mediafire.com/
104.16.53.48301 Moved Permanently 0 B IP 104.16.53.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 15:42:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 03 Feb 2023 16:42:18 GMT
Location: https://www.mediafire.com/
Set-Cookie: __cf_bm=xRyEx2ZoqS2QjynlzJ4bv5DJvyrjaibkDvowFmWzyTk-1675438938-0-AbsdyySu9olZaJ2vcvrutPwKDtJ5r0JdN5rcYipiFK2yuupMp7EE+GuygFw4X3h8fXCcaadNtSkqEl+JFMoZCXU=; path=/; expires=Fri, 03-Feb-23 16:12:18 GMT; domain=.mediafire.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c4697a9a7b523-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11117
Expires: Fri, 03 Feb 2023 18:47:36 GMT
Date: Fri, 03 Feb 2023 15:42:19 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4450
Expires: Fri, 03 Feb 2023 16:56:29 GMT
Date: Fri, 03 Feb 2023 15:42:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 14:43:35 GMT
content-type: application/json
age: 3524
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6344
Expires: Fri, 03 Feb 2023 17:28:03 GMT
Date: Fri, 03 Feb 2023 15:42:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rZDR07trzmzaXfCnlffi6Y7kGkj2FAw8wTlt1nzniH//cc9C36aueCPtAlCnXVYF7w1yRt56QJg=
x-amz-request-id: 2BAEP44CQJNVQ4HY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 15:23:35 GMT
age: 1124
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 15:42:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash caad83d578e642af7aa8b01c1ff2c6a5
48d06223ea16bea0c8cbaa53433c2ff2b8364943
a312bacd27d59494ae7176365bb6754ae31b951aa14e0902d80fa38ca90c8fec
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:42:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 19:44:45 GMT
Expires: Tue, 07 Feb 2023 19:44:44 GMT
Etag: "48d06223ea16bea0c8cbaa53433c2ff2b8364943"
Cache-Control: max-age=359544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793c4699dd190b31-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 14:49:06 GMT
age: 3193
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11675
Expires: Fri, 03 Feb 2023 18:56:54 GMT
Date: Fri, 03 Feb 2023 15:42:19 GMT
Connection: keep-alive
www.mediafire.com/images/icons/myfiles/default.png
104.16.53.48200 OK 363 B URL HTTP/2 www.mediafire.com/images/icons/myfiles/default.png
IP 104.16.53.48:0
File type PNG image data, 42 x 42, 8-bit gray+alpha, non-interlaced\012- data
Hash 853e3c671adabbc17b0ad9929d507085
d778bef4963b1359a96fc44be0f5154b47b065b6
873b28a0419545d56f83b0e1cc449ce219f35c579bb7ce2cdf2d8fd6d374a2f1
GET /images/icons/myfiles/default.png HTTP/1.1
Host: www.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/png
content-length: 363
access-control-allow-origin: *
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=424
etag: "62deda56-1a8"
expires: Sun, 05 Mar 2023 12:53:32 GMT
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
cf-cache-status: HIT
age: 6129
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fcf790b49-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5adf2c0a4b0cb0102bb2a801db222019
987b0d000fef5f238e256af039503019a60bb4f3
bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3112
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Last-Modified: Fri, 03 Feb 2023 14:50:28 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.mediafire.com/images/backgrounds/home_unicorn/engadget.svg
104.16.53.48200 OK 1.2 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/engadget.svg
IP 104.16.53.48:0
Hash aa736deb3771034a5183bbcc226b5877
ff3363f16aff0a1d07dd3d3a312eadfcd8d46e72
52890e5beace74ce34521ad235e4935c671041038ab40e37b1c75d47b366b8d0
GET /images/backgrounds/home_unicorn/engadget.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-687"
access-control-allow-origin: *
cf-cache-status: HIT
age: 4517
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fef990b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.238.212.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.212.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zHWhsxCun8Cuf2J5rhyRew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tKInMieyJzT7RJLl0Zrp1TtxcKc=
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.170:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash d989f35706c62ce4a5c561586c55566e
d32e7958e5765609bf08dcdefd0b2c2a8714ce34
375dfe942a03ee024b5cc827b3efda5550d13df7530281f50862ce3b33fcb716
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33845
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 09:43:35 GMT
expires: Thu, 01 Feb 2024 09:43:35 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 194325
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
216.58.207.228200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 216.58.207.228:0
File type ASCII text, with very long lines (850), with no line terminators
Hash c40fb3e99bdf4c051379206b381f995b
3cf6ce4a866abbd13ce857357061a1cfa3a27690
0c45a6582686059e9d82919355c239be284c5740680f56332419ce0516280183
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 03 Feb 2023 15:42:20 GMT
date: Fri, 03 Feb 2023 15:42:20 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-829541-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-829541-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash b48a04fe6d588bbb8c59102a1e800d16
a98c637ada26a616c57bad2e75f8208061eb3ff6
ef019752d4e782d08df2d876986a99aa0406c19930ae99e22126cc571580fc7c
GET /gtag/js?id=UA-829541-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 15:42:20 GMT
expires: Fri, 03 Feb 2023 15:42:20 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43877
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.mediafire.com/css/mfv3_121898.php?ver=ssl
104.16.53.48200 OK 44 kB URL HTTP/2 static.mediafire.com/css/mfv3_121898.php?ver=ssl
IP 104.16.53.48:0
Hash 6c1d2d69855d16b83b9745afd595b69b
399877bc9cf13f08768bc47548997b27dd5428c5
0a8d5fd22caf7f16f57b67f0b41686d1ab8b7646a1730faa3120daaa7652ad35
GET /css/mfv3_121898.php?ver=ssl HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
pragma: public
cache-control: max-age=
expires: Fri, 17 Feb 2023 12:53:08 GMT
content-encoding: gzip
access-control-allow-origin: *
last-modified: Fri, 03 Feb 2023 12:53:08 GMT
cf-cache-status: HIT
age: 6129
server: cloudflare
cf-ray: 793c469faf620b49-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.mediafire.com/images/backgrounds/home_unicorn/cnet.svg
104.16.53.48200 OK 73 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/cnet.svg
IP 104.16.53.48:0
Hash 2be35baae23b2a3b7d804fd890ec6d4e
443e2f697267e032fa9fc92e3f615780ca4c1169
32bf9ecaf9a7b413b3cd3d5ea326293ad7ffe9d408c083d2c231616b94662d8d
GET /images/backgrounds/home_unicorn/cnet.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-6fe"
access-control-allow-origin: *
cf-cache-status: HIT
age: 4516
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fdf8a0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/hero_tile.png
104.16.53.48200 OK 26 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/hero_tile.png
IP 104.16.53.48:0
File type PNG image data, 622 x 948, 2-bit colormap, non-interlaced\012- data
Hash 60e1910d77b2f40536da8a50793f5e8b
0bc07c9048d8294f54314269e04f140b020fca67
2fcda32a86bea80fe0e301f3faf1fc81a48f05447fbbdafce096449da26745a2
GET /images/backgrounds/home_unicorn/hero_tile.png HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/png
content-length: 26402
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: "62deda56-6722"
expires: Sun, 05 Mar 2023 12:53:41 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
cf-cache-status: HIT
age: 4517
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1b96f0b49-OSL
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/newHome/sections/texas.png
104.16.53.48200 OK 1.1 kB URL HTTP/2 static.mediafire.com/images/backgrounds/newHome/sections/texas.png
IP 104.16.53.48:0
File type PNG image data, 120 x 120, 8-bit colormap, non-interlaced\012- data
Hash 600abf80e6dec3eb916abe1df7730b57
f0c7648cabb24cb9e86adab17bd97e96b55f81e2
097b1ea806afeddce94390aa022aa51955a3e1236bec96609c3b06a22bfb4a05
GET /images/backgrounds/newHome/sections/texas.png HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/png
content-length: 1066
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: "62deda56-42a"
expires: Sun, 05 Mar 2023 12:56:01 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a24a150b49-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.mediafire.com/images/backgrounds/home_unicorn/tf_10gb.svg
104.16.53.48200 OK 1.3 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_10gb.svg
IP 104.16.53.48:0
Hash 5f8937cffd82845e05bad3703a9c2de2
95aefd6955c362599de08ab3e84b14d52c02f6f8
01bd462962976fee5cca47a0321f2d2fbb4002af526ba38e4a1ad9a826188751
GET /images/backgrounds/home_unicorn/tf_10gb.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-729"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a219c30b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.mediafire.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 334179
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mediafire.com/apple-touch-icon.png
104.16.53.48200 OK 2.2 kB URL HTTP/2 www.mediafire.com/apple-touch-icon.png
IP 104.16.53.48:0
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash ae70c6b6aeb89aa05c4da56bf59f7243
89743ff38221d32397fc4c3c43605a354bf46c82
f500eeaa6ecd664e06bcc112ed75b8013345c5d426463d745a2e48c56f9fc5c3
GET /apple-touch-icon.png HTTP/1.1
Host: www.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/png
content-length: 2155
access-control-allow-origin: *
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2384
etag: "62deda56-950"
expires: Fri, 03 Mar 2023 20:52:51 GMT
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
cf-cache-status: HIT
age: 153855
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a2daaf0b49-OSL
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pro_driver.svg
104.16.53.48200 OK 26 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pro_driver.svg
IP 104.16.53.48:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 03beaa68a57e38f3e0fcf99e9e6301eb
b9a398276660646dbdb50b8fa0b159e7fb492fc8
062564434521499a7f1cb499ab35272beceae69e603909402e0edf29a008ff14
GET /images/backgrounds/home_unicorn/pro_driver.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-28f1"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a020b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.mediafire.com/images/backgrounds/home_unicorn/store_color.svg
104.16.53.48200 OK 2.2 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/store_color.svg
IP 104.16.53.48:0
Hash 16348e5d368eea86cf781d9c112be037
b3040eb3930b676d0c181c8062d91b9612791fa5
1a0c6c06ab35e7bc49059d2e5c0c408ed0786ebe09fc7b8c0029e4d1c7b48690
GET /images/backgrounds/home_unicorn/store_color.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-17c6"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1f9a60b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/collaborate_color.svg
104.16.53.48200 OK 3.1 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/collaborate_color.svg
IP 104.16.53.48:0
Hash 9c6c8226b76c05fcbcfd3f0742777976
5812d568f714838d8d888d44f6930564046eef91
560a0d9551ee9faa3759a16aca0fb64a72ea51d7151502f1ef2e13168f4d861f
GET /images/backgrounds/home_unicorn/collaborate_color.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-1c17"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1f9970b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_1_time_links.svg
104.16.53.48200 OK 164 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_1_time_links.svg
IP 104.16.53.48:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1227)
Size 164 kB (164422 bytes)
Hash 99e22cff24825711f944583a93895880
06d1e4803e39c9b1743404e80893693a2acfec57
19662ec8d19f0a4480c73848147437ae2d2507a6c7d206f10de1a30a5f965db7
GET /images/backgrounds/home_unicorn/tf_1_time_links.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-4bd"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a000b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: iVj1le/t2JwXNgcn4wrOkd2oJ9XM4HjuLSzB8AicaKNIq+rjb/HJuBTlRiY7TTXZ/CQLqFfe/Kl26gPixI58tw==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 15:42:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_1_time.svg
104.16.53.48200 OK 21 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_1_time.svg
IP 104.16.53.48:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (1490)
Hash 8afe8bbf5b6dec716596964f54ea93fe
b78e2512927d4a8251df1bb5b5734880895e7e39
5ef98ea4c6205bdff28af0f3a29125a62b0a490d88a3931b79723dcae6fc730a
GET /images/backgrounds/home_unicorn/pf_1_time.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-534"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a24a140b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/store.svg
104.16.53.48200 OK 68 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/store.svg
IP 104.16.53.48:0
Hash 36b93a92641fd52ac10e1ffa1608b5e9
24ab4a1e3eeb031063ac59c079db3ae98e102bac
e24c6ae63504cc4929449388d4255bd62f7e28e17f8fed473cd8f0bcbdbd5e50
GET /images/backgrounds/home_unicorn/store.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-aeb"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1f99b0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5651
Cache-Control: max-age=92443
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:20 GMT
Etag: "63dbdb64-1d7"
Expires: Sat, 04 Feb 2023 17:23:03 GMT
Last-Modified: Thu, 02 Feb 2023 15:48:52 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.bca0d1c28285412bb689.js
143.204.55.40200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.bca0d1c28285412bb689.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (49086)
Hash e923aa360dc485b9df86355bd040c998
03c46dbd41e9d4bdf8a9e4bfbaba3f7f2e9280ec
9c7575553c5b81f9b905dbb27c8116b175b69e7472aa6597f8cace1c6434d676
GET /modules.bca0d1c28285412bb689.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67924
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "e923aa360dc485b9df86355bd040c998"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Qw1ADBp2eGmWSxmAeO4pbvOXO7_hUBdSWMDq9sTTqsy59I6fWaIJZg==
age: 9135
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 91f77accfdecd9abff22f103c9726e50
a2085989812bc7985bcd60da2c4913b7c93ef5ec
fe5af7a15129947869cf30856f1ef7655fff6036543771d8a414d3f425ff8969
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 15:42:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 01 Feb 2023 03:38:25 GMT
Expires: Wed, 08 Feb 2023 03:38:24 GMT
Etag: "a2085989812bc7985bcd60da2c4913b7c93ef5ec"
Cache-Control: max-age=602704,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 848
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793c46a6da77b4f7-OSL
www.facebook.com/tr/?id=542578585845936&ev=PageView&dl=https%3A%2F%2Fwww.mediafire.com%2F&rl=&if=false&ts=1675438972654&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675438972653.1652669706&it=1675438972406&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=542578585845936&ev=PageView&dl=https%3A%2F%2Fwww.mediafire.com%2F&rl=&if=false&ts=1675438972654&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675438972653.1652669706&it=1675438972406&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=542578585845936&ev=PageView&dl=https%3A%2F%2Fwww.mediafire.com%2F&rl=&if=false&ts=1675438972654&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675438972653.1652669706&it=1675438972406&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 15:42:21 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f32763d17ee930a84421656330650bd1
688473a7c570a6e84406eef1927df94bfccd1870
33f1a840a87b8ef5136065f9be370aa640573ab68d82e8a822d48bbd2eb837c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/YxmihnhFt54cZYUpI8Vki3ux02R2TgdxT2JLItC4sk0NMsB8q5xXuZr3KKhXns_325CVgfI3IAWpwJrMtsUf1HdwXaWps_lxmzvqH8R5aBB2P50trKqeLQ=h60
142.250.74.97200 OK 16 kB URL HTTP/2 lh3.googleusercontent.com/YxmihnhFt54cZYUpI8Vki3ux02R2TgdxT2JLItC4sk0NMsB8q5xXuZr3KKhXns_325CVgfI3IAWpwJrMtsUf1HdwXaWps_lxmzvqH8R5aBB2P50trKqeLQ=h60
IP 142.250.74.97:0
File type gzip compressed data, max compression\012- data
Hash 9f01bf9d551922ee6e3c9eed3f9f9829
b43c7d5584be5db3ad10294ad3195a48ecef2963
14280bdb67057ac29aaede37fe474681e0f8a51957c5e425dd97a62df68f8105
GET /YxmihnhFt54cZYUpI8Vki3ux02R2TgdxT2JLItC4sk0NMsB8q5xXuZr3KKhXns_325CVgfI3IAWpwJrMtsUf1HdwXaWps_lxmzvqH8R5aBB2P50trKqeLQ=h60 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 12249
x-xss-protection: 0
date: Fri, 03 Feb 2023 12:50:57 GMT
expires: Sat, 04 Feb 2023 04:46:38 GMT
cache-control: public, max-age=86400, no-transform
age: 10284
etag: "v1"
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 1c56c7c141fbb2647e4909546c5ee1ac
bf1479b20c78d135ce6397b0bff0e6573a3bcbef
30cd3ac555fa6d8d5a5a1165b9ff3b78336c0c3c44e22f034879869a99f61043
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 15:42:21 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 15:42:21 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Fri, 03 Feb 2023 17:20:40 GMT
Date: Fri, 03 Feb 2023 15:42:21 GMT
Connection: keep-alive
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 03 Feb 2023 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "112fdf47cdb80b9ce3d033ed09717460"
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FFjW7vnEFrQcquT7P262sjPcNY_YZskWE3V_qaNvcyOSrsVAzODVOw==
age: 9135
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 20c6f462-0f1f-44d1-9b6b-6afbc4e79e8b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpYpcELtIAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63da07d5-44cd803c0feba28919b0a9ec;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 06:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T3PhGRcHX1X2hn8K_4587fXBrEyuY5Em-b9Jg41uH4uyQXeFoRBIYg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 64525
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 63747
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 64460
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 62898
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 63872
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/share_color.svg
104.16.53.48200 OK 2.5 kB URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/share_color.svg
IP 104.16.53.48:0
Hash 07ed39d0d109fca9c8503f6e3ad15d90
f1dd7e1cde342af4bf6290350c2d45ef3e3fb2f3
fd3896225eefee50ce3297e31d64a4e63c6d23646df83cd975d480a273293120
GET /images/backgrounds/home_unicorn/share_color.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-1677"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1e98d0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 21:48:03 GMT
expires: Fri, 02 Feb 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 64458
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 82898
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-K68XP6D85D>m=45je3210&_p=768320376&cid=1662182396.1675438972&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675438972&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2F&dt=File%20sharing%20and%20storage%20made%20simple&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-K68XP6D85D>m=45je3210&_p=768320376&cid=1662182396.1675438972&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675438972&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2F&dt=File%20sharing%20and%20storage%20made%20simple&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-K68XP6D85D>m=45je3210&_p=768320376&cid=1662182396.1675438972&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675438972&sct=1&seg=0&dl=https%3A%2F%2Fwww.mediafire.com%2F&dt=File%20sharing%20and%20storage%20made%20simple&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mediafire.com
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.mediafire.com
date: Fri, 03 Feb 2023 15:42:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.mediafire.com/cdn-cgi/rum?
104.16.53.48204 No Content 0 B URL HTTP/2 www.mediafire.com/cdn-cgi/rum?
IP 104.16.53.48:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: www.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 15790
Origin: https://www.mediafire.com
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=; amp_28916b=IXCJG1_5Gd6M9pUwkwW5mu...1gobv3n9j.1gobv3n9k.0.1.1; _ga=GA1.1.1662182396.1675438972; _gid=GA1.2.1822174139.1675438972; _ga_K68XP6D85D=GS1.1.1675438972.1.0.1675438972.0.0.0; _fbp=fb.1.1675438972653.1652669706; _gat_gtag_UA_829541_1=1; _hjSessionUser_1232118=eyJpZCI6ImY4NDY4NzA4LTQzMTItNTM3Yy1hYjhkLWNlZDNhNDIwYjJjMCIsImNyZWF0ZWQiOjE2NzU0Mzg5NzI2ODAsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_1232118=eyJpZCI6IjZkNzI5MmJhLWFhNGYtNDIwOS1iOGU3LWJjMTdjMWQ3NmNjNSIsImNyZWF0ZWQiOjE2NzU0Mzg5NzM0MDksImluU2FtcGxlIjp0cnVlfQ==; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 15:42:21 GMT
access-control-allow-origin: https://www.mediafire.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 793c46ab6b2b0b49-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&gjid=462109217&_gid=1822174139.1675438972&_u=aGBAAUACQAAAACAAI~&z=252994189
173.194.222.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&gjid=462109217&_gid=1822174139.1675438972&_u=aGBAAUACQAAAACAAI~&z=252994189
IP 173.194.222.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&gjid=462109217&_gid=1822174139.1675438972&_u=aGBAAUACQAAAACAAI~&z=252994189 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.mediafire.com
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.mediafire.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 03 Feb 2023 15:42:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&_u=aGBAAUACQAAAACAAI~&z=1161798544
142.250.74.131200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&_u=aGBAAUACQAAAACAAI~&z=1161798544
IP 142.250.74.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-829541-1&cid=1662182396.1675438972&jid=1811484091&_u=aGBAAUACQAAAACAAI~&z=1161798544 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 03 Feb 2023 15:42:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 2bef39ac599211fe23ad884ceacf1c9b
c19b32a600412658c49a3e55d5d8353a5101c31d
0ff4181df99351d3aa3490540d2f19474531fb07e13ee457b9339efab1a47ad9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 15:42:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Open+Sans:800,700,400,300
142.250.74.138200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:800,700,400,300
IP 142.250.74.138:0
GET /css?family=Open+Sans:800,700,400,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 15:42:20 GMT
date: Fri, 03 Feb 2023 15:42:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_share.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_share.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/tf_share.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-3e0"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a219c70b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_downloads.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_downloads.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/tf_downloads.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-3c2"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a219c50b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_apps.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_apps.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/tf_apps.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-918"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a010b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_direct_download.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_direct_download.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/pf_direct_download.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-3b9"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a090b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/lifehacker.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/lifehacker.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/lifehacker.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-959"
access-control-allow-origin: *
cf-cache-status: HIT
age: 4204
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fdf840b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/js/master_121898.js
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/js/master_121898.js
IP 104.16.53.48:0
GET /js/master_121898.js HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: application/x-javascript
last-modified: Wed, 01 Feb 2023 18:33:16 GMT
vary: Accept-Encoding
etag: W/"63dab06c-8d704"
expires: Sun, 05 Mar 2023 12:53:05 GMT
cache-control: max-age=2592000
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 6354
server: cloudflare
cf-ray: 793c469fcf7b0b49-OSL
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/header/mf_logo_u1_full_color_reversed.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/header/mf_logo_u1_full_color_reversed.svg
IP 104.16.53.48:0
GET /images/backgrounds/header/mf_logo_u1_full_color_reversed.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-11ca"
access-control-allow-origin: *
cf-cache-status: HIT
age: 6129
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fbf6c0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/icons/svg_dark/icons_sprite.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/icons/svg_dark/icons_sprite.svg
IP 104.16.53.48:0
GET /images/icons/svg_dark/icons_sprite.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=; amp_28916b=IXCJG1_5Gd6M9pUwkwW5mu...1gobv3n9j.1gobv3n9k.0.1.1; _ga=GA1.1.1662182396.1675438972; _gid=GA1.2.1822174139.1675438972; _ga_K68XP6D85D=GS1.1.1675438972.1.0.1675438972.0.0.0; _fbp=fb.1.1675438972653.1652669706
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:21 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-90ab"
access-control-allow-origin: *
cf-cache-status: HIT
age: 6130
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a69e8c0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.mediafire.com/
104.16.53.48200 OK 0 B IP 104.16.53.48:0
GET / HTTP/1.1
Host: www.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:19 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
content-security-policy: frame-ancestors *.mediafire.com
expires: 0
pragma: no-cache
strict-transport-security: max-age=0
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
set-cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; expires=Tue, 03-Feb-2043 15:42:19 GMT; Max-Age=631152000; path=/; domain=.mediafire.com; HttpOnly
__cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=; path=/; expires=Fri, 03-Feb-23 16:12:19 GMT; domain=.mediafire.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 793c469b1ade0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.56.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.mediafire.com
Connection: keep-alive
Referer: https://www.mediafire.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a0bae9b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/icons/svg_light/upload.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/icons/svg_light/upload.svg
IP 104.16.53.48:0
GET /images/icons/svg_light/upload.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-d1"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1d97d0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_1tb.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_1tb.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/pf_1tb.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-5de"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a030b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/icons/svg_light/social_icons_sprite.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/icons/svg_light/social_icons_sprite.svg
IP 104.16.53.48:0
GET /images/icons/svg_light/social_icons_sprite.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-1300"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a24a180b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
IP 104.16.53.48:0
GET /css/mfv4_121898.php?ver=ssl&date=2023-02-03 HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
pragma: public
cache-control: max-age=
expires: Fri, 17 Feb 2023 14:00:03 GMT
content-encoding: gzip
access-control-allow-origin: *
last-modified: Fri, 03 Feb 2023 14:00:03 GMT
cf-cache-status: HIT
age: 5977
server: cloudflare
cf-ray: 793c469faf640b49-OSL
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/techcrunch.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/techcrunch.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/techcrunch.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-92a"
access-control-allow-origin: *
cf-cache-status: HIT
age: 4517
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fef980b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/access.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/access.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/access.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-1086"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a209ae0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_no_ads.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_no_ads.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/pf_no_ads.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-4e1"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a060b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_web_uploads.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_web_uploads.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/pf_web_uploads.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-619"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a23a080b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/pf_bulk_download.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/pf_bulk_download.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/pf_bulk_download.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-38f"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5115
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a24a130b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.mediafire.com/templates/upgrade/upgrade_button.php
104.16.53.48200 OK 0 B URL HTTP/2 www.mediafire.com/templates/upgrade/upgrade_button.php
IP 104.16.53.48:0
GET /templates/upgrade/upgrade_button.php HTTP/1.1
Host: www.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
vary: Accept-Encoding
x-robots-tag: noindex, nofollow
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793c46a179380b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/gizmodo.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/gizmodo.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/gizmodo.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.mediafire.com/
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-847"
access-control-allow-origin: *
cf-cache-status: HIT
age: 4517
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c469fdf830b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_multi_upload.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_multi_upload.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/tf_multi_upload.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-3da"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a219ca0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/tf_organize.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/tf_organize.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/tf_organize.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-1a3"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a239ff0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.mediafire.com/images/backgrounds/home_unicorn/share.svg
104.16.53.48200 OK 0 B URL HTTP/2 static.mediafire.com/images/backgrounds/home_unicorn/share.svg
IP 104.16.53.48:0
GET /images/backgrounds/home_unicorn/share.svg HTTP/1.1
Host: static.mediafire.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.mediafire.com/css/mfv4_121898.php?ver=ssl&date=2023-02-03
Cookie: ukey=5dpt2bxf7bcn0atiote5ntziemiopk1v; __cf_bm=JOmgwGt9YkHA6yIXCrtw7qDHeh2Fx7fhbrUn3Szu6R0-1675438939-0-AdsPvTS/g+MI8mxpODtZipJTCxMI/j4zVGPKijuHYkNFnDge9AmuMm65lwn054y2IZgYuErI1zSB74MBKzt22Xk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 15:42:20 GMT
content-type: image/svg+xml
last-modified: Mon, 25 Jul 2022 18:00:54 GMT
etag: W/"62deda56-ea8"
access-control-allow-origin: *
cf-cache-status: HIT
age: 5116
vary: Accept-Encoding
server: cloudflare
cf-ray: 793c46a1e98b0b49-OSL
content-encoding: gzip
X-Firefox-Spdy: h2