r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6666
Expires: Tue, 29 Nov 2022 05:52:03 GMT
Date: Tue, 29 Nov 2022 04:00:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2861
Cache-Control: max-age=112685
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:57 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:19:02 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4388
Expires: Tue, 29 Nov 2022 05:14:05 GMT
Date: Tue, 29 Nov 2022 04:00:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 03:19:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2482
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: v7Wq+KlF0cJ8sPlgPupBf7N4Cc5lGS/ILGsiN7bxYZ9VDU9iLgHCKKEZh3Lfd0aIZCOuMKyO1a6+nyN/3xb94w==
x-amz-request-id: KXXE7W40NBKFTSCV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 03:45:17 GMT
age: 940
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 04:00:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe
204.155.145.48200 OK 14 kB URL HTTP/1.1 dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe
IP 204.155.145.48:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1847), with CRLF, LF line terminators
Hash ffe6c4f9d9e4b90dac8a9a853310ed1a
5a0009a1117b09e324e7e48bbff6c38bc7f0c2f7
711ab04d416d9d0e56689edf4103acbcf000c0cf43aadaf4837c24696ecfb5a7
Analyzer Verdict Alert fortinet Malware
GET /download/7zadSfPD/payment_copy_2022_32093.exe HTTP/1.1
Host: dc534.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: 534
Set-Cookie: day1host=h; Domain=.4sync.com; Expires=Wed, 30-Nov-2022 04:00:57 GMT; Path=/
hostid=499941593; Expires=Fri, 26-Nov-2032 04:00:57 GMT; Path=/
cd1v=sykh; Domain=.4sync.com; Path=/
Vary: *
Content-Encoding: gzip
Content-Type: text/html;charset=UTF-8
Content-Length: 14379
Date: Tue, 29 Nov 2022 04:00:56 GMT
www.google.com/recaptcha/api.js?render=explicit
142.250.74.164200 OK 555 B URL HTTP/1.1 www.google.com/recaptcha/api.js?render=explicit
IP 142.250.74.164:0
File type ASCII text, with very long lines (851), with no line terminators
Hash 033d6d5e6917da10595e8287b2090d97
f5d6e82b0a60ca6f1c5915d263ad8464405a2427
6130515743161bc9357b5690db2cc032ebdfaa838687ad5a9b69d916c2ddf34a
GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200 OK
Expires: Tue, 29 Nov 2022 04:00:57 GMT
Date: Tue, 29 Nov 2022 04:00:57 GMT
Cache-Control: private, max-age=300
Content-Type: text/javascript; charset=UTF-8
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 555
Server: GSE
aj1090.online/dc9e97fb.js
199.80.53.177200 14 kB URL HTTP/1.1 aj1090.online/dc9e97fb.js
IP 199.80.53.177:0
File type ASCII text, with very long lines (37181), with no line terminators
Hash e2ac40d4f5c000ec23674be0e25a54a7
18665d914a964a5b348b2556eb1cde008bb7d11a
d4db5907504f50b7053817620181aca4002be3c978ccef8dd656ba58c6b41fe6
GET /dc9e97fb.js HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200
accept-ranges: bytes
etag: "052fb39646df68979ec6557fe6d85eab8"
content-type: application/javascript
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 29 Nov 2022 04:00:57 GMT
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 01565d6f13d468204f83940a17be4cea
19998574602c6d1d636b3a3a4850323413c238f5
cb7bb04f822a7ea2d6cd514108607685fe9ffabba048a8233f61d998585cca3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 04:00:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:42:47 GMT
Expires: Tue, 29 Nov 2022 20:42:47 GMT
ETag: "19998574602c6d1d636b3a3a4850323413c238f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 01565d6f13d468204f83940a17be4cea
19998574602c6d1d636b3a3a4850323413c238f5
cb7bb04f822a7ea2d6cd514108607685fe9ffabba048a8233f61d998585cca3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 04:00:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:42:47 GMT
Expires: Tue, 29 Nov 2022 20:42:47 GMT
ETag: "19998574602c6d1d636b3a3a4850323413c238f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 01565d6f13d468204f83940a17be4cea
19998574602c6d1d636b3a3a4850323413c238f5
cb7bb04f822a7ea2d6cd514108607685fe9ffabba048a8233f61d998585cca3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 04:00:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:42:47 GMT
Expires: Tue, 29 Nov 2022 20:42:47 GMT
ETag: "19998574602c6d1d636b3a3a4850323413c238f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 03:11:13 GMT
cache-control: public,max-age=3600
age: 2985
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 01565d6f13d468204f83940a17be4cea
19998574602c6d1d636b3a3a4850323413c238f5
cb7bb04f822a7ea2d6cd514108607685fe9ffabba048a8233f61d998585cca3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 04:00:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:42:47 GMT
Expires: Tue, 29 Nov 2022 20:42:47 GMT
ETag: "19998574602c6d1d636b3a3a4850323413c238f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 940
Cache-Control: max-age=105697
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:58 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:22:35 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 01565d6f13d468204f83940a17be4cea
19998574602c6d1d636b3a3a4850323413c238f5
cb7bb04f822a7ea2d6cd514108607685fe9ffabba048a8233f61d998585cca3f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 04:00:57 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 20:42:47 GMT
Expires: Tue, 29 Nov 2022 20:42:47 GMT
ETag: "19998574602c6d1d636b3a3a4850323413c238f5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
static.4sync.com/css/common_n.4min.css?ver=-1925194639
204.155.149.137200 OK 4.8 kB URL HTTP/1.1 static.4sync.com/css/common_n.4min.css?ver=-1925194639
IP 204.155.149.137:0
File type ASCII text, with very long lines (19893), with no line terminators
Hash 82b5ae1d5e3a6b763645dc3e6719a63e
1be52918ca217cabfe95587ecd439e84aa129cf5
f10ecb6f3859d9cca2c4543f16d78eb149aab5c7ab0ff285d04c75a45909fcb9
GET /css/common_n.4min.css?ver=-1925194639 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "4db5-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 4833
Content-Type: text/css
static.4sync.com/css/ui/elements.4min.css?ver=-1193473130
204.155.149.137200 OK 2.8 kB URL HTTP/1.1 static.4sync.com/css/ui/elements.4min.css?ver=-1193473130
IP 204.155.149.137:0
File type ASCII text, with very long lines (18248), with no line terminators
Hash 7b3416f0cf542cf99633537a2c3b7e9a
5de2fbf2704053e829b7878a9c23b5bc266147d4
d05180676fe6f30af4221040ae9faac871e926c7bb29537cefc35304dbef88dc
GET /css/ui/elements.4min.css?ver=-1193473130 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "4748-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 2816
Content-Type: text/css
static.4sync.com/auth-popup.4min.css?ver=2011805563
204.155.149.137200 OK 2.3 kB URL HTTP/1.1 static.4sync.com/auth-popup.4min.css?ver=2011805563
IP 204.155.149.137:0
File type ASCII text, with very long lines (11017), with no line terminators
Hash 1c9855b3d4645d28139761f2652af579
de77448c9fb24a70234687bd115f02684d9aa773
e5c323e65f4cb7c5fda37d35539faf11fd996eb0c0acf032af7df2731452ec56
GET /auth-popup.4min.css?ver=2011805563 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "2b09-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 2255
Content-Type: text/css
static.4sync.com/css/tipTip.4min.css?ver=-1558254190
204.155.149.137200 OK 402 B URL HTTP/1.1 static.4sync.com/css/tipTip.4min.css?ver=-1558254190
IP 204.155.149.137:0
File type ASCII text, with very long lines (1297), with no line terminators
Hash 4be675d7286eeb48749ed889bd430f11
9f365b34349ed53ef19bbe4d0f980692cdc978a6
5169f37dbd58893ad80fcf89718a5c081b2cbff90c7000e64d95d53bf291addb
GET /css/tipTip.4min.css?ver=-1558254190 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "511-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 402
Content-Type: text/css
static.4sync.com/css/themes/account/icons.4min.css?ver=1206950338
204.155.149.137200 OK 7.5 kB URL HTTP/1.1 static.4sync.com/css/themes/account/icons.4min.css?ver=1206950338
IP 204.155.149.137:0
File type ASCII text, with very long lines (47843), with no line terminators
Hash e68268587986541e160c4975df055e19
83c5f75b49df5d4cd646c8b02cb62f299740317d
d3ae62518a3e63d89b81d995b16efcb34410e822b90f576e2ecb3fea0c648814
GET /css/themes/account/icons.4min.css?ver=1206950338 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "bae3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 7488
Content-Type: text/css
static.4sync.com/js/jquery/jquery-migrate-1.2.1.4min.js?ver=-1518983214
204.155.149.137200 OK 3.2 kB URL HTTP/1.1 static.4sync.com/js/jquery/jquery-migrate-1.2.1.4min.js?ver=-1518983214
IP 204.155.149.137:0
File type ASCII text, with very long lines (7320)
Hash 81baf5b6ea291994d7e18fa6022d8742
b660f1c173b22a028c220e779ea1cf411118acc9
6ff39b30b3ec057e5de72e994039a25cdb029af306debdff83011015a1fc1f2d
GET /js/jquery/jquery-migrate-1.2.1.4min.js?ver=-1518983214 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "1d49-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 3229
Content-Type: application/javascript
static.4sync.com/js/plugins/favicon.4min.js?ver=589791203
204.155.149.137200 OK 713 B URL HTTP/1.1 static.4sync.com/js/plugins/favicon.4min.js?ver=589791203
IP 204.155.149.137:0
File type ASCII text, with very long lines (1737), with no line terminators
Hash 4789339bbdd75a6ab6b4ec099460ad7f
70aafd70df48e3b03186fe1909eb461a1eebbfc4
812f976a637fe6ccd9e063fafe1bdc368837b86618fed34f83e99bfd73f41f70
GET /js/plugins/favicon.4min.js?ver=589791203 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "6c9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 713
Content-Type: application/javascript
static.4sync.com/js/header.4min.js?ver=1540030082
204.155.149.137200 OK 3.1 kB URL HTTP/1.1 static.4sync.com/js/header.4min.js?ver=1540030082
IP 204.155.149.137:0
File type ASCII text, with very long lines (9027), with no line terminators
Hash 9016d4f1374e0c008b0ceafc810caa32
43c975d392c7253e5d84c249a4a289196b516c2f
e5bc2645b23aa98510b00e550a7933bcc3fe467f2fed3161ad6ba729d99c0ba8
GET /js/header.4min.js?ver=1540030082 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "2343-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 3096
Content-Type: application/javascript
static.4sync.com/js/purchaseStats.4min.js?ver=-644521528
204.155.149.137200 OK 148 B URL HTTP/1.1 static.4sync.com/js/purchaseStats.4min.js?ver=-644521528
IP 204.155.149.137:0
File type ASCII text, with no line terminators
Hash 0361be3574e09bd253e22e8376234dca
95f2a1fd5d1a6e921973cab9b41fabc18fbf2915
d59cba08377ace98eb08a2011f904b2854e77225219babeb643a6c6411334d0e
GET /js/purchaseStats.4min.js?ver=-644521528 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "105-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 148
Content-Type: application/javascript
static.4sync.com/js/login_fnc.4min.js?ver=958304654
204.155.149.137200 OK 945 B URL HTTP/1.1 static.4sync.com/js/login_fnc.4min.js?ver=958304654
IP 204.155.149.137:0
File type ASCII text, with very long lines (1878), with no line terminators
Hash 4f7a2c77a1c045667c63712f107e669d
4d6f7c63924ffd408b241ad2019dcd3007a14e09
232307b2a82a62f24c00133a9339e88bcb46149cda2bee53134beceba19b6ed2
GET /js/login_fnc.4min.js?ver=958304654 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "756-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 945
Content-Type: application/javascript
push.services.mozilla.com/
54.188.211.138101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.188.211.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0trdtj8ASyq2tR5covSZ5A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SsCKReJR0pzfj2NgRf1ydEfBBLY=
static.4sync.com/js/utils.4min.js?ver=1996083621
204.155.149.137200 OK 5.2 kB URL HTTP/1.1 static.4sync.com/js/utils.4min.js?ver=1996083621
IP 204.155.149.137:0
File type Unicode text, UTF-8 text, with very long lines (14572), with no line terminators
Hash efaec63e4bfc2c0361d8a26e794ab00c
1023c1132fa7804e6d0444f1d60a1352728a8020
31f6839cb0179790e35540703863f22ba3c54a0ccee6f8cd58cf0bfb4b0143b3
GET /js/utils.4min.js?ver=1996083621 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "38ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 5219
Content-Type: application/javascript
static.4sync.com/js/authScripts.4min.js?ver=1324171495
204.155.149.137200 OK 1.8 kB URL HTTP/1.1 static.4sync.com/js/authScripts.4min.js?ver=1324171495
IP 204.155.149.137:0
File type ASCII text, with very long lines (4592), with no line terminators
Hash 0783bb42c796ab4be65540e1f55ae400
7f712d33583cb44eaa02398bd9a7468dc8b9885b
ba0de0c341e59dce8d2cebaa85fa5240401352f7e66ab9a3b839a25c29db144b
GET /js/authScripts.4min.js?ver=1324171495 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "11f0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1756
Content-Type: application/javascript
static.4sync.com/js/jquery/jquery-1.9.1.4min.js?ver=-24329501
204.155.149.137200 OK 37 kB URL HTTP/1.1 static.4sync.com/js/jquery/jquery-1.9.1.4min.js?ver=-24329501
IP 204.155.149.137:0
File type ASCII text, with very long lines (39922)
Hash 3f0078d62ea896a7c522943a874e2f04
481b5d8691dc625f0b6af2fc16bd87a5447a84f6
b0fb8164c30407e2d5f4b01ad121358edd06c3a63e0eb941e6e8ad4ee579242b
GET /js/jquery/jquery-1.9.1.4min.js?ver=-24329501 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "198c9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 36576
Content-Type: application/javascript
static.4sync.com/js/cookie.4min.js?ver=408852653
204.155.149.137200 OK 309 B URL HTTP/1.1 static.4sync.com/js/cookie.4min.js?ver=408852653
IP 204.155.149.137:0
File type ASCII text, with very long lines (461), with no line terminators
Hash b07734ecbf4159ee193645141fe0018a
1c4dc58ea66cf0bc474aa613b4bbd0bfaa2044d5
62b0d9aec8df130eac5170a23904aa59545c31555c39016c1543e999fb8205ff
GET /js/cookie.4min.js?ver=408852653 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "1cd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 309
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.jsonWithError.4min.js?ver=881271969
204.155.149.137200 OK 388 B URL HTTP/1.1 static.4sync.com/js/plugins/jquery.jsonWithError.4min.js?ver=881271969
IP 204.155.149.137:0
File type ASCII text, with very long lines (825), with no line terminators
Hash dbc2cad3b6b3a84d3ad30215b5749d33
88f757b40b7db240ea2d7f898d66dc6a3c9bdb7c
87a446cb1834b124648aa0357df1f66614175093480ed58c16a8aa00f7637386
GET /js/plugins/jquery.jsonWithError.4min.js?ver=881271969 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "339-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 388
Content-Type: application/javascript
static.4sync.com/js/smallPlugins.4min.js?ver=-845116982
204.155.149.137200 OK 559 B URL HTTP/1.1 static.4sync.com/js/smallPlugins.4min.js?ver=-845116982
IP 204.155.149.137:0
File type ASCII text, with very long lines (1102), with no line terminators
Hash 5bd2cabe98e63686d66c92fccb1cc5fc
5bfc1b8d66d2dc7869ef01299e8e6052b12eca6f
5b2f3e3191b9d942cd16336d84fc3e07847b9f77a90db6d3892652f519b629ab
GET /js/smallPlugins.4min.js?ver=-845116982 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "44e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 559
Content-Type: application/javascript
static.4sync.com/js/Events.4min.js?ver=-1265666699
204.155.149.137200 OK 316 B URL HTTP/1.1 static.4sync.com/js/Events.4min.js?ver=-1265666699
IP 204.155.149.137:0
File type ASCII text, with very long lines (986), with no line terminators
Hash 6ceef5313a4a8f862a36023b9c24de71
6d31aa4a0f1718c14ba093dfcd2b068146c5e648
409ccfefa07940e19fa9bc642255184ebc4cb3e7babb795f717a0e1f4680b235
GET /js/Events.4min.js?ver=-1265666699 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "3da-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 316
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.placeholder.patch.4min.js?ver=-305562918
204.155.149.137200 OK 739 B URL HTTP/1.1 static.4sync.com/js/plugins/jquery.placeholder.patch.4min.js?ver=-305562918
IP 204.155.149.137:0
File type ASCII text, with very long lines (1810), with no line terminators
Hash f6fc4f9fb92158708220adba1e63558b
ffa6446edbcf058ce7b1125c0859c952e7f91685
27bec46c8bb72e41a91b6e05ee90acf66530d9d5c2d9ff731e8a87df521d3d9b
GET /js/plugins/jquery.placeholder.patch.4min.js?ver=-305562918 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "712-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 739
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.cookie.4min.js?ver=823523918
204.155.149.137200 OK 421 B URL HTTP/1.1 static.4sync.com/js/plugins/jquery.cookie.4min.js?ver=823523918
IP 204.155.149.137:0
File type ASCII text, with very long lines (732), with no line terminators
Hash e8addefccbb7c3a993d0fb01692668d6
7fd261a5fc48a21ed16182aeb34e570eec6aa3f2
0d3e6881371d3b4af6bde5d769ad47ce1b6850a205d6b455e16300f9b5d7bcf6
GET /js/plugins/jquery.cookie.4min.js?ver=823523918 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "2dc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 421
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.localStorage.4min.js?ver=-204628756
204.155.149.137200 OK 999 B URL HTTP/1.1 static.4sync.com/js/plugins/jquery.localStorage.4min.js?ver=-204628756
IP 204.155.149.137:0
File type ASCII text, with very long lines (2487), with no line terminators
Hash c0b78e0d6bc1b60fc54423d97ed487b3
63ab34eb692becb19207f0353e4847807aa8a7af
a6467080b3868d744c259101bfa9f0d44acef3db416640817df6b992128a0c17
GET /js/plugins/jquery.localStorage.4min.js?ver=-204628756 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "9b7-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 999
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.slimscroll.min.js?ver=899909646
204.155.149.137200 OK 2.0 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.slimscroll.min.js?ver=899909646
IP 204.155.149.137:0
File type Unicode text, UTF-8 text, with very long lines (540)
Hash 83c9cca74127c65911e018b2eab76692
3bce14c351f48b2396bbb78b0b6652cb0935a02b
b04f843c6e645fe34a88ac2c76b830a092dd9bcf64e4cdffe822e0f353b67615
GET /js/plugins/jquery.slimscroll.min.js?ver=899909646 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "12f0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1979
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.tipTip.4min.js?ver=424755820
204.155.149.137200 OK 1.2 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.tipTip.4min.js?ver=424755820
IP 204.155.149.137:0
File type ASCII text, with very long lines (3144), with no line terminators
Hash 13f75643c7c2ac1a3e447aa49bb7dd5b
462c77ddc085ac8f01ea1c92498705aa5b289b87
72d975542f8f88aa521bd2ae4b214082914f4f6a1629bbf7d247330ae7ef8db3
GET /js/plugins/jquery.tipTip.4min.js?ver=424755820 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "c48-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1184
Content-Type: application/javascript
static.4sync.com/js/plugins/json2.4min.js?ver=1033538422
204.155.149.137200 OK 1.3 kB URL HTTP/1.1 static.4sync.com/js/plugins/json2.4min.js?ver=1033538422
IP 204.155.149.137:0
File type ASCII text, with very long lines (3377), with no line terminators
Hash f77638f60530ae099c8382528438fb77
6dfd51268b11bb5fbbd9ef54da69dca4facfbd6b
a5963c4b35194f2a40528306107d83e5d8c43792186fceb26cd1b95c852690d6
GET /js/plugins/json2.4min.js?ver=1033538422 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "d31-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1333
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
204.155.149.137200 OK 7.2 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.cycle.all.min.js?ver=-713535238
IP 204.155.149.137:0
File type ASCII text, with very long lines (17580)
Hash d48e193ef564d4733da8b6be2d68313c
07674a8745062f1e578ecc39aaa3e3c959fabdcd
3811ec2ff3b331b2541a9355bb2701cba81614b6a6f05661cc4e9b343575bd87
GET /js/plugins/jquery.cycle.all.min.js?ver=-713535238 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "7124-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 7187
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.mousewheel.4min.js?ver=-1331110344
204.155.149.137200 OK 1.3 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.mousewheel.4min.js?ver=-1331110344
IP 204.155.149.137:0
File type ASCII text, with very long lines (2645)
Hash 5951b622c12b18ec77beff63fb5c09a5
fe57578a37f681a84719d72c3341abebb1a36df0
ffbaa3ac27e0d32340cf74a6add5c429b6d5ff78e9086c0c41b30c294bd6a886
GET /js/plugins/jquery.mousewheel.4min.js?ver=-1331110344 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "afd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1252
Content-Type: application/javascript
static.4sync.com/4sync.com/css/d1.4min.css?ver=133494991
204.155.149.137200 OK 2.5 kB URL HTTP/1.1 static.4sync.com/4sync.com/css/d1.4min.css?ver=133494991
IP 204.155.149.137:0
File type ASCII text, with very long lines (9012), with no line terminators
Hash fe646ae864c25739892c041eb0911aaf
398e5e5bb6e18c25edf4a2e3cc23d4ec4a81d975
f2044b2bc313664e1d41bf4b665dc12da470a4f249f33f51ead474a83f43bd49
GET /4sync.com/css/d1.4min.css?ver=133494991 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "2334-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 2486
Content-Type: text/css
static.4sync.com/js/d1/d1.4min.js?ver=-1145232253
204.155.149.137200 OK 751 B URL HTTP/1.1 static.4sync.com/js/d1/d1.4min.js?ver=-1145232253
IP 204.155.149.137:0
File type ASCII text, with very long lines (1594), with no line terminators
Hash 54b1a3fbbaa7112506cec36c64d0eace
a029f9ce218840b780aa6909b4d0625cc7792337
54d4865acf18b677c2bd83ca6ea217534596afd2c28adb52a51f9722e8b59076
GET /js/d1/d1.4min.js?ver=-1145232253 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "63a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 751
Content-Type: application/javascript
static.4sync.com/js/reloadBackground.4min.js?ver=-471136432
204.155.149.137200 OK 449 B URL HTTP/1.1 static.4sync.com/js/reloadBackground.4min.js?ver=-471136432
IP 204.155.149.137:0
File type ASCII text, with very long lines (778), with no line terminators
Hash 7b8979e2af046a2b448e8a41313140b4
5612fa8035e640cc85f667b84f9bcf4defcdeb63
ee67336eceac8ab2e8e13f036b282efe072c6896b711f4343ccc04c28b31491b
GET /js/reloadBackground.4min.js?ver=-471136432 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "30a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 449
Content-Type: application/javascript
static.4sync.com/css/pageDownload1/native.btn.min.css?ver=1755226539
204.155.149.137200 OK 223 B URL HTTP/1.1 static.4sync.com/css/pageDownload1/native.btn.min.css?ver=1755226539
IP 204.155.149.137:0
Hash 5d815163d905157e65f3126acba7462b
606ed64fa609c9f5af57ecb40f2a35699a663ded
467bd94d12e89b74b2dd7d11f0106b47713a42d696e961853b0bd0370eae26ab
GET /css/pageDownload1/native.btn.min.css?ver=1755226539 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1d2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 223
Content-Type: text/css
static.4sync.com/4sync.com/css/header.4min.css?ver=1581812079
204.155.149.137200 OK 3.4 kB URL HTTP/1.1 static.4sync.com/4sync.com/css/header.4min.css?ver=1581812079
IP 204.155.149.137:0
File type ASCII text, with very long lines (13805), with no line terminators
Hash 9ca9aafd7effcda676023605cfc3fe6e
5361a9c2d3dcd0ade5195e3cdb8e9f1b2b472a98
a9ada656442091422276587b7b9b86d3af9648b5f8fe075373b6088aabbe5c67
GET /4sync.com/css/header.4min.css?ver=1581812079 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "35ed-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 3382
Content-Type: text/css
static.4sync.com/js/facebookInit.4min.js?ver=1192139135
204.155.149.137200 OK 291 B URL HTTP/1.1 static.4sync.com/js/facebookInit.4min.js?ver=1192139135
IP 204.155.149.137:0
File type ASCII text, with very long lines (425), with no line terminators
Hash 53498b12342d6e242d37bf6abb1d9ae4
9abd49e3b21ce20d9fd496a96c7a9d6fb7c4d2ad
a05bc6a67bcd3e76ae9305f043fb3fc0292ee96d99786f56c85a24144534826a
GET /js/facebookInit.4min.js?ver=1192139135 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 291
Content-Type: application/javascript
static.4sync.com/4sync.com/js/login.4min.js?ver=-1173654124
204.155.149.137200 OK 415 B URL HTTP/1.1 static.4sync.com/4sync.com/js/login.4min.js?ver=-1173654124
IP 204.155.149.137:0
File type ASCII text, with very long lines (1095), with no line terminators
Hash 15fb964509cbd8767411e1edfafacb4f
185d71df22aa232326d55595f2f71bc0fca48e00
d178cfabdea4ddef6e920f514c8bd1bd276272b66bf4d6346b85efc78da85af4
GET /4sync.com/js/login.4min.js?ver=-1173654124 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "447-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 415
Content-Type: application/javascript
static.4sync.com/css/popup_n.4min.css?ver=-743252670
204.155.149.137200 OK 916 B URL HTTP/1.1 static.4sync.com/css/popup_n.4min.css?ver=-743252670
IP 204.155.149.137:0
File type ASCII text, with very long lines (2025), with no line terminators
Hash d914af53e3948023bbb8126a7766283c
56ebce3f1f12d25c38c591a94be6bd58ec9d8818
f3a4dedb1feea6c246a62f456ad3bb9141c96de02695a16e52fc67b3aa08bb87
GET /css/popup_n.4min.css?ver=-743252670 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "7e9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 916
Content-Type: text/css
static.4sync.com/js/PopupModule.4min.js?ver=-22273199
204.155.149.137200 OK 1.2 kB URL HTTP/1.1 static.4sync.com/js/PopupModule.4min.js?ver=-22273199
IP 204.155.149.137:0
File type ASCII text, with very long lines (3040), with no line terminators
Hash 635f75fe9cad904dcbe710a66cae6db8
fe97d0f44a5e8bbaca9dfd4b182ad6ae42c0b407
2adfc78df480911cf0e5e260a29ccdc2f5685db1faee6a5b209c03f5e30aef62
GET /js/PopupModule.4min.js?ver=-22273199 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "be0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1217
Content-Type: application/javascript
static.4sync.com/css/notifyBlock.4min.css?ver=-1408296607
204.155.149.137200 OK 435 B URL HTTP/1.1 static.4sync.com/css/notifyBlock.4min.css?ver=-1408296607
IP 204.155.149.137:0
File type ASCII text, with very long lines (793), with no line terminators
Hash b0d711bbf32872c93ac64eabf88100b2
68e66e5be950e7c0e6d3b0f5757e4b87a01d1cdc
8b8047d1beb75de19c0832e4cefdfe7addf74ec7cd0b0aa2354fe9917875fb85
GET /css/notifyBlock.4min.css?ver=-1408296607 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "319-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 435
Content-Type: text/css
static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
204.155.149.137200 OK 14 kB URL HTTP/1.1 static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
IP 204.155.149.137:0
File type ASCII text, with very long lines (61408), with no line terminators
Hash 8cee24ca1bd5961a238ffa19825bbd98
24234fda11164c52ffe595c3fbfe16e3a26caac1
2d86c6a2e0ff84fe941d7069c45f90b9ec50484841a63529f8ceb7782e5cbbe8
GET /4sync.com/css/general.4min.css?ver=-1520740532 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "efe0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 13743
Content-Type: text/css
static.4sync.com/js/notifyBlock.4min.js?ver=-1728458541
204.155.149.137200 OK 752 B URL HTTP/1.1 static.4sync.com/js/notifyBlock.4min.js?ver=-1728458541
IP 204.155.149.137:0
File type ASCII text, with very long lines (2041), with no line terminators
Hash 289e0155e803820a98b03d9a34d4edf9
dee22cbc717cf7a54b701821a3dac37a518635d6
a2bf43d868d1ef28b4d4b5dd616c125eeae35f57e810f7911a0428c2c17009f1
GET /js/notifyBlock.4min.js?ver=-1728458541 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "7f9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 752
Content-Type: application/javascript
static.4sync.com/js/jquery/jquery-ui-1.8.24.4min.js?ver=1127854430
204.155.149.137200 OK 55 kB URL HTTP/1.1 static.4sync.com/js/jquery/jquery-ui-1.8.24.4min.js?ver=1127854430
IP 204.155.149.137:0
File type ASCII text, with very long lines (64648)
Hash 0725c3c310d31e0560ccaa2293f624fa
f09613003a19e3519ae63450e119b0425cbd940e
20f62635fb6f7e331cac4def20367f05149c02e13d3c0bdfb25f87a0c524814d
GET /js/jquery/jquery-ui-1.8.24.4min.js?ver=1127854430 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:58 GMT
Server: Apache
ETag: "3508b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 54917
Content-Type: application/javascript
static.4sync.com/js/d1/downloadButton.4min.js?ver=-180918570
204.155.149.137200 OK 495 B URL HTTP/1.1 static.4sync.com/js/d1/downloadButton.4min.js?ver=-180918570
IP 204.155.149.137:0
File type ASCII text, with very long lines (1017), with no line terminators
Hash 72f16de46e1212613cdeb82717ce47c9
1e0af0106b5977caaaedab2e6859a99d5f37cc69
45eb2301a55c8ed0db24e467786aaf145aa997c89165a4733b0de3d9f65bf03a
GET /js/d1/downloadButton.4min.js?ver=-180918570 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "3f9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 495
Content-Type: application/javascript
static.4sync.com/js/relativeScript.4min.js?ver=-476976299
204.155.149.137200 OK 433 B URL HTTP/1.1 static.4sync.com/js/relativeScript.4min.js?ver=-476976299
IP 204.155.149.137:0
File type ASCII text, with very long lines (681), with no line terminators
Hash e0ead1d5113514b7097c2e288844aaca
22fb7fa60a574778f7e6fe23528f7de0c515f6ae
88fa145d77e47095e9b9b1664b2a59ca06381903dda2e58c72f28713c1ef8d7a
GET /js/relativeScript.4min.js?ver=-476976299 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "2a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 433
Content-Type: application/javascript
static.4sync.com/4sync.com/css/downloadComments.4min.css?ver=1826683393
204.155.149.137200 OK 1.4 kB URL HTTP/1.1 static.4sync.com/4sync.com/css/downloadComments.4min.css?ver=1826683393
IP 204.155.149.137:0
File type ASCII text, with very long lines (4759), with no line terminators
Hash 1320a1b958d49a6d676760367d386c74
f5202521f60aa1a138690733f824aa286af20125
1d3a5059615b3fc9bb1c58b1845db72cde2ee76cec6931ff7d45a40b1d39cc07
GET /4sync.com/css/downloadComments.4min.css?ver=1826683393 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1297-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1406
Content-Type: text/css
static.4sync.com/css/plugins/baron.scroll.4min.css?ver=-1699012362
204.155.149.137200 OK 343 B URL HTTP/1.1 static.4sync.com/css/plugins/baron.scroll.4min.css?ver=-1699012362
IP 204.155.149.137:0
File type ASCII text, with very long lines (758), with no line terminators
Hash 94be8ce4f1792f48084139bf333f77bb
bfdb7b6485d8fceb54db819dd7726acc7747a8c5
843f493001ebe83ed35f339bfba714672e0f7e008c1faea9449ba7f6e59d1f17
GET /css/plugins/baron.scroll.4min.css?ver=-1699012362 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "2f6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 343
Content-Type: text/css
static.4sync.com/js/commentsFunc.4min.js?ver=1576628444
204.155.149.137200 OK 4.1 kB URL HTTP/1.1 static.4sync.com/js/commentsFunc.4min.js?ver=1576628444
IP 204.155.149.137:0
File type ASCII text, with very long lines (12961), with no line terminators
Hash 6c9549ead47b196f409e1783fe418370
d45b1f4f350ec0929d02029dd86165bf1afa542d
8daef134bde603e271f6ddee3baae433d4972fdde58a1a413b0744a60a005d36
GET /js/commentsFunc.4min.js?ver=1576628444 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "32a1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 4129
Content-Type: application/javascript
static.4sync.com/js/plugins/baron.scroll.4min.js?ver=-2033154427
204.155.149.137200 OK 832 B URL HTTP/1.1 static.4sync.com/js/plugins/baron.scroll.4min.js?ver=-2033154427
IP 204.155.149.137:0
File type ASCII text, with very long lines (1814), with no line terminators
Hash 3a72479b0c700d7a171882c19be546d3
5086e83ee250399d96bb7dd928498660d67d432c
d07827eb78321ef2248aed88bea891c66220932a47b65bf385ea02770b4e35d1
GET /js/plugins/baron.scroll.4min.js?ver=-2033154427 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "716-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 832
Content-Type: application/javascript
static.4sync.com/js/plugins/jquery.timeago.4min.js?ver=1007035806
204.155.149.137200 OK 1.0 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.timeago.4min.js?ver=1007035806
IP 204.155.149.137:0
File type ASCII text, with very long lines (2333), with no line terminators
Hash 0ad910d2280959107de10cb0524665fa
ba8f4b818f88a13ca67ea35fcd02de6b91cbc070
8c123d8bc5063f26f16ea503889fda74ee1516e71e600710469e951e8a82d39d
GET /js/plugins/jquery.timeago.4min.js?ver=1007035806 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "91d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1030
Content-Type: application/javascript
static.4sync.com/js/plugins/timeago_i18n/jquery.timeago.en.4min.js?ver=748621410
204.155.149.137200 OK 42 B URL HTTP/1.1 static.4sync.com/js/plugins/timeago_i18n/jquery.timeago.en.4min.js?ver=748621410
IP 204.155.149.137:0
File type ASCII text, with no line terminators
Hash b52429e47b6d0a6d1d5a3deaa862c597
3c95de2d1657d8513f8283320d6ec1f25af0ce68
a1dcb8caed20ac4dcbec2a67c9d272197a9c9a04e535e9a2649e43dee038cc0d
GET /js/plugins/timeago_i18n/jquery.timeago.en.4min.js?ver=748621410 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "2a"
Accept-Ranges: bytes
Content-Length: 42
Cache-Control: public, max-age=31536000
Content-Type: application/javascript
Content-Language: en
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.4sync.com/js/captcha.4min.js?ver=-1676753598
204.155.149.137200 OK 479 B URL HTTP/1.1 static.4sync.com/js/captcha.4min.js?ver=-1676753598
IP 204.155.149.137:0
File type ASCII text, with very long lines (1289), with no line terminators
Hash 2c3f3130ab611b4c2822db53cb083386
af33586d389cee539add51a078b2c6bae2cce151
5bea3ef341d419faae177fac9903fb8dd849bd6f1dae6e9af5eda024ce4902b5
GET /js/captcha.4min.js?ver=-1676753598 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "509-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 479
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 05:42:51 GMT
expires: Fri, 24 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 425888
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.4sync.com/css/sharingPopup.4min.css?ver=-384230673
204.155.149.137200 OK 7.1 kB URL HTTP/1.1 static.4sync.com/css/sharingPopup.4min.css?ver=-384230673
IP 204.155.149.137:0
File type ASCII text, with very long lines (30501), with no line terminators
Hash de1ed580587e75560cb7beac3b5973ad
844ea3ff2c84aba127cdb30f0ab20be22a787f01
0819f6acb18adca721501d4594716290d7c865a85ec2892a215655de3b939611
GET /css/sharingPopup.4min.css?ver=-384230673 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "7725-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 7133
Content-Type: text/css
static.4sync.com/js/plugins/jquery.tagsinput.patched.4min.js?ver=113574330
204.155.149.137200 OK 2.6 kB URL HTTP/1.1 static.4sync.com/js/plugins/jquery.tagsinput.patched.4min.js?ver=113574330
IP 204.155.149.137:0
File type Unicode text, UTF-8 text, with very long lines (7424), with no line terminators
Hash dcc7bf4596686419dc4241f1eaadf1e3
94df5ef6e8b34555b45cb5d11d35bbe5c331ba68
69fbc62acdaa3bd32e1efb53b371564fa107643c3e665d49a51ed663f4b56979
GET /js/plugins/jquery.tagsinput.patched.4min.js?ver=113574330 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1d0c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 2555
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:00:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.4sync.com/css/jquery.tagsinput.4min.css?ver=-1512801580
204.155.149.137200 OK 474 B URL HTTP/1.1 static.4sync.com/css/jquery.tagsinput.4min.css?ver=-1512801580
IP 204.155.149.137:0
File type ASCII text, with very long lines (1029), with no line terminators
Hash 7e82f5239088bf2da909c2c52b1d697f
b1bc7f383b3b703af5bd38de7ef397e6315eac4f
cf640a19f322b761a180f0135f2068e5c2e6fdd779625e93821ed2800f06ce3b
GET /css/jquery.tagsinput.4min.css?ver=-1512801580 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "405-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 474
Content-Type: text/css
static.4sync.com/js/plugins/jquery.ui.autocomplete.html.patched.4min.js?ver=891874022
204.155.149.137200 OK 673 B URL HTTP/1.1 static.4sync.com/js/plugins/jquery.ui.autocomplete.html.patched.4min.js?ver=891874022
IP 204.155.149.137:0
File type ASCII text, with very long lines (2117), with no line terminators
Hash a926584fcd9a3166689d2cc46b9ac4c5
bf0b68cf43431597c5734953d8fc17893cec459b
56d4a97ce866ad37c7db41dcdb72a60f10b016d8c2c2d99a4a041bcdc93535be
GET /js/plugins/jquery.ui.autocomplete.html.patched.4min.js?ver=891874022 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "845-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 673
Content-Type: application/javascript
static.4sync.com/js/sharing/music_embed_share.4min.js?ver=-354627615
204.155.149.137200 OK 2.1 kB URL HTTP/1.1 static.4sync.com/js/sharing/music_embed_share.4min.js?ver=-354627615
IP 204.155.149.137:0
File type ASCII text, with very long lines (5947), with no line terminators
Hash f69eb3edfef01c7174f6ff5c4314f7da
f1037c293012433f488300c727e51123828f5ecf
499914d8f9b0eb213acdcfa7d51e32419a3efb83fc34575618b27e2d88316966
GET /js/sharing/music_embed_share.4min.js?ver=-354627615 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "173b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 2146
Content-Type: application/javascript
static.4sync.com/js/batch/restBatch.4min.js?ver=-293660606
204.155.149.137200 OK 376 B URL HTTP/1.1 static.4sync.com/js/batch/restBatch.4min.js?ver=-293660606
IP 204.155.149.137:0
File type ASCII text, with very long lines (776), with no line terminators
Hash f0a0edda43d50603cc4ebfac7853bcd3
76e153bc4347ad70ecee241c58ee733f83063f5b
3c237de9347c4329ea02bb3222f7a43859b74c673aca87449e42eb2fd83e054e
GET /js/batch/restBatch.4min.js?ver=-293660606 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "308-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 376
Content-Type: application/javascript
static.4sync.com/js/batch/addToMyAccount.4min.js?ver=7753067
204.155.149.137200 OK 1.3 kB URL HTTP/1.1 static.4sync.com/js/batch/addToMyAccount.4min.js?ver=7753067
IP 204.155.149.137:0
File type ASCII text, with very long lines (4454), with no line terminators
Hash 4de50ceafafb705c2b54fff892a8bbef
17500337d127d39f0e3c02a452cb885c1417bc4a
df581e7885925d3ebe39f465c8c2ce9d01d0b54404bd0bc0f00f18f3708b6f45
GET /js/batch/addToMyAccount.4min.js?ver=7753067 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1166-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1308
Content-Type: application/javascript
static.4sync.com/4sync.com/images/index/logo-2014.png?3464325414
204.155.149.137200 OK 5.5 kB URL HTTP/1.1 static.4sync.com/4sync.com/images/index/logo-2014.png?3464325414
IP 204.155.149.137:0
File type PNG image data, 120 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash 25158740f8185988dd515218ba9c850f
239def15b565fa9a297f7a90d4f0bf495093b09b
16edf8c19448d02056017f86dece4f2a2d9673b570eaa5acc6cda5f9672d4a0a
GET /4sync.com/images/index/logo-2014.png?3464325414 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/header.4min.css?ver=1581812079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "1595-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 5548
Content-Type: image/png
static.4sync.com/js/sharing/inviteToFriendsScript.4min.js?ver=-1348381265
204.155.149.137200 OK 13 kB URL HTTP/1.1 static.4sync.com/js/sharing/inviteToFriendsScript.4min.js?ver=-1348381265
IP 204.155.149.137:0
File type ASCII text, with very long lines (51054), with no line terminators
Hash ef31b95538a0239033feaa8b6bdd6b1c
437ca2637cb3faff361f30bb4ad12fbf01adf165
dbc8cf5a83d6cdb2a4c63cd1b0a8e2973957fe9a72514ecccef8b40031b354ac
GET /js/sharing/inviteToFriendsScript.4min.js?ver=-1348381265 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "c76e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 12782
Content-Type: application/javascript
static.4sync.com/4sync.com/images/index/topmenu-arrows.png?1107190228
204.155.149.137200 OK 793 B URL HTTP/1.1 static.4sync.com/4sync.com/images/index/topmenu-arrows.png?1107190228
IP 204.155.149.137:0
File type PNG image data, 11 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 832dc240d46c2f0c12331260615f0b8f
4aa95f44d50033995c2fbb2cceec5124b36591be
d7e2874ac34bf0c022d46176a0444505e43d2f3f464af78631441066b3a6db01
GET /4sync.com/images/index/topmenu-arrows.png?1107190228 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/header.4min.css?ver=1581812079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "454-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 793
Content-Type: image/png
static.4sync.com/icons/16x16-monogray/exe-mono-16.png?3040753320
204.155.149.137200 OK 652 B URL HTTP/1.1 static.4sync.com/icons/16x16-monogray/exe-mono-16.png?3040753320
IP 204.155.149.137:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f1a3ee31aa0ee5e048b589adb5f7e29
a37b6045c83f3ecc5dd3e0d86853cba5a07fe224
7a0b5dbde739487d03ab66390fb9f36a50e35fd1449929f5c8f0f4f212c92912
GET /icons/16x16-monogray/exe-mono-16.png?3040753320 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/css/themes/account/icons.4min.css?ver=1206950338
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "3da-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 652
Content-Type: image/png
www.jscount.com/a/229/cd04dbf4/z?ref=&url=http%3A//dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe&rand=0.9444192456816611
204.155.149.132200 OK 43 B URL HTTP/1.1 www.jscount.com/a/229/cd04dbf4/z?ref=&url=http%3A//dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe&rand=0.9444192456816611
IP 204.155.149.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /a/229/cd04dbf4/z?ref=&url=http%3A//dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe&rand=0.9444192456816611 HTTP/1.1
Host: www.jscount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Server: Apache-Coyote/1.1
srvF: 204.155.149.132
srvB: 10.1.3.43:8080
static.4sync.com/4sync.com/images/d1/comments-switcher.png?1841582363
204.155.149.137200 OK 727 B URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/comments-switcher.png?1841582363
IP 204.155.149.137:0
File type PNG image data, 19 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash fbe3ba9067f59d976ad92af79d226d8d
022e15ae7a76d4ba6144097407d97945b2a83bd6
4b5a0bcaa8c9e58cf369bab9693564db89423ae5dd182ef0e8b618eca55c357f
GET /4sync.com/images/d1/comments-switcher.png?1841582363 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/d1.4min.css?ver=133494991
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "419-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 727
Content-Type: image/png
static.4sync.com/4sync.com/images/d1/header-bg.png?2464365168
204.155.149.137200 OK 37 kB URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/header-bg.png?2464365168
IP 204.155.149.137:0
File type PNG image data, 1280 x 70, 8-bit/color RGB, non-interlaced\012- data
Hash 2ffbaafb1b0bb6f2d39567b9bb415acc
4add092c2f761147816235e21b37d60e15c39947
2ffd3a621ab086f0a50d3b20f55aae5a34a878eed6824259859f7d01ae4ba221
GET /4sync.com/images/d1/header-bg.png?2464365168 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/header.4min.css?ver=1581812079
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "8fcb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 36593
Content-Type: image/png
static.4sync.com/4sync.com/images/d1/ico-add.png?245443383
204.155.149.137200 OK 626 B URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/ico-add.png?245443383
IP 204.155.149.137:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 2932b44da9ba6be9dd3bf970e0020600
fc656db36aa1c55b427e9f0bdf0dbd6d0375f484
5c24b13749cff4ec639ee2c8660e2cf1ba0a737ad2e99d761f60888e3e8f0c88
GET /4sync.com/images/d1/ico-add.png?245443383 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "3c3-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 626
Content-Type: image/png
static.4sync.com/4sync.com/images/d1/ico-share.png?104362158
204.155.149.137200 OK 821 B URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/ico-share.png?104362158
IP 204.155.149.137:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3849f72627f930aea7fc5497f8e2535e
00a8f8996d0ac59ed13aa101752426077838a213
05f87baa40e3bc639acff7d732f04713ea02654f9bea6a441c17be563d5b8217
GET /4sync.com/images/d1/ico-share.png?104362158 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "46f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 821
Content-Type: image/png
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Tue, 29 Nov 2022 05:23:11 GMT
Date: Tue, 29 Nov 2022 04:00:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Tue, 29 Nov 2022 05:23:11 GMT
Date: Tue, 29 Nov 2022 04:00:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Tue, 29 Nov 2022 05:23:11 GMT
Date: Tue, 29 Nov 2022 04:00:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Tue, 29 Nov 2022 05:23:11 GMT
Date: Tue, 29 Nov 2022 04:00:59 GMT
Connection: keep-alive
aj1090.online/zHUNb4WhWmRoTkkQClKdS3zlwuufZ-dRu1tiQ7ogjt6e97l5CCQVnT9yVcnUeinaPqupvgjZ0zJtIrKKsu6V5e-ZIWaGOJgaDrc_jINkvTq_GZnudAoB0hsIb_LU4C2CEhqhCw1kZEbuX2OJq6Y8N__N4bl7ttbmAJUAkALBB-mxcGyQ6oHVYvciFrgarPcE80SVynXlakDciwHaNqr7pVuJx5Iqi-uynBR3GjaVpkiNs6cXTMS_IEgeUD6pQJ4sThqq-pQ1gaaEV800uus9UZ-SDRb_JLL5-dY4ovJRYcR52UYCXIe5vI-osXWbZ8MpE0_AJYsknFAQE2d_S_1A0vOprNLfSEbuZtJLtQ9iShzYz9yr7nIim3Oq5bCG8hBK1ZCxMi4PNdIWqo9eFGdptQUTHYG9JcBHkGiwM_oQ3nST7dGF_RexhjaSADTuVwOYGHqNP4J4V44-rOItPxygmvaIXghdcKcaUMOQY4pjbLCq3yPFtfWLnyLPEFaLjbzscnEsp1RAtvZ0KKWEQ3Ko1luTP37VKWUzP8ljfLrK4G2Te9xki230t0YFFmIdzbopVsjo0wtYx3SRurOIYBleqoEcB_FNBPcB1g2I6psdo-SriKEHVpLA5z0YtH-1bED1zlgbVc-GnAriFgEui9_8xn3c79hWl4mUoJqF7O1Dt94EVAjiG9yfjch_qZaXFXdq3wbwrpPpdyoDW1FBWyXPTPag4vQ?
199.80.53.177200 1.6 kB URL HTTP/1.1 aj1090.online/zHUNb4WhWmRoTkkQClKdS3zlwuufZ-dRu1tiQ7ogjt6e97l5CCQVnT9yVcnUeinaPqupvgjZ0zJtIrKKsu6V5e-ZIWaGOJgaDrc_jINkvTq_GZnudAoB0hsIb_LU4C2CEhqhCw1kZEbuX2OJq6Y8N__N4bl7ttbmAJUAkALBB-mxcGyQ6oHVYvciFrgarPcE80SVynXlakDciwHaNqr7pVuJx5Iqi-uynBR3GjaVpkiNs6cXTMS_IEgeUD6pQJ4sThqq-pQ1gaaEV800uus9UZ-SDRb_JLL5-dY4ovJRYcR52UYCXIe5vI-osXWbZ8MpE0_AJYsknFAQE2d_S_1A0vOprNLfSEbuZtJLtQ9iShzYz9yr7nIim3Oq5bCG8hBK1ZCxMi4PNdIWqo9eFGdptQUTHYG9JcBHkGiwM_oQ3nST7dGF_RexhjaSADTuVwOYGHqNP4J4V44-rOItPxygmvaIXghdcKcaUMOQY4pjbLCq3yPFtfWLnyLPEFaLjbzscnEsp1RAtvZ0KKWEQ3Ko1luTP37VKWUzP8ljfLrK4G2Te9xki230t0YFFmIdzbopVsjo0wtYx3SRurOIYBleqoEcB_FNBPcB1g2I6psdo-SriKEHVpLA5z0YtH-1bED1zlgbVc-GnAriFgEui9_8xn3c79hWl4mUoJqF7O1Dt94EVAjiG9yfjch_qZaXFXdq3wbwrpPpdyoDW1FBWyXPTPag4vQ?
IP 199.80.53.177:0
File type JSON data\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1577), with no line terminators
Hash 142726b5f1ab0adb37b3d93f0465a26d
a747c3b0f16a09aba9853583b8f8c0ce3203e645
ca9d87487097a61123241775466d44da886c82912c195573794c82c5d62e1d4b
POST /zHUNb4WhWmRoTkkQClKdS3zlwuufZ-dRu1tiQ7ogjt6e97l5CCQVnT9yVcnUeinaPqupvgjZ0zJtIrKKsu6V5e-ZIWaGOJgaDrc_jINkvTq_GZnudAoB0hsIb_LU4C2CEhqhCw1kZEbuX2OJq6Y8N__N4bl7ttbmAJUAkALBB-mxcGyQ6oHVYvciFrgarPcE80SVynXlakDciwHaNqr7pVuJx5Iqi-uynBR3GjaVpkiNs6cXTMS_IEgeUD6pQJ4sThqq-pQ1gaaEV800uus9UZ-SDRb_JLL5-dY4ovJRYcR52UYCXIe5vI-osXWbZ8MpE0_AJYsknFAQE2d_S_1A0vOprNLfSEbuZtJLtQ9iShzYz9yr7nIim3Oq5bCG8hBK1ZCxMi4PNdIWqo9eFGdptQUTHYG9JcBHkGiwM_oQ3nST7dGF_RexhjaSADTuVwOYGHqNP4J4V44-rOItPxygmvaIXghdcKcaUMOQY4pjbLCq3yPFtfWLnyLPEFaLjbzscnEsp1RAtvZ0KKWEQ3Ko1luTP37VKWUzP8ljfLrK4G2Te9xki230t0YFFmIdzbopVsjo0wtYx3SRurOIYBleqoEcB_FNBPcB1g2I6psdo-SriKEHVpLA5z0YtH-1bED1zlgbVc-GnAriFgEui9_8xn3c79hWl4mUoJqF7O1Dt94EVAjiG9yfjch_qZaXFXdq3wbwrpPpdyoDW1FBWyXPTPag4vQ? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://dc534.4sync.com
set-cookie: UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0; Domain=.aj1090.online; Expires=Thu, 28-Nov-2024 04:00:59 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 1578
date: Tue, 29 Nov 2022 04:00:59 GMT
static.4sync.com/4sync.com/images/d1/ico-down.png?276515178
204.155.149.137200 OK 707 B URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/ico-down.png?276515178
IP 204.155.149.137:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash f81948311a3646e3da07fad50961b556
63b41470e905fbefd73043f6c0f6d478bc39ba53
bc062a7acc74106002f35233a02cf0cdb593e8eb0cd41c316a9dc60550dafe0a
GET /4sync.com/images/d1/ico-down.png?276515178 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "40d-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 707
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c76e3c4cc159bda9b9e887fcd449ba51
12d90c36bd455b3b859fdb761b6ed49ea9f98f80
fc2aad6b1ec65938249970e01a23d35a19cb9c9acbc3524586dd23f7bdaf9690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7479fbd-640b-4a65-ac00-893210a725b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10445
x-amzn-requestid: fb9fc0d4-9f2e-4fab-a259-30300aacdc67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvuDGHaIAMFn_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc659-56786e9b754a48b30b5f79c7;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:06:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fkjT2irjF_lGK2IDx2nzFK13MgMQFXrtUIWv9lR9y-f6VT1bthJfyQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 14:31:14 GMT
age: 48585
etag: "12d90c36bd455b3b859fdb761b6ed49ea9f98f80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:38:02 GMT
age: 73377
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cce27a1fe8c0222811a5ce0e7f89e1cb
28c165bac8cf68cd1b0763c311aece00672cb3a5
4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9376
x-amzn-requestid: 265257bd-0177-4e63-879b-e9f99d0d16c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTZANFW2oAMFlyw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63846ecd-6767ccde3361eb593108603d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 08:18:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ntQPVFK12XqhVCMlaq0oIDx7k6e2xQdp1Y67W1nG6ayhG1XFekz5CQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:30 GMT
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
content-type: image/jpeg
age: 65249
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4932
Expires: Tue, 29 Nov 2022 05:23:11 GMT
Date: Tue, 29 Nov 2022 04:00:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df665be3ae1347cb9bb1443a6a1a33e6
e0617845684a8f7586b37e8be8976bbe6a93563e
15155df8643daa0408633922e15691a3b00b393ee433e1162cf031024e84d0a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5049b423-1bbd-4caa-891e-b46234fc1a6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: 22ec3d7a-91f5-4b67-9621-a93b1e5d09e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYejFKxoAMFe0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d45c-34ffa40356825a715a7eb5cc;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:07:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GBeOUYK49uZurdS8v-Fmimf_GDcBqDR6hlZ7eRaMeGjs0iEeIvhIWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:01:39 GMT
age: 86360
etag: "e0617845684a8f7586b37e8be8976bbe6a93563e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.4sync.com/icons/150x150/exe.png?12025601735
204.155.149.137200 OK 1.5 kB URL HTTP/1.1 static.4sync.com/icons/150x150/exe.png?12025601735
IP 204.155.149.137:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash c292dd54a8a57d41cf59d46615a84654
57ad0c5ffbe45610ef3a1272c19b8cfc16b46e3a
59f1fd4cea7bdede2e8837e91da84f566536c82087d723db9d39acc06f7d0949
GET /icons/150x150/exe.png?12025601735 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/css/themes/account/icons.4min.css?ver=1206950338
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "623-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1519
Content-Type: image/png
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
34.120.237.76200 OK 3.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e7d3e11e78242383e452adb9299016
035a1b4a2a7889787532ec2637d5c21e06daf672
990f18423bafc9cc3daaa1bd1290313b6cb3d3a391f642d01fd6797ad4fc9ca8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51b530e0-9ee5-45ee-95e9-a687ac33f22c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3004
x-amzn-requestid: 1e6e228a-fb73-4ed3-881b-6b0e5c8297c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrFRXoAMFUJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-45059338501b45d943d7e08c;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rmBhEB-x2sOvI7XfEpZQ0-lXEDWZ4los77q017Im-Lwb32ZLA0Zvcg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:45:02 GMT
age: 83757
etag: "035a1b4a2a7889787532ec2637d5c21e06daf672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 04:16:47 GMT
age: 85452
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.4sync.com/4sync.com/images/d1/more-dots.png?770395161
204.155.149.137200 OK 719 B URL HTTP/1.1 static.4sync.com/4sync.com/images/d1/more-dots.png?770395161
IP 204.155.149.137:0
File type PNG image data, 16 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a33381e8c4c60e104d0d4fbdb04427a
abfb3126971e5382982a78708086cd0cb283efb5
333290c75360950e30856fccf8bb7ade64b0525915bd313bb2c24b83c6bec0cf
GET /4sync.com/images/d1/more-dots.png?770395161 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/4sync.com/css/general.4min.css?ver=-1520740532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "417-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 719
Content-Type: image/png
static.4sync.com/images/ajax_loading.gif?3975074307
204.155.149.137200 OK 553 B URL HTTP/1.1 static.4sync.com/images/ajax_loading.gif?3975074307
IP 204.155.149.137:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 08ba08f7009694ffeec1fe80ecee764e
13c13134d0209414e9bbcb9c2898da23715986dc
58331a16c7103ae3532de5013b745b76dcff81311f310a175d3034ed8873142b
GET /images/ajax_loading.gif?3975074307 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.4sync.com/css/common_n.4min.css?ver=-1925194639
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "2a1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 553
Content-Type: image/gif
dc534.4sync.com/web/rest/v1/files/7zadSfPD/comments?offset=0&limit=15
204.155.145.48200 OK 35 B URL HTTP/1.1 dc534.4sync.com/web/rest/v1/files/7zadSfPD/comments?offset=0&limit=15
IP 204.155.145.48:0
File type JSON data\012- , ASCII text, with no line terminators
Hash acf095592562685ed111ede5c3bac8e9
f9eac7e287598d1baa18cd6cf32a0b446677d937
0537daad45a4b758204cf7bea38206388e38c67045cab5ac7ca88c9e37d83069
GET /web/rest/v1/files/7zadSfPD/comments?offset=0&limit=15 HTTP/1.1
Host: dc534.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe
Cookie: day1host=h; hostid=499941593; cd1v=sykh
HTTP/1.1 200 OK
Server: 534
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Cache-Control: no-cache
X-4s: 1
Vary: *
Content-Encoding: gzip
Content-Type: application/json;charset=UTF-8
Content-Length: 35
Date: Tue, 29 Nov 2022 04:00:59 GMT
static.4sync.com/images/user2.png
204.155.149.137200 OK 1.4 kB URL HTTP/1.1 static.4sync.com/images/user2.png
IP 204.155.149.137:0
File type PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced\012- data
Hash 06bcfb958e7b0b48a3e437dd2fd72cad
2d096bdb1ec8a0a1269fcdd14183faee661489c2
82ff1ff583aad3eda6678c7f8e4bd32e1898daf609b07cc46f4f5210186d1705
GET /images/user2.png HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "67c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 1384
Content-Type: image/png
static.4sync.com/images/ajax_loading.gif?ver=-319892989
204.155.149.137200 OK 553 B URL HTTP/1.1 static.4sync.com/images/ajax_loading.gif?ver=-319892989
IP 204.155.149.137:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 08ba08f7009694ffeec1fe80ecee764e
13c13134d0209414e9bbcb9c2898da23715986dc
58331a16c7103ae3532de5013b745b76dcff81311f310a175d3034ed8873142b
GET /images/ajax_loading.gif?ver=-319892989 HTTP/1.1
Host: static.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 04:00:59 GMT
Server: Apache
ETag: "2a1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: public, max-age=31536000
Content-Length: 553
Content-Type: image/gif
aj1090.online/zNfs58beVpBXg4NK799upJwcHsE67XyDY3kLIm61df2rqT8IVbUqUzKT4xTWeok1HnwFku3aF02ELWvJUTzoWfZ_k0AhDYt9owmWmAsqrn9FzWnUZZmn0z3Jh264tfQiH3g2LETHrxKy2fDhNEiPKBurYPemOT0kcN_76zLbr7ifGCjfOvWebp6YXr6H48QFMTeSuNIqXDyyFG10GDM0KudVFsuuOyXso_YAF1Mh69k0eKAnK3RDWWVRM_m17fRk-__lD1qTMWfn3JJ94WjHlQlrb0K2LXXI8Hsr1pbRB6D4KgDH1OtcrTPG-b1301hM2Feh71qltogl1q8DiR1tOQQvRtNq5eAOtKHPUybKmf9iQg6t84qPw_zlKLoAs_pVq8R2Nbd3nlv4m44ifyyLKvEjpCCnaHEHvHGBXagQHdOG97_O2_pACPU57DZauW4cTwhofCH1SFix_ufDq6YCdruyY61MVbYZcpzjQwQqIq3n8VnUqk8HrxJ8kBWnj8kc2jbRwc7TiI2xXqE1AoV3zMr0IPH5mE-WUDvnSwzAJ6AmPlfwU-EH8zWUBVJB1vV7Ahys5HZEXxr8_1MnJfWClhtaLvR98otMwVmK46eEHLFLcRymez1LLnTmeEBl3iIqZvQ3mmh0zBCAt-ygRA7wMor2jxbUJCLKcgSvcvcTNoAkbvr9L1rEtzrXMwv7qK9aLfpG1_4iYRSOJy0VWmnCGaqBp7w?
199.80.53.177200 1.6 kB URL HTTP/1.1 aj1090.online/zNfs58beVpBXg4NK799upJwcHsE67XyDY3kLIm61df2rqT8IVbUqUzKT4xTWeok1HnwFku3aF02ELWvJUTzoWfZ_k0AhDYt9owmWmAsqrn9FzWnUZZmn0z3Jh264tfQiH3g2LETHrxKy2fDhNEiPKBurYPemOT0kcN_76zLbr7ifGCjfOvWebp6YXr6H48QFMTeSuNIqXDyyFG10GDM0KudVFsuuOyXso_YAF1Mh69k0eKAnK3RDWWVRM_m17fRk-__lD1qTMWfn3JJ94WjHlQlrb0K2LXXI8Hsr1pbRB6D4KgDH1OtcrTPG-b1301hM2Feh71qltogl1q8DiR1tOQQvRtNq5eAOtKHPUybKmf9iQg6t84qPw_zlKLoAs_pVq8R2Nbd3nlv4m44ifyyLKvEjpCCnaHEHvHGBXagQHdOG97_O2_pACPU57DZauW4cTwhofCH1SFix_ufDq6YCdruyY61MVbYZcpzjQwQqIq3n8VnUqk8HrxJ8kBWnj8kc2jbRwc7TiI2xXqE1AoV3zMr0IPH5mE-WUDvnSwzAJ6AmPlfwU-EH8zWUBVJB1vV7Ahys5HZEXxr8_1MnJfWClhtaLvR98otMwVmK46eEHLFLcRymez1LLnTmeEBl3iIqZvQ3mmh0zBCAt-ygRA7wMor2jxbUJCLKcgSvcvcTNoAkbvr9L1rEtzrXMwv7qK9aLfpG1_4iYRSOJy0VWmnCGaqBp7w?
IP 199.80.53.177:0
File type JSON data\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1581), with no line terminators
Hash ce1ce685f9ffcb8edbe4fd2b9709073e
26a62a5ed9af39906c4d9d9da1465c105bd0556f
368d7da8c9e7624f5584771be3b7322c11fd385484d1902e5294b172e2cde9d5
POST /zNfs58beVpBXg4NK799upJwcHsE67XyDY3kLIm61df2rqT8IVbUqUzKT4xTWeok1HnwFku3aF02ELWvJUTzoWfZ_k0AhDYt9owmWmAsqrn9FzWnUZZmn0z3Jh264tfQiH3g2LETHrxKy2fDhNEiPKBurYPemOT0kcN_76zLbr7ifGCjfOvWebp6YXr6H48QFMTeSuNIqXDyyFG10GDM0KudVFsuuOyXso_YAF1Mh69k0eKAnK3RDWWVRM_m17fRk-__lD1qTMWfn3JJ94WjHlQlrb0K2LXXI8Hsr1pbRB6D4KgDH1OtcrTPG-b1301hM2Feh71qltogl1q8DiR1tOQQvRtNq5eAOtKHPUybKmf9iQg6t84qPw_zlKLoAs_pVq8R2Nbd3nlv4m44ifyyLKvEjpCCnaHEHvHGBXagQHdOG97_O2_pACPU57DZauW4cTwhofCH1SFix_ufDq6YCdruyY61MVbYZcpzjQwQqIq3n8VnUqk8HrxJ8kBWnj8kc2jbRwc7TiI2xXqE1AoV3zMr0IPH5mE-WUDvnSwzAJ6AmPlfwU-EH8zWUBVJB1vV7Ahys5HZEXxr8_1MnJfWClhtaLvR98otMwVmK46eEHLFLcRymez1LLnTmeEBl3iIqZvQ3mmh0zBCAt-ygRA7wMor2jxbUJCLKcgSvcvcTNoAkbvr9L1rEtzrXMwv7qK9aLfpG1_4iYRSOJy0VWmnCGaqBp7w? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://dc534.4sync.com
set-cookie: UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0; Domain=.aj1090.online; Expires=Thu, 28-Nov-2024 04:00:59 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 1581
date: Tue, 29 Nov 2022 04:00:59 GMT
aj1090.online/zVHH06mLNzbmRm7Ky_mB5icVAXSZwII21vfawQW8mndd35kaGT3UksePulC8URPyrkAi0FKFcPYHX3h7NEoKRN3lmxvTkj6P9ay1AZ-eVmo9Vjhv_qy60PeY2KX_IJqJU1MaRQcVS-4yMUmIkWelVk5MIvdTdO-dXan4yd6f8fgo4G8eZeqh6uBj-_U3hhGyr_QTdglbj952_nYMNjd1920nzQ69kL5nXQ_cnMFgKQfq-fvvOmz19bfSJm1SV4g8XI1SS4NACbMPW6daWr9En5Sdy7Cw9lCZoIZuHJr3sMehP9w14_Cqla3XnQjsbOfnvpXa5Kli8r7u7qK_E5UIPOrSOdi2zQfAbrW3fXsft8DfSOLLJzZRTXjgHQ4-y-A4pKUrNeLalrlG6qS4nGGmnE_hNsmDSSecHDzussK1waJ3EIHM1qBkUUc3OUbeboZbPYjz8RPjIXiY6QIJJdnVyQRKbLtVNcSq-ZThzWDH97zRxS8qB5No41obsL2ZZzKzFK70TnMf8xPj-oP0fBkEZPkMDJoeXf8l35_Y1EJKXMZJTPW5ito_9HRy5aDm4MO_wTN7TZlfmGX7ILAH3cVmJ9yXShwIXbWf-Qtvlix2cBrjrs__9zUBq-sx3FYnvX2nFtOBj7ORR9Esx5dEdyekYbSQ65LJB2BF41asazqwhtKK1k6uXwNY2uFdFy2Ohq-DH_GWx-XnsxYuzgswCmnSCPaA_vQ?
199.80.53.177200 813 B URL HTTP/1.1 aj1090.online/zVHH06mLNzbmRm7Ky_mB5icVAXSZwII21vfawQW8mndd35kaGT3UksePulC8URPyrkAi0FKFcPYHX3h7NEoKRN3lmxvTkj6P9ay1AZ-eVmo9Vjhv_qy60PeY2KX_IJqJU1MaRQcVS-4yMUmIkWelVk5MIvdTdO-dXan4yd6f8fgo4G8eZeqh6uBj-_U3hhGyr_QTdglbj952_nYMNjd1920nzQ69kL5nXQ_cnMFgKQfq-fvvOmz19bfSJm1SV4g8XI1SS4NACbMPW6daWr9En5Sdy7Cw9lCZoIZuHJr3sMehP9w14_Cqla3XnQjsbOfnvpXa5Kli8r7u7qK_E5UIPOrSOdi2zQfAbrW3fXsft8DfSOLLJzZRTXjgHQ4-y-A4pKUrNeLalrlG6qS4nGGmnE_hNsmDSSecHDzussK1waJ3EIHM1qBkUUc3OUbeboZbPYjz8RPjIXiY6QIJJdnVyQRKbLtVNcSq-ZThzWDH97zRxS8qB5No41obsL2ZZzKzFK70TnMf8xPj-oP0fBkEZPkMDJoeXf8l35_Y1EJKXMZJTPW5ito_9HRy5aDm4MO_wTN7TZlfmGX7ILAH3cVmJ9yXShwIXbWf-Qtvlix2cBrjrs__9zUBq-sx3FYnvX2nFtOBj7ORR9Esx5dEdyekYbSQ65LJB2BF41asazqwhtKK1k6uXwNY2uFdFy2Ohq-DH_GWx-XnsxYuzgswCmnSCPaA_vQ?
IP 199.80.53.177:0
File type JSON data\012- HTML document, ASCII text, with very long lines (813), with no line terminators
Hash 341572cfffc99eacd7875a1cb6650a5c
690bfa9a452c004ff08f17ce4339eec2245b2d4b
87febac01d615a4f4a12639a86069fcdf5330a879f2ddb161d2e4ba92ec80132
POST /zVHH06mLNzbmRm7Ky_mB5icVAXSZwII21vfawQW8mndd35kaGT3UksePulC8URPyrkAi0FKFcPYHX3h7NEoKRN3lmxvTkj6P9ay1AZ-eVmo9Vjhv_qy60PeY2KX_IJqJU1MaRQcVS-4yMUmIkWelVk5MIvdTdO-dXan4yd6f8fgo4G8eZeqh6uBj-_U3hhGyr_QTdglbj952_nYMNjd1920nzQ69kL5nXQ_cnMFgKQfq-fvvOmz19bfSJm1SV4g8XI1SS4NACbMPW6daWr9En5Sdy7Cw9lCZoIZuHJr3sMehP9w14_Cqla3XnQjsbOfnvpXa5Kli8r7u7qK_E5UIPOrSOdi2zQfAbrW3fXsft8DfSOLLJzZRTXjgHQ4-y-A4pKUrNeLalrlG6qS4nGGmnE_hNsmDSSecHDzussK1waJ3EIHM1qBkUUc3OUbeboZbPYjz8RPjIXiY6QIJJdnVyQRKbLtVNcSq-ZThzWDH97zRxS8qB5No41obsL2ZZzKzFK70TnMf8xPj-oP0fBkEZPkMDJoeXf8l35_Y1EJKXMZJTPW5ito_9HRy5aDm4MO_wTN7TZlfmGX7ILAH3cVmJ9yXShwIXbWf-Qtvlix2cBrjrs__9zUBq-sx3FYnvX2nFtOBj7ORR9Esx5dEdyekYbSQ65LJB2BF41asazqwhtKK1k6uXwNY2uFdFy2Ohq-DH_GWx-XnsxYuzgswCmnSCPaA_vQ? HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Content-Length: 0
HTTP/1.1 200
cache-control: no-cache, no-store, must-revalidate
p3p: CP="CAO PSA OUR"
expires: 0
pragma: no-cache
access-control-allow-credentials: true
access-control-allow-origin: http://dc534.4sync.com
set-cookie: UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0; Domain=.aj1090.online; Expires=Thu, 28-Nov-2024 04:00:59 GMT; Path=/; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 813
date: Tue, 29 Nov 2022 04:00:59 GMT
aj1090.online/zjvP2DMZ8ftpGDY1SFT1sosy2GBMnkZT3GV10YskLQIkFLxY2-iP7EcGOIEG3rRvkb6EvLozc-61R4QvOm8VSK_6xMBai7s0CyQepFGwLsb58Y4FhnLewiX-h2-gpEiNqUHnPFPDTAlNpgE_2eTeq6lgLrXTfeBwI7uJm4mmCBNkYYcbSc-Dklt50iCbIsZy3rm-RLrx53O54oWUyGKI_NlMDuokjDqLzhqxtWgZaFz__Ug9UCfO4ZFiEhSR-E7sGFTi7WvcNIRFRCa6v5Wu1lSIb5VbynXZVPoiGK-QRduZqOSiSwLN34kCzZpMZrYN6zy1zb1_O8z9s-A_JfmioVpT9S4hSrHk5vCK85OmIkQWyb3gALqJLS9wkP9eRuBBqY9kS5icGJHRN4k9qgF4xon1I6rZQFsKZF7MXUUs4ITtdLfUyCX75VVQScWKZZ4CTCymp3gdhruveimU42GKcnRpiuXy6c42YEIyrZwy4acKgGhWA8snwLo81tCq6fSvMisULHyGPwwQmuI3usxyOjQAa_AAEvhNzc95Nc66aGs38bPGD5iXRSEoO8ToEuh-rgW8gR0KNYYNCjkp2We2fhO7xOqgdD0Du5hmE5Yp9bWD2g0RAJEIx?DC=WZ
199.80.53.177200 43 B URL HTTP/1.1 aj1090.online/zjvP2DMZ8ftpGDY1SFT1sosy2GBMnkZT3GV10YskLQIkFLxY2-iP7EcGOIEG3rRvkb6EvLozc-61R4QvOm8VSK_6xMBai7s0CyQepFGwLsb58Y4FhnLewiX-h2-gpEiNqUHnPFPDTAlNpgE_2eTeq6lgLrXTfeBwI7uJm4mmCBNkYYcbSc-Dklt50iCbIsZy3rm-RLrx53O54oWUyGKI_NlMDuokjDqLzhqxtWgZaFz__Ug9UCfO4ZFiEhSR-E7sGFTi7WvcNIRFRCa6v5Wu1lSIb5VbynXZVPoiGK-QRduZqOSiSwLN34kCzZpMZrYN6zy1zb1_O8z9s-A_JfmioVpT9S4hSrHk5vCK85OmIkQWyb3gALqJLS9wkP9eRuBBqY9kS5icGJHRN4k9qgF4xon1I6rZQFsKZF7MXUUs4ITtdLfUyCX75VVQScWKZZ4CTCymp3gdhruveimU42GKcnRpiuXy6c42YEIyrZwy4acKgGhWA8snwLo81tCq6fSvMisULHyGPwwQmuI3usxyOjQAa_AAEvhNzc95Nc66aGs38bPGD5iXRSEoO8ToEuh-rgW8gR0KNYYNCjkp2We2fhO7xOqgdD0Du5hmE5Yp9bWD2g0RAJEIx?DC=WZ
IP 199.80.53.177:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /zjvP2DMZ8ftpGDY1SFT1sosy2GBMnkZT3GV10YskLQIkFLxY2-iP7EcGOIEG3rRvkb6EvLozc-61R4QvOm8VSK_6xMBai7s0CyQepFGwLsb58Y4FhnLewiX-h2-gpEiNqUHnPFPDTAlNpgE_2eTeq6lgLrXTfeBwI7uJm4mmCBNkYYcbSc-Dklt50iCbIsZy3rm-RLrx53O54oWUyGKI_NlMDuokjDqLzhqxtWgZaFz__Ug9UCfO4ZFiEhSR-E7sGFTi7WvcNIRFRCa6v5Wu1lSIb5VbynXZVPoiGK-QRduZqOSiSwLN34kCzZpMZrYN6zy1zb1_O8z9s-A_JfmioVpT9S4hSrHk5vCK85OmIkQWyb3gALqJLS9wkP9eRuBBqY9kS5icGJHRN4k9qgF4xon1I6rZQFsKZF7MXUUs4ITtdLfUyCX75VVQScWKZZ4CTCymp3gdhruveimU42GKcnRpiuXy6c42YEIyrZwy4acKgGhWA8snwLo81tCq6fSvMisULHyGPwwQmuI3usxyOjQAa_AAEvhNzc95Nc66aGs38bPGD5iXRSEoO8ToEuh-rgW8gR0KNYYNCjkp2We2fhO7xOqgdD0Du5hmE5Yp9bWD2g0RAJEIx?DC=WZ HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
set-cookie: ucv=108259-NO-1669780860005-24--; Domain=.aj1090.online; Expires=Wed, 29-Nov-2023 04:01:00 GMT; Path=/; SameSite=None
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"43-1669117898000"
last-modified: Tue, 22 Nov 2022 11:51:38 GMT
content-type: image/gif
content-length: 43
date: Tue, 29 Nov 2022 04:00:59 GMT
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4823
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Last-Modified: Tue, 29 Nov 2022 02:40:37 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash cd5d93925720f3385268132b30b5dbed
fa650d6db95cdfbc9f7c23a8e878dd5d29dbef4f
95d02634cbcc958db469d7f9925190e146fb8ba0147487f79373068436d208b3
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 3e5948fd336d5d8c991bdc47603dda05
etag: "bf59f2de404f8f53f5554e871bf7d0a4"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 04:12:49 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: zV2Tklcg8zhSaBMrMLXb7Q==
x-fb-debug: 8dfO7t0I+GzcSbXN42XbvkeNlHyUdyc5TRa2nmjMaf8sxgkMojESm6jSxogr4Ukas7gElcFoaZASayv8t+1oHA==
priority: u=3,i
content-length: 1687
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 04:01:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.google-analytics.com/analytics.js
142.250.74.136200 OK 20 kB URL HTTP/2 ssl.google-analytics.com/analytics.js
IP 142.250.74.136:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 03:46:21 GMT
expires: Tue, 29 Nov 2022 05:46:21 GMT
cache-control: public, max-age=7200
age: 879
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:26:04 GMT
expires: Sun, 26 Nov 2023 21:26:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 196496
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5588186629271559
142.250.74.66200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-5588186629271559
IP 142.250.74.66:0
File type ASCII text, with very long lines (4885)
Hash b241ac992ebf7c6d782738b1820cda1a
94825f7bf018258126525047f83108f776763348
bbe099d932ca2265078dabc6345198d673d65336e7d12f07bc86e8b733ccc439
GET /pagead/js/adsbygoogle.js?client=ca-pub-5588186629271559 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 29 Nov 2022 04:01:00 GMT
expires: Tue, 29 Nov 2022 04:01:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 7474728306497011728
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48994
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dc534.4sync.com/favicon.ico
204.155.145.48200 OK 2.9 kB URL HTTP/1.1 dc534.4sync.com/favicon.ico
IP 204.155.145.48:0
File type MS Windows icon resource - 3 icons, 16x16, 16 colors, 4 bits/pixel, 16x16, 8 bits/pixel\012- data
Hash a9f208e72ec3785ca7d163559c2e16e5
b336825c147e1d84644135adf4063a2a5acfbe12
72c6dfbad475220dad01de8f25ea814982b8f9cb5dbf81e287a551987d2b18dd
GET /favicon.ico HTTP/1.1
Host: dc534.4sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/download/7zadSfPD/payment_copy_2022_32093.exe
Cookie: day1host=h; hostid=499941593; cd1v=sykh
HTTP/1.1 200 OK
Server: 534
Accept-Ranges: bytes
ETag: W/"2862-1493818900000"
Last-Modified: Wed, 03 May 2017 13:41:40 GMT
Content-Type: image/x-icon;charset=UTF-8
Content-Length: 2862
Date: Tue, 29 Nov 2022 04:00:59 GMT
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash f1cfa609ebdf236e2f3e3ff25dd05caf
c8117b0187d4d9021ed1a42907bd93d24ed4ebf0
7a2761aa36168d4f2c9034486777f5588aaf0fa1f7d1e55006db7320259303b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/all.js?hash=c83b811a4a4e8128577a74f74715eabf
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=c83b811a4a4e8128577a74f74715eabf
IP 31.13.72.12:0
File type ASCII text, with very long lines (18658)
Hash 651ed5c2667fe0670d82dce05b4b4e36
9b64035d37e54d348277f8421b8c7e41ddd769f9
ea52cd86d4da50870c460f95f1306423fc16915177df608502a39313f884a4c5
GET /en_US/all.js?hash=c83b811a4a4e8128577a74f74715eabf HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 44a22e956c351df375c620dad0554d10
etag: "5e0a92f478c1d1ceb851a99fb16711ca"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 03:21:02 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ZR7VwmZ/4GcNgtzgW0tONg==
x-fb-debug: ubSrUC2pQ/GZ00QENmDYjqQHi1RpdLqqfY6u8Y3RiTFFQxPD96TAmUkIifdAEorYiTg33aynsHBuJ70PTGOXJw==
content-length: 88239
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 04:01:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=544866254&t=pageview&_s=1&dl=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&ul=en-us&de=UTF-8&dt=payment_copy_2022_32093%20-%20Download%20-%204Sync%20-%20altus%20nusa&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=1842128000&gjid=638454346&cid=1117054658.1669694459&tid=UA-25209864-1&_gid=2090914118.1669694459&_r=1&_slc=1&z=1399157511
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=544866254&t=pageview&_s=1&dl=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&ul=en-us&de=UTF-8&dt=payment_copy_2022_32093%20-%20Download%20-%204Sync%20-%20altus%20nusa&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=1842128000&gjid=638454346&cid=1117054658.1669694459&tid=UA-25209864-1&_gid=2090914118.1669694459&_r=1&_slc=1&z=1399157511
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=544866254&t=pageview&_s=1&dl=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&ul=en-us&de=UTF-8&dt=payment_copy_2022_32093%20-%20Download%20-%204Sync%20-%20altus%20nusa&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=1842128000&gjid=638454346&cid=1117054658.1669694459&tid=UA-25209864-1&_gid=2090914118.1669694459&_r=1&_slc=1&z=1399157511 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://dc534.4sync.com
date: Tue, 29 Nov 2022 04:01:00 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
216.58.211.2200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:11:33 GMT
expires: Mon, 12 Dec 2022 05:11:33 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 82167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aj1090.online/multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d
199.80.53.177302 0 B URL HTTP/1.1 aj1090.online/multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d
IP 199.80.53.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 302
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
set-cookie: eas_3p_COOKIE_NAME_HERE=1; Domain=.aj1090.online; Expires=Thu, 29-Dec-2022 04:01:00 GMT; Path=/; SameSite=None
location: http://
content-length: 0
date: Tue, 29 Nov 2022 04:01:00 GMT
aj1090.online/zAjxqcSXdgtU5ZKJj8VV6iECliL5BUAwRfw0141bRmL8k6cNyU49g791WCmkYIq6m_oTfTWWVjb1hC8R1q_CCBhyxTnHKMoqx0WeoXyMhZNOJFkgdB1NtCJBNgfxlUo5GwgIvTT6Dw4uaSgtUEI6Ye0hNJxpiU8vEgPa5yLpBx9pUyN7dOeZlrCd2R7xrdUH2z8mo4yRWqz5pPeRyqHY1DWYBAkI_5lE3SHiMghzo8QB0GP7hWkuzw-cvMN_aN3RXD6MzpaASgXWCOaBAdSBgnSRuPrxHhOrE4wBo0StXWo22i79VrmO3AqwvsJB-po8cSxXc8CpkV2RBQhP589OmwqnpImvh_oIa8Av-NWaKQC86TntChk-XLjsVwKVT89pfwpB06VbpuntZxwke3h2TkKLGQhf-nLJr9EAdIX_YoIXg9Dri3xX8xCzwT3VlkzyvKWciFKWGHbFEyxjsQZsbmaNR_C9zfXTpOdZRJZ6JTS5SL53QRZQgcy3XznYPcDj2LikAzPhKB6IjtGBroR36V2o5SiVftqy-vJ02IH9zIM2G7GRH99NNFMd9uzdqONhgIv2njpEQf8WdPYzIE9jmBcuFA6fu6dQ2KsYvZ15HQRZRvZBrnP50?DC=WZ
199.80.53.177200 43 B URL HTTP/1.1 aj1090.online/zAjxqcSXdgtU5ZKJj8VV6iECliL5BUAwRfw0141bRmL8k6cNyU49g791WCmkYIq6m_oTfTWWVjb1hC8R1q_CCBhyxTnHKMoqx0WeoXyMhZNOJFkgdB1NtCJBNgfxlUo5GwgIvTT6Dw4uaSgtUEI6Ye0hNJxpiU8vEgPa5yLpBx9pUyN7dOeZlrCd2R7xrdUH2z8mo4yRWqz5pPeRyqHY1DWYBAkI_5lE3SHiMghzo8QB0GP7hWkuzw-cvMN_aN3RXD6MzpaASgXWCOaBAdSBgnSRuPrxHhOrE4wBo0StXWo22i79VrmO3AqwvsJB-po8cSxXc8CpkV2RBQhP589OmwqnpImvh_oIa8Av-NWaKQC86TntChk-XLjsVwKVT89pfwpB06VbpuntZxwke3h2TkKLGQhf-nLJr9EAdIX_YoIXg9Dri3xX8xCzwT3VlkzyvKWciFKWGHbFEyxjsQZsbmaNR_C9zfXTpOdZRJZ6JTS5SL53QRZQgcy3XznYPcDj2LikAzPhKB6IjtGBroR36V2o5SiVftqy-vJ02IH9zIM2G7GRH99NNFMd9uzdqONhgIv2njpEQf8WdPYzIE9jmBcuFA6fu6dQ2KsYvZ15HQRZRvZBrnP50?DC=WZ
IP 199.80.53.177:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /zAjxqcSXdgtU5ZKJj8VV6iECliL5BUAwRfw0141bRmL8k6cNyU49g791WCmkYIq6m_oTfTWWVjb1hC8R1q_CCBhyxTnHKMoqx0WeoXyMhZNOJFkgdB1NtCJBNgfxlUo5GwgIvTT6Dw4uaSgtUEI6Ye0hNJxpiU8vEgPa5yLpBx9pUyN7dOeZlrCd2R7xrdUH2z8mo4yRWqz5pPeRyqHY1DWYBAkI_5lE3SHiMghzo8QB0GP7hWkuzw-cvMN_aN3RXD6MzpaASgXWCOaBAdSBgnSRuPrxHhOrE4wBo0StXWo22i79VrmO3AqwvsJB-po8cSxXc8CpkV2RBQhP589OmwqnpImvh_oIa8Av-NWaKQC86TntChk-XLjsVwKVT89pfwpB06VbpuntZxwke3h2TkKLGQhf-nLJr9EAdIX_YoIXg9Dri3xX8xCzwT3VlkzyvKWciFKWGHbFEyxjsQZsbmaNR_C9zfXTpOdZRJZ6JTS5SL53QRZQgcy3XznYPcDj2LikAzPhKB6IjtGBroR36V2o5SiVftqy-vJ02IH9zIM2G7GRH99NNFMd9uzdqONhgIv2njpEQf8WdPYzIE9jmBcuFA6fu6dQ2KsYvZ15HQRZRvZBrnP50?DC=WZ HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
set-cookie: ucv=108259-NO-1669780860347-24--; Domain=.aj1090.online; Expires=Wed, 29-Nov-2023 04:01:00 GMT; Path=/; SameSite=None
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"43-1669117898000"
last-modified: Tue, 22 Nov 2022 11:51:38 GMT
content-type: image/gif
content-length: 43
date: Tue, 29 Nov 2022 04:01:00 GMT
www.facebook.com/x/oauth/status?client_id=135370629892931&input_token&origin=1&redirect_uri=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&sdk=joey&wants_cookie_data=true
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=135370629892931&input_token&origin=1&redirect_uri=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&sdk=joey&wants_cookie_data=true
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=135370629892931&input_token&origin=1&redirect_uri=http%3A%2F%2Fdc534.4sync.com%2Fdownload%2F7zadSfPD%2Fpayment_copy_2022_32093.exe&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dc534.4sync.com/
Origin: http://dc534.4sync.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://dc534.4sync.com
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: fgG0MxslziV0e3sZze0zZa/0HgWYRaahbh0f5lyCflpq+WNdhz1XJjR+TRwv1f1an27hhxKNErq1FCihtpyWOQ==
content-length: 0
date: Tue, 29 Nov 2022 04:01:00 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 798c6088f000b3a2464e23a92271c24d
2a53b3d3bd4a9104c79595f664276db5b32b9bad
dcccfc9bb4da634286d08301fcf23be3ae26bb429b35349fb72dde530fdb3ae4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=dc534.4sync.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=dc534.4sync.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dc534.4sync.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 29 Nov 2022 04:01:00 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=dc534.4sync.com&callback=_gfp_s_&client=ca-pub-5588186629271559&gpid_exp=1
216.58.207.194200 OK 249 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=dc534.4sync.com&callback=_gfp_s_&client=ca-pub-5588186629271559&gpid_exp=1
IP 216.58.207.194:0
File type ASCII text, with very long lines (385), with no line terminators
Hash 05b58da20c050f25e7c50b5d8f4e72d3
374806c76fd2750de834e029646e5e6fab7344b1
b59c71760a90f9ab066f0a7fdcc591c29d39d8738e9843822dcbe4b7d5b17a18
GET /gampad/cookie.js?domain=dc534.4sync.com&callback=_gfp_s_&client=ca-pub-5588186629271559&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 29 Nov 2022 04:01:00 GMT
server: cafe
cache-control: private
content-length: 249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=dc534.4sync.com
216.58.207.226200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=dc534.4sync.com
IP 216.58.207.226:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dc534.4sync.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Tue, 29 Nov 2022 04:01:00 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aj1090.online/multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d
199.80.53.177302 0 B URL HTTP/1.1 aj1090.online/multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d
IP 199.80.53.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /multi-cookie.gif?cf=img&ep=0&UUID=51521075-ee68-5cd9-8075-55bd1b13bfa0&COOKIE_NAME_HERE=1|30d&eu=http%3A%2F%2F&COOKIE_NAME_HERE=$$%20$$|30d HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 302
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
set-cookie: eas_3p_COOKIE_NAME_HERE=1; Domain=.aj1090.online; Expires=Thu, 29-Dec-2022 04:01:00 GMT; Path=/; SameSite=None
location: http://
content-length: 0
date: Tue, 29 Nov 2022 04:01:00 GMT
aj1090.online/z5NFBLFEQmNKr4TZaipRW_WrJ2M4BkZGsx4iBYt5B9xwf5FXc_Dvp_mVdQ-hzCNWERGRO9IRVVh8pIr1bwk5lmK0w2pXJLZySDvw5w8j17zQQEVHT1-Uxeg6d-cMUcjEE_F0FbqNy-biRhMrwoJx4bs_WEfpXVnAlSxbHHNYlD5gKtIOw6djxaxKfzo9YVaMGP8o_9EFaV_HHex7u3KsX1uQZ6ZCMWr10wZkZIkmq9tUps1arAoy9rEIYcMGAanDSyT9_ApaIKWTkPRxjIs6_9d1u6HMSppBFZ_8bSXg14eIR5_0n0b32cpVivfOwEDXUJJFeThN6ieOfbfUgTpy9vxex5BmnQOAbwKzHbh29Gw2WoyanTQOrQ1sMc_1KttccP_IanGA2QFpWPjIjSfPqbg1nq6c1zVfQ6Ac7sCPTdkc24cWfjK8TLyXqCMKo2tpfLvCmkNVrJx2lQ1ufo2slhBKiPUkg7XhUw-O0LmRQVzg13t_AN5CI8-498CrptclZF6aaZuxDfwNYVA_DJimaVoG9mhbWU4uUgGpR68mPjbANgbgpab_wuur6efM0vwAoiqkyRZk4cGedpQqnTzndag?DC=WZ
199.80.53.177200 49 B URL HTTP/1.1 aj1090.online/z5NFBLFEQmNKr4TZaipRW_WrJ2M4BkZGsx4iBYt5B9xwf5FXc_Dvp_mVdQ-hzCNWERGRO9IRVVh8pIr1bwk5lmK0w2pXJLZySDvw5w8j17zQQEVHT1-Uxeg6d-cMUcjEE_F0FbqNy-biRhMrwoJx4bs_WEfpXVnAlSxbHHNYlD5gKtIOw6djxaxKfzo9YVaMGP8o_9EFaV_HHex7u3KsX1uQZ6ZCMWr10wZkZIkmq9tUps1arAoy9rEIYcMGAanDSyT9_ApaIKWTkPRxjIs6_9d1u6HMSppBFZ_8bSXg14eIR5_0n0b32cpVivfOwEDXUJJFeThN6ieOfbfUgTpy9vxex5BmnQOAbwKzHbh29Gw2WoyanTQOrQ1sMc_1KttccP_IanGA2QFpWPjIjSfPqbg1nq6c1zVfQ6Ac7sCPTdkc24cWfjK8TLyXqCMKo2tpfLvCmkNVrJx2lQ1ufo2slhBKiPUkg7XhUw-O0LmRQVzg13t_AN5CI8-498CrptclZF6aaZuxDfwNYVA_DJimaVoG9mhbWU4uUgGpR68mPjbANgbgpab_wuur6efM0vwAoiqkyRZk4cGedpQqnTzndag?DC=WZ
IP 199.80.53.177:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef
GET /z5NFBLFEQmNKr4TZaipRW_WrJ2M4BkZGsx4iBYt5B9xwf5FXc_Dvp_mVdQ-hzCNWERGRO9IRVVh8pIr1bwk5lmK0w2pXJLZySDvw5w8j17zQQEVHT1-Uxeg6d-cMUcjEE_F0FbqNy-biRhMrwoJx4bs_WEfpXVnAlSxbHHNYlD5gKtIOw6djxaxKfzo9YVaMGP8o_9EFaV_HHex7u3KsX1uQZ6ZCMWr10wZkZIkmq9tUps1arAoy9rEIYcMGAanDSyT9_ApaIKWTkPRxjIs6_9d1u6HMSppBFZ_8bSXg14eIR5_0n0b32cpVivfOwEDXUJJFeThN6ieOfbfUgTpy9vxex5BmnQOAbwKzHbh29Gw2WoyanTQOrQ1sMc_1KttccP_IanGA2QFpWPjIjSfPqbg1nq6c1zVfQ6Ac7sCPTdkc24cWfjK8TLyXqCMKo2tpfLvCmkNVrJx2lQ1ufo2slhBKiPUkg7XhUw-O0LmRQVzg13t_AN5CI8-498CrptclZF6aaZuxDfwNYVA_DJimaVoG9mhbWU4uUgGpR68mPjbANgbgpab_wuur6efM0vwAoiqkyRZk4cGedpQqnTzndag?DC=WZ HTTP/1.1
Host: aj1090.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dc534.4sync.com/
HTTP/1.1 200
cache-control: no-cache
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"49-1669117906000"
last-modified: Tue, 22 Nov 2022 11:51:46 GMT
content-type: image/gif
content-length: 49
date: Tue, 29 Nov 2022 04:01:00 GMT
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
142.250.74.66200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
IP 142.250.74.66:0
File type JSON data\012- , ASCII text, with very long lines (14835), with no line terminators
Hash 2dddec34f6e36d77e584a56588d3f792
698619cdc2e560a1cf254eff2b002b9d5e90c727
1624752e83d1ce733a5cca2f44b06a27aced56ec801a17c59cd8702199254a5c
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dc534.4sync.com
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Tue, 29 Nov 2022 04:01:00 GMT
server: cafe
content-length: 11198
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash afdcfc5f3bd741d114596300d607f4cc
e82ea5829078ad9268cdf9c576c780b1c40c3696
1c80e7d28c6303b65a17bfa822163c5af3d6d5c480ee9f2e404b23119520eeb5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Tue, 29 Nov 2022 04:01:00 GMT
expires: Tue, 29 Nov 2022 04:01:00 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 05:45:03 GMT
expires: Tue, 28 Nov 2023 05:45:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 80157
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash a0fe20d41a043db700a84924cd9793f3
c0da481fef6cd00558f6e68b074acb34bef8292f
03caeb65ab9e22f6d6fe0d344d327950d20ee9ed144e2da0e5e062943a03fc56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 04:01:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 9e2169a0c0aa52fa89140e1b48baab69
b94eddbf2434377db5e9e8a983be4c68dcae517c
d0eff1fc5e4cb09fe42bff885eaf02e8d5a2a9e5043fe25d3179b3597439df60
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Tue, 29 Nov 2022 04:01:00 GMT
date: Tue, 29 Nov 2022 04:01:00 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-Tjl0ujSpKubLYqJnWYE8kA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700,800
IP 142.250.74.10:0
GET /css?family=Open+Sans:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dc534.4sync.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 04:00:58 GMT
date: Tue, 29 Nov 2022 04:00:58 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2