uqload.io/js/custom-pop.js?v=14
200 OK 0 B URL GET HTTP/2 uqload.io/js/custom-pop.js?v=14
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/custom-pop.js?v=14 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
content-length: 0
last-modified: Tue, 15 Jan 2019 07:42:00 GMT
etag: "0-57f7a4beb4200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1346
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=419JsFNZeYJ9cJge%2FC%2FNCyrGIGG%2BxBSXhZx5PAErc8%2FCOphaeWOAEvRf3Yra7BKh0eD0mCGZMDJjKNpxVtOF72eoXqJ3rB8v2Db2BT9oQMsGNOp6MzsQTBNUlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f3dad0afa-OSL
X-Firefox-Spdy: h2
uqload.io/js/pop.js
200 OK 40 B IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with CRLF line terminators
Hash 5e0807d59e0b17d215bb0de2be1b0269
ef2017f1f685ff0ab4f655f2d8577a676af428e3
6c15e4cb4b3e6804304636f32e205dd8127eced72a5e9d1bb0095cdd3c588c36
GET /js/pop.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
content-length: 40
last-modified: Tue, 06 Dec 2022 19:08:12 GMT
etag: "28-5ef2d8679272d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1346
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xlk4%2B8f%2B2enM6qcnkZLZuJkiy28yxFL8%2BN1OdRRt4v9gAttxGVbTa0mrpT%2Fw6Loss8Z4dZbIM29WmjQjHP%2FkAvzlUXn0krdkMX9ZDBwvFwIasKJIbSZ81a22dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f3dac0afa-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 94111c3420bb2c6a13c84437834119c2
a60b1aaa235c754b4f840e14e5c32f3bd1920d3b
9f0636387ba07be147b51285a1e30b77ad2e4e77126f1c1082775fd981b32d78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 05:35:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uqload.io/player_clappr/clappr-chromecast-plugin.min.js?v=2
200 OK 7.6 kB URL GET HTTP/2 uqload.io/player_clappr/clappr-chromecast-plugin.min.js?v=2
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (25391)
Hash e5d13c4d7c790f7dfa01d86cd6c2419b
0d5e7500ba0cea98d5fc014918d7cd1a48b5a668
1ce773865196b7bfd386873ca7eebaf8f9e903b56ca2e2ce45127e0699c0da90
GET /player_clappr/clappr-chromecast-plugin.min.js?v=2 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Sat, 09 Feb 2019 15:27:00 GMT
etag: W/"6368-58177b4ebd900"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1346
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5LA0mC1I3E1SLe9k33UgF9OXrEz46o5jMNR2TXfm8c5OtiLbTHWb5yjQfBSn9rlq8yt3qO35wgvBSkwEtUNeQ9bkS02wdRK8A%2BGk8I%2BMYiTodknUjwth5kdQ%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f3dab0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 8fe5097b12ddbaa7731f5c6d445db349
b1d9718a7e3ead4ad6c08b3c888129ddf9ba52af
3133a3d91f11eeb170b6a3149b7cceb04228b72a222187bcc374f1fbbdbf4bd3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 05:35:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-106482009-1
200 OK 69 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=UA-106482009-1
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (4179)
Hash 1f2e90bad8c07f11b0f00c6807ff72bf
3d8ea523be8fefec20786b55e0f899944e96339b
e2f1cf92fb250b49da3c2271fcce44599074d81801d4ecfcbc38659314ba9639
GET /gtag/js?id=UA-106482009-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 05:35:11 GMT
expires: Sat, 23 Sep 2023 05:35:11 GMT
cache-control: private, max-age=900
last-modified: Sat, 23 Sep 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68945
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
uqload.io/css/style.css
200 OK 4.8 kB IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (19956)
Hash 25d6f220117bd80f8b8278a05d402326
6f3a16c5e28658ffb8dd44b4408e980934117742
d92a0183593ad4236fbcf7d31fe34d6a1cab7b70a660dc8a891aa26446180b7a
GET /css/style.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"5007-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JQC3s9mjGCundREcF1AkyK2rfa56d8KvxmjP7fUXAS88u2XbtTtJXGLGy54DO%2BaZu%2BmNPPO9R91aG39fo%2F4poEJIJXRdZSQOQL9gGTLAGc49fgZ5llOolHNhow%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d980afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/xupload.js?v=6
200 OK 4.1 kB URL GET HTTP/2 uqload.io/js/xupload.js?v=6
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash c8ebe79e04a30d4dacc904119e4f6bf5
8359435fdab63b92a6b8a4e6178b6e60499dcbe4
3554b28e8163cf88e6ca341b28befb4587ac2f9c2b7dd374fbbb926d020631e6
GET /js/xupload.js?v=6 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Thu, 09 Nov 2017 03:26:00 GMT
etag: W/"27de-55d845cf24200"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=avPoPlAEYt5dmb6FeieO3yVf4g3%2FxguDgKBn5JtyBAVyPnipvA7WQyvmALo2OOEwbgbva9HtQoHhU1ts7oxSJrqbaOzAE6pBy13mWo6z3bymcO%2FB5EOLSgvl%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d9c0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 05:35:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
uqload.io/css/main.css?v=13
200 OK 7.4 kB URL GET HTTP/2 uqload.io/css/main.css?v=13
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (15964), with no line terminators
Hash 63bf7c37b3529eadca8e8847b75a4819
47ff414c04b31d02ffb572bab5e187733d7dab4d
c0cb3ad7bd9995c5812482f95864f70ed3798418e988be71d1399e465361bd31
GET /css/main.css?v=13 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Thu, 09 Nov 2017 03:00:00 GMT
etag: W/"3e5c-55d83fff68c00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DlMJvSB7Ig27zoDqpfg4KInSS2oqTo8ieAiPAc5gwpR34axlDh7InrW9OTkuTVveZzTOy2%2BNbIPxnj2DVBPrggDOBpMA1vfPrVY5a29hq%2B8y%2FkdhwHsP%2BNGvpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d940afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/jquery.min.js?v=0
200 OK 51 kB URL GET HTTP/2 uqload.io/js/jquery.min.js?v=0
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
GET /js/jquery.min.js?v=0 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2017 04:48:00 GMT
etag: W/"17b8b-55d71645c2000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FAetWsiHpgSWBWUx%2FLAJQhyjolkfQab6r5GQhVnkIyQkmU5eNsyV3ONpx10JX2oikZ26%2BK2k2JyNJtyrlr2N6mYqyWhM%2BbvFUyi2V4GxGxzmnWvuzfJSM1qt6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d9b0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 2a9cb3694beef11368f7284821163a4d
32d723fad91ccd0c154e5d7e489266cfe596aa61
08cd4f8a916cab4a520c51bd519209ebe87f4898f10d1f1c968bce537c4d3916
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 23 Sep 2023 05:35:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-WZRQYEYNGV&l=dataLayer&cx=c
200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-WZRQYEYNGV&l=dataLayer&cx=c
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (5788)
Hash 61e541eed2db04ee0cfe3406ec6fbaaf
8833aded1f90a6cb35b0b0e3a0ce1a94eabf9c56
e67f00521d67ae89e2c4fdf8566a20ae69c0ce744e398a7dc52cd9e766db95ab
GET /gtag/js?id=G-WZRQYEYNGV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 05:35:12 GMT
expires: Sat, 23 Sep 2023 05:35:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81142
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
uqload.io/img/share-sign.svg
200 OK 2.2 kB URL GET HTTP/2 uqload.io/img/share-sign.svg
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1026)
Hash 1cc6884706b2c67c9c001ca6d13c8103
734bebdb4c3660bfb0554021363e7f6de439670a
fdf5bdeaeb24b449d81f8fbee26232bc09c236777e8bd076eda611d52d87d241
GET /img/share-sign.svg HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/css/uqload_style.css?v=48
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: image/svg+xml
last-modified: Wed, 08 Nov 2017 04:55:00 GMT
etag: W/"67c-55d717d64d100"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1582
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=riahG10snxDOtWKBJmdr94av%2F7eTbY7j2cau%2FfgY39RhMhuvCMmuC8kcsDud%2BVU6AYoxwSK8iCnInjqrAi64EXjEP2q6sL9oQ4znG0D2RsPXjq91QxxSb0oHNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c43ced40afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/actions.js?v=9
200 OK 30 kB URL GET HTTP/2 uqload.io/js/actions.js?v=9
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (2013)
Hash aa4828955917ff79531a7725dfc6eb10
58bf5a51901ee45f2acb597917cb54636b9bbc45
08b417494820c0ad90e29aedfcd67b37e3a5006d827335df6fdc1595ab875590
GET /js/actions.js?v=9 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Tue, 25 Jul 2023 07:35:28 GMT
etag: W/"1577-6014ac66f6fc3"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eUB7orVo8yKbVz1tKIHo7S%2FA56ChRW7NUY5a1kXHH4nPH4qk7%2FnJP9acQaJFlUlwzzArtIw4CM0WuXIngitFSWm8M2AyA7zKjyAMdYQ6iYtW32pbzWFi3QLFiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da60afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/pop.js
200 OK 40 B IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with CRLF line terminators
Hash 5e0807d59e0b17d215bb0de2be1b0269
ef2017f1f685ff0ab4f655f2d8577a676af428e3
6c15e4cb4b3e6804304636f32e205dd8127eced72a5e9d1bb0095cdd3c588c36
GET /js/pop.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
content-length: 40
last-modified: Tue, 06 Dec 2022 19:08:12 GMT
etag: "28-5ef2d8679272d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1347
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=38G2hYx7snwlxigxK%2FP%2BqJUnbmRZPKP5h27luPpAyCLvOCw2DMr%2FVbw2aP4V4T3lh%2FMSpYpaq9dW7nhOYcFigy2VObbrVNw6A4I7FWAeihkTM4SkUGx2I34qAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4588230afa-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-106482009-1
200 OK 69 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=UA-106482009-1
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint00:ED:16:68:8D:DB:14:8B:43:01:81:CA:83:9A:AE:5B:24:AB:11:18
ValidityMon, 04 Sep 2023 08:17:06 GMT - Mon, 27 Nov 2023 08:17:05 GMT
File type ASCII text, with very long lines (4179)
Hash 1e7ec8a31a7db4bd3a8b25c5a958e8d2
dbaf21a5674265ed29865724bb7b67d9861be65b
0e0cb23f368cfbaed6e3ac4b93520d2019a012cc9f8fb77f910ed303f52979b9
GET /gtag/js?id=UA-106482009-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 23 Sep 2023 05:35:12 GMT
expires: Sat, 23 Sep 2023 05:35:12 GMT
cache-control: private, max-age=900
last-modified: Sat, 23 Sep 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 68947
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.uqload.io/js/custom-pop.js?v=14
200 OK 0 B URL GET HTTP/2 www.uqload.io/js/custom-pop.js?v=14
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/custom-pop.js?v=14 HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
content-length: 0
last-modified: Tue, 15 Jan 2019 07:42:00 GMT
etag: "0-57f7a4beb4200"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4orYHniQ7DnwYUNgoPpsjct3rOsKQAegRUaupFMDXVBTac9U%2FnWI8RQEoVuvepVYuwTjquNccPG3ipno1wGJcMNG6MAvoj%2FmqlWnZllJWYid6BpJdcA%2BmgkkGvtq7KU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c45982e0afa-OSL
X-Firefox-Spdy: h2
uqload.io/js/tabber.js
200 OK 81 kB IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (538)
Hash f6be5160018c4101fa76b42650b5a1a6
d8d3efdadf32bb4fd6daac619575969b241d2864
c8a84372ece060ed361527a4517edace8aff92d6288323c52c8333500e1ae70a
GET /js/tabber.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Wed, 07 Jul 2010 10:48:00 GMT
etag: W/"1803-48ac9e7459800"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e7dXzUtwkVn89fc5PqvqVbJmx74QDWB9WJKL9q%2BMgWyFct7xyWX%2Fdk8%2FhZ22wmRpC4Wl4rCDFQjbkuTlj9d0RHkVe5QYFNoyHkfg%2FgybMWAfWDCqCOPJ2syijA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f3db00afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/favicon.ico?v=0
200 OK 86 kB URL GET HTTP/2 uqload.io/favicon.ico?v=0
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash a1e4a21c0434ccaf5220e23fdc9aa418
3f08bf5f52a2d1c432dd5502e05526203986e446
18cda48e81f7d497665f0198ee7a175425e049779bd89de2b189e831fe842c4d
GET /favicon.ico?v=0 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1; file_id=6020261; aff=39424; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: image/vnd.microsoft.icon
last-modified: Mon, 06 Nov 2017 23:12:00 GMT
etag: W/"7d26-55d5894e39000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K%2Bhb4LxVKY5lFqdbx12SS6Im6Y1KZspzufW%2FWPwj%2BxZVdmaoFqTJ%2B5HsSyRgztL3%2BarD0LdpsTMg6sqmf8qlVT4jUg6yF28XyzRdzFM7ZDo85qBywmiZc2%2BFjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c46888d0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/embed-2h2qf9rkl555.html
200 OK 0 B URL HEAD HTTP/2 www.uqload.io/embed-2h2qf9rkl555.html
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embed-2h2qf9rkl555.html HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/html; charset=UTF-8
expires: Fri, 22 Sep 2023 05:35:12 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHFBom6v9wuGkRDrduPDoqWdPGpvSncrBYInc90TRR5maoyHMCLLI60CyLw8T9luzPZp4xsTl52lDFeKyUDpKP6kjYUbBxlTEiUO5h2t6yzNNq6al0dDDjLQdriSGqc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b06c4889710afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
afodreet.net/tag.min.js
200 OK 25 kB IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectafodreet.net
Fingerprint78:15:32:27:5A:38:E8:40:BD:F2:1A:D9:34:8D:1F:5A:FE:FB:77:72
ValidityMon, 04 Sep 2023 13:21:43 GMT - Sun, 03 Dec 2023 13:21:42 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash a3b25ba8316f38d39cbf075d179aad71
9ee5f28a77d2bf3eaa59865c259e8d5c5d6cf272
311c51da9b45e9b6d879e703d48b0324b6921919659a430735032711fb7126cd
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /tag.min.js HTTP/1.1
Host: afodreet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/javascript; charset=utf-8
content-length: 25218
content-encoding: br
x-trace-id: 3755d7f6e5e9eeb516aa4ec1eb87418f
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Tue, 19 Sep 2023 12:05:26 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.uqload.io/embed-2h2qf9rkl555.html
200 OK 0 B URL HEAD HTTP/2 www.uqload.io/embed-2h2qf9rkl555.html
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embed-2h2qf9rkl555.html HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/html; charset=UTF-8
expires: Fri, 22 Sep 2023 05:35:12 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C8nh%2F1dosuIt3Qq3%2Bp5vX9yeyrEGPtB%2Bctc7CLQRh1%2F7WXVSFUyHjA4SmlGfGpqfGmvT8T1Iwb8m0skJgNF3AKSns3hZZvU2Sx6vpmW%2BQMp%2FSC0Lz%2FRSEYJal7xQs2c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b06c4939980afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
m20.uqload.io/i/05/00222/q4dpfirt4lwu_xt.jpg
200 OK 79 kB URL GET HTTP/1.1 m20.uqload.io/i/05/00222/q4dpfirt4lwu_xt.jpg
IP
ASN #64122 SWISS GLOBAL SERVICES S.A.S
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGlobalSign nv-sa
Subject*.uqload.io
Fingerprint3A:5E:FE:7A:0D:CC:39:B8:AA:9B:25:8E:01:E3:44:1F:D0:2C:96:B1
ValidityTue, 25 Jul 2023 04:34:06 GMT - Sun, 25 Aug 2024 04:34:05 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 960x406, components 3\012- data
Hash 94fa9b72e27d156dcf10e119cd3a58dc
08013a510cc2c590de10b496cfa0453cf6ab499a
ccd06de93bdfe45ac0abe60cd7a3a32d3d980349017660b6315fe69f1d5549c9
GET /i/05/00222/q4dpfirt4lwu_xt.jpg HTTP/1.1
Host: m20.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 23 Sep 2023 05:35:12 GMT
Content-Type: image/jpeg
Content-Length: 78696
Last-Modified: Thu, 24 Oct 2019 13:20:35 GMT
Connection: keep-alive
ETag: "5db1a523-13368"
Expires: Sat, 07 Oct 2023 05:35:12 GMT
Cache-Control: max-age=1209600
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Roboto
200 OK 5.4 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
File type gzip compressed data, max compression\012- data
Hash 80931bca070cd5c128fa076ee84f4ff4
0cf8ee835e5ebb582c4a6ad6a9229c377f3da35a
5771486f06fe1956c7b6aa809aeda35ee899ec0656bf6034e98bf038b3e2e9de
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 05:35:11 GMT
date: Sat, 23 Sep 2023 05:35:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.uqload.io/img/cross.svg
200 OK 949 B URL GET HTTP/2 www.uqload.io/img/cross.svg
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 28385ba5de4ada4440475ec42c3c918f
3dd83b3d29bfd9b45962c4ac2624d92c8b378602
09f458f2076c6eb904e80aa26f3e6982f1e05c5569e4d80f99d974412024a34a
GET /img/cross.svg HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.1.1695447313.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: image/svg+xml
last-modified: Wed, 08 Nov 2017 04:55:00 GMT
etag: W/"364-55d717d64d100"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I%2FMkqNyqJR%2F8dbFfGMt3GjLrqOewWcRpp0Ab7tv7L%2BuAB92FsWR9txxUchefxGJC3nc6eRAo6e3KvFN%2BNfKJ0Dl1NF%2Bi0OxsJGFjbw%2FdHnBstcDZTE0cUHOIXxqGKzY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4a69e70afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=2a3852859db64d7fa2ca1606bfaf6d95
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=2a3852859db64d7fa2ca1606bfaf6d95
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type JSON data\012- , ASCII text
Hash 2569a362a9815d380abeb681cbaacf84
9ddfbf2a06145cef956b98a20145f49a4b75da58
21c78feea44414a62f8a53a8b8c965f8f9e2917f0ec6064c6d29640c7a65fe57
GET /gid.js?userId=2a3852859db64d7fa2ca1606bfaf6d95 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.uqload.io
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=2a3852859db64d7fa2ca1606bfaf6d95; expires=Sun, 22 Sep 2024 05:35:13 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
betotodilea.com/400/3094561
200 OK 64 kB URL GET HTTP/2 betotodilea.com/400/3094561
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectbetotodilea.com
FingerprintE6:43:29:5D:43:E3:1B:7A:9C:10:C4:40:DF:C9:6B:91:73:22:AE:E8
ValidityMon, 11 Sep 2023 03:28:47 GMT - Sun, 10 Dec 2023 03:28:46 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash d647eb086872aed27077f947e34338b2
0f6755acbcdd6b4569c8ff876a78e9e5fa5a9ada
724eb58a79025aa7e4d786910ec5c6c9f065f00564193c826e22078a09f06d97
GET /400/3094561 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
x-trace-id: 0a1336e61d7dfcb2ec03d3f0385e8358
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=4982e0eadd1a4e2baa3910c304799280; expires=Sun, 22 Sep 2024 05:35:12 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
pushagim.com/zone?pub=0&zone_id=3482084&is_mobile=false&domain=www.uqload.io&var=&ymid=&var_3=
200 OK 180 B URL GET HTTP/2 pushagim.com/zone?pub=0&zone_id=3482084&is_mobile=false&domain=www.uqload.io&var=&ymid=&var_3=
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectpushagim.com
Fingerprint04:90:FF:28:A7:4B:CC:3A:D9:E6:F5:D0:C1:17:0C:97:58:5A:3B:F9
ValidityMon, 21 Aug 2023 11:58:08 GMT - Sun, 19 Nov 2023 11:58:07 GMT
File type JSON data\012- , ASCII text
Hash a05e130e2ed5a977231be4ec211bf860
e14ab29820075937870bbe4ff321cd6b836e8550
5b44a3a80a8754c7c8eb45d4b3a6d99d9b3e029c0804c68d900cf5ac44c7b7c0
GET /zone?pub=0&zone_id=3482084&is_mobile=false&domain=www.uqload.io&var=&ymid=&var_3= HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uqload.io/
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json; charset=utf-8
content-length: 180
x-trace-id: bfa43939299af5b3823f9c0cec78da64
access-control-allow-origin: https://www.uqload.io
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ossmightyenar.net/401/6144919
403 Forbidden 22 B URL GET HTTP/2 ossmightyenar.net/401/6144919
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint75:BB:EE:5D:84:C1:37:EF:9F:A0:FC:E1:55:C0:DF:C2:CD:DB:73:24
ValiditySun, 10 Sep 2023 05:22:07 GMT - Sat, 09 Dec 2023 05:22:06 GMT
File type ASCII text, with no line terminators
Hash b5e50d07b6b24e1e105e6e4fceb97bf6
95d7e8119b8befc7153b44b4c7be59f26bd6ad33
61c3148fba3befcce5b4636c4209a440913a136138bf62005df97386827f2ae2
GET /401/6144919 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: text/plain; charset=utf-8
content-length: 22
x-trace-id: fda7f1b75ac7b6f8ee38dee490e73e7f
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
timing-allow-origin: *
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
X-Firefox-Spdy: h2
ocsp.sectigo.com/
471 B IP
Hash cbf5b0228e6fb4a0147cec87a9f3d621
c2cfb64303a7ae0e92a90a2e110fe2c995bd234c
29c4f86517e8e64bde152fcf9f689b7a76195ef1614a21548ab1c69ea83353c2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 23 Sep 2023 05:35:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 21 Sep 2023 02:44:33 GMT
Expires: Thu, 28 Sep 2023 02:44:32 GMT
Etag: "c2cfb64303a7ae0e92a90a2e110fe2c995bd234c"
Cache-Control: max-age=422714,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 80b06c4e8f8db4f9-OSL
uqload.io/js/xupload.js
200 OK 3.7 kB IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash c8ebe79e04a30d4dacc904119e4f6bf5
8359435fdab63b92a6b8a4e6178b6e60499dcbe4
3554b28e8163cf88e6ca341b28befb4587ac2f9c2b7dd374fbbb926d020631e6
GET /js/xupload.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Thu, 09 Nov 2017 03:26:00 GMT
etag: W/"27de-55d845cf24200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fdd7ep2yBLF4xCnIHZ%2Fr%2FVIkjQflULYLIJ9DBgigTDWLNHgQN5%2B6s%2FdgNeVtMsCaWtgddvR7XPzuWThljY6%2FxzGv3iH%2BEbGkEQppvOrbci9dYW5SueWMoz%2F1Kw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4558100afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL POST HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1381
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 23 Sep 2023 05:36:42 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.uqload.io
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
betotodilea.com/500/3094561?excludes=&oaid=2a3852859db64d7fa2ca1606bfaf6d95&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wiw=842&wih=474&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
200 OK 0 B URL GET HTTP/2 betotodilea.com/500/3094561?excludes=&oaid=2a3852859db64d7fa2ca1606bfaf6d95&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wiw=842&wih=474&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectbetotodilea.com
FingerprintE6:43:29:5D:43:E3:1B:7A:9C:10:C4:40:DF:C9:6B:91:73:22:AE:E8
ValidityMon, 11 Sep 2023 03:28:47 GMT - Sun, 10 Dec 2023 03:28:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/3094561?excludes=&oaid=2a3852859db64d7fa2ca1606bfaf6d95&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wiw=842&wih=474&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&tzofs=0&js_build=7&sw_version=v1.300.0 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.uqload.io/
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.uqload.io
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
www.uqload.io/embed-2h2qf9rkl555.html
200 OK 23 kB URL HEAD HTTP/2 www.uqload.io/embed-2h2qf9rkl555.html
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (57458)
Hash 6f6e0071004486408e26f88a430b6ce6
7280aa526d4bf8e4f3c8ce3502ec9497b23ba501
5bcceef2168bb220c8cb3930f736cf8467abe34ead088f2d83954602a63eb66c
GET /embed-2h2qf9rkl555.html HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/
Cookie: lang=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/html; charset=UTF-8
expires: Fri, 22 Sep 2023 05:35:12 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nVS35xWcZjP71caxPUNT%2FirpZVJZaTgPpNVVJy2vq9UxoaxtQWWv0Cssy56F2dgdkx7SwFmNFhvLjcZmlFLW30M%2Fev8H2sRN2bdT92eXT945L6mxgtRKpJXqz8OucEU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b06c43ff130afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
FingerprintD6:54:A1:23:39:A0:9A:41:5A:CC:0B:F2:C1:7C:6A:FA:F0:E8:C1:52
ValidityWed, 06 Sep 2023 01:33:39 GMT - Tue, 05 Dec 2023 01:33:38 GMT
File type JSON data\012- , ASCII text
Hash c57a6ead68afe604f703ef8cf24c77a2
d24901f585bcdb1f90e5ef071b7cc18cbd098bf2
91e25cb43048622aa8e93efae1fd13c6014640ca16e80a37d736ac879b915b14
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uqload.io/
Content-Type: application/json
Content-Length: 521
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json; charset=utf-8
content-length: 94
x-trace-id: f46d78453349f99a6e151c6ee4e75be2
access-control-allow-origin: https://www.uqload.io
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
uqload.io/js/clipboard.min.js
200 OK 10 kB URL GET HTTP/2 uqload.io/js/clipboard.min.js
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/clipboard.min.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Sat, 18 Jun 2016 06:49:00 GMT
etag: W/"2780-53587ddb46f00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1583
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KdaBDL3gJ%2B64MJMA2giUlb%2FL%2ByPg9Pvc3lDzLcOWcYaZyzSJkNvYM8lj2m00sn4yRcFeBFaRKeSG690tcuaohc3s0o71V5ghRYz0Dlh%2Bky%2Bp7dX9MFp0PYcfkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da90afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/img/logo.png?v=0
200 OK 3.0 kB URL GET HTTP/2 uqload.io/img/logo.png?v=0
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type PNG image data, 161 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 84946e7d970d1a89f8f94e1e942b89a7
7930cb6cec1a99ace6c1143e719d3ea97d5fec25
61238b65f1a1d754d4d3ce4bb12a3b65dcd7057a41eabadf5912999421e624ad
GET /img/logo.png?v=0 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/css/uqload_style.css?v=48
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: image/png
content-length: 3031
last-modified: Mon, 06 Nov 2017 23:23:00 GMT
etag: "bd7-55d58bc3a5d00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RAyCblTQGTZKJ8rgNwSxY%2Ff%2FuEVTZv8S%2B2%2FJ0bitRTOd51aIh6gqEgc%2B6QmHW%2FfstIdD84JOI5Zz7KV2hRm9Sjckgo0xPvYIHFLpIXP49ckkq3%2FuBVfg1WoaLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c41de5d0afa-OSL
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
200 OK 19 kB IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint42:15:A6:1F:C2:2C:D5:FF:32:2C:B9:6C:84:A6:86:63:B0:45:C5:20
ValidityMon, 07 Aug 2023 17:09:01 GMT - Sun, 05 Nov 2023 17:09:00 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3357
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nvlh4VheVQhcc0jSzJSbT0CK2ofEYFGAVjNyP8Mno5xUqs9ytyC9j%2B2uQxvGg5J61%2BK7CfFqetXvZjAs3R8ez6%2BqDK0f%2FqBahl%2FSFAC1HWBHaLwi9Ciy6fo0UHBYzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4bdc44772f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint3D:35:56:30:C0:0F:0C:7F:20:BA:7D:A8:48:DB:24:1B:15:F5:48:27
ValidityMon, 04 Sep 2023 08:23:09 GMT - Mon, 27 Nov 2023 08:23:08 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://uqload.io
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 21 Sep 2023 04:50:55 GMT
expires: Fri, 20 Sep 2024 04:50:55 GMT
cache-control: public, max-age=31536000
age: 175456
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.uqload.io/img/share-sign.svg
200 OK 1.7 kB URL GET HTTP/2 www.uqload.io/img/share-sign.svg
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1730), with no line terminators
Hash 1c708ee0bac2d1d38a9a9886ba43449b
fd9c8885a4347e7d793d034daa04df454f7153e2
1bddbcde3c49e08fd87697c65ece3cabfab074bb815151122814ae55f648ee16
GET /img/share-sign.svg HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.1.1695447313.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: image/svg+xml
last-modified: Wed, 08 Nov 2017 04:55:00 GMT
etag: W/"67c-55d717d64d100"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=npszv%2B5aTiaTiW33TFoEWhpTlhanvAGyJnRDubd%2FR2XV3HAPrAKREHHzmpoxkEOXKaGYLJ7J08WjrS73geo9ADlCI9CG5ZkwtAiJhmcb9rNfnf1xI0OmNY25iIlJ8QI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4a69e60afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
afodreet.net/?rb=qpr_zXDO6HVq6weC_pHwXJEbPIM7dB-M-dV7laVnPC2F_tg-Y3jSzBYUV7ThtaO8s-E21BjZFFqWyjBoVwYk9qpB3lfKWpQffd9iMsZbOq5TqNYtpCRSWqjqMkVytyOpi5UCx48yt_XAMn-c5PqQQDhWlnepnRcwpX7zUZr5cbTDZ3wQUzqE0K2-CBCB5qxMAh__XfrEiYRQTZlwvuyhYP_US0k%3D&request_ab2=0&zoneid=4485812&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=c76a1c95-1ed6-4035-b30c-1b7f3732e449&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link
200 OK 1.7 kB URL GET HTTP/2 afodreet.net/?rb=qpr_zXDO6HVq6weC_pHwXJEbPIM7dB-M-dV7laVnPC2F_tg-Y3jSzBYUV7ThtaO8s-E21BjZFFqWyjBoVwYk9qpB3lfKWpQffd9iMsZbOq5TqNYtpCRSWqjqMkVytyOpi5UCx48yt_XAMn-c5PqQQDhWlnepnRcwpX7zUZr5cbTDZ3wQUzqE0K2-CBCB5qxMAh__XfrEiYRQTZlwvuyhYP_US0k%3D&request_ab2=0&zoneid=4485812&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=c76a1c95-1ed6-4035-b30c-1b7f3732e449&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectafodreet.net
Fingerprint78:15:32:27:5A:38:E8:40:BD:F2:1A:D9:34:8D:1F:5A:FE:FB:77:72
ValidityMon, 04 Sep 2023 13:21:43 GMT - Sun, 03 Dec 2023 13:21:42 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1706), with no line terminators
Hash c3380c7cb383d5ba27cebac6643b3be4
bf35029e2b1686d42fd0ec5948620ec4be6ae93d
8bb8b0aca6c310e336c26a512e5c94ecf473fd9c7cafecf4722f51f6500e423c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=qpr_zXDO6HVq6weC_pHwXJEbPIM7dB-M-dV7laVnPC2F_tg-Y3jSzBYUV7ThtaO8s-E21BjZFFqWyjBoVwYk9qpB3lfKWpQffd9iMsZbOq5TqNYtpCRSWqjqMkVytyOpi5UCx48yt_XAMn-c5PqQQDhWlnepnRcwpX7zUZr5cbTDZ3wQUzqE0K2-CBCB5qxMAh__XfrEiYRQTZlwvuyhYP_US0k%3D&request_ab2=0&zoneid=4485812&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=c76a1c95-1ed6-4035-b30c-1b7f3732e449&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link HTTP/1.1
Host: afodreet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uqload.io/
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Cookie: OAID=7da2702caec74d4b88640eafc2fed6ab; oaidts=1695447312
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json
x-trace-id: b5b36023115d25141d6db58df029675e
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.uqload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=2a3852859db64d7fa2ca1606bfaf6d95; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
oaidts=1695447313; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 30 Sep 2023 05:35:13 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var=
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var=
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintB4:02:64:AF:5C:AB:27:5B:1B:80:CF:C8:FF:EB:BF:43:29:C3:C5:C1
ValidityTue, 25 Jul 2023 06:29:27 GMT - Mon, 23 Oct 2023 06:29:26 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 7a8a2a469286320b9d58e701e8e96f16
e8a4b42a94085d1ed38e4217f7d57f85afd3281e
68801a499767e596acd84b3bbbc6da16bedcee9a51128c5c6cecd409e8fb4ffe
GET /gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uqload.io/
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.uqload.io
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f9165bb0418f4ece803f8b56a91ac1ad; expires=Sun, 22 Sep 2024 05:35:13 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
uqload.io/js/modernizr.custom.04022.js
200 OK 6.9 kB URL GET HTTP/2 uqload.io/js/modernizr.custom.04022.js
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type HTML document, ASCII text, with very long lines (7081), with no line terminators
Hash 295695eb1fbddc917bdc80493eb82278
2e2916098a8d8ac07db0ffded5a5ba21471c9f25
c33ac94541a5478b080b0f7ab63bdb18eaf881177d58bfda03f7f280c0b6eed8
GET /js/modernizr.custom.04022.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Tue, 03 Feb 2015 12:26:00 GMT
etag: W/"1b0d-50e2e2c6a4600"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ROlEGpbWnKTyxryRZBUKJbY0%2BLRGaaCmoCBVwtDgDOMvu2%2B1iGMBCUtWbX5pRiHDnxOflJESvoo5kyr8kBq1551Yx8V7TYxIhwMjZOOJfeGAGmZcOpUa6ieXhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d990afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&subset=latin-ext
200 OK 24 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Raleway:200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&subset=latin-ext
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintBE:40:3A:A6:DE:CC:A7:8B:75:43:68:F2:F9:56:63:71:49:61:06:49
ValidityMon, 04 Sep 2023 08:23:18 GMT - Mon, 27 Nov 2023 08:23:17 GMT
Hash a8d93d1c0f8b7687cb606df5592fee53
0bb0d6b456537f7b19bffce2a0a82041147801ec
e39aa1c19a9050f181e48b333aa63f9aa82442147f5bf6c446f70805259d1f95
GET /css?family=Raleway:200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 23 Sep 2023 05:35:11 GMT
date: Sat, 23 Sep 2023 05:35:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
uqload.io/js/bootstrap.min.js
200 OK 37 kB URL GET HTTP/2 uqload.io/js/bootstrap.min.js
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
GET /js/bootstrap.min.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Thu, 02 Nov 2017 20:50:00 GMT
etag: W/"9004-55d0621b12e00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6229
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d0qRV%2Fq5TgFnhDRKWpcqF4PPtVnQSqIKwg6onKjKsP1w08EnstOtirXao9tlSwYNgIGWmSGep15Zx8k8a208ybAGjlyfC5HlHd8wKL%2FAUXUE9%2BrdEtAe4qRsGg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da00afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/player_clappr/clappr.min.js?v=5
200 OK 486 kB URL GET HTTP/2 uqload.io/player_clappr/clappr.min.js?v=5
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Size 486 kB (485717 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player_clappr/clappr.min.js?v=5 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Mon, 16 Dec 2019 01:52:00 GMT
etag: W/"76955-599c8750f5000"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1346
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62L9R3yPqpL6vVMKbVFaUes%2BgNI6pc6zP3L2RYon3tYlrNNDQIy%2BepqJBzZ0Z5TgSS8gByk31s67Rajo1e3oaa6wR7n45b05kPSw3b4fNBb1bVpV0%2B%2F09Iblpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2daa0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/css/uqload_style.css?v=48
200 OK 24 kB URL GET HTTP/2 uqload.io/css/uqload_style.css?v=48
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (24332), with no line terminators
Hash e89fd32c912dc2eaa2a0ad9d9e9b2e58
04c045e539c9af7f839889bd28a3d839c5bf99e1
7ae611c9ade63894125fa5eb7a19f2b519fe335c6024e11b92c3316139249bdd
GET /css/uqload_style.css?v=48 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Sat, 25 Nov 2017 05:33:00 GMT
etag: W/"5f0c-55ec800983b00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5gqUmWUzyR7cTvWNZi37v%2Be3V4QEMc4TAdLhZlG1QJ%2F7k6EFN1XuZqeSA2Vnnfjosfe4vwpP8kVYnU7y4IcA1Pi9qY5mBdCaUdK%2F4RJxl%2Ft5x6jXArSwlQ%2FPIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da10afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
keewoach.net/?rb=vFfqpXKf_EIo-rc2uoWlxGetVeh4jTsCkd5ZfbUlCsLCx8o3d1sUFEzRMbnR97QtfjmVmTCbvRx-3h8bjVU7w6-3vceLyW35mvxBWXj_AoVSQPO5G7PMfOQYWyAEKGzyNhpn1gHrhmw6DR3SDYFp5lFqCaj1SPuIlKbRNukPN64aVDZ4B1c9FaB-fsWb9Ep0xrydI0zI5XmpeVumXKyCznLy3kQ%3D&request_ab2=0&zoneid=6343319&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=599844c8-b5ed-4f6d-9624-1ba7da38cc0e&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link
200 OK 1.7 kB URL GET HTTP/2 keewoach.net/?rb=vFfqpXKf_EIo-rc2uoWlxGetVeh4jTsCkd5ZfbUlCsLCx8o3d1sUFEzRMbnR97QtfjmVmTCbvRx-3h8bjVU7w6-3vceLyW35mvxBWXj_AoVSQPO5G7PMfOQYWyAEKGzyNhpn1gHrhmw6DR3SDYFp5lFqCaj1SPuIlKbRNukPN64aVDZ4B1c9FaB-fsWb9Ep0xrydI0zI5XmpeVumXKyCznLy3kQ%3D&request_ab2=0&zoneid=6343319&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=599844c8-b5ed-4f6d-9624-1ba7da38cc0e&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectkeewoach.net
FingerprintC1:28:5F:2B:00:4A:78:2A:67:BA:B8:97:53:82:8C:C0:90:39:C3:59
ValidityFri, 25 Aug 2023 05:27:38 GMT - Thu, 23 Nov 2023 05:27:37 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1714), with no line terminators
Hash 2e0100f1fb6b9492c5e1e74e64712f85
3a8b70fc9d8d1fc382055d1aaec15924516cc09a
72fb7d1419ce561331fb9ece8d06e6d7429ac7e421c47d2dbf10afcee43ecc32
GET /?rb=vFfqpXKf_EIo-rc2uoWlxGetVeh4jTsCkd5ZfbUlCsLCx8o3d1sUFEzRMbnR97QtfjmVmTCbvRx-3h8bjVU7w6-3vceLyW35mvxBWXj_AoVSQPO5G7PMfOQYWyAEKGzyNhpn1gHrhmw6DR3SDYFp5lFqCaj1SPuIlKbRNukPN64aVDZ4B1c9FaB-fsWb9Ep0xrydI0zI5XmpeVumXKyCznLy3kQ%3D&request_ab2=0&zoneid=6343319&js_build=iclick-v1.601.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=842&wih=474&wiw=842&wfc=1&pl=https%3A%2F%2Fwww.uqload.io%2Fembed-2h2qf9rkl555.html&drf=https%3A%2F%2Fuqload.io%2F&np=1&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&wgl=&js_build=iclick-v1.601.0&bs=599844c8-b5ed-4f6d-9624-1ba7da38cc0e&userId=2a3852859db64d7fa2ca1606bfaf6d95&m=link HTTP/1.1
Host: keewoach.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.uqload.io/
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Cookie: OAID=2a3852859db64d7fa2ca1606bfaf6d95; oaidts=1695447313
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/json
x-trace-id: a74dd1a2990778549ed22ab8e7306cf2
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.uqload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=2a3852859db64d7fa2ca1606bfaf6d95; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
oaidts=1695447313; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 30 Sep 2023 05:35:13 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
uqload.io/css/bootstrap.min.css
200 OK 121 kB URL GET HTTP/2 uqload.io/css/bootstrap.min.css
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121260 bytes)
Hash 2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c
GET /css/bootstrap.min.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"1d9ac-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LP%2B%2FHAUCMTMqmBb6JIDXTcQ30dmf2Iz%2FwPZDM4V3nh8C9tMuYfTFhMX2GqYkgQsDeTPaXNNfRj4E8qz1Ys%2FsfDYpQsOTVU9ZWgFT1TdQuveNK%2FTZRfgx2gsIDA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4538090afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/img/cross.svg
200 OK 868 B IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (955), with no line terminators
Hash 37206d162faffe4447c417b8f35a9b78
26b4415b826e261a3e84624c0096744acbfd0a91
7add769c44148e87949b5c007343acb8d0d02e538ee3274781552bc49427faed
GET /img/cross.svg HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/css/uqload_style.css?v=48
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: image/svg+xml
last-modified: Wed, 08 Nov 2017 04:55:00 GMT
etag: W/"364-55d717d64d100"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2708
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sOiWKtqF66CgUQWv87ROAI0hQv40tnORESYR5Dnz2kPgOTjd7kkFvD8YRmlj93MrRo3VwoacS8FAnUIP5IPIVT4fO1slkOIqX3n3DYSBfqDczFyBj46QTO1BOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c43ced80afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/player_clappr/38861cba61c66739c1452c3a71e39852.ttf
200 OK 33 kB URL GET HTTP/2 www.uqload.io/player_clappr/38861cba61c66739c1452c3a71e39852.ttf
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type TrueType Font data, 18 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, type 1 string, RobotoRegularVersion 2.001101; 2014Roboto-Regularhttp://www.apache.org/licenses/LICENSE-2.0\003\012- data
Hash 38861cba61c66739c1452c3a71e39852
4b1ef58e476b789c97521834abdf7a2fd66d6caf
967e5cecfbfbf64099c3c1232273482dd7436f05714266953c4d2c8ee9c28af5
GET /player_clappr/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: font/ttf
last-modified: Thu, 19 Apr 2018 22:56:00 GMT
etag: W/"7f8c-56a3b79a4a000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9GzxG9RnAohrlC9j7Gc5ZhePFWibedOhkqN70Qf7tkPiVczv89f%2FQAuqJdItxF9w2AreezcFjnxC83Jn%2Fp65x9tYT14c6eh4cCnVTs5XLoY7OhlnOBE5xY8iofe3Gtw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c47f93e0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
keewoach.net/5/6343319
200 OK 84 kB IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectkeewoach.net
FingerprintC1:28:5F:2B:00:4A:78:2A:67:BA:B8:97:53:82:8C:C0:90:39:C3:59
ValidityFri, 25 Aug 2023 05:27:38 GMT - Thu, 23 Nov 2023 05:27:37 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0bc1207de08b5a2aad6329c218f87e4f
248b7d9879f7ab3a80598677b0aa3986c6541614
39cc0c6cdef4ab800d3574b6eb6b2f09b5f282610e2f6b37dea58facf113fd1b
GET /5/6343319 HTTP/1.1
Host: keewoach.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/javascript
x-trace-id: 5832b570e7b8c295c60c96411d20c317
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=2a3852859db64d7fa2ca1606bfaf6d95; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
oaidts=1695447313; expires=Sun, 22 Sep 2024 05:35:13 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
uqload.io/js/jquery.cookie.js
200 OK 4.3 kB URL GET HTTP/2 uqload.io/js/jquery.cookie.js
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (4427), with no line terminators
Hash c8a0b7f16c38377537c6ab251cb5bc72
528e37de81abf523b92ce0b457cb593983ed347a
e31179e4a4fffc7faee4f95d4f67ce056d12a57c451dee1dae3e9062b126a00e
GET /js/jquery.cookie.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2011 04:53:00 GMT
etag: W/"10eb-4a49f4b7bc300"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1346
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jx0F92tAXtkf62%2Bwlqczwqm86sXVr7Km51XhjZZK1bzCm8BSkcXc6hOpuSub2fqEV3jDmhqqXGWGr%2BAYzHoSbBMP8n%2FWnGTZnKnmdEY137%2B9jU4UhmGomyz7KA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da70afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
200 OK 88 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript; charset=utf-8
content-length: 27755
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942b1e-6c6b"
last-modified: Thu, 22 Jun 2023 11:06:06 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1959909
expires: Thu, 12 Sep 2024 05:35:12 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sdg6IagZQiDwXCLSNB1MK9iTf6OoSLtXoSGm7nC4e38UmSJ9W2kgdojsUpbWUO8aOp8TZjHJCBgdvax94J0dNK1q3bQNGoM8xzolGqYqGMVU6E0r99hJKQ0oA2napjoDLKySsEVs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80b06c456c200b55-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
eedsaung.net/1?z=6132063
404 Not Found 0 B IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjecteedsaung.net
Fingerprint39:1A:51:39:17:5B:6C:AA:21:3B:A2:96:D4:95:44:AB:8E:75:75:65
ValiditySun, 13 Aug 2023 02:55:57 GMT - Sat, 11 Nov 2023 02:55:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1?z=6132063 HTTP/1.1
Host: eedsaung.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: text/plain; charset=utf-8
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9a3b836a542c631cb51cb28112aca49f
access-control-expose-headers: X-Sc
x-sc: 4KdnrdofxFOHMlcU
set-cookie: scm=1; expires=Sun, 22 Sep 2024 05:35:13 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
uqload.io/css/uqload_icons.css
200 OK 1.7 kB URL GET HTTP/2 uqload.io/css/uqload_icons.css
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (1764), with no line terminators
Hash a8a67765dd69dbcbdae77f49a7f35af4
a7138d455ce2b9cb2b61c7c4b7e928d2870ac660
e945ca4b74bf6653d0d43f40094d3a7c7b4dd2d6b8cf105ad08874e8574f3550
GET /css/uqload_icons.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 21:57:00 GMT
etag: W/"68d-55d07114d8300"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ffLHnOoefEGVRHel3oswsMmv6E3LsJJHnkVdR3R%2B5RFadal%2BWbHgcRq2EE7h9aTpdD%2Fbl%2FtlLfR9%2FyqpNzXMNbaz1ImWZmn2kwhfOo2ts6ebOH4Hss2I2YxBAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2da20afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/images/play.svg
200 OK 442 B URL GET HTTP/2 uqload.io/images/play.svg
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- exported SGML document, ASCII text, with very long lines (489), with no line terminators
Hash 36f55bb59c4448ec1d4c2d79cd64bc20
9c2b82cf82e2efd28bbd015978e78a0463c90322
0a0c7127b070de8063b66bfdb354ddc77a7464d6cc69afaab45c9c0c417c1b77
GET /images/play.svg HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/css/uqload_style.css?v=48
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: image/svg+xml
last-modified: Sat, 25 Nov 2017 04:08:00 GMT
etag: W/"1ba-55ec6d09c6800"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1345
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=03JjivcHeo2cS78ekEnkndkaZwuv5PMd1adueAK%2FEz82DzCJACS5KF04kzzo6fhEFHxLv0ULGCMdI5SaB45qGRh2%2Fhwlf5oOvd5Tk452D3CI0wF%2F0dWJMeO%2FSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c43aecc0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/css/main.css
200 OK 16 kB IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (15964), with no line terminators
Hash 63bf7c37b3529eadca8e8847b75a4819
47ff414c04b31d02ffb572bab5e187733d7dab4d
c0cb3ad7bd9995c5812482f95864f70ed3798418e988be71d1399e465361bd31
GET /css/main.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/css
last-modified: Thu, 09 Nov 2017 03:00:00 GMT
etag: W/"3e5c-55d83fff68c00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BigbgY8Y0W%2BAFBdVg16TOcPVAQMMjtqzqAIyDMag3UN3cqRzfx7A%2FYp5MiJqvgYTLoru4Aq9IMOhLv49Si2Y%2FI8B6wr9Ohb8xQxhwoqTwIDEID80srzkljGnFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c45380b0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/player_clappr/clappr.min.js?v=5
200 OK 486 kB URL GET HTTP/2 www.uqload.io/player_clappr/clappr.min.js?v=5
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Size 486 kB (485717 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player_clappr/clappr.min.js?v=5 HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Mon, 16 Dec 2019 01:52:00 GMT
etag: W/"76955-599c8750f5000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=plkaS2FJpuT%2FA4dlahiy4BpM3Z7SPE89Cvku20UdTH5H3WKXMbLbXSZs52DkurPclHdOGQ7qrZjG8%2FA4JhoEJH5kNnLKA5piPWO4ayTmBWlG4xjZzl%2FBlfD1HYwWq2k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4578210afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/player_clappr/38861cba61c66739c1452c3a71e39852.ttf
0 B URL GET uqload.io/player_clappr/38861cba61c66739c1452c3a71e39852.ttf
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /player_clappr/38861cba61c66739c1452c3a71e39852.ttf HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
uqload.io/css/bootstrap-theme.min.css
200 OK 23 kB URL GET HTTP/2 uqload.io/css/bootstrap-theme.min.css
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (23192)
Hash 46d96593303e4c8666f497bb7602c999
bcb96e31a2b8fed5575995fa0c58293e64972116
a3c6ccd19e5c16faefbef429d042458b82c80af040f450b1ee208dba88d5b0df
GET /css/bootstrap-theme.min.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"5b71-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O3nRQqHVPZnXXpfSGqAGqSysp%2BbufiJVH08og5c6sTD%2FI8S8M9goWje%2FY1c7wld%2FmbT9ctkYomIEMLUxEDd9a7aEv8Sw%2FZn2Z1S1WVIPjD8CnwO0wJEuP9%2F%2FkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c45380a0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/actions.js?v=6
200 OK 5.5 kB URL GET HTTP/2 uqload.io/js/actions.js?v=6
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (5685), with no line terminators
Hash 6a1825b7d5de9216a011342ff994d61d
b8c75bdc23d486da9cf698ccf03e8d285a23ac06
561c637ba0c9d7098eba75a93af13ef7dbb40d005e60bf57828442493782c111
GET /js/actions.js?v=6 HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Tue, 25 Jul 2023 07:35:28 GMT
etag: W/"1577-6014ac66f6fc3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iUEhFplg7cheQpjy4UW%2FKkgGhGdj8eWxt%2BrZHHP7UIbY%2FsYxyZvagp%2Bzp1cIAaO5a6%2FXdz%2BuSu%2BBG3WijiFoVWXTTSmSRprbNIMsEPMrqzbuj6xbiItKzvkCvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4558130afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/css/bootstrap-theme.min.css
200 OK 23 kB URL GET HTTP/2 uqload.io/css/bootstrap-theme.min.css
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (23192)
Hash 46d96593303e4c8666f497bb7602c999
bcb96e31a2b8fed5575995fa0c58293e64972116
a3c6ccd19e5c16faefbef429d042458b82c80af040f450b1ee208dba88d5b0df
GET /css/bootstrap-theme.min.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"5b71-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZJ1PSX0kuB6X8cgqc70x9RMXhabIiiZ0P7IPPWrSHKHjbISjgDn42%2BPiSad8SshKnNqgRPjB9PsiQXmWYfgPVvM4WQT6r7aRIDVNp8Ze6emk4Mb1cKYDQolI7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f2d9e0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/js/bootstrap.min.js
200 OK 37 kB URL GET HTTP/2 www.uqload.io/js/bootstrap.min.js
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (32003)
Hash c5b5b2fa19bd66ff23211d9f844e0131
791aa054a026bddc0de92bad6cf7a1c6e73713d5
2979f9a6e32fc42c3e7406339ee9fe76b31d1b52059776a02b4a7fa6a4fd280a
GET /js/bootstrap.min.js HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Thu, 02 Nov 2017 20:50:00 GMT
etag: W/"9004-55d0621b12e00"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8WajGvGAtJKnUTNeQWAfbAW6GEhIx1rc%2BxcO6DYJ3rjSxsi%2BbRyf8dR%2FBDv%2BCpCeSJP8orEf8ckyDZ3b4M3X4BDf1CoyTJJbbUzW8pBqXvuNFznQshFPIUTS2Sn23fk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c45580f0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
pushagim.com/pfe/current/extra.min.js?z=3482084
200 OK 17 kB URL GET HTTP/2 pushagim.com/pfe/current/extra.min.js?z=3482084
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectpushagim.com
Fingerprint04:90:FF:28:A7:4B:CC:3A:D9:E6:F5:D0:C1:17:0C:97:58:5A:3B:F9
ValidityMon, 21 Aug 2023 11:58:08 GMT - Sun, 19 Nov 2023 11:58:07 GMT
File type ASCII text, with very long lines (17448), with no line terminators
Hash 3f91a0f39334595bc2ebc2da33c3966a
be7f3df5ee2ca94de66bde72d0871581b6105d2b
117d6a4bc76b8d959da6055759cbb2367d10a666b3fdaaa31ac5544fc0ba21d3
GET /pfe/current/extra.min.js?z=3482084 HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:13 GMT
content-type: application/javascript
last-modified: Mon, 18 Sep 2023 12:11:16 GMT
etag: W/"65083e64-4428"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
uqload.io/css/bootstrap.min.css
200 OK 121 kB URL GET HTTP/2 uqload.io/css/bootstrap.min.css
IP
Requested by https://uqload.io/2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (65371)
Size 121 kB (121260 bytes)
Hash 2f624089c65f12185e79925bc5a7fc42
8eb176c70b9cfa6871b76d6dc98fb526e7e9b3de
eece6e0c65b7007ab0eb1b4998d36dafe381449525824349128efc3f86f4c91c
GET /css/bootstrap.min.css HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://uqload.io/2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:11 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"1d9ac-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6iWnIPU148vZMs4rE5crun4GYzwk2PYYIGbkEBjs3FIwkWQ6VF8%2BdiS1Urif%2BRp6JnhigfRfT3x8vaxvGqZzB%2FDQjwEe0KwrH%2FcMMUlSpd%2BQcEROFKQILJzUSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c3f1d9d0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/2h2qf9rkl555.html
200 OK 20 kB URL User Request GET HTTP/2 uqload.io/2h2qf9rkl555.html
IP
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2h2qf9rkl555.html HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:10 GMT
content-type: text/html; charset=UTF-8
expires: Fri, 22 Sep 2023 05:35:10 GMT
set-cookie: lang=1; domain=.uqload.io; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t3sDHAl47WMJH2AAsgm5wM0oNqzSHs0Xn7bs5XghKOomIpkTffwUSRIp9%2B1dv4X0DsQCgYIub%2Fhv72aaSYI7e5Emy3smqDz%2FHkdQR2dtaYE64AfD4q16VmtmbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80b06c3b1c100afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.io/js/jquery.cookie.js
200 OK 4.3 kB URL GET HTTP/2 uqload.io/js/jquery.cookie.js
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (4427), with no line terminators
Hash c8a0b7f16c38377537c6ab251cb5bc72
528e37de81abf523b92ce0b457cb593983ed347a
e31179e4a4fffc7faee4f95d4f67ce056d12a57c451dee1dae3e9062b126a00e
GET /js/jquery.cookie.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2011 04:53:00 GMT
etag: W/"10eb-4a49f4b7bc300"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ikrEV9BP9ebcNcJfSlUfUWcpIw93Nsu5rRwI1SLj6HFQvbPUHKnp1dRhMnH5bdqAStSvevpGWFdTxOdJsu00S9uBVawCCLYRugCGiWx3fBHb8DYcP%2BqvhQCFNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4558110afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/player_clappr/clappr-chromecast-plugin.min.js?v=2
200 OK 25 kB URL GET HTTP/2 www.uqload.io/player_clappr/clappr-chromecast-plugin.min.js?v=2
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type ASCII text, with very long lines (25391)
Hash e5d13c4d7c790f7dfa01d86cd6c2419b
0d5e7500ba0cea98d5fc014918d7cd1a48b5a668
1ce773865196b7bfd386873ca7eebaf8f9e903b56ca2e2ce45127e0699c0da90
GET /player_clappr/clappr-chromecast-plugin.min.js?v=2 HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Sat, 09 Feb 2019 15:27:00 GMT
etag: W/"6368-58177b4ebd900"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZGpsLfaTG%2FyAj7OdIPq4FEqKkQRpKR3AlB%2Fe0qfhjxu4jxd4OR1p9W6bkbsxonEDjVpWgkHOgKYpH4GSNNMUaGmrDoFke3hD3GiD4isX3c6drlMC4xRJ%2BOtwlVBC8A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4578220afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
afodreet.net/5/4485812/?oo=1&aab=1
200 OK 2.8 kB URL GET HTTP/2 afodreet.net/5/4485812/?oo=1&aab=1
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerLet's Encrypt
Subjectafodreet.net
Fingerprint78:15:32:27:5A:38:E8:40:BD:F2:1A:D9:34:8D:1F:5A:FE:FB:77:72
ValidityMon, 04 Sep 2023 13:21:43 GMT - Sun, 03 Dec 2023 13:21:42 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3059), with no line terminators
Hash 581a175831864f18f67771e7576b4f6e
d781ae570dd400407e176a859c570a2d73e855e5
ff67aa41daebbabd32936ba964c6aedaabb27add5e6a34502882cd2eb109b006
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/4485812/?oo=1&aab=1 HTTP/1.1
Host: afodreet.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.uqload.io
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/json
x-trace-id: 3b4136f597536ebd7a13fef2e5ebfd7d
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.uqload.io
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=7da2702caec74d4b88640eafc2fed6ab; expires=Sun, 22 Sep 2024 05:35:12 GMT; path=/; secure; SameSite=None
oaidts=1695447312; expires=Sun, 22 Sep 2024 05:35:12 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
uqload.io/js/clipboard.min.js
200 OK 10 kB URL GET HTTP/2 uqload.io/js/clipboard.min.js
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/clipboard.min.js HTTP/1.1
Host: uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/
Cookie: lang=1; file_id=6020261; aff=39424
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: application/javascript
last-modified: Sat, 18 Jun 2016 06:49:00 GMT
etag: W/"2780-53587ddb46f00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1584
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u0Px%2FnV9v2Xtwcbtyo7lXwB9rVHjTXmDjXzFLXF4ZAU8oRnClxVx3fRpS3VAely%2B98R31Ueu0gUNgtekCbakB5CRHCIaJ7SDUfe8tBFLTmfaz0fTdcvRefesRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c4578200afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.uqload.io/images/play.svg
200 OK 442 B URL GET HTTP/2 www.uqload.io/images/play.svg
IP
Requested by https://www.uqload.io/embed-2h2qf9rkl555.html
Certificate IssuerGoogle Trust Services LLC
Subjectuqload.io
Fingerprint32:D6:A3:F3:44:CE:35:9A:77:5C:AE:11:5C:B0:37:C6:1F:04:1F:FB
ValidityThu, 21 Sep 2023 22:06:57 GMT - Wed, 20 Dec 2023 22:06:56 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- exported SGML document, ASCII text, with very long lines (489), with no line terminators
Hash 36f55bb59c4448ec1d4c2d79cd64bc20
9c2b82cf82e2efd28bbd015978e78a0463c90322
0a0c7127b070de8063b66bfdb354ddc77a7464d6cc69afaab45c9c0c417c1b77
GET /images/play.svg HTTP/1.1
Host: www.uqload.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.uqload.io/embed-2h2qf9rkl555.html
Cookie: lang=1; _ga_WZRQYEYNGV=GS1.1.1695447312.1.0.1695447312.0.0.0; _ga=GA1.1.1135344628.1695447312; file_id=6020261; aff=39424; ref_url=https%3A%2F%2Fuqload.io%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 23 Sep 2023 05:35:12 GMT
content-type: image/svg+xml
last-modified: Sat, 25 Nov 2017 04:08:00 GMT
etag: W/"1ba-55ec6d09c6800"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BGEiSgxuRv6Anwdjlw4UKs0dZRgqzSpLojTtXtfLpZzXEMsQu%2B1W0XnZeZE%2B9xXK1weNttpQysygjYy7T%2Fie%2BrIHX3kZrY0RPixVFWKwIgnvXplAvVk2cEetnuYr2yA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80b06c47e9370afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
104.26.3.201
139.45.195.254
45.178.4.8
104.18.14.101
0.0.0.0