| bowfile.com/lg.png | 104.21.37.79 | 200 OK | 806 kB |
IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typePNG image data, 4804 x 1043, 8-bit/color RGBA, non-interlaced Size806 kB (806415 bytes) Hash1b63e25741f3459f3adf825eabad3c8f 6f8e62a04b5daac82158f1a44ca132ed11fa102f 0654449cc73d1f0ea7c0929fffc64d6e6fcdbcab55c0293cd35deaf6a0a55f57
GET /lg.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: image/png
content-length: 806415
last-modified: Wed, 19 May 2021 00:28:32 GMT
etag: "60a45bb0-c4e0f"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 943
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2ByT%2Bc4f78USVNAshC042j0AXf8XuAbcXMgvh5eiiUS8Lgxp2JBeAcOFTy4%2Fv11Wm19jevV7ciwGQnhKPzdIUXtZ2nYTWgwaim2gyMbt0HvPl2mWS8PL3bicxuyLdsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac30c2056c3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css | 151.101.193.229 | 200 OK | 6.3 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css IP151.101.193.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeASCII text, with very long lines (32207), with no line terminators Hash670b37e75a82edfd7af1776c3081eac5 c82270e3c756dffc3af5b6a7250600051c6d4311 ca046b8b1b1094107205988e7096a687b241c8ef5f3fefe5e543ed28d26646c1
GET /gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"7dcf-yCJw48dW3/w69banJQYABRxtQxE"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 17:43:15 GMT
age: 6631840
x-served-by: cache-fra-eddf8230113-FRA, cache-hel1410030-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6317
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2 | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-G45GX6EFX2 IP142.250.74.168:443
CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hash4f9a4fb461739d4bc7c1bdd2d0fec02c 7b8357cfb431d1aba88c25f9b888b4db5fdc6a8c b172a1ec6f50ff701e1531259147745e64aad4a029afb142140d0d0c2def6e59
GET /gtag/js?id=G-G45GX6EFX2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 17:43:16 GMT
expires: Sat, 04 May 2024 17:43:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93881
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js | 151.101.193.229 | 200 OK | 11 kB |
URL GET HTTP/2cdn.jsdelivr.net/gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js IP151.101.193.229:443
CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (23125) Hashcbdca47e478059353766a77f91ebd1ec e75a6d9fe80bbfbfb21f09fdb65e2229b9118698 222b5e0b89eebb3777ce3650e3b4ac1a5633ff19d05ef37d2a761c5b41214ec9
GET /gh/orestbida/cookieconsent@3.0.0/dist/cookieconsent.umd.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.0.0
x-jsd-version-type: version
etag: W/"5add-51ptn+gLv7+yHwn9tl4iKbkRhpg"
content-encoding: br
accept-ranges: bytes
date: Sat, 04 May 2024 17:43:16 GMT
age: 3425476
x-served-by: cache-fra-etou8220153-FRA, cache-hel1410025-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10566
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2 | 104.21.37.79 | 200 OK | 80 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2 IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 80148, version 331.17301 Hashc500da19d776384ba69573ae6fe274e7 6290834672aba86d5b6c1c73b30b57c9c53996f7 cfe3b7382e477059da11be2099914b94f0e2a4f08240c60542c376957b8d9658
GET /themes/spirit/assets/frontend/fonts/font-awesome/fa-solid-900.woff2 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:16 GMT
content-type: font/woff2
content-length: 80148
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
etag: "5f8bebc0-13914"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=umMq2Vd7YOtPMXEnfxTvuVR4p8P4RSwJKN1QgEE4dKBLQS8%2FxM9CjnVnnIvxpcv%2Fs5e8qLWYsma0KjgfOlD49Zc1Me4V%2BTTZueFOeAB1W%2F%2F21Mj2sHV6Ft%2Feze47%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac6285356c3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227296
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227296
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/3fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24984, version 1.0 Hash303a79d404d97ccbb3d803088fc387d8 66e3525b79a1a58a63fe0934f31676dd40c7f033 7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:39:23 GMT
expires: Sat, 03 May 2025 11:39:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
age: 108233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19280, version 1.0 Hash386fb59be54b2d819064af98e57cc226 9e2d14d736be97ec84bfca3513558450cd6e3249 b4855cc8ec721cbaf27f3c907345e101b1524858221c14faa79df34cb2f84991
GET /s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 02:32:40 GMT
expires: Sat, 03 May 2025 02:32:40 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:02:23 GMT
content-type: font/woff2
age: 141036
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227296
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227296
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| | 104.21.37.79 | 200 OK | 10 kB |
URL User Request GET HTTP/2IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (867), with CRLF, LF line terminators Hashf8d03fb2a1ff9a966b01431a90dabce5 0d2f1be81c1434233ed52a1910cfab7527424760 4e11ac79847a7fa60697e12dce10f411b6df2765e1bfaf5c2d68f357d0850170
GET /aimY HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3; expires=Mon, 03-Jun-2024 17:43:15 GMT; Max-Age=2592000; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, no-cache, public
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pfj2NH06xPL5baQ7BVw28On%2Ba4seEkcUHs%2B0DvegL6Uj7JgjbVrXt9Us7JMXm%2BCaLEsJus9Z6%2BrX47DmWrHp1UL38ZO7i5B7JsqsHcnoZJa%2BNd2uK4rrkG7l3RsC5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4abfbb095691-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png | 104.21.37.79 | 200 OK | 36 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hashff48e5c8d20ea41f385c3bed9208c520 e21f83f2c37160693d6f6abc0cb3c28d781b51c9 0654a8a641a7c7c3bd80abf11fd69edf42d98a69880c707681e5963efbabe072
GET /themes/spirit/assets/frontend/img/favicon/apple-touch-icon.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3; _ga_G45GX6EFX2=GS1.1.1714844596.1.0.1714844596.0.0.0; _ga=GA1.1.259811621.1714844597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:16 GMT
content-type: image/png
content-length: 35486
last-modified: Sat, 22 May 2021 00:41:55 GMT
etag: "60a85353-8a9e"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TxVNNFWxZ%2Bz%2BozmJ3WP%2BwPmF47AhdAlGpVnXdHAbGEag0sDmpzxrYFxr%2FGxhayfU0eNzFFw9JBVLegUE095S99UO4eX898r%2BtDk1k8xd61DdAXjM4Nsa6sKO8NZ8Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac95c7356c3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png | 104.21.37.79 | 200 OK | 849 B |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/img/favicon/favicon-16x16.png IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typePNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced Hash9e2e5a1b5f9de6f65f38c2013f54d6e3 7e3697b34eae30aff6f1fc47d24fda12cb23f1ef c46d0b0563620af19dd7ad1689b965ef9156c26e537ce81723f828a8b4845b89
GET /themes/spirit/assets/frontend/img/favicon/favicon-16x16.png HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3; _ga_G45GX6EFX2=GS1.1.1714844596.1.0.1714844596.0.0.0; _ga=GA1.1.259811621.1714844597
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:16 GMT
content-type: image/png
content-length: 849
last-modified: Sat, 22 May 2021 00:41:54 GMT
etag: "60a85352-351"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xr9ovWaYWr38Lc5kaSrzcniKcs8WwZkXAFAku4Q8C0gDhvx6XeT2u3u%2BbgwrbPbygz4Zslv8vJFib2dn64OJ9yyJZ38%2BRvewqkbEcrVB%2B311iEBLbD8ta3E6dFygaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac95c7a56c3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/css/lightbox.min.css | 104.21.37.79 | 200 OK | 1.4 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/lightbox.min.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with CRLF line terminators Hash30265c8089a8f3e871d0873ef6a5b944 2804a2fe5a6a956626ce6a46adf6b1a0676ee13d f9f33dca7f9a5a735a0a03502993e0a092df81d820beb1ed4071e4611a9630ed
GET /themes/spirit/assets/frontend/css/lightbox.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-f31"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M0Nr1AOQ89WrTTcg8jE5MRlRjWuoQPmpPsTS9HB6N46uFsxVU%2FF0nV0ToeRa1WVlxqn1ixFzGhxYGknGQbYUZOFRLxqSS%2F4yZ%2BCtx78GVGHz9Lq87xdLh2wR0KqWUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0356c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css | 104.21.37.79 | 200 OK | 13 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/font-awesome.min.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (58929), with CRLF line terminators Hash879812fc22af75aa3ae7b5666ca4f4b8 df27469a952b7ee36cc03db471c6198f577186a8 c5d7f0d9e646698b20734ce6dcc2c0a8ecf6ebe27b4b7625bfcf42c4416fb7ed
GET /themes/spirit/assets/frontend/css/font-awesome.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-e6ef"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m8GcSQ6l8wjnQd4uO%2Fz73vBVqd%2FFqaYzt2%2F4E3Qr1659UbCLHAV37BV2oTyYElpU1bCK%2FLw92w0aA4Glqmgxiii%2FGt%2FBHcexKIcZGasvIsd9EyJP9qpeS272uDZWLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac30c1256c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| thubanoa.com/9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=080052939bce4eb0e2923eae02f83869 | 139.45.197.242 | 204 No Content | 0 B |
URL OPTIONS HTTP/2thubanoa.com/9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=080052939bce4eb0e2923eae02f83869 IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /9?z=7209201&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&oaid=080052939bce4eb0e2923eae02f83869 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://bowfile.com/
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 04 May 2024 17:43:17 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| fundingchoicesmessages.google.com/i/pub-1455201204252520?ers=1 | 216.58.211.14 | 200 OK | 61 kB |
URL GET HTTP/2fundingchoicesmessages.google.com/i/pub-1455201204252520?ers=1 IP216.58.211.14:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (1933) Hashdb8467daec2557ea699f90914bc403ec 400671fe0010fdb327565dd0294e675fc75b5a51 5143ffa3d9984ddfe009dae29c777a4d2ef574a699e5073cf75928db50487e68
GET /i/pub-1455201204252520?ers=1 HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 17:43:16 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-th94HdDibMaH7CcGDQ8jvQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorServingWebSwitchboardHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorServingWebSwitchboardHttp/cspreport
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/ContributorServingWebSwitchboardHttp/web-reports?context=eJzjStDikmII1JBiOO90h-k6ENcyPGNqBWIDjedMFkAs8fUlkxYQxzyfzpoCxE7pM1hDgNinfgZrHBC33jzHOh2ITy44z3oRiJP-nWctAeKdiy-wHgRiIR6OLc9vbmQTuHG85z8TAIW-MD0"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/css/theme.css?var1.2 | 104.21.37.79 | 200 OK | 29 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/theme.css?var1.2 IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash09baa58ba7a96054c4aa605e2a9d51b2 3477c84fc652d540594c09fc2905c393ec4d655d 5f70fef49b1fa602e97e2f12a0a3ca46a5db090fa34dad736f8ae5c57c9ba0a6
GET /themes/spirit/assets/frontend/css/theme.css?var1.2 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=207645
etag: W/"60a91951-32b1d"
last-modified: Sat, 22 May 2021 14:46:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NEcOLPGEzaOU67Xqc7VfdLsiqBzFZ%2FIVRJTpzMCN8WquvjKtotzrLR1WaYuzszRuJpeLXSkxkIZGrOCPwzQ53VW4xLUDI7hEB7Zibfee0tAqWhDce5PRGXJBEEZAdQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc1056c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7209201&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=810679603111665664 | 172.67.175.232 | 302 Found | 0 B |
URL GET HTTP/2securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7209201&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=810679603111665664 IP172.67.175.232:443
CertificateIssuerGoogle Trust Services LLC Subjectsecuredpeacomm.com FingerprintE2:58:9B:FC:54:26:CA:CC:89:05:0D:28:D6:2E:28:9E:39:7E:5F:D6 ValidityMon, 15 Apr 2024 19:27:34 GMT - Sun, 14 Jul 2024 19:27:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7209201&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=810679603111665664 HTTP/1.1
Host: securedpeacomm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 17:43:17 GMT
content-type: text/html; charset=UTF-8
location: https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7209201&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=810679603111665664&ctrl_fetch_dest=iframe&ctrl_id=663673b54f579843125190&ctrl_ts=1714844597.325&ctrl_ab=burp
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3CSrLDIMGGL87aYcCkDac%2F4Fi%2FNoRSj5tEyOkyDQBD24tYRL56lJai%2F24WiQBd96PQBlhYtSRVeYKlN8i90aaegbt7EdECNBreuVTVE8cCoXEgW2yfzyFQdKYdabNRA5ookOmlA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4acc9c5656c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227297
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:35:00 GMT
expires: Fri, 02 May 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 227297
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/3fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24984, version 1.0 Hash303a79d404d97ccbb3d803088fc387d8 66e3525b79a1a58a63fe0934f31676dd40c7f033 7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:39:23 GMT
expires: Sat, 03 May 2025 11:39:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
age: 108234
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 216.58.207.227 | 200 OK | 128 kB |
URL GET HTTP/2fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 128352, version 1.0 Size128 kB (128352 bytes) Hash53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 03:43:48 GMT
expires: Sat, 03 May 2025 03:43:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
age: 136769
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/css/custom.css | 104.21.37.79 | 200 OK | 18 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/custom.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (6717), with no line terminators Hasha47c37c06e3dfcd6d6c81e581d724c3e cca10fe5774ed40d9d4fcbe021f578137222531e 2ba990faaad8198719efac063a6ec699b548708b555a3ef7821fd6899a8556ce
GET /themes/spirit/assets/frontend/css/custom.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=8936
etag: W/"601c20c0-22e8"
last-modified: Thu, 04 Feb 2021 16:28:48 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bixCjK4lc376DM%2F8I9yReeur%2B6U5XFm8QmokH8oIP4IEUI5iJ1bKkEMSdY0PS7jYx9PYLsojjdU54ZBBasqV%2BHR0LtrIKd%2BsVJdpt%2BHroWOHW%2FqAT0rvBZUxd%2FKwfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac30c1356c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15920, version 1.0 Hash3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:03:54 GMT
expires: Fri, 02 May 2025 02:03:54 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 229163
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fundingchoicesmessages.google.com/el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== | 216.58.211.14 | 204 No Content | 0 B |
URL POST HTTP/3fundingchoicesmessages.google.com/el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== IP216.58.211.14:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 168
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-methods: POST, GET, OPTIONS
access-control-max-age: 86400
access-control-allow-origin: https://bowfile.com
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 17:43:17 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: script-src 'nonce-0pcbyYFyRsVfYdPY8AuFPA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport
cross-origin-opener-policy: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjktDikmJw1ZBiqGV4xtQKxE7pM1hDgFiIh2Pr85sb2QRO7DlynQkAycAM6w"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fundingchoicesmessages.google.com/el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== | 216.58.211.14 | 204 No Content | 0 B |
URL POST HTTP/3fundingchoicesmessages.google.com/el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== IP216.58.211.14:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /el/AGSKWxVymA-NpNosLtY2Gp-UygMQ8uuTN4NKJShC0xWXDLnGZ7c9aJhFtXRVYp3aT9UylupLTO0Q4AfDuqkJu92ptdkh0bOLZJwP5z77UvCEJINzirPcqQME69xkAB1Ltwg9VHSG4r75cw== HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 190
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-type: text/html; charset=utf-8
access-control-allow-methods: POST, GET, OPTIONS
access-control-max-age: 86400
access-control-allow-origin: https://bowfile.com
access-control-allow-credentials: true
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 17:43:17 GMT
content-security-policy: script-src 'nonce-DQ4cOEx3Pux1vMAI1zoOUQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorLoggingHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorLoggingHttp/cspreport/allowlist, require-trusted-types-for 'script';report-uri /_/ContributorLoggingHttp/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/ContributorLoggingHttp/web-reports?context=eJzjktDikmLw1pBiqGV4xtQKxE7pM1hDgFiIh2Pr85sb2QQO3Ll8gwkAyxMNGQ"
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Archivo:400,500|Arimo:400,500|Bitter:400,500|EB+Garamond:400,500|Lato|Libre+Baskervill|Libre+Franklin:400,500|Lora:400,500|Google+Sans:regular,medium:400,500|Material+Icons|Google+Symbols|Merriweather|Montserrat:400,500|Mukta:400,500|Muli:400,500|Nunito:400,500|Open+Sans:400,500,600|Open+Sans+Condensed:400,600|Oswald:500|Playfair+Display:400,500|Poppins:400,500|Raleway:400,500|Roboto:400,500|Roboto+Condensed:400,500|Roboto+Slab:400,500|Slabo+27px|Source+Sans+Pro|Ubuntu:400,500|Volkhov&display=swap | 142.250.74.106 | 200 OK | 8.6 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Archivo:400,500|Arimo:400,500|Bitter:400,500|EB+Garamond:400,500|Lato|Libre+Baskervill|Libre+Franklin:400,500|Lora:400,500|Google+Sans:regular,medium:400,500|Material+Icons|Google+Symbols|Merriweather|Montserrat:400,500|Mukta:400,500|Muli:400,500|Nunito:400,500|Open+Sans:400,500,600|Open+Sans+Condensed:400,600|Oswald:500|Playfair+Display:400,500|Poppins:400,500|Raleway:400,500|Roboto:400,500|Roboto+Condensed:400,500|Roboto+Slab:400,500|Slabo+27px|Source+Sans+Pro|Ubuntu:400,500|Volkhov&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash665ef3f87f5fbc0073480b5ae0fc9992 b66903826da3520d96aafe1a34316bfc903a0d3a 4c346bd666218b05339e18355491e2f6041a468dcd67c25b32f6e472e89fde12
GET /css?family=Archivo:400,500|Arimo:400,500|Bitter:400,500|EB+Garamond:400,500|Lato|Libre+Baskervill|Libre+Franklin:400,500|Lora:400,500|Google+Sans:regular,medium:400,500|Material+Icons|Google+Symbols|Merriweather|Montserrat:400,500|Mukta:400,500|Muli:400,500|Nunito:400,500|Open+Sans:400,500,600|Open+Sans+Condensed:400,600|Oswald:500|Playfair+Display:400,500|Poppins:400,500|Raleway:400,500|Roboto:400,500|Roboto+Condensed:400,500|Roboto+Slab:400,500|Slabo+27px|Source+Sans+Pro|Ubuntu:400,500|Volkhov&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 17:43:17 GMT
date: Sat, 04 May 2024 17:43:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL GET HTTP/3fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24984, version 1.0 Hash303a79d404d97ccbb3d803088fc387d8 66e3525b79a1a58a63fe0934f31676dd40c7f033 7e510e61c497d334da21eccda06df5d3a428c9ea94d6903b6138e7c7255aba0f
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTUGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24984
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:39:23 GMT
expires: Sat, 03 May 2025 11:39:23 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:04:54 GMT
content-type: font/woff2
age: 108234
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/icon?family=Material+Icons | 142.250.74.106 | 200 OK | 340 B |
URL GET HTTP/2fonts.googleapis.com/icon?family=Material+Icons IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash2219ad61862f7dfe91e4d28c6f2773fb a75f64db52fa6d62b9fd2495ed3a9892e6447cc8 e9f19befee9f67f791cac006dc851e464924e60a1f9cf0975d49ac3033a15478
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 17:43:16 GMT
date: Sat, 04 May 2024 17:43:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/css/socicon.css | 104.21.37.79 | 200 OK | 12 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/socicon.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (7641), with no line terminators Hash07e4b8874a00408fb4997bca9a7625aa 2c078c0e6d9ee142156a80296d763b013099bcbc bcb499166a81c2c68de921f186c95ed6c29859acf2a07422c15ddb1f4b9e7686
GET /themes/spirit/assets/frontend/css/socicon.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=9838
etag: W/"5f8bebbe-266e"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6V%2FwK6Mf8GJRmPDc7Gp5apQ%2F1u8BJJdJ%2BDmdcykMlUCKL5LzZwQD1lIxpb7T6e5B4v9cmFbwhesFTdgW6IJOplmjpyZTJU95skdSu8Dpc96zYyTj%2Big5dMf8Dm%2F2Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0156c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| thubanoa.com/11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=81 | 139.45.197.242 | 200 OK | 0 B |
URL GET HTTP/2thubanoa.com/11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=81 IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ot=81 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=080052939bce4eb0e2923eae02f83869; oaidts=1714844596
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 17:43:17 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 3b83db7ab14308b0f21636b99ad6bfd5
access-control-expose-headers: X-Sc
set-cookie: OAID=080052939bce4eb0e2923eae02f83869; expires=Sun, 04 May 2025 17:43:17 GMT; secure; SameSite=None
oaidts=1714844596; expires=Sun, 04 May 2025 17:43:17 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/css/bootstrap.min.css | 104.21.37.79 | 200 OK | 77 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/bootstrap.min.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (65319), with CRLF line terminators Hash9b67b9ffbfcbe226a8c413fa740fd91c 7837bd0c312897e46311aaf472947f3e23d75df2 2642f94894419d1cebdc4a010b9380a7403063dd6d28ea8a80bd5ebd01186732
GET /themes/spirit/assets/frontend/css/bootstrap.min.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
etag: W/"5f8bebbe-12c7a"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hj7tTi8fJOPRvVgGhC5GR3ujKTWm6LppQi5dKHISRmbVoe8ZqRHQ3oY1oWEx5nKnADBqELUj3OK5mHj%2FcGTUE9j61SgTqrLQqeYV6WMiRMmWiP2BBjBgrY7zZQLnbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fbfa56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css | 104.21.37.79 | 200 OK | 1.7 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (1691), with no line terminators Hashe044dfeed8526aba9185be5d2dea88ee 15f6daf0abbadbd7a33252510c3511846b866998 aa1407359a1905e27240cd57e7e11a9f26b1c31825b0c31fd731c106a6d99901
GET /themes/spirit/assets/frontend/css/stack-interface.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=3160
etag: W/"5f8bebbe-c58"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 945
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ojusmiz%2Bfjpt%2Bw3TBja%2BasgC0qEoUA7qmx1boz3TogioGibZjpzQytIKVXegRiucm%2F9%2BD7wInRYhtH6QVDOt0cU0KAl3gkC5VRfDPPLLASI3CdIvk8M%2FZSNkoxdQrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fbfd56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| my.rtmark.net/gid.js | 139.45.195.8 | 200 OK | 65 B |
IP139.45.195.8:443
CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashaedf73376be6e0fd3047a2d0ab2cf2c7 e48eb6edcc5661781ff0ebb6398952b3df550c2c 80f261b0a8aa5344968737c321a1a61416210ef2a9dc5d550315f7500c633acb
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 17:43:16 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=080052939bce4eb0e2923eae02f83869; expires=Sun, 04 May 2025 17:43:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| waust.at/c.js | 104.26.4.7 | 200 OK | 13 kB |
IP104.26.4.7:443
CertificateIssuerGoogle Trust Services LLC Subjectwaust.at Fingerprint53:C9:86:25:AF:DA:1C:80:06:5F:64:B6:42:12:10:8C:33:EA:B2:37 ValiditySat, 04 May 2024 02:21:03 GMT - Fri, 02 Aug 2024 02:21:02 GMT
File typeJavaScript source, ASCII text, with very long lines (12997), with no line terminators Hash45bfa6dedd6f7a9ce980b168e0350ad0 82c6b381da9abd8cb3db22ba4868287fe4e976f1 856420e1f59d0096185cdaac909fa54a9f596f52255d7a5f1ac502403f61d3ab
GET /c.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Jan 2023 17:19:36 GMT
etag: W/"63c04128-32c5"
expires: Sun, 05 May 2024 17:02:02 GMT
cache-control: max-age=86400
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 2473
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ArOU9q2ErYM5VCLJdVCzJAsLUt5LB0mBIvOhoE6o7h4Ia6NtYfVtiZRMuV3Lq1Vje%2Bk%2B%2FTOJnGUi1bliEmS2R9SW5XMDjXQ%2Bn6XjcJ0jBK5%2F2BlCZigEB8pA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac38f8156cb-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js | 104.21.37.79 | 200 OK | 87 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/jquery-3.1.1.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (32030), with CRLF line terminators Hash5b5a269bd363e0886c17d855c2aab241 042dd055cd289215835a58507c9531f808e1648a 1cf30e59d21d4ae560af7143f5913efcc8222bcaa4fcc7508eb802b5faa9e94e
GET /themes/spirit/assets/frontend/js/jquery-3.1.1.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-152b9"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TTNr7RL6PF39UWLc%2F9Jl69v7Z9Ns3q9vPLqtX%2FqKCxB6cvUTeVPiFOLBngwuoijs8M47y6aYEtZcrRZadmdRpbToPWk5GvSZlvcJ23%2Bzy69f5%2Fd%2FURu3iajcbw%2BDVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac30c2456c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js | 104.21.37.79 | 200 OK | 14 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/jquery.steps.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (13686), with CRLF line terminators Hash0eef6fe46d14f860d5666d2c7b13a564 7ab5f7deaca2f71efbc3bf9f5ba27b89d4697dbe 95a14a4473ff130eb29f3cc02e135978505655e3c931b6c3726dedd4f558f843
GET /themes/spirit/assets/frontend/js/jquery.steps.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-3626"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DPo6cipBrMc1yMSeSCq0w2ocOoN8pKlNAEbLe44YOO8NyqoEmVv8GwnJGUewhJtI6zhloRfrbS5WU8%2BE2jJaCSARy8jTtS%2FpN6eTVsVMEoypM%2FOqgjYzHe9yhirbPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4b56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| externalde.com/out/xyhkxckud/?ctrl_id=663673b54f579843125190&ctrl_ab=burp&ctrl_ts=1714844597.325&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=whb630h405hpc92138qqp0e2 | 104.21.9.15 | 302 Found | 1.1 kB |
URL GET HTTP/2externalde.com/out/xyhkxckud/?ctrl_id=663673b54f579843125190&ctrl_ab=burp&ctrl_ts=1714844597.325&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=whb630h405hpc92138qqp0e2 IP104.21.9.15:443
CertificateIssuerGoogle Trust Services LLC Subjectexternalde.com Fingerprint0D:2A:5D:DC:29:15:BD:05:1C:8E:F1:C5:82:D4:C0:5C:D6:A5:AB:58 ValiditySat, 27 Apr 2024 14:00:09 GMT - Fri, 26 Jul 2024 14:00:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /out/xyhkxckud/?ctrl_id=663673b54f579843125190&ctrl_ab=burp&ctrl_ts=1714844597.325&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=whb630h405hpc92138qqp0e2 HTTP/1.1
Host: externalde.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sat, 04 May 2024 17:43:17 GMT
content-type: text/html; charset=UTF-8
location: https://lkbx.me/4KqY7?uid=whb630h405hpc92138qqp0e2
referrer-policy: no-referrer
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uj2GCqew9uIJRomB2F%2B10yfvn7QO0sEmFrMfpQ%2FY125Mhk%2FYXsPwWdad5rwBjxnIjIjwpJnhWtaw5W7oelreG6PVtPeDzymNqsbqQn3ZQkeGr6qybSPciSl6rq%2BAT9NiXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ace9f4b0afe-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/datepicker.js | 104.21.37.79 | 200 OK | 21 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/datepicker.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (12694) Hash614058ddc049738b0905aed77acb29d0 694985606c2a3b482156035b1a1bb79aacf757e6 b6919dd92f8162e9d8b6642769217b9472c5bf423cdf82df50301a8af50ee53a
GET /themes/spirit/assets/frontend/js/datepicker.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=20975
etag: W/"5f8bebc0-51ef"
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6WXiq5umpGDeDhVyS%2B%2BPn6tYkVq2Opn7hH3zJ598llw88jHj9IiENUO82%2FVSVfN64J9SfYQgXsUwIMtL9UY7y4sgAaSctuV44yDDS27ewENbGeh2ZfD5GrNUuhUgqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4756c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js | 104.21.37.79 | 200 OK | 6.0 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/smooth-scroll.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (6203), with no line terminators Hashe2cb768d67ad989791afcb5f2865e847 3f744595f23463b6be98a9b767f17ffc513d2b2a 1c03002798c2de182a135a060de3bc4c751bf5e33163369ef266ea484037aa4e
GET /themes/spirit/assets/frontend/js/smooth-scroll.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-178c"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bIgEr31XcDjmdHFS6WbCJc2cgpphlTuF%2FU0t47DseE9j%2BEZC%2BXMXB%2F0ENjuQLufBBHAzTyG75xg37IF58MyhO3etoA3qEjyHYhUgt5Jczj7p%2BfwXRxuID7fKRW970g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4e56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js | 104.21.37.79 | 200 OK | 70 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/jquery.dataTables.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (768), with CRLF line terminators Hash6fda19caa29287e6f584f0557fdeb6d4 40f58160090cd1f022704ee1352b343adb9e73b9 8ef749c3869991924150dc932c48cd57bf69ac25a378bb2e14f8e1733c17406f
GET /themes/spirit/assets/frontend/js/jquery.dataTables.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-1107a"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w5aU1zLezBJm5BfiZWj35JjhufGgQ4%2BYcETb4iO%2FoNoBU5dryjrXYm6jAE961TTtOmqGBwag0LOAr3kNx79DxxqM%2BBC4I7trDC2Fn%2FDOcYV1%2BSaAoxET2lpxMJZRDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c2856c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 09:28:37 GMT
expires: Sun, 04 May 2025 09:28:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 29680
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/granim.min.js | 104.21.37.79 | 200 OK | 11 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/granim.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (10573), with CRLF line terminators Hash714368d20c70f8c91b0a596e128dac07 563954ec3a896fc129d014f01836245829f6d01d e70b27194b8793b68cccee28a6d8a1e39aae2ce5d28d5e71ac204d7a3ac164e3
GET /themes/spirit/assets/frontend/js/granim.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-298b"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sVO4a%2BQgffGveUSfveKgjv9sx5rkwR26eIjkZIaIrKI8qExPqGwxljr31h71lKb%2FrncfzjqTd4SzB%2BxJatzNwY8TZafNeQVRGGAK0XAbTHf1nDf1DltHmCS%2BNjT%2BDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4956c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7209201&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=810679603111665664&ctrl_fetch_dest=iframe&ctrl_id=663673b54f579843125190&ctrl_ts=1714844597.325&ctrl_ab=burp | 143.204.55.41 | 302 Found | 1.1 kB |
URL GET HTTP/2track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1?zoneid=7209201&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=810679603111665664&ctrl_fetch_dest=iframe&ctrl_id=663673b54f579843125190&ctrl_ts=1714844597.325&ctrl_ab=burp IP143.204.55.41:443
CertificateIssuerAmazon Subjecttrack.jefytrack.com FingerprintD9:FC:91:D1:FD:F0:F4:2D:48:E9:47:EE:31:A0:1C:23:D3:9A:29:D8 ValiditySun, 21 Apr 2024 00:00:00 GMT - Tue, 20 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /145f6684-c379-407a-a2eb-922622a713e1?zoneid=7209201&campaignid=8121703&carrier=%7Bcarrier%7D&connectiontype=%7Bconnection.type%7D&isp=%7Bisp%7D&cost=&visitor_id=810679603111665664&ctrl_fetch_dest=iframe&ctrl_id=663673b54f579843125190&ctrl_ts=1714844597.325&ctrl_ab=burp HTTP/1.1
Host: track.jefytrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
content-length: 0
location: https://externalde.com/out/xyhkxckud/?ctrl_id=663673b54f579843125190&ctrl_ab=burp&ctrl_ts=1714844597.325&ctrl_vol_oid=0b046699-9de5-41eb-a62f-5035b56e631b&tg=https://lkbx.me/4KqY7&uid=whb630h405hpc92138qqp0e2
date: Sat, 04 May 2024 17:43:17 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
set-cookie: 145f6684-c379-407a-a2eb-922622a713e1-v4=KZqO2UlMY35y4sxBel2fYeYjDr9I9HbmEsgA0vgidy8; Max-Age=86400; Expires=Sun, 05-May-2024 17:43:17 GMT; Domain=track.jefytrack.com; Path=/; Secure; HttpOnly;SameSite=None
voluum-cid-v4=%7B%22cid%22%3A%22whb630h405hpc92138qqp0e2%22%2C%22caid%22%3A%22145f6684-c379-407a-a2eb-922622a713e1%22%7D; Max-Age=31536000; Expires=Sun, 04-May-2025 17:43:17 GMT; Domain=track.jefytrack.com; Path=/; Secure; HttpOnly;SameSite=None
server: nginx
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JCW72MGeHS_kBUVnNBTdjRzDxCx99jheqqbz_3VuWfHI9qT7ey_fuw==
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js | 104.21.37.79 | 200 OK | 5.4 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/countdown.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5507), with no line terminators Hash0a9988ecd74ad96d83a8e257f5f5e0f1 2f85fdf86f65c0a2a477ef02af754827b7a5a069 c292f5ba20b0ba73fcd40289791f0e0be99c49d83fc5226881da97ad78e9c061
GET /themes/spirit/assets/frontend/js/countdown.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-14f0"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e36Zp%2F3LUk3B0Um8%2FvsMxoc1CP0DvgGDbEZrDB1Kf3rAATG5oGFbbBtn6W7UzTcqY6f7oiS%2BJTLejDzrW9LwqiPZZqLUaSGPFivQ2Lfc9%2F0Xno2hPDTMzLBC%2Bky%2BgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4c56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a | 139.45.197.242 | 200 OK | 413 kB |
URL GET HTTP/2thubanoa.com/27/7552beb94fc0bdff7bbb33cad3d1ab0a IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
File typeJavaScript source, ASCII text, with very long lines (65523) Size413 kB (413423 bytes) Hash297cc248309ba835cf13a1f82fd3f938 1e6f51ce257a0ee53e25280dd44092ed33339847 b2ba9d8b2216d22f8f31a594bc22ee21f60e2b539474a650be1e87dea87d5ed7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /27/7552beb94fc0bdff7bbb33cad3d1ab0a HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=040052f2a1544781f1ec71f74ad39b26; oaidts=1714844596
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 17:43:16 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: bf35dfcbab3e52c9a31e9cac9598a7d9
cache-control: max-age:290304000, public
last-modified: Tue, 09 Apr 2024 03:16:58 GMT
expires: Tue, 09 May 2084 03:16:58 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=mwi8mlu3h5&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3xox&_cb=_dtspv.c | 141.101.120.11 | 200 OK | 51 B |
URL GET HTTP/2t.dtscout.com/pv/?_a=v&_h=bowfile.com&_ss=mwi8mlu3h5&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3xox&_cb=_dtspv.c IP141.101.120.11:443
CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeASCII text, with no line terminators Hash870a0c7d558aff34eb7f7f4f5e995e34 1160f6986ac0613e259447845a64c4828d03542a 657c9958ba882c2140066399c7ef1dfa81cc9af9c0f222349d80b51b32520473
GET /pv/?_a=v&_h=bowfile.com&_ss=mwi8mlu3h5&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=3xox&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: m=1; oa=1; df=1714844596
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:17 GMT
content-type: application/javascript
x-t: 0.16
x-c: 0
expires: Sat, 04 May 2024 17:43:16 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aEwz9yOhwI%2B%2F5ke9iIj14HmLzv5x9vtYORg%2B%2Bm6l1%2BK%2BOmGa56aypOm8VDSs7QcedOCHmWHU4sVO4PJSv3%2FaA1SUBdI1nQlZsV60rmBpm0ARRVdDviKjqd2DaUe4F7Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4acb48fc4e14-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| thubanoa.com/121?rnd=3454770882&z=7209201&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7209201%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D810679603111665664&cln={CELL_NUMBER}&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&bag=ydU9kaAfa6I=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664 | 139.45.197.242 | 302 Found | 1.1 kB |
URL GET HTTP/2thubanoa.com/121?rnd=3454770882&z=7209201&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7209201%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D810679603111665664&cln={CELL_NUMBER}&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&bag=ydU9kaAfa6I=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664 IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /121?rnd=3454770882&z=7209201&b=20830638&c=8121703&var=&varid=0&d=https%3A%2F%2Fsecuredpeacomm.com%2Fin%2F%3Ftg%3Dhttps%3A%2F%2Ftrack.jefytrack.com%2F145f6684-c379-407a-a2eb-922622a713e1%26zoneid%3D7209201%26campaignid%3D8121703%26carrier%3D%7Bcarrier%7D%26connectiontype%3D%7Bconnection.type%7D%26isp%3D%7Bisp%7D%26cost%3D%7Bcost%7D%26visitor_id%3D810679603111665664&cln={CELL_NUMBER}&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&bag=ydU9kaAfa6I=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scm=1; OAID=080052939bce4eb0e2923eae02f83869; oaidts=1714844596
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Sat, 04 May 2024 17:43:17 GMT
content-length: 0
location: https://securedpeacomm.com/in/?tg=https://track.jefytrack.com/145f6684-c379-407a-a2eb-922622a713e1&zoneid=7209201&campaignid=8121703&carrier={carrier}&connectiontype={connection.type}&isp={isp}&cost=&visitor_id=810679603111665664
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: cedfdc4b3ee1672c87c91161dbac4c11
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| thubanoa.com/1?z=7209201 | 139.45.197.242 | 200 OK | 43 kB |
IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
File typeJavaScript source, ASCII text, with very long lines (42427) Hashfe05416391472603a91016b237524dc2 b894997090f8af9a89646b01b9f336e0f7960c80 8cb3e0d3120601948728d25841051a253571c8b28e8b4479917fc2b66043a654
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1?z=7209201 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 17:43:16 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9d969fc2acc3a1b30befcb98a6998551
access-control-expose-headers: X-Sc
x-sc: J_wDWfG4VNWah-rtmy4diZiq0Bei2MPGI-zsBam70wEUf-vbh2uBDDuZM8PCuRhqZFo2YT0fIKC2oatrQRkNGsd-_Ek=
set-cookie: scm=1; expires=Sun, 04 May 2025 17:43:16 GMT; secure; SameSite=None
OAID=040052f2a1544781f1ec71f74ad39b26; expires=Sun, 04 May 2025 17:43:16 GMT; secure; SameSite=None
oaidts=1714844596; expires=Sun, 04 May 2025 17:43:16 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/css/iconsmind.css | 104.21.37.79 | 200 OK | 82 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/iconsmind.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash145bda93bb0b92ed644cdc2a0604e19f 32ed5b9253ed44fd430c0a2897e7ccbea413e7f9 38391d0c01d7fee8c61a80c9b507ef05d0cb76876a42feebded8b06905015d13
GET /themes/spirit/assets/frontend/css/iconsmind.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=102727
etag: W/"5f8bebbe-19147"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z6NEhozgMfLHYfCp5LVFpt6dLGYa8H0AhyD6G%2FLGBitJ1%2F3sPThvpg1mWhddgEKviC4n1NW6MRbplnv3ID7E4D67po6KS6Jq4XcmBK4ZKbPlRXDt6RkZzd1ZMkt0Gg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0856c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/css/jquery.steps.css | 104.21.37.79 | 200 OK | 4.1 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/jquery.steps.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (4143), with no line terminators Hash7c343c721bc783c5b8b2ca81cb940fba 2d340c14e31e158215354cb80e365148e97fcef4 a92a98c5f5245daff1abaff565ae26359f85d4cd1d383ff6e50cd599cf5b3e49
GET /themes/spirit/assets/frontend/css/jquery.steps.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=6019
etag: W/"5f8bebbe-1783"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1g3xUFrUM9KEuNvlPH6JTvmz0EjIqVtkzALC3Xp%2FuT52lrlaKKUMjUlqjWFTNyXhp1htn3OB77ryMACm6OjMa%2BXemNYRiR7WUwfYMaV5u6f2FLam4tv%2F2YCgXoGsTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0a56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/js/scripts.js | 104.21.37.79 | 200 OK | 67 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/scripts.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4787) Hash97096667b5bfc5bf6326cc0e5fb724ee e957d5ef30b7a4e807a13c0e39483607d8f74855 02945e324e7c86a1ee921da7d8fa596a9c11878ccfe839ac70f8badcb674d522
GET /themes/spirit/assets/frontend/js/scripts.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=114862
etag: W/"5f8bebc0-1c0ae"
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 943
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FmmQ7WlZnSLpG3NxIMBTcqUGaNeHswnFnJKa8kydnbzLD5dnwC8GDC1LXUFKR8%2BXNIW55sBsxRapIqv7oUm3tyif7S4BdWK6Vlk%2FpT%2FBlBvO9LFE%2Bpa6s%2FnjjTly3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c4f56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i | 142.250.74.106 | 200 OK | 37 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1572) Hashc2b8ea09ec90a66034e1b61bc1f8e5d4 9558953728cacfc3433ba6281c1b4a58fbbc9d51 1c593f4a688585b14c31e71fc64bfaa81d768984cdf182bca40ba8c524582685
GET /css?family=Open+Sans:200,300,400,400i,500,600,700%7CMerriweather:300,300i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 May 2024 17:43:16 GMT
date: Sat, 04 May 2024 17:43:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js | 104.21.37.79 | 200 OK | 2.7 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/cookieconsent-config.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeHTML document, ASCII text, with very long lines (2799), with no line terminators Hash972004a5d72f442a306ddf1b53fdce96 44f681b52bb154d83271d496d6eac7968289ec73 81418b009ff0ee8c7f9b2f8cb4984a4322775cf60e8bb6b6eb33cc8dcca11fd3
GET /themes/spirit/assets/frontend/js/cookieconsent-config.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=4182
etag: W/"65e25d61-1056"
last-modified: Fri, 01 Mar 2024 22:57:37 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GnnOu34z7wlzCb5RTCmHNBB9MqugjHuY71xC%2F19w1yMdlUoDp50HLRBzCUpv34qNMSRuLNR9utoEsjRbojo3rsuI%2FwoHsmuwp%2FtZ8292t9mt0DaPyxvoZaGFKuzDJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac30c2256c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 | 104.21.37.79 | 200 OK | 4.3 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 4292, version 1.0 Hashae072782b361d2afdbf43db08d3cfb73 f3db2e65b53d97491672f8631e21d6d05905cc88 31205df908aed9881f6d2d3ae7d38975252bf99e38268978b4236dc3c314754b
GET /themes/spirit/assets/frontend/fonts/stack-interface.woff2?33839631 HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/themes/spirit/assets/frontend/css/stack-interface.css
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:16 GMT
content-type: font/woff2
content-length: 4292
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
etag: "5f8bebc0-10c4"
cache-control: public, max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TStrgeraMemOOd1ZzHvGu7N%2FA%2BD8zH81Nb3dRSD6AjlYeW3AZV64zKP4yXYuz922iEgaRW3S2T8SB1YBRTEgzJ39KDT8m0oY2mSX2ywtJ%2B%2ByArDKEBhjDbZuDr%2BGbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ea4ac668a756c3-OSL
alt-svc: h3=":443"; ma=86400
|
|
| t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2FaimY&j= | 141.101.120.11 | 200 OK | 2.4 kB |
URL GET HTTP/2t.dtscout.com/i/?l=https%3A%2F%2Fbowfile.com%2FaimY&j= IP141.101.120.11:443
CertificateIssuerGoogle Trust Services LLC Subjectdtscout.com Fingerprint69:9E:FB:2A:E2:0B:6B:60:8A:15:AF:4F:5A:3D:94:5B:68:70:F4:21 ValiditySun, 17 Mar 2024 14:35:30 GMT - Sat, 15 Jun 2024 14:35:29 GMT
File typeJavaScript source, ASCII text, with very long lines (2547), with no line terminators Hash402e7bcb0dfb7d94bdf69dbd178af02c 0648559457c567c8cc8cf59e3ffadce7f4f054ea 766973eb57352bd5a84dc0bc9bcc2afeee78579533ea7592d9dcb4c4192989c4
GET /i/?l=https%3A%2F%2Fbowfile.com%2FaimY&j= HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:16 GMT
content-type: application/javascript
x-s: mtl1
set-cookie: m=1; Domain=dtscout.com; Expires=Sat, 04-May-2024 19:06:36 GMT; Max-Age=5000; Path=/; SameSite=None; Secure
oa=1; Domain=dtscout.com; Expires=Sat, 04-May-2024 21:43:16 GMT; Max-Age=14400; Path=/; SameSite=None; Secure
df=1714844596; Domain=dtscout.com; Expires=Mon, 12-Aug-2024 17:43:16 GMT; Max-Age=8640000; Path=/; SameSite=None; Secure
x-t: 0.263
expires: Sat, 04 May 2024 17:43:15 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QySUm1r%2F0KtNShKIZcn7UBoeUqGckpcqqJdgG9Z6oce%2Fp2LH8UFt%2BQagGjYho1I33Q7a4%2BG8S3wU1HZz3iFqfykhi4Klp6cFDEV%2F6hkggl5YRQn1oXs7i2uRIco1YUo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac87ede4e14-HEL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| dtsedge.com/ping/?t=0&d=bowfile.com | 172.67.157.200 | 200 OK | 0 B |
URL GET HTTP/2dtsedge.com/ping/?t=0&d=bowfile.com IP172.67.157.200:443
CertificateIssuerGoogle Trust Services LLC Subjectdtsedge.com Fingerprint60:33:FF:09:8A:CE:9C:7C:45:9F:45:A9:29:98:08:1A:0D:6D:7D:B1 ValidityFri, 22 Mar 2024 13:23:30 GMT - Thu, 20 Jun 2024 13:23:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ping/?t=0&d=bowfile.com HTTP/1.1
Host: dtsedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:17 GMT
content-type: application/javascript
x-t: 0.55
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7D4z3AAdD0539y3XEXmUMJN83A6W6zcZGNpLDg%2Ft%2F1IUJIKDSGPUehYJAc7KpwzfyIiU6wKKocjBuk3qEIcoHSw%2BC9fsPEQ7OiX3mmlp5ByaJMNwfdiT%2BG8RmUZfXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4acb4ebfb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lkbx.me/4KqY7?uid=whb630h405hpc92138qqp0e2 | 47.89.248.255 | 200 OK | 1.1 kB |
URL GET HTTP/2lkbx.me/4KqY7?uid=whb630h405hpc92138qqp0e2 IP47.89.248.255:443 ASN#45102 Alibaba US Technology Co., Ltd.
CertificateIssuerDigiCert Inc Subjectlkbx.me Fingerprint85:1C:F3:96:31:0D:EC:E9:85:9D:6E:27:5F:AE:1D:6C:F2:9B:F5:BD ValidityMon, 27 Nov 2023 00:00:00 GMT - Tue, 26 Nov 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (1129), with no line terminators Hash51bad58c47837c76ffa700d728b8b1cf 362e6dd160ef5e973240e7f3d8aaa0411547cbb1 0ea6b2ef7d4eeae3630e99cb9a140ea7e3277f3e0998b9d777db93303a1e2cb8
GET /4KqY7?uid=whb630h405hpc92138qqp0e2 HTTP/1.1
Host: lkbx.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 17:43:18 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: discuz_2132_saltkey=EyFKL92O; expires=Mon, 03-Jun-2024 17:43:18 GMT; Max-Age=2592000; path=/; secure; httponly
discuz_2132_lang=en; path=/; secure
discuz_2132_lang=en; path=/; secure
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| lh3.googleusercontent.com/xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60 | 142.250.74.97 | 200 OK | 2.9 kB |
URL GET HTTP/2lh3.googleusercontent.com/xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60 IP142.250.74.97:443
CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File typePNG image data, 277 x 60, 8-bit colormap, non-interlaced Hash59182fc87cde731b4778442af528d46f ae17a126774d8c3bf9bf9e9c08e0f6c32b91c8cb 4411c5deef208cec3853541ef2fe7ec0743105aa8c7f1e3bbbff08bd11a10f3a
GET /xYnjopJHeZyklvZ4_XScrYPL3gmjSFzOnjYUA2m9A-OH7y6ve6Bv7DBPf-W7UnkwmNuIe-_fXsoi1N_DE8x3mdJozlAJjA64nB8uzECa1nPORMdD1mK2=h60 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.png"
x-content-type-options: nosniff
server: fife
content-length: 2936
x-xss-protection: 0
date: Sat, 04 May 2024 16:07:05 GMT
expires: Sun, 05 May 2024 16:07:05 GMT
cache-control: public, max-age=86400, no-transform
age: 5772
etag: "v1"
content-type: image/png
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js | 104.21.37.79 | 200 OK | 54 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/flickity.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (32032), with CRLF line terminators Hash8c1e666176ac7bdce67d58b45823ffac 75947e4316427ce0c5e33300aeb4dc4d7d54dd09 c0b706b9b1ca12b631496228a0eb0fe15ccb14f21ab554f6c4b4f20474e4d3a6
GET /themes/spirit/assets/frontend/js/flickity.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-d271"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QDWYWcKPRfdqQgLDPmKRLgyLOt%2Fx099DIw6Mj7OpQgtFjvTe2YTdh%2BvSH%2BcJb3RnEskeXRoEGb83AGB9HudkHDyuO7HDif%2FNoIWEeirQh4Iwdsb%2Bdzm9zGYkOwi5hA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c3856c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fundingchoicesmessages.google.com/f/AGSKWxUKvpJCARR9FedpgopC8_oXT9HepKjOS1H4bNtks3yh5GIB8guG38myrbosoWhrkog0aJ2g5O2e27RGlqRdC2-eR3L4M-_PfhOxh2671ZcqGQrl34klAdBNvvb05Ao2CBg4K6bmlw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0ODQ0NTk3LDUyMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL2Jvd2ZpbGUuY29tL2FpbVkiLG51bGwsW1s4LCJGaUpsM0V0cU54TSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ | 216.58.211.14 | 200 OK | 378 kB |
URL GET HTTP/3fundingchoicesmessages.google.com/f/AGSKWxUKvpJCARR9FedpgopC8_oXT9HepKjOS1H4bNtks3yh5GIB8guG38myrbosoWhrkog0aJ2g5O2e27RGlqRdC2-eR3L4M-_PfhOxh2671ZcqGQrl34klAdBNvvb05Ao2CBg4K6bmlw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0ODQ0NTk3LDUyMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL2Jvd2ZpbGUuY29tL2FpbVkiLG51bGwsW1s4LCJGaUpsM0V0cU54TSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ IP216.58.211.14:443
CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Size378 kB (377470 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /f/AGSKWxUKvpJCARR9FedpgopC8_oXT9HepKjOS1H4bNtks3yh5GIB8guG38myrbosoWhrkog0aJ2g5O2e27RGlqRdC2-eR3L4M-_PfhOxh2671ZcqGQrl34klAdBNvvb05Ao2CBg4K6bmlw==?fccs=W251bGwsbnVsbCxudWxsLG51bGwsbnVsbCxudWxsLFsxNzE0ODQ0NTk3LDUyMDAwMDAwXSxudWxsLG51bGwsbnVsbCxbbnVsbCxbN11dLCJodHRwczovL2Jvd2ZpbGUuY29tL2FpbVkiLG51bGwsW1s4LCJGaUpsM0V0cU54TSJdLFs5LCJlbi1VUyJdLFsxOSwiMSJdLFsxNywiWzBdIl1dXQ HTTP/1.1
Host: fundingchoicesmessages.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
timing-allow-origin: *
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 04 May 2024 17:43:17 GMT
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/ContributorGlobalRouterHttp/cspreport, script-src 'nonce-dQwTkeU_8zuXlLWCYsggUA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/ContributorGlobalRouterHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/ContributorGlobalRouterHttp/cspreport/allowlist
reporting-endpoints: default="/_/ContributorGlobalRouterHttp/web-reports?context=eJzjytDikmII1pBiOHHrNtMFID7vdIfpOhDXMjxjagViA43nTBZALPH1JZMWEMc8n86aAsRO6TNYQ4DYp34GaxwQt948xzodiE8uOM96EYiT_p1nLQHinYsvsB4EYiEejq3Pb25kE7gw4_0VRgCuHTVO"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bowfile.com/themes/spirit/assets/frontend/css/flickity.css | 104.21.37.79 | 200 OK | 1.9 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/flickity.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (1862), with no line terminators Hash1943c6f2f395c5338f1621d895eac4a3 488fc94f029cf9d3a2a75df7207037e33dc1ee70 2a0ec4432ad208cbbf8d38c894e7b299f3b4b4560f976f70bf7c5a7f22a0b9cb
GET /themes/spirit/assets/frontend/css/flickity.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=2521
etag: W/"5f8bebbe-9d9"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jIVaY6wimA%2BHJKa0CAISEokGlQ%2FPp%2FiUnnfVIyad4Og7sYrNL9S7NQLXdh65UdwVjE50hiYWq%2F9eFfhutz2RHJwVgQp3vLjigd21IgXrT3o7RrWtxr79cjUvOQN%2B%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0656c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/js/typed.min.js | 104.21.37.79 | 200 OK | 3.9 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/js/typed.min.js IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4016), with no line terminators Hash774397f3c0e528c9236aa2aa52e7f00d 8827256327d046805954084e9b5002247e073ceb d2b259a9bb83973272b1e93c242646451df16bc3860ac6c8f3689df92ad98140
GET /themes/spirit/assets/frontend/js/typed.min.js HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 18 Oct 2020 07:16:16 GMT
vary: Accept-Encoding
etag: W/"5f8bebc0-f6d"
cache-control: public, max-age=14400
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FTvqWwJvCh2i3087UKl%2FWf17hMX%2FWepKXckh%2F%2BIQe1eSg1sDkPToF9V5%2B8mD0%2Fkz5aE1uRbtFVbaf0tW7m9FrS6%2FJyL1gYVb7h5HmLvMzC%2FVmHHI1f9eH%2FfsaLrf1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac31c3c56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| bowfile.com/themes/spirit/assets/frontend/css/cookiealert.css | 104.21.37.79 | 200 OK | 12 kB |
URL GET HTTP/3bowfile.com/themes/spirit/assets/frontend/css/cookiealert.css IP104.21.37.79:443
CertificateIssuerGoogle Trust Services LLC Subjectbowfile.com Fingerprint29:2A:B9:CD:50:68:72:91:6C:34:2E:78:F3:87:53:D1:0F:F5:26:DB ValidityWed, 13 Mar 2024 06:43:55 GMT - Tue, 11 Jun 2024 06:43:54 GMT
File typeASCII text, with very long lines (12014), with no line terminators Hashc03488f55b032d33ba579bb11b80f2ca 10737330b72796eaa3b3aaf044a0e7d5f9fd15f3 b712033ea1c370616c3105391e98e4867cea0159be8444ddd20249ea9888c950
GET /themes/spirit/assets/frontend/css/cookiealert.css HTTP/1.1
Host: bowfile.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/aimY
Cookie: filehosting=5de9ad37a95e7740c995df9e8b97c4f3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 17:43:15 GMT
content-type: text/css
cache-control: public, max-age=14400
cf-bgj: minify
cf-polished: origSize=12369
etag: W/"5f8bebbe-3051"
last-modified: Sun, 18 Oct 2020 07:16:14 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 944
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sDNQHnfPW5AK6UuHRjD9HrXWQUozT4rupvQc2oQzehno4CAx1pwb4Fp5gbOYZ0YrbKkEzTDRWeqsbHxsYLcaHmuliLzYwjCJ6Urq%2BXBeFy5CtULrTL0b1LkCw6Y6kQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ea4ac2fc0d56c3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| thubanoa.com/11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 | 139.45.197.242 | 200 OK | 0 B |
URL GET HTTP/2thubanoa.com/11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectthubanoa.com FingerprintBE:0B:5D:E0:42:7E:07:23:0E:F0:48:66:B2:B6:34:A3:E5:89:F8:68 ValidityThu, 18 Apr 2024 23:34:42 GMT - Wed, 17 Jul 2024 23:34:41 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /11?rnd=1144491113&z=7209201&b=20830638&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=0esM5SXpHps3-5V9134saJQZW55zX1rPGIAT02utS0gKrqgW0olIlFctw_Oy7RmQMW2YQzzighpvfkSrRYryydrUbTtJfIN-SwkvXn3OYCWYk3copKzxSXDF2YSvnB5q5h9ddF6bm9Ao2cMnRWadAjHKByAYETa7XLaEG7MOSdhDTzYANUJjzOhmA5UBCH0OaBO5iG6wTEeScTStTyRrhiawGIItebne5D4aqEHoSSKBjpaV4y_7anzNP_fU8AOBq5LDJmH95d2UTevjuB7Lw_TZZ0xFM1s78uXaP29vR2HC7PCSgX8bYHpufBkEkrAB6vQQUtsUBJdrgrXbFdghh85JYCNXYwVyuuhBx641oucMvEDW6RKD2BEe6Zvb_jON7kxJtunnx1k6-Lnx1oU0vzVdv_L371VJwUNkedis4UKgb2I5VL872qFeC436pw8PxIj7YZJdxoQckFKbLMkY-oQoYAShd0zYtIROYE7XczutrtX84Z8XMR4i6iq_PcA6xB_vWYrvV-q3jeEWfj-OIYIxbI-o2bCS2Se_AWfFEBEo0Xxj0exSVqgU5YNy1Vx6-KtrRZEwGKne_XJoJ-TEwsY27IfmxKuz3zAD3eC5wSXmkhOh-YnnOCt0USZZzC9FnFaiW4XDXXeQt5zWEhxuCHVroJEVK5kHbj7FVy1WcOI=&ruid=fa5258fe-c9d9-467c-99eb-afefff2b2216&subid=810679603111665664&ng=0&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fbowfile.com%2FaimY&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bowfile.com
DNT: 1
Connection: keep-alive
Referer: https://bowfile.com/
Cookie: scm=1; OAID=080052939bce4eb0e2923eae02f83869; oaidts=1714844596
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sat, 04 May 2024 17:43:20 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://bowfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: bb1992bbdb42e62b272b86726e02763d
access-control-expose-headers: X-Sc
set-cookie: OAID=080052939bce4eb0e2923eae02f83869; expires=Sun, 04 May 2025 17:43:20 GMT; secure; SameSite=None
oaidts=1714844596; expires=Sun, 04 May 2025 17:43:20 GMT; secure; SameSite=None
oaidvc=1; expires=Sun, 04 May 2025 17:43:20 GMT; secure; SameSite=None
CNT=1_v1_rtk9AQEAAACHTQAA; expires=Sat, 04 May 2024 18:43:20 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|