19258f21f546dafbd8fbac89
9ad80a56291ca677990c37c376631d3ff74e0234
fe223664aef7e529023cbb3ee1920a439abcd1f70bd6ce9554a6fb6ca9e565fb
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d928dd7500799e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0Ab/WYwAAAAClm0i/0CNqTrbbVe0XITw7RlJBMjMxMDUwNDE3MDQ3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0YcDWYwAAAACvL1XPazi/Q6Er2z4JYAxGQ1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Sun, 29 Jan 2023 18:52:16 GMT
X-Firefox-Spdy: h2
api.tagdeliver.com/v1/sy/tag/log
200 OK 0 B URL HTTP/2 api.tagdeliver.com/v1/sy/tag/log
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/sy/tag/log HTTP/1.1
Host: api.tagdeliver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://fastupload.io/
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://fastupload.io
access-control-allow-headers: X-Requested-With, Content-Type, Accept, Origin, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
access-control-expose-headers: X-CI-Permissions, X-CI-Token
x-cloud-trace-context: 2ab43bd1a3d181b5c9a9e68422dd8268
date: Sun, 29 Jan 2023 18:52:18 GMT
server: Google Frontend
content-length: 0
X-Firefox-Spdy: h2
api.tagdeliver.com/v1/sy/user_consent?uid=18028&page=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile
200 OK 113 B URL HTTP/2 api.tagdeliver.com/v1/sy/user_consent?uid=18028&page=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash a018d0a4a107e068775192d8c8f2903a
64900869b35e60ae43bfa8beff63d42a41ce5775
3474b62ff1189848f97993afbf27f38cb2317daabe7615b1b5bb2bae22d4247e
GET /v1/sy/user_consent?uid=18028&page=https%3A%2F%2Ffastupload.io%2Fen%2F3DGxcCZNokY8f9L%2Ffile HTTP/1.1
Host: api.tagdeliver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-origin: https://fastupload.io
access-control-allow-headers: X-Requested-With, Content-Type, Accept, Origin, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
access-control-expose-headers: X-CI-Permissions, X-CI-Token
content-encoding: gzip
x-cloud-trace-context: 9487a22b88162c8245e61c6da0b02e9b
date: Sun, 29 Jan 2023 18:52:18 GMT
server: Google Frontend
cache-control: private
content-length: 113
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 8ca4549b8b3f32efdde32359d5a95a9a
6c55579af30b36d2e25b3ba211ca4b19fac7a07d
1ada7ee1ab5433d4824e58246188de7c8c482b78444e755483a282b2580027f0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 18:52:18 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 08:45:25 GMT
Expires: Sun, 05 Feb 2023 08:45:24 GMT
Etag: "6c55579af30b36d2e25b3ba211ca4b19fac7a07d"
Cache-Control: max-age=567785,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79142a078926b505-OSL
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
200 OK 184 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP
File type ASCII text, with no line terminators
Hash dd374577925c0ff0ce531bc43ddf3125
1cb3b03edd83934da020d87513da07599a25aee0
06b3e678890c5a0ecfab1bde5123e76e99734cadeee865031caf0eb0d3950d3a
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://fastupload.io
set-cookie: zc=103664a3-3291-448a-5b49-8250630c622a; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%02~zK%CC%9C%17%D0%3B%BE%C0%C9%2F%F8%9E%DB%BC%CEiI%FF4%11W%0B3%18%96%95%0C%CA~%F3%83%3C%FA%AF%00%CE%CD%C2B%D58%CA%EB%84%C3%07%8FHp%90%3C6%60%FA%22%DDHx%2C%1B%99%92%05%9C%CA-%08-%12%F9%14%A0%A8m%2B.%91%B6%2F%E8; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79142a07cf450afe-OSL
content-encoding: br
X-Firefox-Spdy: h2
p.cpx.to/p/12773/px.js
200 OK 2.0 kB IP
File type ASCII text, with very long lines (1990), with no line terminators
Hash f439aad0d08f6305aa19a339a948084d
e01bb3707cab1c39dd4e78efeea438902182c3e0
d2581f2491c811e1e503e840938053e668884798e5dcc5eb43de83d146a7ed89
GET /p/12773/px.js HTTP/1.1
Host: p.cpx.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=2419200, public
Content-Type: application/javascript; charset=UTF-8
Date: Sun, 29 Jan 2023 18:52:18 GMT
Content-Length: 1990
Connection: keep-alive
a.teads.tv/analytics/tag.js
200 OK 3.4 kB URL HTTP/2 a.teads.tv/analytics/tag.js
IP
File type ASCII text, with very long lines (4822)
Hash 6ddfb3a828a563a7719081ff9aeedaba
80286455b7c85311df5f997714b83380ac02fd6d
826524e59a21d4190f923f804a17db1513e1ee3cb4a5ed12f3bb6a5b4f370835
GET /analytics/tag.js HTTP/1.1
Host: a.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +hi3J8gLh7odTbzzwPTTi1cNLRiMIMeCbLwhFS3fdhvnkPc6F/KidF+aylAlaVgqP4umQC5X3TY=
x-amz-request-id: VYTSDGA8QVA7F7Y0
last-modified: Wed, 02 Nov 2022 09:38:15 GMT
etag: "6ddfb3a828a563a7719081ff9aeedaba"
x-amz-server-side-encryption: AES256
x-amz-version-id: Y6qsPmt0o95KDo3Ibo2euzqSnxQebNV8
accept-ranges: bytes
content-type: text/javascript;charset=utf-8
content-length: 3391
cache-control: private, max-age=3600
date: Sun, 29 Jan 2023 18:52:18 GMT
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Date: Sun, 29 Jan 2023 02:21:24 GMT
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wTPDof54EZyTUKGFwgsXY1UQBEtgQ0rGuZeNW54GUb9y1xBczIDXkA==
Age: 59454
ced.sascdn.com/tag/1097/smart.js
200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash ab5d7bcba6f9bbe86e71d3f75061efc8
bf137eb7dc8285e29d986f6b8f3272f6f979bc0e
a973cdadddcd9ba18f6e262f602d39e091090e4a94ac036b3fc4f7428e5b84e6
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Sun, 29 Jan 2023 20:52:18 GMT
Date: Sun, 29 Jan 2023 18:52:18 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash aadfbc8f576d94ec450a29424aaae366
08a5718386f99984658ab778d9d13538c8945de7
0e5e81a010f6df4591da74a157eba03589e0fc00ecaf982cc55af035c4be3433
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4934
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Last-Modified: Sun, 29 Jan 2023 17:30:05 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 17:09:34 GMT
expires: Tue, 23 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
age: 524564
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash c702f00c10d097bd154b92959b685a24
218ad527fc1bf7c9d74c0b9df17fe919107bffd7
4b3a421a71e9eb8011df87a1b7ac48eb5cf258147bfb1e3ff9cc6e37b8a949ff
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 865
Cache-Control: max-age=148651
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Etag: "63d65eac-139"
Expires: Tue, 31 Jan 2023 12:09:49 GMT
Last-Modified: Sun, 29 Jan 2023 11:55:24 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 313
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?test_adblock=true
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?test_adblock=true
IP
File type ASCII text, with very long lines (3649)
Hash b2f97ac61f4427d5d2a604e0a6abb6e2
e16f6ce4f80a5561d6e12177982f9f03f8b0c55a
406261653364222bee78393dfc1bb34fe1e329a2146a6211de4bea3f7985ee85
GET /pagead/js/adsbygoogle.js?test_adblock=true HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 29 Jan 2023 18:52:18 GMT
expires: Sun, 29 Jan 2023 18:52:18 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7719145799213657455
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50006
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&RedC=c.clarity.ms&MXFR=3B056ACBD9AC601918827863DDAC6EF0
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3B056ACBD9AC601918827863DDAC6EF0; domain=.clarity.ms; expires=Fri, 23-Feb-2024 18:52:19 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Sun, 29 Jan 2023 18:52:18 GMT
content-length: 0
X-Firefox-Spdy: h2
cdn.purpleads.io/video-agent.js?publisherId=7ff576dcd94aa14e0181dcbc85f8218d:46d3f64cde4bd051d51a8b4b94b7427f9312c69069448070124c8498dc99efdfc100b4566920a126c3fe6bfffb7a69ad542a08de2a1137ba17e63be0f77e21d7
200 OK 16 kB URL HTTP/2 cdn.purpleads.io/video-agent.js?publisherId=7ff576dcd94aa14e0181dcbc85f8218d:46d3f64cde4bd051d51a8b4b94b7427f9312c69069448070124c8498dc99efdfc100b4566920a126c3fe6bfffb7a69ad542a08de2a1137ba17e63be0f77e21d7
IP
File type Unicode text, UTF-8 text, with very long lines (46539), with no line terminators
Hash 21d8c1af95ef899fdd41e7c655a8a8ff
ada4811f05f926093a0e3ed76d0f57eda0b5e087
d134e761ac1f89bd0e118cd5c9f05d4bc32e04ae6119411cdef6caf44918e9c2
GET /video-agent.js?publisherId=7ff576dcd94aa14e0181dcbc85f8218d:46d3f64cde4bd051d51a8b4b94b7427f9312c69069448070124c8498dc99efdfc100b4566920a126c3fe6bfffb7a69ad542a08de2a1137ba17e63be0f77e21d7 HTTP/1.1
Host: cdn.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 15835
last-modified: Tue, 20 Dec 2022 09:10:30 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sun, 29 Jan 2023 10:15:50 GMT
etag: "21d8c1af95ef899fdd41e7c655a8a8ff"
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mp0CPtWGqlUvmIhlYy86VAEYlH0_IC9bavTiUfKySQH7TZD2VxLMTg==
age: 30990
X-Firefox-Spdy: h2
api.purpleads.io/x/init?ts=1675018347029
200 OK 87 B URL HTTP/2 api.purpleads.io/x/init?ts=1675018347029
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 90db717f763f44a4d53a923624dba70d
8a899ebc7f03578187b1fb34b3f51c6be29413a5
4602b3a69c6d520510f4a5afef94bd13047ffdea1840514099a6547f91efc1f6
GET /x/init?ts=1675018347029 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Content-Type: application/json
x-purpleads-version: 2.5.1
x-request-url: aHR0cHM6Ly9mYXN0dXBsb2FkLmlvL2VuLzNER3hjQ1pOb2tZOGY5TC9maWxl
Authorization: Bearer ddc74de2e23af63f23a7ff54827cc584:9813b8faf0f782b412a34c40841ee5bab19a6c87f1efdf6d4bf112317433fcbbfa78da002c92e82ce3b8485a75e84526c53f0ac0cf2078913e42499e9646c20c
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
content-type: application/json; charset=utf-8
content-length: 87
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: 4396d1c7-2d2f-4b80-981f-844d4e7d5571
etag: W/"57-iomevH8DV4GHsfs0s/Uca+KUE6U"
vary: Accept-Encoding
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=95146&f=1&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=95146&f=1&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=95146&f=1&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 29 Jan 2023 18:52:19 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:E69B_36264064:01BB_63D6C062_23955F6:0D8E
X-IPLB-Instance: 38439
cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js
200 OK 86 kB URL HTTP/2 cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js
IP
File type ASCII text, with very long lines (65020)
Hash 700d1de734b4979c4c3059b613e9d7b1
0a7d2ad10cba258cfc2e0376240852a4ae5f4012
2031fbefbf1b070dcf0ebb746438e628fdd59c7daac6952000ef9056b7294eb6
GET /prebid-video-7.22.0-2022-10-26.gz.js HTTP/1.1
Host: cdn.psdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
content-encoding: gzip
content-length: 86507
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 13:24:00 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "700d1de734b4979c4c3059b613e9d7b1"
cache-control: max-age=31536000
x-amz-request-id: tx0000000000001178f65f7-00635936fa-34c6886a-nyc3b
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1675018339.dop022.sk1.t,1675018339.cds212.sk1.hn,1675018339.cds237.sk1.c
X-Firefox-Spdy: h2
cdn.psdn.xyz/prebid-2023-01-25.js
200 OK 120 kB URL HTTP/2 cdn.psdn.xyz/prebid-2023-01-25.js
IP
File type ASCII text, with very long lines (64850)
Size 120 kB (119462 bytes)
Hash a77d424b9b6e1c7570d6a0db5b34b30f
4a99df09bfd37946861ca046aacbaf7e56cc528f
2c04eba6e2c5bf858a574c8ba092b3c82a4488db0f8986375875174dcbd67389
GET /prebid-2023-01-25.js HTTP/1.1
Host: cdn.psdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
content-encoding: gzip
content-length: 119462
content-type: application/javascript
last-modified: Wed, 25 Jan 2023 08:39:03 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "a77d424b9b6e1c7570d6a0db5b34b30f"
cache-control: max-age=31536000
x-amz-request-id: tx00000000000027ce145bc-0063d0f211-34c5ae65-nyc3b
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1675018339.dop022.sk1.t,1675018339.cds212.sk1.hn,1675018339.cds263.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/lPZh5NpGbYw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/lPZh5NpGbYw
IP
Hash f5890798683f58268081583c1f22196a
b6d4a6eb614f7fb6e8f5d9b42fec906511814b3b
b796520e63bad4926c6f619b2219c1501aef001b33093faae16ac651d34f96e4
POST /s/gts1p5/lPZh5NpGbYw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
secure.quantserve.com/quant.js
200 OK 12 kB URL HTTP/2 secure.quantserve.com/quant.js
IP
File type ASCII text, with very long lines (29479)
Hash 415fe72419dfbd70bdca866c94f5ea54
0b16e3da43baaa8e6502fced1082d1cc0850751f
5af5d1bc7de2ab2046bb73bf67d185d9ff50bd281f9c1a5dbed13c25c8581840
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "OVi4z6W4qM+KoQEZlRgh5w=="
expires: Sun, 05 Feb 2023 18:52:18 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258
302 Found 447 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 385cb0755cea02303a2fb831a23a426f
4433d577b403aa57492e23894cdc53dad9a5797c
a78679652d4bb91a9ef87ba500d061869cbb3c0cc8a8b45fb55145cf358cfe07
GET /pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258&google_tc=
date: Sun, 29 Jan 2023 18:52:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 447
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 19:07:19 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP
File type ASCII text, with very long lines (2846)
Size 126 kB (126544 bytes)
Hash 08170b094847c66f3b89d5a577c739ea
ea3f55dae751aaa5fb5b0fd0d74354c26d76dccd
598ef4c4803f256ff79120afe545bc162d0d84bc1224acff09a1dcd2f0bd9b35
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 126544
date: Sun, 29 Jan 2023 18:52:19 GMT
expires: Sun, 29 Jan 2023 18:52:19 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&RedC=c.clarity.ms&MXFR=3B056ACBD9AC601918827863DDAC6EF0
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&RedC=c.clarity.ms&MXFR=3B056ACBD9AC601918827863DDAC6EF0
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&RedC=c.clarity.ms&MXFR=3B056ACBD9AC601918827863DDAC6EF0 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&MUID=082DFC7D65AE6B5D3F9FEED5645B6A7E
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=082DFC7D65AE6B5D3F9FEED5645B6A7E; domain=c.bing.com; expires=Fri, 23-Feb-2024 18:52:19 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6BB79E42A6574EAEA54E714B77077756 Ref B: OSL30EDGE0109 Ref C: 2023-01-29T18:52:19Z
date: Sun, 29 Jan 2023 18:52:18 GMT
content-length: 0
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 17702
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
date: Sun, 29 Jan 2023 18:52:18 GMT
X-Firefox-Spdy: h2
px.ss-platform.com/abd/?id=229026f62f2905ebe59575c4b28d8772&detect=notfound
200 OK 0 B URL HTTP/2 px.ss-platform.com/abd/?id=229026f62f2905ebe59575c4b28d8772&detect=notfound
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /abd/?id=229026f62f2905ebe59575c4b28d8772&detect=notfound HTTP/1.1
Host: px.ss-platform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
content-type: image/jpeg
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
x-robots-tag: noindex, nofollow, noarchive, nosnippet
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=drN90TSgBw2mTUil2r2VbDjwYX%2FKVEK23rWbad%2BvYzL1tfag8QE7MOU8nzwToD2iu1b1aUU4%2BGF%2F3FgaDOoAHgrQv057Y2FXPKCZWUqeF4uKVPtRFIDbTMb46tAETPO9eQNwIvU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79142a0e3c9ab509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&MUID=082DFC7D65AE6B5D3F9FEED5645B6A7E
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&MUID=082DFC7D65AE6B5D3F9FEED5645B6A7E
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=A1F32ECB7DED47EAB940EA09D4DB00B0&MUID=082DFC7D65AE6B5D3F9FEED5645B6A7E HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Sun, 29-Jan-2023 19:02:19 GMT; path=/; SameSite=None; Secure;
date: Sun, 29 Jan 2023 18:52:18 GMT
content-length: 42
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11163da0a9cc4caa58468b7538fe942f
b35e184afc6413e35a07b56b1370656875942dec
34841bbe495f8bea279be5c41eefbf05c17b47f23becc518cf8832dce0fbac13
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34841BBE495F8BEA279BE5C41EEFBF05C17B47F23BECC518CF8832DCE0FBAC13"
Last-Modified: Sat, 28 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6935
Expires: Sun, 29 Jan 2023 20:47:54 GMT
Date: Sun, 29 Jan 2023 18:52:19 GMT
Connection: keep-alive
rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
200 OK 948 B URL HTTP/2 rules.quantcount.com/rules-p-6Fv0cGNfc_bw8.js
IP
Hash 4d7f108e0c23f62192c0a406d83bbd4e
6db7fc2771147767845003eaeb743fefb678fdab
f7adbe1f58403260c28b437f6be5df8eb7bd8ed57fe4ed4deee35ecd77e1a089
GET /rules-p-6Fv0cGNfc_bw8.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 13 Oct 2022 22:35:53 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 29 Jan 2023 18:38:12 GMT
cache-control: max-age=3600
etag: W/"1f431dc94c1f033d6666f0fe637e2d7b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KceTpj16z8AizUhqnzxdzmhBZ3ZnRhZh1KUzamM9IpufR9Pbv9rFpQ==
age: 848
X-Firefox-Spdy: h2
id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
200 43 B URL HTTP/1.1 id5-sync.com/i/12/9.gif?gdpr=true&gdpr_consent=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /i/12/9.gif?gdpr=true&gdpr_consent= HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Sun, 29-Jan-2023 18:57:19 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Sun, 29 Jan 2023 18:52:19 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.StartInit~1&entry=c~Idfs.Rtus.147.Events.SyncframeDropped~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/lPZh5NpGbYw
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/lPZh5NpGbYw
IP
Hash f5890798683f58268081583c1f22196a
b6d4a6eb614f7fb6e8f5d9b42fec906511814b3b
b796520e63bad4926c6f619b2219c1501aef001b33093faae16ac651d34f96e4
POST /s/gts1p5/lPZh5NpGbYw HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 18:52:19 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6bab2540b2a5bdc9d88f9d5f7da3531f
d043642fbb45c3c7110216deb7f4aa8e58f49f3f
8eca96a047ac3baff970cd6a37accba530d17ec3837c1f5e11c375a2baad79b3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 18:52:19 GMT
Last-Modified: Sun, 29 Jan 2023 17:06:46 GMT
Server: ECS (nyb/1D1D)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UcQLttzV7O7suxf1hd7yfitx20kg2ZjZV9fOHDn3eEuSgHapGBxZKg==
Age: 6333
adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
200 OK 20 B URL HTTP/1.1 adtrack.adleadevent.com/notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7
IP
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /notifyme.php?st=a96081b6-db78-48c4-9f82-b93e316fb1f7 HTTP/1.1
Host: adtrack.adleadevent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://fastupload.io
Cache-Control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
Content-Encoding: gzip
Content-Type: application/x-javascript
Date: Sun, 29 Jan 2023 18:52:20 GMT
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sun, 29 Jan 2023 18:52:20 GMT
Pragma: no-cache
Server: Apache
Vary: Accept-Encoding
Content-Length: 20
Connection: keep-alive
csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
200 OK 43 B URL HTTP/2 csm.fr.eu.criteo.net/iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /iev?entry=c~Idfs.Rtus.147.Events.InitiateFetch~1 HTTP/1.1
Host: csm.fr.eu.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
pragma: no-cache
server: Finatra
expires: 0
content-type: image/gif
cache-control: no-cache, no-store, must-revalidate
content-length: 43
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258&google_error=3
200 OK 95 B URL HTTP/2 mwzeom.zeotap.com/mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258&google_error=3
IP
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /mw?google_gid=&google_cver=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=103664a3-3291-448a-5b49-8250630c622a&reqId=e8f2e8db-6d47-4632-79f4-a0fe8fca4ad5&zdid=1258&google_error=3 HTTP/1.1
Host: mwzeom.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Connection: keep-alive
Cookie: zc=103664a3-3291-448a-5b49-8250630c622a; zsc=%02~zK%CC%9C%17%D0%3B%BE%C0%C9%2F%F8%9E%DB%BC%CEiI%FF4%11W%0B3%18%96%95%0C%CA~%F3%83%3C%FA%AF%00%CE%CD%C2B%D58%CA%EB%84%C3%07%8FHp%90%3C6%60%FA%22%DDHx%2C%1B%99%92%05%9C%CA-%08-%12%F9%14%A0%A8m%2B.%91%B6%2F%E8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:20 GMT
content-type: image/png
content-length: 95
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://fastupload.io
set-cookie: zc=103664a3-3291-448a-5b49-8250630c622a; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 79142a11395a0afe-OSL
X-Firefox-Spdy: h2
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22fastupload.io%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675018348337%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-esisfmab7i330r4mwg85%22%7D
200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22fastupload.io%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675018348337%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-esisfmab7i330r4mwg85%22%7D
IP
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226Fv0cGNfc_bw8%22%2C%22domain%22%3A%22fastupload.io%22%2C%22publisher%22%3A%22themoneytizer.com%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.42%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22zqyqLXlGhIEyBziKWX6tNg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1675018348337%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-esisfmab7i330r4mwg85%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:20 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
api.tagdeliver.com/v1/sy/tag/log
200 OK 0 B URL HTTP/2 api.tagdeliver.com/v1/sy/tag/log
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v1/sy/tag/log HTTP/1.1
Host: api.tagdeliver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Content-Type: application/json
Origin: https://fastupload.io
Content-Length: 220
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
access-control-allow-origin: https://fastupload.io
access-control-allow-headers: X-Requested-With, Content-Type, Accept, Origin, Authorization
access-control-allow-methods: GET, POST, PUT, DELETE, PATCH, OPTIONS
access-control-expose-headers: X-CI-Permissions, X-CI-Token
x-cloud-trace-context: 89023daa73b3674aa48b579623dd4c2c
date: Sun, 29 Jan 2023 18:52:20 GMT
server: Google Frontend
content-length: 0
X-Firefox-Spdy: h2
d.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 51904
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
date: Sun, 29 Jan 2023 18:52:20 GMT
X-Firefox-Spdy: h2
api.purpleads.io/x/init?ts=1675018347029
200 OK 0 B URL HTTP/2 api.purpleads.io/x/init?ts=1675018347029
IP
OPTIONS /x/init?ts=1675018347029 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://fastupload.io/
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
access-control-allow-origin: https://fastupload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: 9a7a0e62-2317-4a84-b591-21d196516e0d
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=1
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=95146&formatId=1
IP
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=95146&formatId=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675429386
server: CDN77-Turbo
x-77-nzt: AblMCQ14BJ//2PQCAA
x-77-nzt-ray: c0a4cc28254104dc62c0d6635830503b
x-cache: HIT
x-age: 193752
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
200 OK 0 B URL HTTP/2 cmp.quantcast.com/GVL-v2/vendor-list-trimmed-v1.json
IP
GET /GVL-v2/vendor-list-trimmed-v1.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 29 Jan 2023 03:00:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 29 Jan 2023 03:00:34 GMT
etag: W/"721c912bad0ae28ec9367496fc725a0d"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RkmOPKIOmvtxWRI8FQQbigNTBA_At8p9oJgAoTsK5OONqWcgfnfPJQ==
age: 57104
X-Firefox-Spdy: h2
fastupload.io/en/3DGxcCZNokY8f9L/file
200 OK 0 B URL HTTP/2 fastupload.io/en/3DGxcCZNokY8f9L/file
IP
GET /en/3DGxcCZNokY8f9L/file HTTP/1.1
Host: fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlNyZFY3d04vTVN4V20zYnB3QXo1dHc9PSIsInZhbHVlIjoiODBDYkJXVHRudUxIeHk0ZlluU3ZSM2dkL3lsSXB5MFRlY0dtN2VybUJrTURUZkF2TU5JMGxrcmFqclJseWlOMTljWTRpdFhzTEtaYTJpdTNVSEV4S2JmYnJ3Ny9rUytJNVhwQWJ1ZGRSRi8yb01PQlJXOUM5S0xVZ3ZjQkIraE0iLCJtYWMiOiJlNjEwZWQxN2EzNjk5ZDRlNGI2MzU3MTFlYTVkNDE2MGUxY2Q2MTZlYTE1NzA4YjVkOTc0MDljNmIyOGQzNzRhIiwidGFnIjoiIn0%3D; filebob_user_session=eyJpdiI6IkdoVHUxTnpFRE1wRXdPbmwyRTBnVXc9PSIsInZhbHVlIjoiUlhTUFNBTmpsRDlydS9ueURUMlVKRTBBaFEvTnQ4eEpvMmNyWWlqOEZuK1JvS1E4ZFNseWs3VkFmbC9HWjVSa3BoVDdjVkRqdTNuT2gzUExVVjlKeVRVT1YvRlV0QlNLUlZWZzUvYzc3RkRGOHNMN0VhTUVVT2hlMk9jU2hPalMiLCJtYWMiOiIyYTdmNGI3NTRkYzM3YmM0OWUzODQyZWExYTU4NzAwNTQxM2U3YjNlZTY0ZTIyNjRlOTRiZDdjMTQxMDBlNTlhIiwidGFnIjoiIn0%3D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/html; charset=UTF-8
cf-ray: 791429f9bb5db521-OSL
cache-control: no-cache, private
strict-transport-security: max-age=0; preload
vary: Accept-Encoding
cf-cache-status: DYNAMIC
content-security-policy: frame-ancestors 'self';
set-cookie: XSRF-TOKEN=eyJpdiI6ImQwZEtlS21NQmwrRGdQOGhITk1Rbnc9PSIsInZhbHVlIjoiNERGeTgrVFBvZFRJeTc4ZlBpSjZkRWRaZ0lUdlRuajhPRFhrOHl2dGplaTFaZmp3QjB5M1Zzb0RhVmlNbDNNQ1YxRk9lZDJIUVErN0EzTlhjcWFaejdzZ045L1krUXlqSWRwRGYzZDVtUTUrYTk1eEZBYVdNMkFZN3NjTXExMWQiLCJtYWMiOiIzZjc0MjVlOTRkNmE5NjI0ZTY5NmQzYTU5OGVhODljNmI4YjgwNWJhNGE5ZTFmNGU5NTEwNjZjYjFmNDBkYWI3IiwidGFnIjoiIn0%3D; expires=Sun, 29 Jan 2023 20:52:16 GMT; Max-Age=7200; path=/; samesite=lax; secure
filebob_user_session=eyJpdiI6Ii9kbkhiZWdBeWtTUHZYQ2k3L1VWR1E9PSIsInZhbHVlIjoiTTRiNW15MHUxTFU5em80N2FxY215RkV0RFJFS2lCTmFxSWE1Qm1nNUUyOHg0ZGIzRFU2MnY1cmxIeWRBWHI3elV0dHgxUHQ2VGcyYnhLb0J3Y3JrcW5zejcrdFhvLzdEV3ZOUy9pSTBOYzRiSXViV0o3RWpVMm91cEJrekprbEUiLCJtYWMiOiJmYzc0ZmFjNWMxNzcwNWIwYzIxNWYzYWY3ZDE2ZjRiMGI4NGM5YWJkZmYxNmRkNWQyN2M0MzkxM2JmNzBjYjIzIiwidGFnIjoiIn0%3D; expires=Sun, 29 Jan 2023 20:52:16 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-litespeed-cache: miss
x-powered-by: PHP/8.1.14
x-turbo-charged-by: LiteSpeed
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SbBukA9WZFyDlVX8dVKEnrjokmdcIFdEtQEcfeXFDVgzSEuyX3U6kCEjwFSm%2B%2FVSSmsL8L20y4ZE2l78vAY%2FBgPoRELFuco68xLogl8M5yL6u274I8yU4HqA%2Fc2r%2BDo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP
GET /css2?family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 18:52:17 GMT
date: Sun, 29 Jan 2023 18:52:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 29 Jan 2023 06:46:20 GMT
cache-control: max-age=172800
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tffKx9prLrQHeqL6wkS_t9E3RLhXZZ2kyLVnwOhqkhjvuKOB1ZGfEw==
age: 46467
X-Firefox-Spdy: h2
cdn.tagdeliver.com/cipt/18028.js
200 OK 0 B URL HTTP/2 cdn.tagdeliver.com/cipt/18028.js
IP
ASN #60068 Datacamp Limited
GET /cipt/18028.js HTTP/1.1
Host: cdn.tagdeliver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Wed, 25 Jan 2023 20:23:25 GMT
x-rgw-object-type: Normal
etag: W/"c25e39d7b124212c2a9cd1e8e8d93bcf"
cache-control: max-age=900,s-maxage=31536000
x-amz-request-id: tx00000000000004c9fe9f4-0063d1ba8b-21d29c43-nyc3a
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-accel-expires: @1706225163
server: CDN77-Turbo
x-77-nzt: AblMCRRFjMz/1gUFAA
x-77-nzt-ray: af58563057168a3561c0d663234b3021
x-cache: HIT
x-age: 329174
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=1
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=1
IP
ASN #60068 Datacamp Limited
GET /s/gen.js?type=1 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675400649
server: CDN77-Turbo
x-77-nzt: AblMCQ2G8P7/GWUDAA
x-77-nzt-ray: c0a4cc28254104dc62c0d66325b8443b
x-cache: HIT
x-age: 222489
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/google-atp-list.json
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/google-atp-list.json
IP
GET /tcfv2/google-atp-list.json HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 3000
cache-control: max-age=172800
date: Sun, 29 Jan 2023 03:00:30 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: true
last-modified: Sun, 29 Jan 2023 03:00:26 GMT
etag: W/"1dbfd79d4ea7f69c0c42a2f6065532e7"
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vaAUuS8YDaCAy-nUsQTgvjh7xyTEDtddvF7ZRQ13vydmR4HG1BysCQ==
age: 57110
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fastupload.io/
Origin: https://fastupload.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:19 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
access-control-allow-credentials: true
access-control-allow-origin: https://fastupload.io
server-processing-duration-in-ticks: 663619
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Almarai:wght@300;400;700&display=swap
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Almarai:wght@300;400;700&display=swap
IP
GET /css2?family=Almarai:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 18:52:17 GMT
date: Sun, 29 Jan 2023 18:52:17 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 791429ff5fc01bfa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.unblockia.com/h.js
200 OK 0 B IP
GET /h.js HTTP/1.1
Host: cdn.unblockia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 26 Jan 2023 11:26:31 GMT
x-amz-meta-codebuild-content-sha256: 2132d7e58c7c36ee71eca9cd6aabfcfa3f24dfa6e16d5257110c4b567c335eef
x-amz-version-id: sOaeUhiHU1Zn8Vjl9BBcjj2clPo2dTso
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:eu-west-1:987257285531:build/unblockia-loader-codebuild-project:80710608-88b1-4aba-a9dd-473ce4162976
x-amz-meta-codebuild-content-md5: 94f9fd57a58c794e2ce7ef76a25de736
server: AmazonS3
content-encoding: br
date: Sat, 28 Jan 2023 22:32:16 GMT
etag: W/"04e0f1cdaa00375a296ef7771d43fb16"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KLXk02oC6ZORBZaBTcipdebWuRHnwpJrlEHJl6U-pPlC56JPHyH2_Q==
age: 73202
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
test.cmp.quantcast.com/GVL-v2/cmp-list.json
200 OK 0 B URL HTTP/2 test.cmp.quantcast.com/GVL-v2/cmp-list.json
IP
GET /GVL-v2/cmp-list.json HTTP/1.1
Host: test.cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fastupload.io
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
access-control-max-age: 86400
cache-control: max-age=172800
date: Sun, 29 Jan 2023 03:00:37 GMT
last-modified: Sat, 14 Jan 2023 19:52:29 GMT
etag: W/"16f9ea1cc7a71cfed1d4482a599ccd27"
x-amz-server-side-encryption: AES256
x-amz-version-id: POuYi4.QbUYhHN4p2tbIMulQrwaf1j8L
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ka0OCCD3iy1ghcBn5iUuBFIEeJLsRP7YHArBK6dxSEyRnQt1eRJqNw==
age: 57103
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2ui-en.js
IP
GET /tcfv2/42/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 604800
last-modified: Tue, 05 Jul 2022 18:40:26 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Sun, 29 Jan 2023 08:34:39 GMT
cache-control: max-age=172800
etag: W/"24932b3e61742029985961c24d35dbb7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dq4_It-QoTfgTx_OEzP3AMBARrjBd9Bl58pCjKObkiaIulVLkS2ujA==
age: 37086
X-Firefox-Spdy: h2
fastupload.io/en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar
302 Found 0 B URL HTTP/2 fastupload.io/en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar
IP
GET /en/download/vxkrzoyl2mbor/3dgxccznoky8f9l/davinciremover_installer.rar HTTP/1.1
Host: fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 29 Jan 2023 18:52:16 GMT
content-type: text/html; charset=UTF-8
location: https://fastupload.io/en/3DGxcCZNokY8f9L/file
cf-ray: 791429f73f1eb521-OSL
cache-control: no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=0; preload
vary: Accept-Encoding
cf-cache-status: BYPASS
content-security-policy: frame-ancestors 'self';
set-cookie: XSRF-TOKEN=eyJpdiI6IlNyZFY3d04vTVN4V20zYnB3QXo1dHc9PSIsInZhbHVlIjoiODBDYkJXVHRudUxIeHk0ZlluU3ZSM2dkL3lsSXB5MFRlY0dtN2VybUJrTURUZkF2TU5JMGxrcmFqclJseWlOMTljWTRpdFhzTEtaYTJpdTNVSEV4S2JmYnJ3Ny9rUytJNVhwQWJ1ZGRSRi8yb01PQlJXOUM5S0xVZ3ZjQkIraE0iLCJtYWMiOiJlNjEwZWQxN2EzNjk5ZDRlNGI2MzU3MTFlYTVkNDE2MGUxY2Q2MTZlYTE1NzA4YjVkOTc0MDljNmIyOGQzNzRhIiwidGFnIjoiIn0%3D; expires=Sun, 29 Jan 2023 20:52:16 GMT; Max-Age=7200; path=/; samesite=lax; secure
filebob_user_session=eyJpdiI6IkdoVHUxTnpFRE1wRXdPbmwyRTBnVXc9PSIsInZhbHVlIjoiUlhTUFNBTmpsRDlydS9ueURUMlVKRTBBaFEvTnQ4eEpvMmNyWWlqOEZuK1JvS1E4ZFNseWs3VkFmbC9HWjVSa3BoVDdjVkRqdTNuT2gzUExVVjlKeVRVT1YvRlV0QlNLUlZWZzUvYzc3RkRGOHNMN0VhTUVVT2hlMk9jU2hPalMiLCJtYWMiOiIyYTdmNGI3NTRkYzM3YmM0OWUzODQyZWExYTU4NzAwNTQxM2U3YjNlZTY0ZTIyNjRlOTRiZDdjMTQxMDBlNTlhIiwidGFnIjoiIn0%3D; expires=Sun, 29 Jan 2023 20:52:16 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-litespeed-cache: miss
x-powered-by: PHP/8.1.14
x-turbo-charged-by: LiteSpeed
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LoRSVazov8sGPpl9LHmdDth1uLP2eLQZi6Lb1b6BdFU93QGhLn1tZEDwjXxWAokLtx5OjdBFMfZNNMJSi%2FwuHNVDG0gVZ28rEz9kZeMQU9kn7zbD%2FXK8pPF64irTNBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 747514
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
IP
ASN #60068 Datacamp Limited
GET /moneybid7_28/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:18 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 21:13:00 GMT
expires: Sat, 28 Jan 2023 05:04:08 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1675055050
server: CDN77-Turbo
x-77-nzt: AblMCQ09Xbj/GMIAAA
x-77-nzt-ray: c0a4cc28254104dc62c0d663a6921914
x-cache: HIT
x-age: 49688
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
files.fastupload.io/abd.js
200 OK 0 B URL HTTP/2 files.fastupload.io/abd.js
IP
ASN #34989 ServeTheWorld AS
GET /abd.js HTTP/1.1
Host: files.fastupload.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fastupload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 18:52:17 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1148426
cdn-uid: d5f540b9-675a-454e-b5bb-0ec7e8dfae0e
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=2592000
etag: W/"63c783ff-1f6d"
last-modified: Wed, 18 Jan 2023 05:30:39 GMT
cdn-storageserver: SE-318
cdn-fileserver: 318
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 01/27/2023 20:03:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 84206850f3bcfa33ffa65d97fa69af88
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
172.67.70.228
23.36.77.24
178.250.0.162
104.22.24.87
93.184.220.29
34.252.124.99
185.76.9.21
18.184.235.146
188.114.97.1