| www.macfiles.org/wp-content/cache/autoptimize/css/autoptimize_ea41aa15be79aeb4f11d6294c6075823.css | 104.21.73.82 | 200 OK | 31 kB |
URL GET HTTP/3www.macfiles.org/wp-content/cache/autoptimize/css/autoptimize_ea41aa15be79aeb4f11d6294c6075823.css IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeASCII text, with very long lines (57196) Hashf48aa7ecd172a185ec63a62350830ea2 3cc17e2e290740e9c14998bc7bdce967dd7e070f 3a3f81944543ee5b3108ce8bf4892e318b9c8190455bab909cb9ef7026ec3297
GET /wp-content/cache/autoptimize/css/autoptimize_ea41aa15be79aeb4f11d6294c6075823.css HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/category/adobe/adobe-premiere-pro/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: text/css
cache-control: public, max-age=30672000, immutable
expires: Fri, 21 Feb 2025 09:28:59 GMT
last-modified: Sun, 03 Mar 2024 08:36:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 2204560
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F77By%2FMOvmK6tCnsl8wRpOU%2FqxOfO3uJhl8es2BbLq7sD2v1ZPi62PDHYJCVW9el10kdP7EC2sLBmpr9oYpGCbpB1qb7pQdyLKRMHOtr8KSEs%2Bs%2BKl7nqRVswGUAQq5WLYAv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bad7c14fcb56b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 104.21.73.82 | 200 OK | 32 kB |
URL GET HTTP/3www.macfiles.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/category/adobe/adobe-premiere-pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Tue, 02 Apr 2024 14:05:45 GMT
last-modified: Wed, 03 Jan 2024 18:24:12 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 200754
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0VM0k4%2BTT0Gtv8Nl285wvOhGdPXMuhi0M5RPrcwponDivlDeu535N9771Ys36fFphhA5it8fvRFOEHbLPdsOxrizHBKPbv1Jtu6tOIQfX%2B1PcXko5ryiff6XOxAnuE%2FC9wiN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bad7c14fd056b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-content/themes/lightly/fonts/fontawesome-webfont.woff2?v=4.6.3 | 104.21.73.82 | 200 OK | 72 kB |
URL GET HTTP/3www.macfiles.org/wp-content/themes/lightly/fonts/fontawesome-webfont.woff2?v=4.6.3 IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 71896, version 4.393 Hashe6cf7c6ec7c2d6f670ae9d762604cb0b 97e438cc545714309882fbceadbf344fcaddcec5 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
GET /wp-content/themes/lightly/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/wp-content/cache/autoptimize/css/autoptimize_ea41aa15be79aeb4f11d6294c6075823.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: font/woff2
content-length: 71896
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 11:15:40 GMT
last-modified: Thu, 23 May 2019 00:25:50 GMT
cf-cache-status: HIT
age: 124559
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CSHN8H%2FuVnO5Qen%2Bd6bwJNx4NOAOZG6zOavGmc%2BUCsUYOi0SqobBHM6g408BdK0UlLk4uv8ZWz%2F513O%2BSA%2B4EM50UnoYOFtGLb6oHkXP4MOZSHsfwj8XNg9aMVT1uQY2l5XV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7c2a90556b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:21:46 GMT
expires: Fri, 28 Mar 2025 17:21:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 16193
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24408, version 1.0 Hashefee2d080d7bebdd2e0aeb2e030813a0 f8d38f9f9584e48c2e469877ebd94232265585f1 bca1d88ada544d9c80872d4da27133fab6d347361fa26e932b47ec9559088fd0
GET /s/lato/v24/S6u8w4BMUTPHjxsAXC-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:24:25 GMT
expires: Fri, 28 Mar 2025 17:24:25 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:14:26 GMT
content-type: font/woff2
age: 16034
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Lato%3A400%2C400italic%2C700%2C700italic&ver=6.4.3 | 142.250.74.74 | 200 OK | 24 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Lato%3A400%2C400italic%2C700%2C700italic&ver=6.4.3 IP142.250.74.74:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typegzip compressed data, max compression Hash4267d3da89e9b4ebbbaedbbf018243fa 64767696c6b497e83b5a235ec71ad76f6ed3b96d 84fdeb0a471190b3d49839414bc3631e29d72a63320f71d3785d9337e4e2776c
GET /css?family=Lato%3A400%2C400italic%2C700%2C700italic&ver=6.4.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 21:51:39 GMT
date: Thu, 28 Mar 2024 21:51:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/wp-content/cache/autoptimize/js/autoptimize_f5cf7bf0504fb02936b2e8f264a1676c.js | 104.21.73.82 | 200 OK | 21 kB |
URL GET HTTP/3www.macfiles.org/wp-content/cache/autoptimize/js/autoptimize_f5cf7bf0504fb02936b2e8f264a1676c.js IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash172db96c9c2185db11d51bb2dbcc6706 8ea3ff074fe57551669e3c8d22aa052f16339d6b bf0f6f2e3f5f938e66a3415ddc527848551055d4273d098dafdcbd3ffea2db91
GET /wp-content/cache/autoptimize/js/autoptimize_f5cf7bf0504fb02936b2e8f264a1676c.js HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/category/adobe/adobe-premiere-pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: application/javascript
cache-control: public, max-age=30672000, immutable
expires: Thu, 13 Mar 2025 12:40:42 GMT
last-modified: Fri, 22 Mar 2024 22:18:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 465057
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mLaOyh2QvnaR0kmN1QlGuayJIRXJUfgzmcAQf4aBwfsr8LIzLvLpaDUlCGpzm12d3VTqzm20kGsfhPq%2FK%2FaQbxP%2Fp8aKvnbfdY5uAPkTECarW%2By8ycJdrqI4BagH1QkJEvsb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bad7c15fd956b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashe0720567b89e85a074c0401003b4b7fb 4c9bd983308c50da9266d2d5a4a5e010b6736408 520b6f66e6827aed3facc07d0cdeb0f06ac5785dbf68439e82a20face8555e5c
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 28 Mar 2024 21:51:40 GMT
Last-Modified: Thu, 28 Mar 2024 20:45:45 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a8PN8ojErcS_zxqWiuCngQUXjkCsd7TmS6YKZRcEozsSAuJSQ2fg5g==
Age: 3955
|
|
| accidentallyrussian.com/ab41dcc89a8f02e3ef0be2e1b079565a/invoke.js | 172.240.253.132 | 200 OK | 12 kB |
URL GET HTTP/1.1accidentallyrussian.com/ab41dcc89a8f02e3ef0be2e1b079565a/invoke.js IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectaccidentallyrussian.com Fingerprint3E:C7:58:F1:C6:88:A7:93:4D:44:9B:CF:A9:90:F1:C7:E1:A3:1C:12 ValidityTue, 20 Feb 2024 06:04:20 GMT - Mon, 20 May 2024 06:04:19 GMT
File typeJavaScript source, ASCII text, with very long lines (31283), with no line terminators Hash277b0bd61cc70f4548e8e93248713833 d3154593a057abb280cb13af848e057f5ef7ce27 4cc6b5ed12e507d6f0d21b1bc42a0c7c4a01c47553910eed543d267a060c209c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ab41dcc89a8f02e3ef0be2e1b079565a/invoke.js HTTP/1.1
Host: accidentallyrussian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e597911621931613803e9ba7caf6e8c4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| proftrafficcounter.com/stats | 3.72.189.164 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.72.189.164:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash9fd0ec2efa72ea3f6e43791c56a5b178 17e99f975063777f49ec58e7d951f7158985272c 6aea83a58719a8a3afbe389efcf7ba6fb8d35b920f53c2f861277bdebd436346
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:40 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.macfiles.org
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; expires=Sun, 26 Mar 2034 21:51:40 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 3.72.189.164 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP3.72.189.164:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash9fd0ec2efa72ea3f6e43791c56a5b178 17e99f975063777f49ec58e7d951f7158985272c 6aea83a58719a8a3afbe389efcf7ba6fb8d35b920f53c2f861277bdebd436346
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:40 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.macfiles.org
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_196/https://www.macfiles.org/wp-content/uploads/2024/01/maclogo.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_196/https://www.macfiles.org/wp-content/uploads/2024/01/maclogo.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_196/https://www.macfiles.org/wp-content/uploads/2024/01/maclogo.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:40 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2024/01/maclogo.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 07:59:12
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2024/01/maclogo.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns62
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: e06a4aa292b82cf92f9556eb03fa433a
cdn-cache: STALE
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/wp-content/uploads/2024/01/maclogo.png | 104.21.73.82 | 200 OK | 7.0 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2024/01/maclogo.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 196 x 74, 8-bit/color RGBA, non-interlaced Hashe781a5f87918fdc8ab2b9f0b1922c0bb eab7d93ca044af7bbe20c64cbf8eb03bb5fa1f33 3f1e1b9a30c49fdeca79f5b77ef2d9defc6538b835a25f5d2483121e654020c1
GET /wp-content/uploads/2024/01/maclogo.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:40 GMT
content-type: image/png
content-length: 6997
cache-control: public, max-age=604800
expires: Sat, 30 Mar 2024 12:40:42 GMT
last-modified: Fri, 19 Jan 2024 13:31:10 GMT
cf-cache-status: HIT
age: 465058
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XUYTXSNhvljpGap8dMgZEceERdA3wXxogAFI0eiaV3KeegV3LnIgFhqeg36%2F4q34mRCFyuArz%2FKXN2xhE7IraMhrcQQkSqGiOgzW%2Bdr8I9q1u%2Fw2imNprZDaIJwMvho7ALg1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7c89ef156b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_175/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_175/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_175/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 07:59:12
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: ea71d44263d1ddf7beaf92a81b900e98
cdn-cache: STALE
X-Firefox-Spdy: h2
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 12:01:56
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 079dd7cf585caca02327ff25181552ab
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png | 104.21.73.82 | 200 OK | 10 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced Hashc7089b18b5c108f5c464197d6f4de04a 2cb7d068ec11c1661d43db9a80a01bc7e19c4efe 3861a6cc73d11b2e2a56413e63ab357574bf1622883d21c6eb6ce23cef2040a2
GET /wp-content/uploads/2020/08/Adobe-Photoshop-2020-150x150.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 10441
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 14:42:40 GMT
last-modified: Mon, 17 Aug 2020 04:41:21 GMT
cf-cache-status: HIT
age: 284941
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vHQJ0CcxMelUmGt4%2FTyKYiKm2s4kaXkzxJ0VOotKJ5%2FeDKuJ1Ua7xarKcwixwPS%2BsbYNP3wR5Dpp%2BRtWKL0Qa0ltwhseVTkLxHTJXCf2DHcUO9T5oLAoT90u%2FNBt0WfBDum%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7c95f9456b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png | 104.21.73.82 | 200 OK | 3.7 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 175 x 175, 8-bit colormap, non-interlaced Hashf0a8aa34051ecb59e2815840ce5ff044 8b097a33ba6e2c9a88afdf773e29fbafaba05871 ff11baf8297746617b34eee14cdceffcf59b7a1ef3ca7c714cb6bb48e80dbbbb
GET /wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 3714
cache-control: public, max-age=604800
expires: Tue, 02 Apr 2024 17:39:07 GMT
last-modified: Mon, 17 Aug 2020 04:34:16 GMT
cf-cache-status: HIT
age: 187954
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YOhs3j90u3v4w%2Bb891bOg1BVBxd8CKeJJqAOGZI0jpwvIK3HOP404jd41IbHN4O7EDNY3s0O%2BsAVa5NRJpKC39MPunfiH0mialeJ8ei2bbieIyla8YCW4vowdfUMG4B0NaeI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7c94f8f56b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 21:51:41
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: fb1aa53193de2af4018192218d1028e5
cdn-cache: MISS
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png | 104.21.73.82 | 200 OK | 7.5 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced Hash09a660d8c127a9fce4f31b0228fbc554 84a626c6fa093fbe3f711f770c6350fc3493041f 81f82c2b5a1a780d1af9dc2e3727761064485bcabc630e69fdb10c639f1af141
GET /wp-content/uploads/2020/08/Adobe-Premiere-Pro-2020-150x150.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 7454
cache-control: public, max-age=604800
expires: Sat, 30 Mar 2024 12:40:42 GMT
last-modified: Mon, 17 Aug 2020 04:34:17 GMT
cf-cache-status: HIT
age: 465059
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O4trYw0EsU0J%2Bbpxdlibk56CX5C3Cj8Gqa77T%2B48oabEyWm9ShNxqc3aKh6Lu3tG6n77HPU2UOhVUhWtVOdFP96qgWNoxINMZWdKpE4RCShdVv07l0yyjVLYrOgOJl78GrEN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7c99fec56b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ablecolony.com/a9/04/d2/a904d25cbc0e65d37e5cf79e2d057c1d.js | 192.243.61.225 | 200 OK | 16 kB |
URL GET HTTP/1.1ablecolony.com/a9/04/d2/a904d25cbc0e65d37e5cf79e2d057c1d.js IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
File typeJavaScript source, ASCII text, with very long lines (43994), with no line terminators Hash7cd2e2fab339aae1809f9111df9f350c d6935bcbef52be6545be5b6e960f0e8073284ba8 a3c7faf12628a85b427670948377401da8cf087f320490ebaaa4e8d12b397577
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /a9/04/d2/a904d25cbc0e65d37e5cf79e2d057c1d.js HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aeb607dbb3a670baaedf0383e7cb7857
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ablecolony.com/watch.446585656479.js?key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 | 172.240.253.132 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1ablecolony.com/watch.446585656479.js?key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.446585656479.js?key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:41 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.macfiles.org
Access-Control-Allow-Origin: https://www.macfiles.org
Access-Control-Allow-Credentials: true
Location: https://ablecolony.com/watch.446585656479.js?dev=e&key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=fdc8896f758f6062a4773ed944f2ed113180b0a821a7e3ba46b8535bc607bac9df1599d096978b3cba5a9d7bc2e5ba44afc8ce861155f9e83ea0fe7a8a28cc211ee2971af4caba007dbee15f53b490001a68bc00f4b31274cb7581b7d306ee&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1
Set-Cookie: u_pl=22061292; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.kYtCvM1EkvG9fOO5_vEtOd1V8K8SqUXZl2-i7XqmWNA; expires=Thu, 28 Mar 2024 21:52:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 68aa2f3f50c0c39d2d4b269b42656c60
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 12:01:56
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 370223cff307139023b582da2e34eea4
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_227,h_200/https://www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_227,h_200/https://www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_227,h_200/https://www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 15:09:44
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: f090adcfcc15e4dd93cd2a2f280bb222
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| ablecolony.com/watch.634891910206.js?key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 | 172.240.253.132 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1ablecolony.com/watch.634891910206.js?key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.634891910206.js?key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&tz=0&dev=e&res=14.2071&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:41 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.macfiles.org
Access-Control-Allow-Origin: https://www.macfiles.org
Access-Control-Allow-Credentials: true
Location: https://ablecolony.com/watch.634891910206.js?dev=e&key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=642c2604d17c8da517596dde6423da2bde237ee924d0844b21a0d04c7828016e21af874f3e5536fac4d70749f30c5d2eb7e8b3f83aa4265711b12f066eaa9062a58d1b02f68629cafbd07baac0eb47c532e3a240661f60d81992ad6079f17ac942&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1
Set-Cookie: u_pl=17871235; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; expires=Thu, 28 Mar 2024 21:52:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6b61d43b7acf4c21571f07a6a609220b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png | 104.21.73.82 | 200 OK | 12 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 150 x 147, 8-bit/color RGBA, non-interlaced Hashee44b2d0e4a82c63a0ef6f175cf29782 feeb464999087121b8bafa151060d930e5bd1cd6 e1b580cf7dc571624a359e00a777e9dc298b756dc54fed2881a8ccb111a4bdae
GET /wp-content/uploads/2020/09/Adobe-Illustrator-2020-150x147.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 12290
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 14:42:47 GMT
last-modified: Sat, 26 Sep 2020 08:45:42 GMT
cf-cache-status: HIT
age: 284934
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5z573hH0K1X9Otggzss%2FtZ58zvOzTRgpmxepJuttPnzUYs%2F95lwC1xT4bEYbvQ9%2Femoq2FNU2bjv5QNHVNqVAyTPYIcU0APx3Rc6ydOFUaC2A7g0bNbxCfJv3VRa624WTa8x"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7cad8ec56b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png | 104.21.73.82 | 200 OK | 3.6 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 227 x 200, 8-bit colormap, non-interlaced Hash9939500e7abaf1d3db43da487700ee16 3a26e005b81c19bb01ebf9690fd587074cba5521 6904a9d1cf86054d782b25a8c5c6b2d23190a601baf5b6a69d808e04f045d2f9
GET /wp-content/uploads/2019/10/Adobe-Premiere-Elements-2020-227x200.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 3614
cache-control: public, max-age=604800
expires: Sat, 30 Mar 2024 12:48:02 GMT
last-modified: Sun, 24 Nov 2019 15:27:40 GMT
cf-cache-status: HIT
age: 464619
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CH7SuGnfQGnwHquRcsCNPelhBT%2Bl7ARiN7trek%2B2PMZHKKQtpX7YqlhXwnclRhEA3ybOX%2BoqQ0alWI29xpZdhQG6U%2B1XigOkbVyP4ke64KgkRwpth4nlokdydPpRwaDhkVcW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7cad8f256b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| ablecolony.com/watch.446585656479.js?dev=e&key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=fdc8896f758f6062a4773ed944f2ed113180b0a821a7e3ba46b8535bc607bac9df1599d096978b3cba5a9d7bc2e5ba44afc8ce861155f9e83ea0fe7a8a28cc211ee2971af4caba007dbee15f53b490001a68bc00f4b31274cb7581b7d306ee&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 | 192.243.61.225 | 200 OK | 2.1 kB |
URL GET HTTP/1.1ablecolony.com/watch.446585656479.js?dev=e&key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=fdc8896f758f6062a4773ed944f2ed113180b0a821a7e3ba46b8535bc607bac9df1599d096978b3cba5a9d7bc2e5ba44afc8ce861155f9e83ea0fe7a8a28cc211ee2971af4caba007dbee15f53b490001a68bc00f4b31274cb7581b7d306ee&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
File typeJavaScript source, ASCII text, with very long lines (2638) Hashb8887ecb9ae1728fbf66d79158361603 996732390a0a7863d0ea6c1555591ff3dd7116df ddaeeeed522e2320909ee74f6c99f0b32666b31d4a26405e58c159367320da73
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.446585656479.js?dev=e&key=ab41dcc89a8f02e3ef0be2e1b079565a&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=fdc8896f758f6062a4773ed944f2ed113180b0a821a7e3ba46b8535bc607bac9df1599d096978b3cba5a9d7bc2e5ba44afc8ce861155f9e83ea0fe7a8a28cc211ee2971af4caba007dbee15f53b490001a68bc00f4b31274cb7581b7d306ee&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22061292; ain=eyJhbGciOiJIUzI1NiJ9.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.kYtCvM1EkvG9fOO5_vEtOd1V8K8SqUXZl2-i7XqmWNA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.macfiles.org
Access-Control-Allow-Origin: https://www.macfiles.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; expires=Thu, 04 Apr 2024 21:51:41 GMT; secure; SameSite=None
iprc802a8f09f721f4f03dac6865c91cc72e=3569806; expires=Fri, 29 Mar 2024 01:51:41 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
uncs=1; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ce04f6a07ab9192121fe790382baaff4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ablecolony.com/watch.634891910206.js?dev=e&key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=642c2604d17c8da517596dde6423da2bde237ee924d0844b21a0d04c7828016e21af874f3e5536fac4d70749f30c5d2eb7e8b3f83aa4265711b12f066eaa9062a58d1b02f68629cafbd07baac0eb47c532e3a240661f60d81992ad6079f17ac942&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 | 172.240.253.132 | 200 OK | 2.0 kB |
URL GET HTTP/1.1ablecolony.com/watch.634891910206.js?dev=e&key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=642c2604d17c8da517596dde6423da2bde237ee924d0844b21a0d04c7828016e21af874f3e5536fac4d70749f30c5d2eb7e8b3f83aa4265711b12f066eaa9062a58d1b02f68629cafbd07baac0eb47c532e3a240661f60d81992ad6079f17ac942&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
File typeJavaScript source, ASCII text, with very long lines (2520) Hashc67ba82861b31473ac6dd592bc98c335 0febc63e798afda02855c4a103e6c40efdc200c1 74fbac85a68ed106e08a5c51961e8359343cb6af78c88601ecf94d2e8e36c167
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.634891910206.js?dev=e&key=cc43d9e6e02d1d5141beb272805e2db1&kw=%5B%22adobe%22%2C%22premiere%22%2C%22pro%22%2C%22-%22%2C%22mac%22%2C%22torrents%22%5D&pst=1711662761&refer=https%3A%2F%2Fwww.macfiles.org%2Fcategory%2Fadobe%2Fadobe-premiere-pro%2F&res=14.2071&rmtc=t&shu=642c2604d17c8da517596dde6423da2bde237ee924d0844b21a0d04c7828016e21af874f3e5536fac4d70749f30c5d2eb7e8b3f83aa4265711b12f066eaa9062a58d1b02f68629cafbd07baac0eb47c532e3a240661f60d81992ad6079f17ac942&tz=0&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Cookie: u_pl=17871235; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:41 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.macfiles.org
Access-Control-Allow-Origin: https://www.macfiles.org
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; expires=Thu, 04 Apr 2024 21:51:41 GMT; secure; SameSite=None
iprcf95f497720dca6adfa60ca2a770a2a56=4471847; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
uncs=1; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
pdhtkv23=true; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
uncs23=1; expires=Fri, 29 Mar 2024 21:51:41 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e93ed90261cab00c8d2b7ec60a4446b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png | 45.133.44.9 | 200 OK | 144 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Size144 kB (144379 bytes) Hash33c304429dc1a4408a96e6a74ffa2feb c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04 dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: image/png
content-length: 144379
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sat, 30 Mar 2024 21:51:41 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 12:01:57
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns61
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 97dee0b3680163953476190f872274a0
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png | 194.242.11.186 | 302 Found | 0 B |
URL GET HTTP/2sp-ao.shortpixel.ai/client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectsp-ao.shortpixel.ai Fingerprint99:6C:0E:A5:42:E4:93:89:C4:87:7E:BA:54:2D:DE:9B:40:15:E8:C9 ValidityThu, 22 Feb 2024 14:09:44 GMT - Wed, 22 May 2024 14:09:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_webp,q_glossy,ret_img,w_150/https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png
server: BunnyCDN-NO1-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=43200
pragma: cache
cdn-cachedat: 03/28/2024 21:51:41
x-robots-tag: noindex
link: <https://www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png>; rel="canonical"
cdn-tag: 0; Domain: macfiles.org; 302
xtag-sp-ver: 2-ns62
cdn-proxyver: 1.04
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 929c71556d93193ca10ff2788ae3a3d1
cdn-cache: MISS
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png | 104.21.73.82 | 200 OK | 15 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 150 x 147, 8-bit/color RGBA, non-interlaced Hashf1f1693fe3c205d0bf08693c33808ea8 29231d53f9910fde114730d5abd65f2705652327 403adb552312e311d29baf18c8bd064b333d441ef9765b8e69f2d8c4ec7e7838
GET /wp-content/uploads/2020/09/Adobe-InDesign-2020-150x147.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:42 GMT
content-type: image/png
content-length: 15376
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 14:42:40 GMT
last-modified: Mon, 28 Sep 2020 10:37:41 GMT
cf-cache-status: HIT
age: 284942
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WE0DjM9vdliArltk1FqHB3D8J1SBttNYXEGwgEDJFMbrCDr6ENCwm25kSNfv5OO%2FRIf2QzoUbG4lE%2FrhbJZhNsUofLkXn4vWSrt9Z6kyE4ia5Skq4v5%2BhXnODErqVS8MuNI1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7cfad2556b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png | 104.21.73.82 | 200 OK | 10 kB |
URL GET HTTP/3www.macfiles.org/wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typePNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced Hash616e1562ee835c642d84ef4677d394ea acafe43972e52bfc753d7414206dfa1fad20f012 b51dd98cd7227cee93a673c4c026e27ecb2f3b56ad4633491ea0b6b0f23336ec
GET /wp-content/uploads/2020/08/Adobe-After-Effects-2020-150x150.png HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.macfiles.org/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:42 GMT
content-type: image/png
content-length: 10492
cache-control: public, max-age=604800
expires: Mon, 01 Apr 2024 14:42:40 GMT
last-modified: Mon, 17 Aug 2020 04:36:17 GMT
cf-cache-status: HIT
age: 284942
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gHVtCugOHFFM6Z1DY5KlSSAytgPoVGjZBda7lm4Elo47M8bIYEeYmfiqqOiOrSrz3V0VaCJ2ZbzI9YiSPhT96ITTp3VnkI7vQX9IpQI8ijOgD65j0%2FC%2FxLq7lTcY%2BMSA7OMv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7cfad3956b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| unseenreport.com/pxf.gif?uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a904d25cbc0e65d37e5cf79e2d057c1d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a904d25cbc0e65d37e5cf79e2d057c1d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=a904d25cbc0e65d37e5cf79e2d057c1d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 28 Mar 2024 21:51:42 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 401da37f6c5e5af37051d55b560d57e3
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 37 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 0d25bea2fb9f92cc9b15f4b30a7d16c9
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 28 Mar 2024 21:51:40 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N6R7OQ9a5RFMPPMIJTqKDa%2FvUDA%2BO46NFrfHFcCK5SJGlRNt1WApzyPc5nsC%2F6aFyRtSlo7hjAUBFVr%2BQqFKjPrDXAfL1yFcHAr3KfnBhQ0JL8p9QUOyqtemkYisA90NiGhCDLS7EuGn0YJ4sy3TBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7ca5efeb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/favicon.ico | 104.21.73.82 | 404 Not Found | 13 kB |
URL GET HTTP/3www.macfiles.org/favicon.ico IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeHTML document, ASCII text, with CRLF, LF line terminators Hash2382378378c002d88b9a507c712c3349 2e894db3808b554abadc8b144338ad9e2ea937ba 37a4e56c497e170de6e152bc479624eb8d7ccb35bad5a190f2fdb17ac699cffa
GET /favicon.ico HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/category/adobe/adobe-premiere-pro/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 404 Not Found
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: text/html
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XcmfMdfOK6h3EWI84vo2%2F4DAyo41km3ZY3b%2Fw46N74HmUccHmR4QfwlTP3RjPnKHaotlHhbuVsA2P7XAr1Mx7OWIEILlyVIviaIS1xdjlxnvI%2FwJP22R8Xc0wa%2BsFr1rXFDp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad7cc3a4156b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 | 45.133.44.9 | 200 OK | 44 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Hash966b6cc374618469023c7311687eda33 e14152632d0c48267f0830b093fc78c462b7884b d02047a81db7373919918f97577f69e868b40b1b2c8a25e2527ea0b3922dbadf
GET /cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:41 GMT
content-type: video/mp4
content-length: 503186
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:25:23 GMT
etag: "66054593-7ad92"
expires: Sat, 30 Mar 2024 21:51:41 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ablecolony.com/ren.gif?sid=H4sIAAAAAAAC%2F1RTy4sdxReunsxv9VuIIeAb7kIwEWemH%2Fd2zzVCcBxHgmMSE187qa6qO1NOd1dbj9s3g4tgIGQlY1a66%2FvNy0cI%2BgcY5E5AMCDMdTULB1eKW4WspW8GR8%2Bizjnfdwq%2Bc%2BrUjaE7JCEcPVh8Q63LLKNznVm%2Fdfq9IDjbWpaFG7QG8%2FH7cftsS%2Fdf7Maz%2FpnWa4KtqbnQD3w%2F8IPWktSipwZzDQlZ3u4Gs11%2Fth3OBp02Bvq%2FuXFTMNQD7x%2BSk5B8PH3POwXJRijybxaFWbOqfOHV3GXUKo0%2B3327WCtUVSA%2FDnvaQ6%2FYPaqGMvtLd6GK7YlcqP4%2FhakcE%2B%2BHu0iL3SORSPtbE51pBlEg5f9H1R9BZCNIOgJT1yH5PgEYx4WLKPKdC0pX9OpDljbsmEw%2F%2BAuyGpPpX06hyO8sZHLQuqIyZ6UqDAa9GnIwglwZoXR7sOseZLUHZj%2BG5D%2BRuQfLKPKtiyZTkPzg2TaLWMLSZEZ0unSmHczPz9C2n8xESRT22nGadqJ4MiApR5C9ETJxa0ziwSdjsvjSc6DmBJzx4KQH1%2FPgSg85P2ixIAgSnzPqz3cZi3gi0pj7AU16AQ38eB6ONd1swJYbYNkGmL6xU%2FJVu9bfstqJLVcwMwx2H0KdCbbdYJ1h8MVDMIwm6E6DhtEwQKmvYU1%2But85Ce2%2Bh1mtYfgUjB0T780P0ec1KkFQGYKKElSSoLIEVb%2Fe5pkJTb3DM%2BPS4MiHRz6qN5VdGdJtZVdEQUD1BjSvh%2BUhebR5EO%2Bxz9%2FBmjho0a7f5mGHpcwXcYdHieiwXtIVIfc7CQs4jKwhzRSo8bDeLMcfP6Js%2FGdPI6V7MNkemDwJ6p4BrWrQ1RrrxR2rtBaFzSmbLYQFVzVKOw171Rtmh%2BSpyVIs%2F3kagt0%2F9yuZGJiuUeoaH8h7BCvZzc3LqiJbl1VlyLcXSytzuU6bhbliqRUnvnpdXK2U5ucXzcaXL7OGaMLbbwljl2nBZbFiyNcLknOhl5Rmgnx33rwr0kvOrC44Xbhy%2BdIrS%2BfzUgtjpCpGoHJ%2FoWlmTB558onJT3j%2B98ch9Qja1cjdfXJkkGoPrLwGUx6rN4pAZ8c1aemhcvWmDtNjMJMEmTjOaVrD%2FCtPj%2BNNTZvbVNZDcxMregrUXkeR1%2BjrGv2sBs02YNyJTVvq%2B%2Bd%2BjiaGNJvaTDM9tZVmOrs1GXJznIGRB60kinwadztBklCRpO1wvhcHnNKwHYdxTCNYM%2B7977eP%2FgYAAP%2F%2FAQAA%2F%2F%2F47Aig4wQAAA%3D%3D | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1ablecolony.com/ren.gif?sid=H4sIAAAAAAAC%2F1RTy4sdxReunsxv9VuIIeAb7kIwEWemH%2Fd2zzVCcBxHgmMSE187qa6qO1NOd1dbj9s3g4tgIGQlY1a66%2FvNy0cI%2BgcY5E5AMCDMdTULB1eKW4WspW8GR8%2Bizjnfdwq%2Bc%2BrUjaE7JCEcPVh8Q63LLKNznVm%2Fdfq9IDjbWpaFG7QG8%2FH7cftsS%2Fdf7Maz%2FpnWa4KtqbnQD3w%2F8IPWktSipwZzDQlZ3u4Gs11%2Fth3OBp02Bvq%2FuXFTMNQD7x%2BSk5B8PH3POwXJRijybxaFWbOqfOHV3GXUKo0%2B3327WCtUVSA%2FDnvaQ6%2FYPaqGMvtLd6GK7YlcqP4%2FhakcE%2B%2BHu0iL3SORSPtbE51pBlEg5f9H1R9BZCNIOgJT1yH5PgEYx4WLKPKdC0pX9OpDljbsmEw%2F%2BAuyGpPpX06hyO8sZHLQuqIyZ6UqDAa9GnIwglwZoXR7sOseZLUHZj%2BG5D%2BRuQfLKPKtiyZTkPzg2TaLWMLSZEZ0unSmHczPz9C2n8xESRT22nGadqJ4MiApR5C9ETJxa0ziwSdjsvjSc6DmBJzx4KQH1%2FPgSg85P2ixIAgSnzPqz3cZi3gi0pj7AU16AQ38eB6ONd1swJYbYNkGmL6xU%2FJVu9bfstqJLVcwMwx2H0KdCbbdYJ1h8MVDMIwm6E6DhtEwQKmvYU1%2But85Ce2%2Bh1mtYfgUjB0T780P0ec1KkFQGYKKElSSoLIEVb%2Fe5pkJTb3DM%2BPS4MiHRz6qN5VdGdJtZVdEQUD1BjSvh%2BUhebR5EO%2Bxz9%2FBmjho0a7f5mGHpcwXcYdHieiwXtIVIfc7CQs4jKwhzRSo8bDeLMcfP6Js%2FGdPI6V7MNkemDwJ6p4BrWrQ1RrrxR2rtBaFzSmbLYQFVzVKOw171Rtmh%2BSpyVIs%2F3kagt0%2F9yuZGJiuUeoaH8h7BCvZzc3LqiJbl1VlyLcXSytzuU6bhbliqRUnvnpdXK2U5ucXzcaXL7OGaMLbbwljl2nBZbFiyNcLknOhl5Rmgnx33rwr0kvOrC44Xbhy%2BdIrS%2BfzUgtjpCpGoHJ%2FoWlmTB558onJT3j%2B98ch9Qja1cjdfXJkkGoPrLwGUx6rN4pAZ8c1aemhcvWmDtNjMJMEmTjOaVrD%2FCtPj%2BNNTZvbVNZDcxMregrUXkeR1%2BjrGv2sBs02YNyJTVvq%2B%2Bd%2BjiaGNJvaTDM9tZVmOrs1GXJznIGRB60kinwadztBklCRpO1wvhcHnNKwHYdxTCNYM%2B7977eP%2FgYAAP%2F%2FAQAA%2F%2F%2F47Aig4wQAAA%3D%3D IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RTy4sdxReunsxv9VuIIeAb7kIwEWemH%2Fd2zzVCcBxHgmMSE187qa6qO1NOd1dbj9s3g4tgIGQlY1a66%2FvNy0cI%2BgcY5E5AMCDMdTULB1eKW4WspW8GR8%2Bizjnfdwq%2Bc%2BrUjaE7JCEcPVh8Q63LLKNznVm%2Fdfq9IDjbWpaFG7QG8%2FH7cftsS%2Fdf7Maz%2FpnWa4KtqbnQD3w%2F8IPWktSipwZzDQlZ3u4Gs11%2Fth3OBp02Bvq%2FuXFTMNQD7x%2BSk5B8PH3POwXJRijybxaFWbOqfOHV3GXUKo0%2B3327WCtUVSA%2FDnvaQ6%2FYPaqGMvtLd6GK7YlcqP4%2FhakcE%2B%2BHu0iL3SORSPtbE51pBlEg5f9H1R9BZCNIOgJT1yH5PgEYx4WLKPKdC0pX9OpDljbsmEw%2F%2BAuyGpPpX06hyO8sZHLQuqIyZ6UqDAa9GnIwglwZoXR7sOseZLUHZj%2BG5D%2BRuQfLKPKtiyZTkPzg2TaLWMLSZEZ0unSmHczPz9C2n8xESRT22nGadqJ4MiApR5C9ETJxa0ziwSdjsvjSc6DmBJzx4KQH1%2FPgSg85P2ixIAgSnzPqz3cZi3gi0pj7AU16AQ38eB6ONd1swJYbYNkGmL6xU%2FJVu9bfstqJLVcwMwx2H0KdCbbdYJ1h8MVDMIwm6E6DhtEwQKmvYU1%2But85Ce2%2Bh1mtYfgUjB0T780P0ec1KkFQGYKKElSSoLIEVb%2Fe5pkJTb3DM%2BPS4MiHRz6qN5VdGdJtZVdEQUD1BjSvh%2BUhebR5EO%2Bxz9%2FBmjho0a7f5mGHpcwXcYdHieiwXtIVIfc7CQs4jKwhzRSo8bDeLMcfP6Js%2FGdPI6V7MNkemDwJ6p4BrWrQ1RrrxR2rtBaFzSmbLYQFVzVKOw171Rtmh%2BSpyVIs%2F3kagt0%2F9yuZGJiuUeoaH8h7BCvZzc3LqiJbl1VlyLcXSytzuU6bhbliqRUnvnpdXK2U5ucXzcaXL7OGaMLbbwljl2nBZbFiyNcLknOhl5Rmgnx33rwr0kvOrC44Xbhy%2BdIrS%2BfzUgtjpCpGoHJ%2FoWlmTB558onJT3j%2B98ch9Qja1cjdfXJkkGoPrLwGUx6rN4pAZ8c1aemhcvWmDtNjMJMEmTjOaVrD%2FCtPj%2BNNTZvbVNZDcxMregrUXkeR1%2BjrGv2sBs02YNyJTVvq%2B%2Bd%2BjiaGNJvaTDM9tZVmOrs1GXJznIGRB60kinwadztBklCRpO1wvhcHnNKwHYdxTCNYM%2B7977eP%2FgYAAP%2F%2FAQAA%2F%2F%2F47Aig4wQAAA%3D%3D HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7ca3207f1c14b2f49445b5d14f6a8ea4
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F8e%2Fff%2F66%2F8eff6635b7ed4954a8b4e92629e58a35%2F1698745384.html&l=1495&fd=97 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F8e%2Fff%2F66%2F8eff6635b7ed4954a8b4e92629e58a35%2F1698745384.html&l=1495&fd=97 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F8e%2Fff%2F66%2F8eff6635b7ed4954a8b4e92629e58a35%2F1698745384.html&l=1495&fd=97 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.cloudimagesb.com/si/15/2b/31/152b314a0e0982e269df482b579f22b2/1706691989.png | 45.133.44.9 | 200 OK | 79 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/15/2b/31/152b314a0e0982e269df482b579f22b2/1706691989.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hashd16669d9977651eef47a07019fbbe491 9a34dbdd7bb3f70b908c8408923ba450cd17b0c9 f840af30a7130c50af7d42fcd84cd94d04e871d8f7bdf26118affb8f2019f67c
GET /si/15/2b/31/152b314a0e0982e269df482b579f22b2/1706691989.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: image/png
content-length: 78559
server: nginx/1.21.6
last-modified: Wed, 31 Jan 2024 09:06:38 GMT
etag: "65ba0d9e-132df"
expires: Sat, 30 Mar 2024 21:51:57 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fstyle.css&l=5327&fd=92 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fstyle.css&l=5327&fd=92 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fstyle.css&l=5327&fd=92 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/js/script.js | 172.64.160.4 | 200 OK | 390 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/js/script.js IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
Hashcc851ecae9979c9cb7d86725f8202ab2 168c8c343143c6bd39486f20039ca3c4bbaa966c ca338eeb72736d653e58065bf3a80eb1f26b1879da62fc62065e53b8049c19bb
GET /sb/ssp/interstitial/message_redcircle/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-478"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 29724
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nkoUEYfNyCvCzurxdRq3u72yPaTIV0g3JyvFMaTdwfektUMZp%2Bbr9HLQCgkufTEtSD%2FksyTru6bwY%2B9fUCzF8sDERR7dy9ti0mbFSkzq4rTc6kiMhiNg1pBoMBbuqROgWW2RB%2BLrR0LP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad82e4ad171c8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/css/animate.css | 172.64.160.4 | 200 OK | 4.9 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/css/animate.css IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
Hash3d4123dbfb33d27a5cfdfcfa91df6783 e7d0eeeec54b848f0bc3da8685fa3bc88429d660 cb7d1393b65701b2f97d8da244c2c6023e9cbc3463ecb0136b915cfc775c6887
GET /sb/ssp/interstitial/message_redcircle/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-13361"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yJxyfh5OAdIJvQULjv8oLs1HTZ9%2Bby4pWi7%2FQXLW3Rqppc8Omru7BUqd1RhyuFcB5aBi5efbNTiduSiP5OpQVwrDdaQiI4w5%2ByqzbykXvrXLKyPcxwEBLGakIEk4%2BV6fOZeULN3vFNWY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad82d2d0793f6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap | 142.250.74.74 | 200 OK | 17 kB |
URL GET HTTP/3fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700&display=swap IP142.250.74.74:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint04:B9:D9:E0:01:DB:5E:AB:5A:FF:F0:D9:ED:39:0F:C1:63:18:51:0B ValidityMon, 26 Feb 2024 08:18:27 GMT - Mon, 20 May 2024 08:18:26 GMT
File typegzip compressed data, max compression Hash8479be4ab6115749f7afae48934cc88b 49f24ed4d59675d332d7ec555d7701302f40ed69 cd7b532fa199807efaf99bc115734183130165fe9464c22803bd808962aedda6
GET /css2?family=Roboto:wght@100;300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 28 Mar 2024 21:51:57 GMT
date: Thu, 28 Mar 2024 21:51:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0 Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 02:32:46 GMT
expires: Fri, 28 Mar 2025 02:32:46 GMT
cache-control: public, max-age=31536000
age: 69551
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:46:08 GMT
expires: Fri, 28 Mar 2025 17:46:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 14749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/img/close.svg | 172.64.160.4 | 200 OK | 1.7 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/img/close.svg IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
File typeSVG Scalable Vector Graphics image Hash369850b9873659adf0951d845f57dba1 a64257186daa33b6b318943a457b6cf8d80b26b6 9630c142a8c074cc1809ebf4109538cf29cc0baeb6c27726191f1cf5376e2e21
GET /sb/ssp/interstitial/message_redcircle/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 693960
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k8qjOb0KNDqL9wBuvMQCyclaORXgpiP%2FiI06qWe5iAhHRqdFJQrlRQB3VdACnTjhQhMpozJ2%2FHGtWEP3ZzwFTcMk4ZNU%2Bpnc8LCy%2FZ3ILLZUVmRtrjEypQtKTsNJf2i7UB5GAeUfNYPh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad82dca7271c8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ablecolony.com/impr.gif?sid=H4sIAAAAAAAC%2F1RTy4sc1Re%2BNZnf6rcQQ8A39EIwEWemqrurH0YIjuNIcExi4msn91Uz16muW95HV2dwEQyErGTMSnfV37x8hKB%2FgEF6AoIBYdrVLBxcKW4VspbqDLaexT3nfN%2B58J1zz70x9EekDk8Pl97QGypN6UI8H9ZOvxdFZ2srKvOD2qDTer%2FVPFsz%2FRe7rfnwTO01ydf1Qj2MwjAKo9qyMjLRg4WKhMpvd6P5bjjfrM9HcRMD89%2Fc%2BhlYGkD0j8hJKDGevRecguIjZL1vlqRddzp%2F4dWeT6nTBn2x93a2nukiQ28aJiZAku0dV0Pbg%2BW70NnORC50%2F59CpsYk%2BOEuWLZ3LBKsvz3RyVLIDEz8H0V%2FBJmOoOgIXF%2BHEgcE4AIXLiLr7V7QpqBXH7K0Ysdk9sFfUMWYzP5yClnvzmKqBrUrOvVO6cxikJRQgxHU6gi534fbCKCKfXD3MZT4iSw8WEHW275oUw0lDp9t8gZvc9aek3GXzjWjTmeONsP2XKPdqCfNFmNxozUZkFIjqGSEVN4ak9bgkzFZeuk5UHsC3gbwKoBPAvg8QE8c1ngURe1QcBp2upw3RFuylggj2k4iGoWtDjyvutmEyzfB001wc2M3F2tuvb%2FtjJfbPuN2GO09hOIJtlNh8TD64iFYb0zQ3QqtN4YRcnMN6%2BrTg%2FgkjP8edq2EFTOwbkyCNz9EX5QoJEFhCQpKUCiCwhEU%2FXJHpLZuy12RWs%2BiY18%2F9o1yS7vVId3RblVmBNRswohymB%2BRR6sHCR77%2FB2sy8Ma7YZNUY8546FsxaLRljFP2l1ZF2Hc5pGAVSWUnQG1ATaq5fjjR%2BSV%2F%2BxpMLoPm%2B6Dq5Og%2FhnQogRdK7GR3XHaGJm5HuXzmXQQukTuZuGuBsP0iDw1WYqVP09D8vvnfiUTAzclclPiA3WPYDW9uXVZF2T7si4s%2BfZi7lRPbdBqYa446uSJr16XVwttxPklu%2Fnly7wiqvD2W9K6FZoJla1a8vWiEkKaZW24JN%2Bdt%2B9KdsnbtUVvMp%2BvXHpl%2BXwvN9JapbMRqDpYrJoZk0eefGLyE57%2F%2FXEoM4LxJXr%2BPjk2KL0Pnl%2BDzafqrSYw6bSG5QEKX26ZOpuCqSJI5TSnrIT9V86m8Zah1W2qyqG9iVUzA%2BquI%2BuV6JsS%2FbQETTdh%2FYktl5v7535uTAwsndliqZnZZqlJb02GXB1nYNVhrRGKNpOJbDPZjJuJ5ILFMQt5wllDdDoczo6T%2F%2F320d8AAAD%2F%2FwEAAP%2F%2FeDjdSOMEAAA%3D | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1ablecolony.com/impr.gif?sid=H4sIAAAAAAAC%2F1RTy4sc1Re%2BNZnf6rcQQ8A39EIwEWemqrurH0YIjuNIcExi4msn91Uz16muW95HV2dwEQyErGTMSnfV37x8hKB%2FgEF6AoIBYdrVLBxcKW4VspbqDLaexT3nfN%2B58J1zz70x9EekDk8Pl97QGypN6UI8H9ZOvxdFZ2srKvOD2qDTer%2FVPFsz%2FRe7rfnwTO01ydf1Qj2MwjAKo9qyMjLRg4WKhMpvd6P5bjjfrM9HcRMD89%2Fc%2BhlYGkD0j8hJKDGevRecguIjZL1vlqRddzp%2F4dWeT6nTBn2x93a2nukiQ28aJiZAku0dV0Pbg%2BW70NnORC50%2F59CpsYk%2BOEuWLZ3LBKsvz3RyVLIDEz8H0V%2FBJmOoOgIXF%2BHEgcE4AIXLiLr7V7QpqBXH7K0Ysdk9sFfUMWYzP5yClnvzmKqBrUrOvVO6cxikJRQgxHU6gi534fbCKCKfXD3MZT4iSw8WEHW275oUw0lDp9t8gZvc9aek3GXzjWjTmeONsP2XKPdqCfNFmNxozUZkFIjqGSEVN4ak9bgkzFZeuk5UHsC3gbwKoBPAvg8QE8c1ngURe1QcBp2upw3RFuylggj2k4iGoWtDjyvutmEyzfB001wc2M3F2tuvb%2FtjJfbPuN2GO09hOIJtlNh8TD64iFYb0zQ3QqtN4YRcnMN6%2BrTg%2FgkjP8edq2EFTOwbkyCNz9EX5QoJEFhCQpKUCiCwhEU%2FXJHpLZuy12RWs%2BiY18%2F9o1yS7vVId3RblVmBNRswohymB%2BRR6sHCR77%2FB2sy8Ma7YZNUY8546FsxaLRljFP2l1ZF2Hc5pGAVSWUnQG1ATaq5fjjR%2BSV%2F%2BxpMLoPm%2B6Dq5Og%2FhnQogRdK7GR3XHaGJm5HuXzmXQQukTuZuGuBsP0iDw1WYqVP09D8vvnfiUTAzclclPiA3WPYDW9uXVZF2T7si4s%2BfZi7lRPbdBqYa446uSJr16XVwttxPklu%2Fnly7wiqvD2W9K6FZoJla1a8vWiEkKaZW24JN%2Bdt%2B9KdsnbtUVvMp%2BvXHpl%2BXwvN9JapbMRqDpYrJoZk0eefGLyE57%2F%2FXEoM4LxJXr%2BPjk2KL0Pnl%2BDzafqrSYw6bSG5QEKX26ZOpuCqSJI5TSnrIT9V86m8Zah1W2qyqG9iVUzA%2BquI%2BuV6JsS%2FbQETTdh%2FYktl5v7535uTAwsndliqZnZZqlJb02GXB1nYNVhrRGKNpOJbDPZjJuJ5ILFMQt5wllDdDoczo6T%2F%2F320d8AAAD%2F%2FwEAAP%2F%2FeDjdSOMEAAA%3D IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RTy4sc1Re%2BNZnf6rcQQ8A39EIwEWemqrurH0YIjuNIcExi4msn91Uz16muW95HV2dwEQyErGTMSnfV37x8hKB%2FgEF6AoIBYdrVLBxcKW4VspbqDLaexT3nfN%2B58J1zz70x9EekDk8Pl97QGypN6UI8H9ZOvxdFZ2srKvOD2qDTer%2FVPFsz%2FRe7rfnwTO01ydf1Qj2MwjAKo9qyMjLRg4WKhMpvd6P5bjjfrM9HcRMD89%2Fc%2BhlYGkD0j8hJKDGevRecguIjZL1vlqRddzp%2F4dWeT6nTBn2x93a2nukiQ28aJiZAku0dV0Pbg%2BW70NnORC50%2F59CpsYk%2BOEuWLZ3LBKsvz3RyVLIDEz8H0V%2FBJmOoOgIXF%2BHEgcE4AIXLiLr7V7QpqBXH7K0Ysdk9sFfUMWYzP5yClnvzmKqBrUrOvVO6cxikJRQgxHU6gi534fbCKCKfXD3MZT4iSw8WEHW275oUw0lDp9t8gZvc9aek3GXzjWjTmeONsP2XKPdqCfNFmNxozUZkFIjqGSEVN4ak9bgkzFZeuk5UHsC3gbwKoBPAvg8QE8c1ngURe1QcBp2upw3RFuylggj2k4iGoWtDjyvutmEyzfB001wc2M3F2tuvb%2FtjJfbPuN2GO09hOIJtlNh8TD64iFYb0zQ3QqtN4YRcnMN6%2BrTg%2FgkjP8edq2EFTOwbkyCNz9EX5QoJEFhCQpKUCiCwhEU%2FXJHpLZuy12RWs%2BiY18%2F9o1yS7vVId3RblVmBNRswohymB%2BRR6sHCR77%2FB2sy8Ma7YZNUY8546FsxaLRljFP2l1ZF2Hc5pGAVSWUnQG1ATaq5fjjR%2BSV%2F%2BxpMLoPm%2B6Dq5Og%2FhnQogRdK7GR3XHaGJm5HuXzmXQQukTuZuGuBsP0iDw1WYqVP09D8vvnfiUTAzclclPiA3WPYDW9uXVZF2T7si4s%2BfZi7lRPbdBqYa446uSJr16XVwttxPklu%2Fnly7wiqvD2W9K6FZoJla1a8vWiEkKaZW24JN%2Bdt%2B9KdsnbtUVvMp%2BvXHpl%2BXwvN9JapbMRqDpYrJoZk0eefGLyE57%2F%2FXEoM4LxJXr%2BPjk2KL0Pnl%2BDzafqrSYw6bSG5QEKX26ZOpuCqSJI5TSnrIT9V86m8Zah1W2qyqG9iVUzA%2BquI%2BuV6JsS%2FbQETTdh%2FYktl5v7535uTAwsndliqZnZZqlJb02GXB1nYNVhrRGKNpOJbDPZjJuJ5ILFMQt5wllDdDoczo6T%2F%2F320d8AAAD%2F%2FwEAAP%2F%2FeDjdSOMEAAA%3D HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:57 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 039be5b9925c6d19770cae4df305fe3e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| ablecolony.com/pixel/sbs?c=1 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1ablecolony.com/pixel/sbs?c=1 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbs?c=1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 216.58.207.227 | 200 OK | 23 kB |
URL GET HTTP/2fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:35:51 GMT
expires: Fri, 28 Mar 2025 17:35:51 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 15349
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fjs%2Fscript.js&l=1144&fd=34 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fjs%2Fscript.js&l=1144&fd=34 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fjs%2Fscript.js&l=1144&fd=34 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF3:56:10:42:A8:3C:BF:F5:89:9C:4C:C0:F8:E3:DC:C4:1C:E9:34:9E ValidityMon, 26 Feb 2024 08:18:21 GMT - Mon, 20 May 2024 08:18:20 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 28 Mar 2024 17:37:50 GMT
expires: Fri, 28 Mar 2025 17:37:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 15247
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.macfiles.org/category/adobe/adobe-premiere-pro/ | 104.21.73.82 | 200 OK | 92 kB |
URL User Request GET HTTP/2www.macfiles.org/category/adobe/adobe-premiere-pro/ IP104.21.73.82:443
CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /category/adobe/adobe-premiere-pro/ HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Cookie
cache-control: max-age=3, must-revalidate
last-modified: Thu, 28 Mar 2024 21:35:19 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ccQyEjViBHa8yJcN331A0AkUzKD%2BHUgG8znQzfsRvUax107jO8u4PGE4FkJVxpn3G53wdJYGqdrpTscF4QcS8scv6yOX6zaDpNztRMbuX%2FZN0ozx%2F0q7i6YOtGRTjoQMTQh8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bad7bf6a9db515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| accidentallyrussian.com/cc43d9e6e02d1d5141beb272805e2db1/invoke.js | 172.240.253.132 | 200 OK | 31 kB |
URL GET HTTP/1.1accidentallyrussian.com/cc43d9e6e02d1d5141beb272805e2db1/invoke.js IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectaccidentallyrussian.com Fingerprint3E:C7:58:F1:C6:88:A7:93:4D:44:9B:CF:A9:90:F1:C7:E1:A3:1C:12 ValidityTue, 20 Feb 2024 06:04:20 GMT - Mon, 20 May 2024 06:04:19 GMT
File typeJavaScript source, ASCII text, with very long lines (31275), with no line terminators Hash32dc964f69ada574b44404c2895c5615 ce95ae0072faac8b8b092e8970237cd7ad1386d5 ac6b7c3d7de6a7df176391a27c6eb48c93de89517fc79b572e6f45973155b1fc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cc43d9e6e02d1d5141beb272805e2db1/invoke.js HTTP/1.1
Host: accidentallyrussian.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:40 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9e8ef43719d60761e8262b2fd72e1a80
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.barscreative1.com/sb/au/8e/ff/66/8eff6635b7ed4954a8b4e92629e58a35/1698745384.html | 45.133.44.4 | 200 OK | 1.5 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/au/8e/ff/66/8eff6635b7ed4954a8b4e92629e58a35/1698745384.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text, with very long lines (1591), with no line terminators Hash89e8147eac31b07a5d8a33234d6fff1d be1dbeb24905d599d142040286e70df41aae890f 6a430d707fa5a7883e7de96699b2d845ce1564ffa27a33ae351fece1f2a8e12d
GET /sb/au/8e/ff/66/8eff6635b7ed4954a8b4e92629e58a35/1698745384.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:56 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 31 Oct 2023 09:43:09 GMT
etag: W/"6540cc2d-5d7"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Thu, 28 Mar 2024 22:51:56 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/js/jquery.min.js | 172.64.160.4 | 200 OK | 90 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/js/jquery.min.js IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/ssp/interstitial/message_redcircle/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3747161
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MfciaFvhCD%2FITX0pqI%2FpOyNUDkS75EEAT4k9PpJKgxs%2FtQ6WH7%2F0hdiFBeH1iJXTaXjr7z%2Bs4xHbWMnbYi1nXNAQK9xBbTiWQNPZKV6xHMDooO%2BAVtYWTz4BaAjUEELd61XfBpbkDBOe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad82dda8471c8-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.macfiles.org/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.11 | 104.21.73.82 | 200 OK | 9.8 kB |
URL GET HTTP/3www.macfiles.org/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.11 IP104.21.73.82:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectmacfiles.org Fingerprint05:B6:91:19:E8:3B:D4:01:2C:69:02:50:FC:D3:89:ED:19:1B:D3:49 ValidityThu, 14 Mar 2024 13:45:41 GMT - Wed, 12 Jun 2024 13:45:40 GMT
File typeJavaScript source, ASCII text, with very long lines (10063), with no line terminators Hash73122fbfabbe773c0aab1d1f94316beb 02e58a96ce045594633f49373c27e8301c5d63f3 17b4bf0bd4f257f50c543a37080596a2d928c7ee8fc4f996234650175e0b03bb
GET /wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.11 HTTP/1.1
Host: www.macfiles.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/category/adobe/adobe-premiere-pro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: application/javascript
cache-control: public, max-age=604800
expires: Wed, 03 Apr 2024 13:01:12 GMT
last-modified: Wed, 13 Mar 2024 09:02:38 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 118227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjrdBzkiPkInI4nVAtq6t8zs9528VnUwmATAbpUUQnTdmJa7zekvMQQwLrxzGzlQzShDFytZcml191BqBvXp2yVi1mD2hqcaxmWTJJ5q%2FkuFQ7JQZ%2F72E6ABsYOxL9M5RGFC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bad7c15fd756b9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css | 104.18.11.207 | 200 OK | 29 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/font-awesome/4.6.3/css/font-awesome.min.css IP104.18.11.207:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (28900) Hash4083f5d376eb849a458cc790b53ba080 fb5b49426dee7f1508500e698d1b3c6b04c8fcce 008a1d103902f15fdb1c191fcb1ce8954330e7b8de43d09abb08555ba609f420
GET /font-awesome/4.6.3/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:39 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"4083f5d376eb849a458cc790b53ba080"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/11/2022 02:14:14
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1047
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 601a9a422917d5011204b75b2a4627c5
cdn-cache: HIT
cf-cache-status: HIT
age: 11029226
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86bad7c1586db50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/img/number.png | 172.64.160.4 | 200 OK | 1.1 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/img/number.png IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
File typePNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced Hash9e4414e85c588bf7db195e49c02ab2bb 09254e79b255f1b2dfe45adbbe44583a4b433782 0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762
GET /sb/ssp/interstitial/message_redcircle/1/img/number.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: image/png
content-length: 1138
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: "65aa8501-472"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 693960
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AOcnAgQomv3s7QXPgnMCCzExzd1wVmf5tujaNE2A6%2F7UYf%2FdsGn9HSlfj2Z13eb7f%2FbCDe6%2B2q%2Fwz7alnr%2BY5%2F75PM1LwrgGBNcJaBOWaJVh8U%2B%2F%2FKr3VzcoFByKkiGwkt6VuT6RuX7z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad8301c1871c8-LHR
alt-svc: h3=":443"; ma=86400
|
|
| ablecolony.com/sbar.json?key=a904d25cbc0e65d37e5cf79e2d057c1d&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 | 172.240.253.132 | 200 OK | 13 kB |
URL GET HTTP/1.1ablecolony.com/sbar.json?key=a904d25cbc0e65d37e5cf79e2d057c1d&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /sbar.json?key=a904d25cbc0e65d37e5cf79e2d057c1d&uuid=4c3c7cb7-e59a-4188-a407-3732f46bb536%3A3%3A1 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=1; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:56 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.macfiles.org
Access-Control-Allow-Origin: https://www.macfiles.org
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17871235,18323798; expires=Fri, 29 Mar 2024 21:51:56 GMT; secure; SameSite=None
uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; expires=Thu, 04 Apr 2024 21:51:56 GMT; secure; SameSite=None
uncs=2; expires=Fri, 29 Mar 2024 21:51:56 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 29 Mar 2024 21:51:56 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 29 Mar 2024 21:51:56 GMT; secure; SameSite=None
sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]; expires=Thu, 28 Mar 2024 21:52:01 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d348d7dfa07ee814496ee8c6c9f20da7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/css/style.css | 172.64.160.4 | 200 OK | 5.3 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/ssp/interstitial/message_redcircle/1/css/style.css IP172.64.160.4:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22 ValidityFri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
File typeASCII text, with very long lines (5650), with no line terminators Hash22a53a4359ce7c5a288c51ac71215963 1887d5f33b71c7ecb28012cd260b1d2e88a4e39d 55b6a3ef295f668f95e2fa9ce2cc3cd6cbbf5a95469d21d2f1faab18b69c48fa
GET /sb/ssp/interstitial/message_redcircle/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.macfiles.org
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 21:51:57 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:19:45 GMT
etag: W/"65aa8501-14cf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 508547
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sJGT%2FVOQQ2K8T9BAj3ZvpImM5byNOYVlZ357cqvMp%2B2H5WqqyLGKdz37i0XBO%2FFl2N3E4Q96SHhWsc3rA8uZdJ2A8KjQq8Xgm%2FsSq%2Bvg6kUEVZVUZnQCd668Rh58t9GnZWT8%2FQhDf%2FJ6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bad82d3d0893f6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fanimate.css&l=78689&fd=335 | 172.240.253.132 | 200 OK | 0 B |
URL GET HTTP/1.1ablecolony.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fanimate.css&l=78689&fd=335 IP172.240.253.132:443
Requested byhttps://www.macfiles.org/category/adobe/adobe-premiere-pro/ CertificateIssuerLet's Encrypt Subjectablecolony.com Fingerprint72:52:48:30:ED:69:2D:E0:F6:1F:B2:28:46:E6:BF:09:21:CB:DD:D1 ValiditySun, 24 Mar 2024 10:22:04 GMT - Sat, 22 Jun 2024 10:22:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fssp%2Finterstitial%2Fmessage_redcircle%2F1%2Fcss%2Fanimate.css&l=78689&fd=335 HTTP/1.1
Host: ablecolony.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.macfiles.org/
Cookie: u_pl=17871235,18323798; ain=eyJhbGciOiJIUzI1NiJ9.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.-JxP7UPpU5TAzX7ni3mWgcjiqc08abyv7b308pKvD4U; uid_id2=4c3c7cb7-e59a-4188-a407-3732f46bb536:3:1; iprc802a8f09f721f4f03dac6865c91cc72e=3569806; pdhtkv=true; uncs=2; pdhtkv5=true; uncs5=1; iprcf95f497720dca6adfa60ca2a770a2a56=4471847; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1; sleca904d25cbc0e65d37e5cf79e2d057c1d=[5042728,5042729]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 28 Mar 2024 21:51:57 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|