280 B URL upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2ae4b6e54159e14913eb493e4671292f
85333d1eb58583d2cd986b5a2acfe9ad93e22994
4879625767c73f8659ec14814fc56b1e5f0c1ed216d632c683efd6cf8714edb9
GET /download/14800326/e4398404aa471d955ec6/dayzhack.zip HTTP/1.1
Host: upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 23 Sep 2023 12:00:19 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 280
Connection: keep-alive
Keep-Alive: timeout=5
Location: http://www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
0 B URL www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download/14800326/e4398404aa471d955ec6/dayzhack.zip HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Sat, 23 Sep 2023 12:00:19 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=5
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
Location: https://www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
405 B URL www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (405), with no line terminators
Hash 5de786ddc505af14f75644c258b912b6
bed4e9e2ef938b914a56d9a00b6fa7bedfcd211e
4e2350102710f3f36047ebb5de6cc7868e26c117a8375bbe2242daec2d04644d
GET /download/14800326/e4398404aa471d955ec6/dayzhack.zip HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 405
Connection: keep-alive
Keep-Alive: timeout=5
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
405 B URL www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (405), with no line terminators
Hash 5de786ddc505af14f75644c258b912b6
bed4e9e2ef938b914a56d9a00b6fa7bedfcd211e
4e2350102710f3f36047ebb5de6cc7868e26c117a8375bbe2242daec2d04644d
GET /download/14800326/e4398404aa471d955ec6/dayzhack.zip HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 405
Connection: keep-alive
Keep-Alive: timeout=5
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
GET www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
200 OK 9.0 kB URL User Request GET HTTP/1.1 www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
IP
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4526)
Hash d76deeef926b0be83b5b25e27873807d
ddebac56aa2efe986fd726666cd9db075f935148
46a8849b690ba56419b03df65ad8a91583948d23daa65617670308be780eb723
GET /files/14800326/dayzhack.zip.html?msg=sess_error HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/download/14800326/e4398404aa471d955ec6/dayzhack.zip
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 8988
Connection: keep-alive
Keep-Alive: timeout=20
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Sat, 23 Sep 2023 15:00:20 +0300
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1
P3P: CP="CAO PSA OUR"
Set-Cookie: lng=eng; expires=Sat, 21-Oct-2023 12:00:20 GMT; path=/; domain=www.upload.ee; secure; httponly; SameSite=None
Content-Encoding: gzip
GET www.upload.ee/static/ubr__style.css
200 OK 2.9 kB URL GET HTTP/1.1 www.upload.ee/static/ubr__style.css
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (591), with CRLF line terminators
Hash 3ba04e290212b44bcca8f10a60a4e879
a9b021c9019bdbb28250836039b2372a1b4d0f0f
f618b1c7be10c3203620d44c6f323be5b61ac10e67588d96cb69988b3173c7d2
GET /static/ubr__style.css HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: text/css
Last-Modified: Fri, 04 Oct 2013 10:02:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
ETag: W/"524e9233-25a0"
Expires: Sat, 30 Sep 2023 12:00:20 GMT
Cache-Control: max-age=604800
Vary: Accept-Encoding
Content-Encoding: gzip
471 B IP
Hash 94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 12:00:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET www.upload.ee/js/js__file_upload.js
200 OK 27 kB URL GET HTTP/1.1 www.upload.ee/js/js__file_upload.js
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (1853)
Hash 617f6d5a2744bc8c02e3d2c67544bd68
f57c068257c8bc85644d3be1e845c36506cd4625
62a3bb4d9d2b5a55b6d821a75d7b155fac47def3c241e4f1215d17e022f02658
GET /js/js__file_upload.js HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: application/javascript
Content-Length: 27351
Last-Modified: Thu, 07 May 2020 19:13:28 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "5eb45dd8-6ad7"
Expires: Sat, 30 Sep 2023 12:00:20 GMT
Cache-Control: max-age=604800
Vary: Accept-Encoding
Accept-Ranges: bytes
GET www.upload.ee/images/dl_.png
200 OK 1.9 kB URL GET HTTP/1.1 www.upload.ee/images/dl_.png
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type PNG image data, 154 x 32, 8-bit colormap, non-interlaced\012- data
Hash f3e8f284a4e98cdb91b6abfc142d94a4
fa9e618c2f56bea752ddd7e45a372c5539dadda9
2f13919383f54ca21e5b87f5644df8a875b99815c821dcbbabea352d854c6882
GET /images/dl_.png HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: image/png
Content-Length: 1900
Last-Modified: Thu, 01 Dec 2016 09:37:27 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "583fef57-76c"
Expires: Sat, 30 Sep 2023 12:00:20 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
GET www.upload.ee/images/arrow.gif
200 OK 59 B URL GET HTTP/1.1 www.upload.ee/images/arrow.gif
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 6 x 9\012- data
Hash 6675f814b94f13f91f1383707b250e36
31452650e8fce2095613a2010799bdb7548bdd51
061d01a0b85f948c6ec464870ecec4654c4bd2ff15cacda941bbbf16225ec411
GET /images/arrow.gif HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Cookie: lng=eng
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:20 GMT
Content-Type: image/gif
Content-Length: 59
Last-Modified: Sun, 14 Apr 2013 07:15:01 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "516a5775-3b"
Expires: Sat, 30 Sep 2023 12:00:20 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
GET www.googletagmanager.com/gtag/js?id=UA-6703115-1
200 OK 52 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-6703115-1
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (2213)
Hash 51e3e89fccef352d79723923f741c1f2
e56f91ff1cc45d7f43f09341ab4671f52d0119ee
ab7b40f146607e68f5b71cc624901551ed9f700f91ea6cea36a6ef067e2d4022
GET /gtag/js?id=UA-6703115-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 12:00:20 GMT
expires: Sat, 23 Sep 2023 12:00:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51732
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET du0pud0sdlmzf.cloudfront.net/?dupud=997369
200 OK 118 kB URL GET HTTP/2 du0pud0sdlmzf.cloudfront.net/?dupud=997369
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (15948)
Size 118 kB (117711 bytes)
Hash 294a5aeb8a0d83b2c43bac4ade4342f0
83d39700aada7236f6778b17741110afd9ab312c
186f20dd17589d830087a91089cc25daaa84464042b780430b432e7cf89b21b4
GET /?dupud=997369 HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 117711
date: Sat, 23 Sep 2023 11:20:59 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lMVPWw6aecSDfuTV-QVyVbTIH1q8mnT3q-f1EpIuFZDWbksByZSEKQ==
age: 2361
X-Firefox-Spdy: h2
471 B IP
Hash 94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 12:00:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET www.googletagmanager.com/gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c
200 OK 86 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (3034)
Hash 8577f98be492ab4ff9317c666c1cc23e
de6b91df19b8351e1b03f3bd8e58a409dcc6374a
d3ef1584c8a0ec40f377032f6b3816c8526b97251a728c0e1a7d8154eed38871
GET /gtag/js?id=G-LT9YQX0N49&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 12:00:20 GMT
expires: Sat, 23 Sep 2023 12:00:20 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85872
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET andhthrewdo.com/UGJDTjN/XSA9DgU1JzppYDAqGHVhMScZdTU1FQgLMSQNG2tjI2U6WjRfencEY1R6aEM5Bn5/FSMWIjpGI19yaFo+BCxzFSZfcmAAZExweh1gRDZzAnYWMy9UbVNlPkckDn5/BWlXd3kDZFByfgRl
204 No Content 0 B URL GET HTTP/2 andhthrewdo.com/UGJDTjN/XSA9DgU1JzppYDAqGHVhMScZdTU1FQgLMSQNG2tjI2U6WjRfencEY1R6aEM5Bn5/FSMWIjpGI19yaFo+BCxzFSZfcmAAZExweh1gRDZzAnYWMy9UbVNlPkckDn5/BWlXd3kDZFByfgRl
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectandhthrewdo.com
Fingerprint82:9D:09:34:55:07:35:BE:0D:40:F8:AA:5C:EB:64:38:E5:BA:41:84
ValidityWed, 13 Sep 2023 06:21:24 GMT - Tue, 12 Dec 2023 06:21:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /UGJDTjN/XSA9DgU1JzppYDAqGHVhMScZdTU1FQgLMSQNG2tjI2U6WjRfencEY1R6aEM5Bn5/FSMWIjpGI19yaFo+BCxzFSZfcmAAZExweh1gRDZzAnYWMy9UbVNlPkckDn5/BWlXd3kDZFByfgRl HTTP/1.1
Host: andhthrewdo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 23 Sep 2023 12:00:20 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uzZBn%2FqxwxIUChLFwg%2FzhSvgdy4IwoDht8iQ8fuGSkfNJsSsdU4i9rUO76TqDNi9FenI06z4PFNpRYfpR8bcSPtEGNU7p4r7qjf9dLFkf1IifOYD9aZPxRZKE%2FX3yKjSKNU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b2a072683d569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET andhthrewdo.com/RWFSbHlqXjEfRCQMal03HQUBOw4QKQMAESAjJRQpEic9LTgQMHQYECFca1VOcVFqSgksBW9dQWMSJg0NMBJvXV8sDzQDRGMXb11XdU9gQk1jFG9dXzERMwtEdEciGA0pXGNaQHBVZVxNd1BjXE0
204 No Content 0 B URL GET HTTP/2 andhthrewdo.com/RWFSbHlqXjEfRCQMal03HQUBOw4QKQMAESAjJRQpEic9LTgQMHQYECFca1VOcVFqSgksBW9dQWMSJg0NMBJvXV8sDzQDRGMXb11XdU9gQk1jFG9dXzERMwtEdEciGA0pXGNaQHBVZVxNd1BjXE0
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectandhthrewdo.com
Fingerprint82:9D:09:34:55:07:35:BE:0D:40:F8:AA:5C:EB:64:38:E5:BA:41:84
ValidityWed, 13 Sep 2023 06:21:24 GMT - Tue, 12 Dec 2023 06:21:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RWFSbHlqXjEfRCQMal03HQUBOw4QKQMAESAjJRQpEic9LTgQMHQYECFca1VOcVFqSgksBW9dQWMSJg0NMBJvXV8sDzQDRGMXb11XdU9gQk1jFG9dXzERMwtEdEciGA0pXGNaQHBVZVxNd1BjXE0 HTTP/1.1
Host: andhthrewdo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 23 Sep 2023 12:00:20 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FV3GOO10swb5JLcEWMeV62BmFUJdK%2Fr1b%2BFE%2Bo32xWKls4dQUOhbhiSTVSq8%2F9asBuBzL7fwHX7COET03EIEvG4uuW0t5RhuHgVRUf1Iy%2B%2FX4yTdlxhKUZbzZrR20Z3kc%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b2a072784b569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET andhthrewdo.com/Vk85Q1F5cFowbAMXUQYFLBleFz8Ed3sUExorYTAcDBpVOjQHOB83ODJyAHpmYn4NZSE/KwRydyU7WDckJXIIZTg4KVZ+dyByCG1iYmEKd39maUx+YHA7SSI2a34fMyUiIwRyZ296DXRhYn0IcmBg
204 No Content 0 B URL GET HTTP/2 andhthrewdo.com/Vk85Q1F5cFowbAMXUQYFLBleFz8Ed3sUExorYTAcDBpVOjQHOB83ODJyAHpmYn4NZSE/KwRydyU7WDckJXIIZTg4KVZ+dyByCG1iYmEKd39maUx+YHA7SSI2a34fMyUiIwRyZ296DXRhYn0IcmBg
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectandhthrewdo.com
Fingerprint82:9D:09:34:55:07:35:BE:0D:40:F8:AA:5C:EB:64:38:E5:BA:41:84
ValidityWed, 13 Sep 2023 06:21:24 GMT - Tue, 12 Dec 2023 06:21:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Vk85Q1F5cFowbAMXUQYFLBleFz8Ed3sUExorYTAcDBpVOjQHOB83ODJyAHpmYn4NZSE/KwRydyU7WDckJXIIZTg4KVZ+dyByCG1iYmEKd39maUx+YHA7SSI2a34fMyUiIwRyZ296DXRhYn0IcmBg HTTP/1.1
Host: andhthrewdo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 23 Sep 2023 12:00:21 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fb2rVIElNxnHPY6vvcyr3iPhWGFjt8Md4t29xPOTLa8tzZMw%2FoCg63sn5tMoRZEg3C14ccRj7eYINrs4bA6bmamEziFpC6WvalxO96k5gLAm7C4ab%2FMMk45yczIO4RMnpSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b2a0728857569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET aplainmpatoio.com/V01abjA2LzkDDzZwOEhFJSFnSwIRaGgoVCJ9KhtUZz4+Al0tK3QNXDg4PghCOCMuQF4yOX9cdi0XEihaBDc9JngwfS4sSBYUGF1pFRUPNGgyKiItdy8MMThYBQAbCQUZDBsrXhAjCx13FiEuOnJjGwIAQzIOGC9+GwwMLXYWfTUsZgEVGwcJNhoPOHYHfT0idzt5MTZhEgQYBFwVCy0deTUYaihkFnkxP1dnKR4XXzMbMApnDRwyLGFmAzA/dgEMCABYYRwPIGQdfB8lchU5Ly1cBgcNXQE5GDE4dzIFKixhZgBvOlsRDhMAXx4VDFdkDiVrOWEGYAsbZyB1PzxeO2hoLGY8CwkLRz8bCzh6Ig42P2gUJzYKcT95OAxXOCQLKHphCzY8aBEjAyQWPT41AEBqLB8bVCcJCyJ4Pic
200 OK 1.2 kB URL GET HTTP/2 aplainmpatoio.com/V01abjA2LzkDDzZwOEhFJSFnSwIRaGgoVCJ9KhtUZz4+Al0tK3QNXDg4PghCOCMuQF4yOX9cdi0XEihaBDc9JngwfS4sSBYUGF1pFRUPNGgyKiItdy8MMThYBQAbCQUZDBsrXhAjCx13FiEuOnJjGwIAQzIOGC9+GwwMLXYWfTUsZgEVGwcJNhoPOHYHfT0idzt5MTZhEgQYBFwVCy0deTUYaihkFnkxP1dnKR4XXzMbMApnDRwyLGFmAzA/dgEMCABYYRwPIGQdfB8lchU5Ly1cBgcNXQE5GDE4dzIFKixhZgBvOlsRDhMAXx4VDFdkDiVrOWEGYAsbZyB1PzxeO2hoLGY8CwkLRz8bCzh6Ig42P2gUJzYKcT95OAxXOCQLKHphCzY8aBEjAyQWPT41AEBqLB8bVCcJCyJ4Pic
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subjectaplainmpatoio.com
FingerprintD8:1B:FF:C9:30:FF:BD:A5:C3:AE:82:46:FF:89:39:F9:81:20:8A:E3
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3017), with no line terminators
Hash bd3052c5358a0eac16e6779b1711baf2
5a743bf04a0a49a8fbd99a300b0cd2d5302fdfa8
b903aec6f502acd497cb85113f8538ec593e6a11ffeb6fb87096ef8f1fe5e19c
GET /V01abjA2LzkDDzZwOEhFJSFnSwIRaGgoVCJ9KhtUZz4+Al0tK3QNXDg4PghCOCMuQF4yOX9cdi0XEihaBDc9JngwfS4sSBYUGF1pFRUPNGgyKiItdy8MMThYBQAbCQUZDBsrXhAjCx13FiEuOnJjGwIAQzIOGC9+GwwMLXYWfTUsZgEVGwcJNhoPOHYHfT0idzt5MTZhEgQYBFwVCy0deTUYaihkFnkxP1dnKR4XXzMbMApnDRwyLGFmAzA/dgEMCABYYRwPIGQdfB8lchU5Ly1cBgcNXQE5GDE4dzIFKixhZgBvOlsRDhMAXx4VDFdkDiVrOWEGYAsbZyB1PzxeO2hoLGY8CwkLRz8bCzh6Ig42P2gUJzYKcT95OAxXOCQLKHphCzY8aBEjAyQWPT41AEBqLB8bVCcJCyJ4Pic HTTP/1.1
Host: aplainmpatoio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1170
date: Sat, 23 Sep 2023 12:00:20 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 2FeEg1qezfTsDDBx31qaN1O2sqDl-95k-mEKwih1FFTu0h1SUn8MFw==
X-Firefox-Spdy: h2
GET aplainmpatoio.com/MmZYQTdTBDssCFNbOmdCQAplZAV0Q2oHU0dWKDRTAhU8LVpIAHYiW10TPCdFXQgsb1lXEn1zcX4FABdFfFY3EnBVMAolZmcFHDZHSDUdC1FwVRIZf0oOAQt2dC8cFAIEJBo2VFEPPyp5VRY/CnFRJB0XeQE3Dgx/ZA8JFmR3VwsLdXgvDylyQCAKJWBzVC8EcXQ8OQtmQQUacERAMB0iQ3MLCgNidA0QGFBeIw8pfQcraQNtcB8BGHBKUwgjB3wgHTYOCiozD1F3CDM7YnQNEA52VjcPCW0FNw05cXBUFhRlAxIJDU97AxoDfQYoaCVVcAgoA2V0SysGVQIoHgVhBlIeA3p3Mmp4c39XNwZSA18eFWJ4VQkAEVgVNy9HDwAhcUJbER0jYnEHDyM
200 OK 1.2 kB URL GET HTTP/2 aplainmpatoio.com/MmZYQTdTBDssCFNbOmdCQAplZAV0Q2oHU0dWKDRTAhU8LVpIAHYiW10TPCdFXQgsb1lXEn1zcX4FABdFfFY3EnBVMAolZmcFHDZHSDUdC1FwVRIZf0oOAQt2dC8cFAIEJBo2VFEPPyp5VRY/CnFRJB0XeQE3Dgx/ZA8JFmR3VwsLdXgvDylyQCAKJWBzVC8EcXQ8OQtmQQUacERAMB0iQ3MLCgNidA0QGFBeIw8pfQcraQNtcB8BGHBKUwgjB3wgHTYOCiozD1F3CDM7YnQNEA52VjcPCW0FNw05cXBUFhRlAxIJDU97AxoDfQYoaCVVcAgoA2V0SysGVQIoHgVhBlIeA3p3Mmp4c39XNwZSA18eFWJ4VQkAEVgVNy9HDwAhcUJbER0jYnEHDyM
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subjectaplainmpatoio.com
FingerprintD8:1B:FF:C9:30:FF:BD:A5:C3:AE:82:46:FF:89:39:F9:81:20:8A:E3
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3001), with no line terminators
Hash 3c21d8437cdf7a29081dbcf1d89f807a
6a5eff1bd24b96deaf4de44c856619a58e48e097
838b3bb7fb9e8ddbec9bd70615a7b4d139a1b0fabe3bdbd8c7aa4a2f8432005e
GET /MmZYQTdTBDssCFNbOmdCQAplZAV0Q2oHU0dWKDRTAhU8LVpIAHYiW10TPCdFXQgsb1lXEn1zcX4FABdFfFY3EnBVMAolZmcFHDZHSDUdC1FwVRIZf0oOAQt2dC8cFAIEJBo2VFEPPyp5VRY/CnFRJB0XeQE3Dgx/ZA8JFmR3VwsLdXgvDylyQCAKJWBzVC8EcXQ8OQtmQQUacERAMB0iQ3MLCgNidA0QGFBeIw8pfQcraQNtcB8BGHBKUwgjB3wgHTYOCiozD1F3CDM7YnQNEA52VjcPCW0FNw05cXBUFhRlAxIJDU97AxoDfQYoaCVVcAgoA2V0SysGVQIoHgVhBlIeA3p3Mmp4c39XNwZSA18eFWJ4VQkAEVgVNy9HDwAhcUJbER0jYnEHDyM HTTP/1.1
Host: aplainmpatoio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1157
date: Sat, 23 Sep 2023 12:00:20 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: HwMxblABLSKermwmfpcCPRwXzJNCTv_j9Rp5j3FePitL-zz_YpIsRg==
X-Firefox-Spdy: h2
GET aplainmpatoio.com/ZEQxQ1cFJlIuaAV5U2UiFigMZmUiYQMFMxF0QTYzVDdVLzoeIh8gOwsxVSUlCypFbTkBMBRxETMnXCcGAABkERQgcGIAMD0LfwY8KRcAAT01I0kWEzcJUxQgLiVyAT8dF1h2PCgqVncZCQkABiA9IH8GPCIScDAvIyh7EwYwEVAVPF0TVSsBNgF3MzwxL3QAFCAwexQ/Bwd6EREsB0kSJiw8fAsVCXRrFDADC2EBPzESABYANRZFAAYJDnQLBhQTaBUSIwl0CT42AlohFDcRfAYSJhx6BiAgCGcFPDEVaDQGCQ50ESA2B2g5AiEVXXZyVgZjAS88EmZuFjARcwYaNHV0CxkiElYRBjIHZy4VIgF0AQ8qLAALERMBFHERIAZzAh4zAncBERwcVSQSLRVGZT0XK18zajwodnseUB58CQZXBQ
200 OK 1.2 kB URL GET HTTP/2 aplainmpatoio.com/ZEQxQ1cFJlIuaAV5U2UiFigMZmUiYQMFMxF0QTYzVDdVLzoeIh8gOwsxVSUlCypFbTkBMBRxETMnXCcGAABkERQgcGIAMD0LfwY8KRcAAT01I0kWEzcJUxQgLiVyAT8dF1h2PCgqVncZCQkABiA9IH8GPCIScDAvIyh7EwYwEVAVPF0TVSsBNgF3MzwxL3QAFCAwexQ/Bwd6EREsB0kSJiw8fAsVCXRrFDADC2EBPzESABYANRZFAAYJDnQLBhQTaBUSIwl0CT42AlohFDcRfAYSJhx6BiAgCGcFPDEVaDQGCQ50ESA2B2g5AiEVXXZyVgZjAS88EmZuFjARcwYaNHV0CxkiElYRBjIHZy4VIgF0AQ8qLAALERMBFHERIAZzAh4zAncBERwcVSQSLRVGZT0XK18zajwodnseUB58CQZXBQ
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subjectaplainmpatoio.com
FingerprintD8:1B:FF:C9:30:FF:BD:A5:C3:AE:82:46:FF:89:39:F9:81:20:8A:E3
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3020), with no line terminators
Hash 12c5a96d4a5d638556ad51315131feb1
141e89be6ba5d47dfeb3446b6598af848562c2cc
9fb10c54805cb5d714d04cc340f005a833de82771cbb295826755ea2e877bc08
GET /ZEQxQ1cFJlIuaAV5U2UiFigMZmUiYQMFMxF0QTYzVDdVLzoeIh8gOwsxVSUlCypFbTkBMBRxETMnXCcGAABkERQgcGIAMD0LfwY8KRcAAT01I0kWEzcJUxQgLiVyAT8dF1h2PCgqVncZCQkABiA9IH8GPCIScDAvIyh7EwYwEVAVPF0TVSsBNgF3MzwxL3QAFCAwexQ/Bwd6EREsB0kSJiw8fAsVCXRrFDADC2EBPzESABYANRZFAAYJDnQLBhQTaBUSIwl0CT42AlohFDcRfAYSJhx6BiAgCGcFPDEVaDQGCQ50ESA2B2g5AiEVXXZyVgZjAS88EmZuFjARcwYaNHV0CxkiElYRBjIHZy4VIgF0AQ8qLAALERMBFHERIAZzAh4zAncBERwcVSQSLRVGZT0XK18zajwodnseUB58CQZXBQ HTTP/1.1
Host: aplainmpatoio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 1173
date: Sat, 23 Sep 2023 12:00:20 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: f2sjFovf8sg-U23jTnO1gKKOV_RNBLQi3p-lrjmyUn0gRwaCp19_Mw==
X-Firefox-Spdy: h2
GET www.upload.ee/favicon.ico
200 OK 1.2 kB URL GET HTTP/1.1 www.upload.ee/favicon.ico
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerDigiCert, Inc.
Subjectwww.upload.ee
Fingerprint50:32:93:34:C8:04:2F:84:49:77:0D:C4:DD:CA:79:C9:CB:3E:C0:F4
ValidityThu, 02 Mar 2023 00:00:00 GMT - Mon, 01 Apr 2024 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash f299cf2e651c19e48d27900ced493ccb
c2d1086d517d7a26292e0d7b32da7c55b166c23b
115c8eb4840245f7aed0cb2a17fa7e91b86f79bb2f223a25af8cc533e1dedff1
GET /favicon.ico HTTP/1.1
Host: www.upload.ee
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Cookie: lng=eng; _ga_LT9YQX0N49=GS1.1.1695470421.1.0.1695470421.0.0.0; _ga=GA1.1.1402447501.1695470421
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 12:00:21 GMT
Content-Type: image/x-icon
Content-Length: 1150
Last-Modified: Tue, 16 Dec 2008 17:17:25 GMT
Connection: keep-alive
Keep-Alive: timeout=20
ETag: "4947e2a5-47e"
Expires: Sat, 30 Sep 2023 12:00:21 GMT
Cache-Control: max-age=604800
Accept-Ranges: bytes
471 B IP
Hash a1df14e0c62a34d1aeeb45ab94638130
d3bdfb2c75f9fdc495b9662ae128e4992accc8d6
e95646a781b21b7bebac7070f1b6e5d511fb2fa24d0b24e382ecc97736e3d92a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 12:00:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
471 B IP
Hash a1df14e0c62a34d1aeeb45ab94638130
d3bdfb2c75f9fdc495b9662ae128e4992accc8d6
e95646a781b21b7bebac7070f1b6e5d511fb2fa24d0b24e382ecc97736e3d92a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 12:00:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint2F:C1:71:0A:05:D9:0F:38:EF:D1:16:F7:50:AF:41:48:6B:F9:BA:B5
ValidityMon, 04 Sep 2023 08:23:30 GMT - Mon, 27 Nov 2023 08:23:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:7A52TioVg7s4dC1HO4cOz35l3IL20g:MrHwge68oQBpb6UQ; Expires=Mon, 22-Sep-2025 12:00:21 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhec1a0FrFo4ljgCLVfO8PVsPhzvDoPs9A2J6CdCiqTpNP2iYwsrFxTI6nwrdyChN12w-T0e
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-tbMsTiXlj1kpXk3lzPaBeg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET aplainmpatoio.com/utx?cb=WOM6zbKOSqXD&top=www.upload.ee&tid=997369
204 No Content 0 B URL GET HTTP/2 aplainmpatoio.com/utx?cb=WOM6zbKOSqXD&top=www.upload.ee&tid=997369
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subjectaplainmpatoio.com
FingerprintD8:1B:FF:C9:30:FF:BD:A5:C3:AE:82:46:FF:89:39:F9:81:20:8A:E3
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=WOM6zbKOSqXD&top=www.upload.ee&tid=997369 HTTP/1.1
Host: aplainmpatoio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.upload.ee
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 23 Sep 2023 12:00:21 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.upload.ee
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sat, 23 Sep 2023 12:01:21 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: MudMAiXMxkctr0CueY4XJpauyN-BxOS1jVrnUcezcsznxeO4v8ZIxQ==
X-Firefox-Spdy: h2
GET aplainmpatoio.com/utx?cb=SBso5is0kfoL&top=www.upload.ee&tid=997414
204 No Content 0 B URL GET HTTP/2 aplainmpatoio.com/utx?cb=SBso5is0kfoL&top=www.upload.ee&tid=997414
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerAmazon
Subjectaplainmpatoio.com
FingerprintD8:1B:FF:C9:30:FF:BD:A5:C3:AE:82:46:FF:89:39:F9:81:20:8A:E3
ValidityWed, 13 Sep 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=SBso5is0kfoL&top=www.upload.ee&tid=997414 HTTP/1.1
Host: aplainmpatoio.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.upload.ee
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Sat, 23 Sep 2023 12:00:21 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.upload.ee
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sat, 23 Sep 2023 12:01:21 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 c26999728b9b80253ea8308df470deba.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: EunzE_kDvd1XyQwu-tmJNJSZ84kYpYHy9k6Qde9NSqe-cw6G5vEiTQ==
X-Firefox-Spdy: h2
GET accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
302 Found 0 B URL GET HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint2F:C1:71:0A:05:D9:0F:38:EF:D1:16:F7:50:AF:41:48:6B:F9:BA:B5
ValidityMon, 04 Sep 2023 08:23:30 GMT - Mon, 27 Nov 2023 08:23:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:DfY3bftP9oOkbmw2t9mKUfLpEc9Fnw:8DiGROYm4oabV-td; Expires=Mon, 22-Sep-2025 12:00:21 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdJt2tEwtunZaNF6YnEq7knw4wvj3IlHd6LUsel_Dl_DueGRWeDWsKQKpaqD-t5X_YeIKECBw
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: unsafe-none
content-security-policy: script-src 'nonce-yH8afTCTTqEkBsw0ntAkag' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
472 B IP
Hash 8e0560c46747530b07f20c3704aecf0c
30e8a5e5b62c28ed29ef6408f9044f2d8a911db5
e5b8c6bd88bfb832b0b14cf3e17048b546cbf82d7de8d539f8fdad12794b3cb8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 12:00:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
GET accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhec1a0FrFo4ljgCLVfO8PVsPhzvDoPs9A2J6CdCiqTpNP2iYwsrFxTI6nwrdyChN12w-T0e
302 Found 406 B URL GET HTTP/2 accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhec1a0FrFo4ljgCLVfO8PVsPhzvDoPs9A2J6CdCiqTpNP2iYwsrFxTI6nwrdyChN12w-T0e
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint2F:C1:71:0A:05:D9:0F:38:EF:D1:16:F7:50:AF:41:48:6B:F9:BA:B5
ValidityMon, 04 Sep 2023 08:23:30 GMT - Mon, 27 Nov 2023 08:23:29 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (396)
Hash 78da18c7494bd6c13cf1d9844f4602ad
db237b9d8c48c8cbcd38e616bce7e022c3f7b707
e584ab471127b31197258748a9cb10153d2d32740477a0348831e0775f6fdbed
GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AYZoVhec1a0FrFo4ljgCLVfO8PVsPhzvDoPs9A2J6CdCiqTpNP2iYwsrFxTI6nwrdyChN12w-T0e HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:tS5-cdsUnQ9R_UStxu9mLb6evB9TCA:O2iUgqXvrgW09D4s;Path=/;Expires=Mon, 22-Sep-2025 12:00:21 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd-RBfHI4ISnZfk5SPxYLpJ4dX73IpC2ZvrGs9OgZDiFQr8dH1PdI8dwcxz_q6bNL3vclfTng&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140805826%3A1695470421314105&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: script-src 'nonce-2hUjEHjUnVfmdnwRTJF4Rw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 406
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdJt2tEwtunZaNF6YnEq7knw4wvj3IlHd6LUsel_Dl_DueGRWeDWsKQKpaqD-t5X_YeIKECBw
302 Found 405 B URL GET HTTP/3 accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdJt2tEwtunZaNF6YnEq7knw4wvj3IlHd6LUsel_Dl_DueGRWeDWsKQKpaqD-t5X_YeIKECBw
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (400)
Hash 504f612e9e87a4e955d172589e7c3420
b9e1a04cec40333507f5db60f0bdd91a9e98f82d
80f67958abb4296c2356f104b20e00403ad20f13de007a168b3f73b2de0e2234
GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AYZoVhdJt2tEwtunZaNF6YnEq7knw4wvj3IlHd6LUsel_Dl_DueGRWeDWsKQKpaqD-t5X_YeIKECBw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:YSsiyxHIvVr49iBtRt9dZsM1TGR02g:PzE0RAqIfThaDtqH;Path=/;Expires=Mon, 22-Sep-2025 12:00:21 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVheF3Lg5ELb4cVNGmx1Q75LEjKNrYmIObaVopqNT1E-BwyQGMSOLPvm_f1cNxZcv64pVjuLbDg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1895698166%3A1695470421346676&theme=glif
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-99RQSzUBGev-Mb59vmbsHA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 405
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
560 B URL du0pud0sdlmzf.cloudfront.net/zZHFjSzgHHg0tBxAYB3YBXUZXegxCGxAkVhRMAg5NAAEnGnQsGAltTB4VXnseCBANLAVCFA0oBVVXAi9aWUVFP0gLGl4kXQEIBjlBFwsIbU0FTA4kQg0dDyodVjdWZQhBQ1NjQFVARnh6QUNTJ1EKBBtuClQJW31nUkVGeHpBQ1M5TkFCInoIXV9TYh1WQQ-QuWw8eRnl+VkFSewhVQVJuClQXCjldAh4bbgoiQFJ6FlRXFnYJ
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (787), with no line terminators
Hash a3286510203e52c2c2c45704a2fe52ee
2feec072a925aca91ca854a91a529b582a149fa7
2d8e5e45052eea34d72c824be277b8e8e44b2bdb6285227feb3cee24607f3e35
GET /zZHFjSzgHHg0tBxAYB3YBXUZXegxCGxAkVhRMAg5NAAEnGnQsGAltTB4VXnseCBANLAVCFA0oBVVXAi9aWUVFP0gLGl4kXQEIBjlBFwsIbU0FTA4kQg0dDyodVjdWZQhBQ1NjQFVARnh6QUNTJ1EKBBtuClQJW31nUkVGeHpBQ1M5TkFCInoIXV9TYh1WQQ-QuWw8eRnl+VkFSewhVQVJuClQXCjldAh4bbgoiQFJ6FlRXFnYJ HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aplainmpatoio.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 560
date: Sat, 23 Sep 2023 12:00:21 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: I8YLqNKZA6JzOs12wqLKTmzL8PJNMJGmM_M6oJgYqu91FdJ65vjwcw==
X-Firefox-Spdy: h2
184 B URL du0pud0sdlmzf.cloudfront.net/LcXVrN0oSGgVRdQUcDwpzSEJfB3JXHxhYJAFIDU56BBwccigkNgpgKFcBEVN3QVMHViQWSE1SJBJIWhErFRdWA2wEFFZaJQscB1srVEctAmRBUFkHYglEWhJ5M1BZByYYGx5Pb0NFEw98LkNfEnkzUFkHOAdQWHZ7QUxFB2NUR1tQLxIeBBJ4N0dbBnpBRF-sGb0NFDV44FBMET29DM1oGe19FTUJ3QA
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4b159545a82e0ee6a2ff2624228377df
2b01dce582fa7a845bf1df1c98f02cd009bd31c2
385c19256909cbf0d01b34e8801dc7aaa686cce2a2815779af432fe425eca744
GET /LcXVrN0oSGgVRdQUcDwpzSEJfB3JXHxhYJAFIDU56BBwccigkNgpgKFcBEVN3QVMHViQWSE1SJBJIWhErFRdWA2wEFFZaJQscB1srVEctAmRBUFkHYglEWhJ5M1BZByYYGx5Pb0NFEw98LkNfEnkzUFkHOAdQWHZ7QUxFB2NUR1tQLxIeBBJ4N0dbBnpBRF-sGb0NFDV44FBMET29DM1oGe19FTUJ3QA HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aplainmpatoio.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 184
date: Sat, 23 Sep 2023 12:00:21 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: B8bCJt_upzXLx7dOXc4tbzkUKYXL2BI3kEgQSptnmQsNo5PXeQzmog==
X-Firefox-Spdy: h2
600 B URL du0pud0sdlmzf.cloudfront.net/WcmdQdDURCD4SCgYONEkMS1BjQgxUDSMbWwJaCBhySi5kLng4NmM1EwYdNEkFVAsxGlJPQTUaVk9WdhVREFpkUkECCDtJWhcCKRFHCxQqHxMHBm0ZWggOPBhUV1UWQRtCQmJEHQpWYVEGMEJiRFkbCSUMEEBXKEwDLVFkUQYwQmJERwRCYzUEQl5+RBxXVW-ATUBEMP1EHNFVgRQVCVmBFEEBXNh1HFwE/DBBAIWFFBFxXdgEIQw
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (856), with no line terminators
Hash 444cacd41b92c6add885920641f5675e
80418115225ddfe0e7c3e47b3d1fc7cd0db58761
64c49916e01d402c966e0e051db600f5a0c77a21842f75883171be9c0fa84756
GET /WcmdQdDURCD4SCgYONEkMS1BjQgxUDSMbWwJaCBhySi5kLng4NmM1EwYdNEkFVAsxGlJPQTUaVk9WdhVREFpkUkECCDtJWhcCKRFHCxQqHxMHBm0ZWggOPBhUV1UWQRtCQmJEHQpWYVEGMEJiRFkbCSUMEEBXKEwDLVFkUQYwQmJERwRCYzUEQl5+RBxXVW-ATUBEMP1EHNFVgRQVCVmBFEEBXNh1HFwE/DBBAIWFFBFxXdgEIQw HTTP/1.1
Host: du0pud0sdlmzf.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://aplainmpatoio.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 600
date: Sat, 23 Sep 2023 12:00:21 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u-s2O8ka_-Lkr4hfqAG3ruXM4sLND6phUqlkx9v2YNJn3O5BrvHvAQ==
X-Firefox-Spdy: h2
GET pogothere.xyz/asd100.bin
200 OK 104 kB IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Size 104 kB (104210 bytes)
Hash 464f25901ae7951937d3956279242a38
06c472c9b26be6b7e04704df956cd27061ddd54a
acbf917b827b6aa8bf2673392e7580b8055f877b910ade72dd9884af44de13f2
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
Origin: https://www.upload.ee
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 12:00:21 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.upload.ee
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Sat, 23 Sep 2023 09:42:45 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N3WayG9e18JkOJ036RjUYtLSWAiFJojU8roDOrwcL8%2F8bW5wUI7tm8Gl4l6NOiBkw2MvdxMAdwfAb2KHWyDUgz2aUtOXh2Paku1ltN7omGkZ61YOTAA7PY5u4i0x%2BS%2Fq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b2a0748c49b50f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET static.bepolite.eu/scripts/saresponsive.js
200 OK 177 kB URL GET HTTP/2 static.bepolite.eu/scripts/saresponsive.js
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type ASCII text, with very long lines (32077), with CRLF line terminators
Size 177 kB (176967 bytes)
Hash 636b4ad7f97aa55c2242b396fe3e9f44
b4d6aae9e6f3de7fb4478f9ee5e12a8141bb02ba
54f7e44d9e8b65978b3753e157c4a3c9c338645fcc31429f6c49aca5e4bd1c62
GET /scripts/saresponsive.js HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "3552162744"
last-modified: Sun, 17 Sep 2023 21:45:34 GMT
content-length: 176967
date: Sat, 23 Sep 2023 12:00:07 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 257025692
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
200 OK 3.8 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 81631af971c7b2ba113f32e7abdfd3b9
d2447163d42019de96a6e8e682190685112cd571
a2330e36cba4ab59988f23ae506bb8cfd24a1db0d38ac949a0955a841aa5f43a
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
accept-ranges: bytes
etag: "2074426223"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 3786
date: Sat, 23 Sep 2023 11:59:47 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 257025701
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
200 OK 85 kB URL GET HTTP/2 static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (60154)
Hash c3d784eba8cfd57029560be9b4f28078
b0fc38fa2a3b35d1df0938521fadf37525e596cd
44dab1fadd105a3a3df8426e987fe17e2995570511adf928e5cdcb53cc98b784
GET /banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
accept-ranges: bytes
etag: "1026367163"
last-modified: Tue, 05 Sep 2023 04:47:47 GMT
content-length: 85212
date: Sat, 23 Sep 2023 11:52:21 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 258551836
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimivarbamiskampaania1000x200est_hype_generated_script.js?5296
200 OK 5.5 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimivarbamiskampaania1000x200est_hype_generated_script.js?5296
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type ASCII text, with very long lines (3078)
Hash 9d81292df5073cfc8f3d5404a292b67b
d2639c2ed146ceea49ef117c2c66da303f207aae
abf39ec70bf57aa8514f6497fd6cc16b27bfaab44772b89cdafc5d84a6e6109f
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimivarbamiskampaania1000x200est_hype_generated_script.js?5296 HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
etag: "3662097208"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 5537
date: Sat, 23 Sep 2023 12:00:07 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 25457362
age: 0
X-Firefox-Spdy: h2
GET cdn.jsdelivr.net/gh/tumult/hype-runtime/HYPE-752.thin.min.js
200 OK 26 kB URL GET HTTP/2 cdn.jsdelivr.net/gh/tumult/hype-runtime/HYPE-752.thin.min.js
IP
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type HTML document, ASCII text, with very long lines (3286)
Hash a7736c83b9ad2dd6317674cd4ed0bb68
0366b254fafb4a7a979a69fb9ef7be3434b74d14
4804b62bc3461ff1ab61aa2482690d79db2646701da68b6371ad1485c6f948fd
GET /gh/tumult/hype-runtime/HYPE-752.thin.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"de41-A2ayVPr7SnqXmmn7nve+NDS3TRQ"
content-encoding: br
accept-ranges: bytes
date: Sat, 23 Sep 2023 12:00:22 GMT
age: 3573
x-served-by: cache-fra-eddf8230058-FRA, cache-bma1659-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 26057
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimi-logo.png
200 OK 2.7 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimi-logo.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 217 x 78, 8-bit colormap, non-interlaced\012- data
Hash 182a326514ebdc1184b5bdbe8936477a
c2175d9f486fcd7dfcca879ffbc6193eba2c1137
c5ee3f53d4b7016bee074b9f506c56af29f7b410e5fe9b22296581359c70214c
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/rimi-logo.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "4222046428"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 2651
date: Sat, 23 Sep 2023 12:00:08 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 252996815
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/tule-toole.png
200 OK 1.7 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/tule-toole.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 362 x 51, 8-bit colormap, non-interlaced\012- data
Hash dcaf34e1459792cf9f2189445b74dc3e
e8cf781246e39208cf25037bdd3d104a468c3ad5
cba15ff3321ed8a4bd20a21beb0c2659373974b7a6bac94da7459cea7742d31d
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/tule-toole.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "4071824007"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 1676
date: Sat, 23 Sep 2023 11:52:21 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 258775269
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1-1.png
200 OK 832 B URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1-1.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 204 x 37, 4-bit colormap, non-interlaced\012- data
Hash 00335183348d6ee171c6bac5ef5400f0
cd1b887c7fec4e3882aab4e021b43899aa7b1288
e9bddb67e79a3f1f0a65f3876c1e284469d509c79423700feeea64f2bb947333
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1-1.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "2723313783"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 832
date: Sat, 23 Sep 2023 12:00:08 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 257025728
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/2-1.png
200 OK 4.0 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/2-1.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 504 x 69, 4-bit colormap, non-interlaced\012- data
Hash 80c2545a5f5a4e67216e8785bffb59d5
431fa8dde2758a659eb7ab3930ab538c03d56ebb
5a69b4739d7327c7f5c464bd8d6f8b0411b1579d4a6ed9260428c7cbed07255e
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/2-1.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1491746340"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 3963
date: Sat, 23 Sep 2023 11:52:21 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 252996818
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/white.png
200 OK 995 B URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/white.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 90 x 105, 8-bit colormap, non-interlaced\012- data
Hash 3c233b352afdf6f0964e83527d2ec830
73518bc781b18b0596fa89235e65b0fbf19bd493
e7b048333791bff34f6e91de8d6a249a10350a684408fd271e5aec8207572a39
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/white.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "2791080897"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 995
date: Sat, 23 Sep 2023 11:59:47 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 255018921
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1000x200.jpg
200 OK 57 kB URL GET HTTP/2 static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1000x200.jpg
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x200, components 3\012- data
Hash 9744522a6cb8802d6b4185ca59faf582
e708931036b7da2fbc9a1350b11b39203c3e0e08
3bf751150586f82b8e850ca4c27a1686f8502c948a03d780cc20deb90e44a47c
GET /banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/1000x200.jpg HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/a29e5aad-7c1f-436e-83d4-5f350b53a4f1/index.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67146737&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fa29e5aad-7c1f-436e-83d4-5f350b53a4f1%2Findex.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67146737&banner_id=3b358ffefd664507985a83f9d5fe184150dd7b0f4105441f8f6018cc3fcb090c&bg=transparent&w=1000&h=200&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
accept-ranges: bytes
etag: "727496363"
last-modified: Mon, 11 Sep 2023 11:04:16 GMT
content-length: 56992
date: Sat, 23 Sep 2023 11:52:21 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 259523604
age: 0
X-Firefox-Spdy: h2
GET static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_atlas_1.jpg
200 OK 20 kB URL GET HTTP/2 static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_atlas_1.jpg
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, progressive, precision 8, 512x256, components 3\012- data
Hash 05804ee0edbe55811bfb39e993394019
e0a761934a4a3271a97418557453cb69f46a75f1
947cf118d487b784185e554a8d00c91feed78894f12ae9c5b97ca42d5d3cd9ce
GET /banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_atlas_1.jpg HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
accept-ranges: bytes
etag: "3846679858"
last-modified: Tue, 05 Sep 2023 04:47:47 GMT
content-length: 19962
date: Sat, 23 Sep 2023 12:00:08 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 25457365
age: 0
X-Firefox-Spdy: h2
GET pogothere.xyz/
200 OK 1.5 kB IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint17:F9:2D:6F:B5:5E:5F:37:A6:FB:BE:61:4F:97:64:33:85:5C:3A:FB
ValidityTue, 28 Feb 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash f06c42dfaa8e14c1952b610a3a508167
f04de917a78a1800a24a7540a7a43746f5cab6f4
89552d87d1e555539129a5054b4cfe5083ac15ea5a704faeb556eeb4f6de42ab
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
Origin: https://www.upload.ee
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 12:00:21 GMT
content-type: text/plain
set-cookie: csu=457108731353730@1@1695470421; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://www.upload.ee
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6hXtehzi7twJ16lwIUAJPRD91KzvM6mq%2B1bQc1udODMmUOeBCUZSw9AdDJ6lE2n%2BYZ68ABqV6In9BlKpynBzMwwqC1krFVl7REYLz8F%2FXfSs2Z2BU%2BIRqxCYo%2F3dJrt2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b2a0749c55b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=aefe03776061676cb3139c64ec958ee2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sat, 23 Sep 2023 12:00:08 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 255018954
age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnf_8e5-90sra7UBdR4oM89g HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=aefe03776061676cb3139c64ec958ee2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sat, 23 Sep 2023 12:00:08 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 250692640
age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA
200 OK 0 B URL GET HTTP/2 serving.bepolite.eu/event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?key=FYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-1vxUpMUnEtATkt1k2QUJnmnN86k22Gl6lCI4BKHfTYA-k5vWP825Jw2DxMaJaaUWDa5hY8OvOxWaQQS9P0iYfnPQFkqynusZJvi-LzBjp4mA HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Cookie: bepolite_id=aefe03776061676cb3139c64ec958ee2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sat, 23 Sep 2023 11:59:49 GMT
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 253130529
age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
GET serving.bepolite.eu/script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8168239&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F14800326%2Fe4398404aa471d955ec6%2Fdayzhack.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F14800326%2Fdayzhack.zip.html%3Fmsg%3Dsess_error&rnd=1695470420915
0 B URL GET serving.bepolite.eu/script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8168239&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F14800326%2Fe4398404aa471d955ec6%2Fdayzhack.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F14800326%2Fdayzhack.zip.html%3Fmsg%3Dsess_error&rnd=1695470420915
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /script?space=50dd7b0f-4105-441f-8f60-18cc3fcb090c&type=direct&page_id=8168239&screen_width=1280&screen_height=1024&os=Linux%20x86_64&refurl=https%3A%2F%2Fwww.upload.ee%2Fdownload%2F14800326%2Fe4398404aa471d955ec6%2Fdayzhack.zip&pageurl=https%3A%2F%2Fwww.upload.ee%2Ffiles%2F14800326%2Fdayzhack.zip.html%3Fmsg%3Dsess_error&rnd=1695470420915 HTTP/1.1
Host: serving.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private, must-revalidate, max-age=0
vary: accept-encoding
content-encoding: gzip
content-type: text/plain;charset=ISO-8859-1
date: Sat, 23 Sep 2023 11:52:20 GMT
set-cookie: bepolite_id=aefe03776061676cb3139c64ec958ee2; Max-Age=7776000; Expires=Fri, 22-Dec-2023 11:52:20 GMT; SameSite=None; Secure
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 259461714
age: 0
accept-ranges: bytes
content-length: 1775
X-Firefox-Spdy: h2
GET static.bepolite.eu/files/close-gray.png
200 OK 1.5 kB URL GET HTTP/2 static.bepolite.eu/files/close-gray.png
IP
ASN #3327 CITIC Telecom CPC Netherlands B.V.
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerLet's Encrypt
Subjectstatic.bepolite.eu
FingerprintB7:1B:BB:35:5B:E5:6E:92:4D:DE:79:2E:0E:C8:1F:0D:CE:28:88:FD
ValidityMon, 04 Sep 2023 21:06:47 GMT - Sun, 03 Dec 2023 21:06:46 GMT
File type PNG image data, 35 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 41d9676ab94bece3f7a549b4769ddbe2
521f14490fc57fea51e2e5bf00e2299dce51561b
c2f89787bda82263fceb9ec11d398fa83a5f22abf248956df29bdee2987d2f34
GET /files/close-gray.png HTTP/1.1
Host: static.bepolite.eu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
accept-ranges: bytes
etag: "1971769258"
last-modified: Fri, 08 Apr 2022 18:07:56 GMT
content-length: 1497
date: Sat, 23 Sep 2023 12:00:08 GMT
cache-control: must-revalidate, private
expires: -1
p3p: CP='BePolite does not have a P3P policy'
x-varnish: 256450820
age: 0
X-Firefox-Spdy: h2
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd-RBfHI4ISnZfk5SPxYLpJ4dX73IpC2ZvrGs9OgZDiFQr8dH1PdI8dwcxz_q6bNL3vclfTng&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140805826%3A1695470421314105&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd-RBfHI4ISnZfk5SPxYLpJ4dX73IpC2ZvrGs9OgZDiFQr8dH1PdI8dwcxz_q6bNL3vclfTng&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140805826%3A1695470421314105&theme=glif
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AYZoVhd-RBfHI4ISnZfk5SPxYLpJ4dX73IpC2ZvrGs9OgZDiFQr8dH1PdI8dwcxz_q6bNL3vclfTng&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1140805826%3A1695470421314105&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-Pz7QxSIYHgPEIAMs36JB8g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET code.createjs.com/1.0.0/createjs.min.js
200 OK 242 kB URL GET HTTP/2 code.createjs.com/1.0.0/createjs.min.js
IP
ASN #20940 Akamai International B.V.
Requested by https://static.bepolite.eu/banners/d6876ab1-3da0-45f3-a575-1503dfbc76c2/14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html?click_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3Dhttps%253A%252F%252Ftrack.adform.net%252FC%252F%253Fbn%253D67355152&dynamic_url=https%3A%2F%2Fserving.bepolite.eu%2Fevent%3Fkey%3DFYFWuDany3hwv6rfuoAYF1HJ9gSVA_rxawWv9tuAH1h0icRYPWhw4lOrQkT3Rzvc1w7HQyLBhhEjiUvdK_UspLv6COgAABJM80unqOgN9cfPI4F8gjHv0gbxC_shSpn7_W--cHyrMtE30861D2zi7zGCzVMQgzuwsLhADr54duzzp3ZdgWtH0MKue5p5AGKHXJxXiVJEh1Vfgxn38rgFo-tSrOiriedI-Oi3R5i8w-0O_0twAL41OnQO0ECKEmoj7Z7oQ-6ad2mNndhDufbZZr71xPUAnGTZGIXDZ4rHo9va5hY8OvOxWaQQS9P0iYfnngZXtFEp1ljuqs475VAp1Q%26clink%3D&f=https%3A%2F%2Fstatic.bepolite.eu%2Fbanners%2Fd6876ab1-3da0-45f3-a575-1503dfbc76c2%2F14_LUMINOR_Black_Card_SmartAd_EST_300x250px_51.html&clink=https%3A%2F%2Ftrack.adform.net%2FC%2F%3Fbn%3D67355152&banner_id=a4c655eac54243c88b25b5913ed9c50b50dd7b0f4105441f8f6018cc3fcb090c&bg=black&w=300&h=250&locale=Display%20Estonia-EST&info=https%3A%2F%2Fdigital.tv3.ee%2Fbepolite-id%2F%3Futm_src%3Dbanner
Certificate IssuerDigiCert Inc
Subjecttls.adobe.com
Fingerprint88:F9:45:0C:5A:A4:E6:B9:EF:07:7C:61:9A:07:71:F4:3F:EA:30:FF
ValidityWed, 08 Feb 2023 00:00:00 GMT - Sun, 10 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (32043)
Size 242 kB (242057 bytes)
Hash c71464532c0fc2020d8e8667ecfd9a3f
45f5cbaa3881797fd241f040838d495ee8170655
e439bebf8de2df0582273906d2c1dceff2387c661efb2152ef1c28420ce4e7e5
GET /1.0.0/createjs.min.js HTTP/1.1
Host: code.createjs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.bepolite.eu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Apache
accept-ranges: bytes
content-type: text/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=900
expires: Sat, 23 Sep 2023 12:15:22 GMT
date: Sat, 23 Sep 2023 12:00:22 GMT
x-n: S
X-Firefox-Spdy: h2
GET andhthrewdo.com/popunder.gif
200 OK 35 B URL GET HTTP/3 andhthrewdo.com/popunder.gif
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subjectandhthrewdo.com
Fingerprint82:9D:09:34:55:07:35:BE:0D:40:F8:AA:5C:EB:64:38:E5:BA:41:84
ValidityWed, 13 Sep 2023 06:21:24 GMT - Tue, 12 Dec 2023 06:21:23 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /popunder.gif HTTP/1.1
Host: andhthrewdo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.upload.ee/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 23 Sep 2023 12:00:21 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 78542
last-modified: Fri, 22 Sep 2023 14:11:19 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lxfQtdR7d6Unm8WY%2Bl%2BHP1ezxkRk4CfjORoVLDzicb1clDQOw4BIQX6ebF9dHCin9KqBPUuuaJVIJDOnrrB78zNyGwEe5GygjFJolpBggpAWNcJoFXeawnwZFwr8A%2BVcJic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b2a078ac3c56aa-OSL
alt-svc: h3=":443"; ma=86400
GET accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVheF3Lg5ELb4cVNGmx1Q75LEjKNrYmIObaVopqNT1E-BwyQGMSOLPvm_f1cNxZcv64pVjuLbDg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1895698166%3A1695470421346676&theme=glif
403 Forbidden 0 B URL GET HTTP/3 accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVheF3Lg5ELb4cVNGmx1Q75LEjKNrYmIObaVopqNT1E-BwyQGMSOLPvm_f1cNxZcv64pVjuLbDg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1895698166%3A1695470421346676&theme=glif
IP
Requested by https://www.upload.ee/files/14800326/dayzhack.zip.html?msg=sess_error
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBB:B9:27:FB:7D:F3:A7:1A:57:CC:23:F8:42:E9:10:BE:59:7E:1F:D4
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AYZoVheF3Lg5ELb4cVNGmx1Q75LEjKNrYmIObaVopqNT1E-BwyQGMSOLPvm_f1cNxZcv64pVjuLbDg&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-1895698166%3A1695470421346676&theme=glif HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.upload.ee/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 23 Sep 2023 12:00:21 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-brUV5aT9fJHKdk04fdV6Sw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
51.91.30.159
188.114.96.1
212.47.222.22
151.101.193.229
104.21.53.186
23.36.76.98
0.0.0.0