urlquery - report: megaload5.sbs/Bobawitch-Pack-2022.rar

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
ocsp.sectigo.com (1)	487	2019-11-29 11:50:24 UTC	2021-09-17 20:05:40 UTC	104.18.32.68
img-getpocket.cdn.mozilla.net (5)	1631	2018-06-21 23:36:00 UTC	2020-02-19 04:43:25 UTC	34.120.237.76
fonts.gstatic.com (3)	0	2014-09-09 00:40:21 UTC	2022-11-29 07:36:52 UTC	216.58.207.227	Domain (gstatic.com) ranked at: 540
r3.o.lencr.org (6)	344	No data	No data	23.36.76.226
cdnjs.cloudflare.com (1)	235	2015-04-17 20:46:33 UTC	2022-11-29 07:25:31 UTC	104.17.25.14
fonts.googleapis.com (1)	8877	2013-06-10 20:14:26 UTC	2022-11-29 09:35:58 UTC	142.250.74.106
megafiles.link (18)	0	2022-09-14 17:45:23 UTC	2022-11-28 06:55:14 UTC	82.221.129.60	Unknown ranking
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-11-29 05:48:55 UTC	34.102.187.140
megaload5.sbs (2)	0	2022-11-14 21:45:28 UTC	2022-11-14 21:45:28 UTC	198.187.31.100	Unknown ranking
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-11-29 05:51:44 UTC	34.117.237.239
ocsp.pki.goog (7)	175	2018-07-01 06:43:07 UTC	2020-05-02 20:58:16 UTC	142.250.74.131
www.googletagmanager.com (1)	75	2013-05-22 02:07:37 UTC	2022-11-29 06:48:06 UTC	142.250.74.168
s3.amazonaws.com (2)	0	2020-06-24 21:42:22 UTC	2022-11-29 10:09:20 UTC	54.231.232.200	Unknown ranking
dwmsurhf1svv8.cloudfront.net (5)	0	2022-11-28 06:37:31 UTC	2022-11-29 09:38:24 UTC	143.204.42.146	Unknown ranking
content-signature-2.cdn.mozilla.net (1)	1152	No data	No data	34.160.144.191
www.google-analytics.com (1)	40	2012-10-03 01:04:21 UTC	2022-11-29 08:33:49 UTC	142.250.74.110
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2020-05-03 10:09:39 UTC	52.43.58.150
ocsp.sca1b.amazontrust.com (2)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.158
dyodrs1kxvg6o.cloudfront.net (1)	0	2022-11-24 10:03:53 UTC	2022-11-28 21:35:35 UTC	143.204.42.93	Unknown ranking
ocsp.digicert.com (2)	86	2012-05-21 07:02:23 UTC	2020-05-02 20:58:10 UTC	93.184.220.29

Scan Date	Severity	Indicator	Comment
2022-11-29	2	dyodrs1kxvg6o.cloudfront.net/0cd6e21.js	Malware
2022-11-29	2	dwmsurhf1svv8.cloudfront.net/public/external/v2/html.2950767.78f94.0.js	Phishing

Date	UQ / IDS / BL	URL	IP
2023-02-28 20:48:04 +0000	0 - 0 - 7	techsapk.com/IIAO.php	198.187.31.100
2023-02-28 17:10:38 +0000	0 - 0 - 7	techsapk.com/IIAO.php	198.187.31.100
2023-02-28 13:38:51 +0000	0 - 0 - 7	techsapk.com/IIAO.php	198.187.31.100
2023-02-28 10:02:48 +0000	0 - 0 - 7	techsapk.com/IIAO.php	198.187.31.100
2023-02-28 06:46:57 +0000	0 - 0 - 3	techsapk.com/IIAO.php?e=Repellenduset28194084 (...)	198.187.31.100

Date	UQ / IDS / BL	URL	IP
2023-04-01 05:25:40 +0000	0 - 0 - 6	scrapella.com/bemob/pr	185.61.153.111
2023-04-01 05:15:53 +0000	0 - 0 - 3	wintowincompany.com/	63.250.43.130
2023-04-01 05:09:04 +0000	0 - 0 - 1	cementminister.com/	162.255.119.243
2023-04-01 04:59:33 +0000	0 - 2 - 3	dexvsw.xyz/	198.54.115.44
2023-04-01 04:58:18 +0000	0 - 11 - 8	nude-leaks.com/tag/photos-divulguees	199.85.210.84

Date	UQ / IDS / BL	URL	IP
2022-11-29 22:13:26 +0000	0 - 0 - 2	megaload5.sbs/Bobawitch-Pack-2022.rar	198.187.31.100

Date	UQ / IDS / BL	URL	IP
2022-11-04 03:36:36 +0000	0 - 0 - 3	megasend.cc/?file=Ashley-Serrano-Pack-2022.rar	172.67.179.231
2022-11-01 22:31:02 +0000	0 - 0 - 3	megafiles.link/download/?file=Pamibaby-Pack-2 (...)	82.221.129.60
2022-10-31 23:07:44 +0000	0 - 0 - 3	megafiles.link/download/?file=Skirby-Pack-2022.rar	82.221.129.60
2023-03-29 08:52:50 +0000	0 - 2 - 0	megashare.cc/?file=Arssenya-Pack-2022.rar	172.67.180.99
2022-10-31 23:07:51 +0000	0 - 0 - 3	megafile.cloud/?file=Skirby-Pack-2022.rar	172.67.155.187

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7469 Expires: Wed, 30 Nov 2022 00:17:44 GMT Date: Tue, 29 Nov 2022 22:13:15 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a5daf4dc99951793ae2315d4795e8146 Sha1: 4427507ca4d3a5632cc8f598afbc85e2195d00bd Sha256: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9569 Expires: Wed, 30 Nov 2022 00:52:44 GMT Date: Tue, 29 Nov 2022 22:13:15 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6d9d34c96b9a826ae5676640c966469c Sha1: 8052a16d41a637e420478b7de1ff5a2dc951fccd Sha256: f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a 93.184.220.29 HTTP/1.1 200 OK Content-Type: text/html Accept-Ranges: bytes Age: 2173 Cache-Control: max-age=132849 Date: Tue, 29 Nov 2022 22:13:15 GMT Etag: "6385df6f-1d7" Expires: Thu, 01 Dec 2022 11:07:24 GMT Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 55 --- Additional Info --- Magic: HTML document, ASCII text Size: 55 Md5: 9f073354411bbaf7a319b1519f10b4b7 Sha1: 571498f38548829bf186f49f5be9d5fa6e689a68 Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: wtczh+ETbHuTSVYtum5fULuAbBHZW/Os/x56kNnMuSIDlfMRXES7IkYHuYsWVAIr2tGdDssYa8E= x-amz-request-id: VCJC5GHVHAB5Q0K0 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 29 Nov 2022 21:44:58 GMT age: 1697 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 9ebddc2b260d081ebbefee47c037cb28 Sha1: 492bad62a7ca6a74738921ef5ae6f0be5edebf39 Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 29 Nov 2022 21:19:38 GMT cache-control: public,max-age=3600 age: 3217 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 30db107dcf4380cef05efea409c2e6a3 Sha1: 96e6a306fbc07299aba64e5c14e2bfca35872fa9 Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /Bobawitch-Pack-2022.rar HTTP/1.1 Host: megaload5.sbs User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: megaload5.sbs/Bobawitch-Pack-2022.rar FQDN: megaload5.sbs IP: 198.187.31.100 HASH: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982 198.187.31.100 HTTP/1.1 301 Moved Permanently content-type: text/html keep-alive: timeout=5, max=100 content-length: 707 date: Tue, 29 Nov 2022 22:13:15 GMT server: LiteSpeed location: https://megaload5.sbs/Bobawitch-Pack-2022.rar x-turbo-charged-by: LiteSpeed --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 707 Md5: 1304294c0823ca486542ba408ed761e3 Sha1: b2a70fb2d810ca13985882e6981f33998823e83e Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Tue, 29 Nov 2022 22:13:15 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 34.102.187.140 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 34.102.187.140 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 29 Nov 2022 22:11:13 GMT cache-control: public,max-age=3600 age: 122 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sectigo.com/ FQDN: ocsp.sectigo.com IP: 104.18.32.68 HASH: 5b14f5fff19f07ea437b45344f27ce83746a89126199ab85300d6c0c579a5a9a 104.18.32.68 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:15 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Sat, 26 Nov 2022 10:52:28 GMT Expires: Sat, 03 Dec 2022 10:52:27 GMT Etag: "f3a765b4264ae829ed2be740a1c14defc45f13d6" Cache-Control: max-age=304151,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 771eb0857a4a0af6-OSL --- Additional Info --- Magic: data Size: 471 Md5: 55887e57179e7c6c2549f1fb32910cb7 Sha1: f3a765b4264ae829ed2be740a1c14defc45f13d6 Sha256: 5b14f5fff19f07ea437b45344f27ce83746a89126199ab85300d6c0c579a5a9a
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a 93.184.220.29 HTTP/1.1 200 OK Content-Type: text/html Accept-Ranges: bytes Age: 5768 Date: Tue, 29 Nov 2022 22:13:15 GMT Etag: "63866b87-37" Last-Modified: Tue, 29 Nov 2022 20:28:55 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 55 --- Additional Info --- Magic: HTML document, ASCII text Size: 55 Md5: 9f073354411bbaf7a319b1519f10b4b7 Sha1: 571498f38548829bf186f49f5be9d5fa6e689a68 Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
GET /Bobawitch-Pack-2022.rar HTTP/1.1 Host: megaload5.sbs User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: megaload5.sbs/Bobawitch-Pack-2022.rar FQDN: megaload5.sbs IP: 198.187.31.100 HASH: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982 198.187.31.100 HTTP/2 301 Moved Permanently content-type: text/html content-length: 707 date: Tue, 29 Nov 2022 22:13:15 GMT server: LiteSpeed location: https://megafiles.link/download/Bobawitch-Pack-2022.rar x-turbo-charged-by: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 707 Md5: 1304294c0823ca486542ba408ed761e3 Sha1: b2a70fb2d810ca13985882e6981f33998823e83e Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: nouaLWORZgVBVB5ePBqI5w== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.43.58.150 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.43.58.150 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: DSGCoNPB5qPDa/Lw4k1ZoZIVZ0c= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /download/Bobawitch-Pack-2022.rar HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: megafiles.link/download/Bobawitch-Pack-2022.rar FQDN: megafiles.link IP: 82.221.129.60 HASH: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982 82.221.129.60 HTTP/2 301 Moved Permanently content-type: text/html content-length: 707 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed location: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 707 Md5: 1304294c0823ca486542ba408ed761e3 Sha1: b2a70fb2d810ca13985882e6981f33998823e83e Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: cdnjs.cloudflare.com/ajax/libs/jquery/3.5.1/jquery.min.js FQDN: cdnjs.cloudflare.com IP: 104.17.25.14 HASH: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82 104.17.25.14 HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Tue, 29 Nov 2022 22:13:16 GMT content-length: 27958 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb09ed3-15d84" last-modified: Mon, 04 May 2020 23:01:39 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 15203700 expires: Sun, 19 Nov 2023 22:13:16 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=drSVZk5RBEvw56QH%2FGQvS4jXL436eLAbS%2BG7Y%2FpuA178nHndhbicPtSYSe0j%2B5qF1QT8OX1bUjxnsx9xZOlFVqJKXIpBArAoagfjZpQqB%2Frw9Z9wQaQoZqmEoI5ZPgl9RqXxqY%2BG"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 771eb08ceeecfab8-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65451) Size: 27958 Md5: 4b5f47439b640180cc3450f7de05d0d8 Sha1: 5a0dc9bcab80ddc409dd35fcb00a88fe6846fee2 Sha256: 1f85e8b327f42c17c025d69849914068536d9aa95412fe473ae90ffb2f4ebd82
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f50fd635895870df33a17fe377a6a038 Sha1: dd65dfbbc810b095432cfd59f971af04a9e31ab7 Sha256: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:16 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 07b8296613be09905e34b09dce4a203f Sha1: c97c67e8c4b1247423d089c028c31e05734f124e Sha256: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
GET /download/img/folder.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/folder.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 1fb833bcb649adad8c60a197f18ba6a593054809e170ad412cbc55a3b1f8dcfb 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 625 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 164 x 152, 8-bit colormap, non-interlaced\012- data Size: 625 Md5: 643dacdb5be52ecf48f800d5c9f141c4 Sha1: 4eef0e099b98f030ec188ecf3e70be2b2de12f27 Sha256: 1fb833bcb649adad8c60a197f18ba6a593054809e170ad412cbc55a3b1f8dcfb
GET /download/img/avast.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/avast.png FQDN: megafiles.link IP: 82.221.129.60 HASH: ed94337ebb41e7c2ebd1e757ad311052f81dbaf12e58f5b4c758efaac8e7657a 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 13731 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 13731 Md5: 32ac1242329f986c3e8d50c8406b7b1e Sha1: 7d267f08c4c05fd3a0892daf6a098ac768738e36 Sha256: ed94337ebb41e7c2ebd1e757ad311052f81dbaf12e58f5b4c758efaac8e7657a
GET /download/img/bitdefender.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/bitdefender.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 42e3aa54cfacaa5849859a70cb2d5f26e77df19f59e6c83e0077d072efb9a5b7 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 14065 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 14065 Md5: 1ab5ea800c08c6227a774ba1375d152c Sha1: 67023abc4c85bb6b3852463b1d4ab1ad19a8b7fd Sha256: 42e3aa54cfacaa5849859a70cb2d5f26e77df19f59e6c83e0077d072efb9a5b7
GET /gtag/js?id=UA-229666940-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.googletagmanager.com/gtag/js?id=UA-229666940-1 FQDN: www.googletagmanager.com IP: 142.250.74.168 HASH: 96ad18d93f32e5ad7363184cd1d2f06871d20dd681887220481fdee844c6e3ed 142.250.74.168 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 29 Nov 2022 22:13:16 GMT expires: Tue, 29 Nov 2022 22:13:16 GMT cache-control: private, max-age=900 last-modified: Tue, 29 Nov 2022 21:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43612 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1921) Size: 43612 Md5: 9862e1f28ad31eecb9d31430cc1ed881 Sha1: be8fcae5d30a1d4d99be61ab2c8013dd759524db Sha256: 96ad18d93f32e5ad7363184cd1d2f06871d20dd681887220481fdee844c6e3ed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f50fd635895870df33a17fe377a6a038 Sha1: dd65dfbbc810b095432cfd59f971af04a9e31ab7 Sha256: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
GET /download/img/eset.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/eset.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 2458c85dc999c45d28ec604053133f436cfa840410c0ba7bf6e38527bbbecd14 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 20375 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 20375 Md5: a35447096549417ba1364c4ca4570ecf Sha1: 928d7c5451d688dc274ad44034254d7135475104 Sha256: 2458c85dc999c45d28ec604053133f436cfa840410c0ba7bf6e38527bbbecd14
GET /download/img/fsecure.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/fsecure.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 016d83a08d0f2e6599f446b26a77e0911539061448f480eb41e5fe531f112f9c 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 15296 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 15296 Md5: fd1de2c7ffc77143631d9d05dd603cb1 Sha1: 6cff3b7c59e622a829349d3e3962277ad7538b69 Sha256: 016d83a08d0f2e6599f446b26a77e0911539061448f480eb41e5fe531f112f9c
GET /download/img/kaspersky.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/kaspersky.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 892c583ba92958d2c298f987e172206c1a5a3d25bd1d4e840b5bc29f5e728c96 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 13426 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 13426 Md5: 2d73034a7e5cba36606a0bb1bffcf676 Sha1: e5dc6f6f5519240595ec14bcd90904f6d428d61f Sha256: 892c583ba92958d2c298f987e172206c1a5a3d25bd1d4e840b5bc29f5e728c96
GET /download/img/macafee.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/macafee.png FQDN: megafiles.link IP: 82.221.129.60 HASH: dc376d6e221d72ef957c74cb25be593ea06b576214a35c975a690b2e554e54e1 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 17777 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 17777 Md5: 177ae9550c0a16f3f0de68fda078a778 Sha1: 44ca071367056ad31ac153cf4f322454c82efd30 Sha256: dc376d6e221d72ef957c74cb25be593ea06b576214a35c975a690b2e554e54e1
GET /download/img/panda.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/panda.png FQDN: megafiles.link IP: 82.221.129.60 HASH: d4d271c8d73e9e8d169894c74560e70415fee5618d7af4217931b29a1bd4da10 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 13331 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 13331 Md5: 891507bdce8da1f2f8380770ec9db34a Sha1: 5ad5fd89f87c57e0a36906c6935927c4c83cadcf Sha256: d4d271c8d73e9e8d169894c74560e70415fee5618d7af4217931b29a1bd4da10
GET /download/img/webroot.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/webroot.png FQDN: megafiles.link IP: 82.221.129.60 HASH: b9c823dd70eaf6a79ee7f6b48e3ec9e13951c570ad7c95495fc0b3e2c0487a81 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 15034 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 15034 Md5: 25f681adb6e3f6522056fe80df0c75bd Sha1: 851de93d039237a4ccd680cd9c8bfb3bffcf49f3 Sha256: b9c823dd70eaf6a79ee7f6b48e3ec9e13951c570ad7c95495fc0b3e2c0487a81
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 07b8296613be09905e34b09dce4a203f Sha1: c97c67e8c4b1247423d089c028c31e05734f124e Sha256: c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
GET /download/img/trendmicro.png HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/trendmicro.png FQDN: megafiles.link IP: 82.221.129.60 HASH: 0c94aabca6e2c41b78dbb2aa7e36c74e2285492d8e3a67288dd4e495fb680087 82.221.129.60 HTTP/2 200 OK content-type: image/png cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:16 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 16877 date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data Size: 16877 Md5: 875d58eea958e57504086e0d578a974c Sha1: 99cc83aa37c71bbd56a47be2fc3ac626ec4697af Sha256: 0c94aabca6e2c41b78dbb2aa7e36c74e2285492d8e3a67288dd4e495fb680087
GET /download/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/cdn-cgi/scripts/7d0fa10a/cloudf (...) FQDN: megafiles.link IP: 82.221.129.60 HASH: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982 82.221.129.60 HTTP/2 301 Moved Permanently content-type: text/html content-length: 707 date: Tue, 29 Nov 2022 22:13:17 GMT server: LiteSpeed location: https://megafiles.link/download/?file=rocket-loader.min.js X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 707 Md5: 1304294c0823ca486542ba408ed761e3 Sha1: b2a70fb2d810ca13985882e6981f33998823e83e Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.158 HASH: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a 143.204.42.158 HTTP/1.1 200 OK Content-Type: text/html Content-Length: 55 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=138114 Date: Tue, 29 Nov 2022 22:13:17 GMT Etag: "6385fa2f-1d7" Expires: Thu, 01 Dec 2022 12:35:11 GMT Last-Modified: Tue, 29 Nov 2022 12:25:19 GMT Server: ECS (nyb/1D31) X-Cache: Miss from cloudfront Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: R9ltCe-Ak_IKiqpwm090xxy-3s0XmZ1SoN3_6NZyB9cXA8ZAWie6BA== Age: 592 --- Additional Info --- Magic: HTML document, ASCII text Size: 55 Md5: 9f073354411bbaf7a319b1519f10b4b7 Sha1: 571498f38548829bf186f49f5be9d5fa6e689a68 Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.158 HASH: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a 143.204.42.158 HTTP/1.1 200 OK Content-Type: text/html Content-Length: 55 Connection: keep-alive Accept-Ranges: bytes Date: Tue, 29 Nov 2022 22:13:17 GMT Etag: "63866b9a-37" Last-Modified: Tue, 29 Nov 2022 20:29:14 GMT Server: ECS (bsa/EB13) X-Cache: Miss from cloudfront Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: z1u29oWQFqPNJUpItY2YVvFKW2luxdh9Jn_CRNSggXtieeS4aIttRQ== Age: 2305 --- Additional Info --- Magic: HTML document, ASCII text Size: 55 Md5: 9f073354411bbaf7a319b1519f10b4b7 Sha1: 571498f38548829bf186f49f5be9d5fa6e689a68 Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5033 Expires: Tue, 29 Nov 2022 23:37:10 GMT Date: Tue, 29 Nov 2022 22:13:17 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5033 Expires: Tue, 29 Nov 2022 23:37:10 GMT Date: Tue, 29 Nov 2022 22:13:17 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5033 Expires: Tue, 29 Nov 2022 23:37:10 GMT Date: Tue, 29 Nov 2022 22:13:17 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5033 Expires: Tue, 29 Nov 2022 23:37:10 GMT Date: Tue, 29 Nov 2022 22:13:17 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: ac3edd07bb0a4ebdaae6ec26e91d2079 Sha1: b6efe3811dfa37cdcde1e9d411c171732ac7e12a Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
GET /css?family=Roboto:100,300,400,500,700,900\|Bowlby+One+SC HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Roboto:100,300,400,500, (...) FQDN: fonts.googleapis.com IP: 142.250.74.106 HASH: 6f839433bb71748567ba0e49ebf8c36b7d7336ba34be102d29035e7a61f5fe79 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 29 Nov 2022 22:13:16 GMT date: Tue, 29 Nov 2022 22:13:16 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 8529 Md5: 15e0efeb21216c820b3dd930ef55cf9f Sha1: c461ac4337ec8d3491828ec209afcffb79018c5e Sha256: 6f839433bb71748567ba0e49ebf8c36b7d7336ba34be102d29035e7a61f5fe79
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7298 x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDcE3poAMFaAA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 7mRG070F4NZnewfowUhVhMerJaGjJd4G6O1tvTPiKyvTAzq-Y16-jw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:56:51 GMT etag: "e4ddf955e8ac1986045ed55880c43c69e588a021" age: 986 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7298 Md5: e00769bd1391b8f4f5b8ab128a825355 Sha1: e4ddf955e8ac1986045ed55880c43c69e588a021 Sha256: 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9812 x-amzn-requestid: 70bfeb68-0703-44bf-8550-50c759d52d86 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDbFolIAMFYBQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-73fb65ee2b9161372819207f;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: jpQ-1qUf3ysXSe_j4z4PIc5e1zj0MaDF9qliEVxU_4RR66yWHwCWzg== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:44:35 GMT etag: "ce411cc5b0a37bbd89551d06d7d0349f45734e97" age: 1722 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9812 Md5: 5c5277610f3a542571abb53ffb3d4df1 Sha1: ce411cc5b0a37bbd89551d06d7d0349f45734e97 Sha256: 3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5492 x-amzn-requestid: 4b09d9a8-09fa-40e5-a996-8a6ad9f8283e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgE9E5TIAMF6ug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a1f-2f17467d7a6318796d01fd2e;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:11 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 8kjwcw34ssnai7n-fW6lGV5ZmFpHR7bTX5MvKPNSgqqzMAgGFCI5fA== via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:44:35 GMT etag: "e1eec39299f081b53c647953b57da4f2f1ba10bc" age: 1722 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5492 Md5: acb1e555533322dbfeb8e0d8c956c43d Sha1: e1eec39299f081b53c647953b57da4f2f1ba10bc Sha256: 579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ced71a5-36d7-45c9-b67b-df6c12c1a127.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 155552a78d298bb7f16b41375faf63037de17d1caee1a836bbd512c2e4e5d1fa 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6695 x-amzn-requestid: 870d0eb1-8aa0-40d0-a04c-5e2666b68720 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhXTFWBIAMFfvQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867c2e-2f45c71127e5bebd660e6023;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:39:58 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: aLGMz9pYDAK4vBIvhsnNa0T9F_r7kn6BFg9q5dT5Qv7PBG9jHgwGXA== via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:44:44 GMT age: 1713 etag: "0c3e4019730bae709f01d0fcbc6b4b0f20388c0f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6695 Md5: 7a8c2292c953e41a108b1ca1f83b5134 Sha1: 0c3e4019730bae709f01d0fcbc6b4b0f20388c0f Sha256: 155552a78d298bb7f16b41375faf63037de17d1caee1a836bbd512c2e4e5d1fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9670 x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDcFiAoAMF0nA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: SEA19-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: dTu4TnkeBj5Jm6nU8CA37pptq4F43BUYXcAJPcXro47W1MJriiVrcw== via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:44:35 GMT etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad" age: 1722 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9670 Md5: 33ee67e62c49fc8d51f18df313002aac Sha1: 3d8c927b6945d880f92d4e7a686cad5a9985e8ad Sha256: ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
GET /cdn.mobverify.com/www/filelockers/theme4/css/_bower.css HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3.amazonaws.com/cdn.mobverify.com/www/filelockers/them (...) FQDN: s3.amazonaws.com IP: 54.231.232.200 HASH: 79d1adf50a4a2b8bdfc88303826755e683ce27111a00783eb2dabeea570a647b 54.231.232.200 HTTP/1.1 200 OK Content-Type: text/css x-amz-id-2: +HbK7eKNOZf6VDYqgbrveEQC7DaoMeSTc9pKL2aiIDUWtubDHE9SKr7tyHY6UwsCLrPQFrrzcMY= x-amz-request-id: C0HM4HJVKT9A0SH8 Date: Tue, 29 Nov 2022 22:13:18 GMT Last-Modified: Tue, 01 Aug 2017 12:31:15 GMT ETag: "67701840bfc4068df66f1428d9d21afe" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 150324 --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 150324 Md5: 67701840bfc4068df66f1428d9d21afe Sha1: 820942666b12a7d52730cbd84113cc62052bcf0e Sha256: 79d1adf50a4a2b8bdfc88303826755e683ce27111a00783eb2dabeea570a647b
GET /cdn.mobverify.com/www/filelockers/theme4/js/bower.js HTTP/1.1 Host: s3.amazonaws.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s3.amazonaws.com/cdn.mobverify.com/www/filelockers/them (...) FQDN: s3.amazonaws.com IP: 54.231.232.200 HASH: 0fef544b133eeae68d6d5a63c86be04de8d59bad101c3489341224bc19a19100 54.231.232.200 HTTP/1.1 200 OK Content-Type: application/javascript x-amz-id-2: F2iFZi+I47zw+kq+LBljJSpm6m2F4R7e/tiRst5Ocb3nTh/hNvxP+AvjoW4nFavRaNwg80KPZY4= x-amz-request-id: C0HV9D90J61VQEXT Date: Tue, 29 Nov 2022 22:13:18 GMT Last-Modified: Tue, 01 Aug 2017 12:31:17 GMT ETag: "025b7218828c2c1be5597f502bb67d16" Accept-Ranges: bytes Server: AmazonS3 Content-Length: 170974 --- Additional Info --- Magic: ASCII text, with very long lines (32126) Size: 170974 Md5: 025b7218828c2c1be5597f502bb67d16 Sha1: 2e4dad2d365dd988612c8c93f2eab3950dcc6985 Sha256: 0fef544b133eeae68d6d5a63c86be04de8d59bad101c3489341224bc19a19100
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Cookie: _cpguid=is8ptunjs Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/fonts/fontawesome-webfont.woff2?v=4.6.3 FQDN: megafiles.link IP: 82.221.129.60 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 82.221.129.60 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Tue, 29 Nov 2022 22:13:17 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://megafiles.link Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15920 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:33:56 GMT expires: Thu, 23 Nov 2023 19:33:56 GMT cache-control: public, max-age=31536000 age: 527961 last-modified: Wed, 11 May 2022 19:24:45 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data Size: 15920 Md5: 3a44e06eb954b96aa043227f3534189d Sha1: 23cef6993ddb2b2979e8e7647fc3763694e2ba7d Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://megafiles.link Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:33:54 GMT expires: Thu, 23 Nov 2023 19:33:54 GMT cache-control: public, max-age=31536000 age: 527963 last-modified: Wed, 11 May 2022 19:24:48 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://megafiles.link Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4 (...) FQDN: fonts.gstatic.com IP: 216.58.207.227 HASH: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef 216.58.207.227 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 23 Nov 2022 19:34:15 GMT expires: Thu, 23 Nov 2023 19:34:15 GMT cache-control: public, max-age=31536000 age: 527942 last-modified: Wed, 11 May 2022 19:24:56 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size: 15740 Md5: b9c29351c46f3e8c8631c4002457f48a Sha1: e57e59c5780995ff2937ab2b511a769212974a87 Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 22:13:17 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 49eee25f3ccd585a29e34e80cf5bb160 Sha1: 73eca8be91deedd049304862759a3d8084c0b07e Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
GET /fonts/fontawesome-webfont.woff?v=4.6.3 HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Cookie: _cpguid=is8ptunjs Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/fonts/fontawesome-webfont.woff?v=4.6.3 FQDN: megafiles.link IP: 82.221.129.60 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 82.221.129.60 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Tue, 29 Nov 2022 22:13:17 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /fonts/fontawesome-webfont.ttf?v=4.6.3 HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Cookie: _cpguid=is8ptunjs Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/fonts/fontawesome-webfont.ttf?v=4.6.3 FQDN: megafiles.link IP: 82.221.129.60 HASH: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807 82.221.129.60 HTTP/2 404 Not Found content-type: text/html cache-control: private, no-cache, no-store, must-revalidate, max-age=0 pragma: no-cache content-length: 1238 date: Tue, 29 Nov 2022 22:13:18 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators Size: 1238 Md5: 0bde7d4b3da67537eaf9188e6f8049cf Sha1: 64300fc482d01d38b40ab20e15960b6509665e5a Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
GET /public/external/css_front.css HTTP/1.1 Host: dwmsurhf1svv8.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dwmsurhf1svv8.cloudfront.net/public/external/css_front.css FQDN: dwmsurhf1svv8.cloudfront.net IP: 143.204.42.146 HASH: a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec 143.204.42.146 HTTP/2 200 OK content-type: text/css content-length: 6596 date: Tue, 29 Nov 2022 22:13:18 GMT server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11 last-modified: Tue, 23 Jun 2020 20:06:47 GMT etag: "19c4-5a8c5e62e9d0a" accept-ranges: bytes x-cache: Miss from cloudfront via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: b2LRLNApmeD4P7uOeVmBEDelZ7bo9BpYcdW_vXax7I7wO3sBd9XxlQ== X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 6596 Md5: 2649f9832b1ede1bca6b60a16e50a676 Sha1: c96e86a59be0ab5f2a1c86558205193597822742 Sha256: a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec
GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.google-analytics.com/analytics.js FQDN: www.google-analytics.com IP: 142.250.74.110 HASH: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e 142.250.74.110 HTTP/2 200 OK content-type: text/javascript strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Tue, 29 Nov 2022 20:41:08 GMT expires: Tue, 29 Nov 2022 22:41:08 GMT cache-control: public, max-age=7200 age: 5530 last-modified: Tue, 27 Sep 2022 22:01:05 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1325) Size: 20039 Md5: 47e6f374ca946fddd5b59871b325736c Sha1: baa9282efc8785e84d247c3bff518eaa45f101c4 Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /download/img/icon.jpg HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Cookie: _cpguid=is8ptunjs Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/img/icon.jpg FQDN: megafiles.link IP: 82.221.129.60 HASH: 5639c13921121bbb3463b0737ee60274481f82291b9f3e45bc559b4ea0d4fb77 82.221.129.60 HTTP/2 200 OK content-type: image/jpeg cache-control: public, max-age=604800 expires: Tue, 06 Dec 2022 22:13:18 GMT last-modified: Tue, 23 Aug 2022 19:28:24 GMT accept-ranges: bytes content-length: 2109 date: Tue, 29 Nov 2022 22:13:18 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data Size: 2109 Md5: 6c2f059c13eb12d8b473c41988b8686c Sha1: 9471986526d3c7322bbe5cecbede1d6f334e0e12 Sha256: 5639c13921121bbb3463b0737ee60274481f82291b9f3e45bc559b4ea0d4fb77
GET /0cd6e21.js HTTP/1.1 Host: dyodrs1kxvg6o.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: dyodrs1kxvg6o.cloudfront.net/0cd6e21.js FQDN: dyodrs1kxvg6o.cloudfront.net IP: 143.204.42.93 HASH: 9c76d00509f97f35f1c00a8135ecec1d40a6b63d1fe98ac73b0132334b8e82e3 143.204.42.93 HTTP/2 200 OK content-type: application/javascript last-modified: Sun, 30 Oct 2022 13:50:57 GMT server: AmazonS3 content-encoding: br date: Tue, 29 Nov 2022 22:12:07 GMT etag: W/"d0adadb877ad5f27d0c2a369cd5acb5e" vary: Accept-Encoding x-cache: Error from cloudfront via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 4BGHvfROM_K-ruzLY5FasypIQEKBxyYw74E8SbDBPJwavVtXwSAnWA== age: 244 X-Firefox-Spdy: h2 --- Additional Info --- Magic: C source, ASCII text, with very long lines (1637), with CRLF line terminators Size: 70955 Md5: b96d7e829ee85960ff0abef1fed7b3b8 Sha1: 441812dc6143e90318332aff5372c5bc7354b5aa Sha256: 9c76d00509f97f35f1c00a8135ecec1d40a6b63d1fe98ac73b0132334b8e82e3 Alerts: Blocklists: - fortinet: Malware
GET /public/clockers/PrimeApps/css.css HTTP/1.1 Host: dwmsurhf1svv8.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: dwmsurhf1svv8.cloudfront.net/public/clockers/PrimeApps/ (...) FQDN: dwmsurhf1svv8.cloudfront.net IP: 143.204.42.146 HASH: a7081a117335212b9e7f2e348f7369a64423d51db1666310b3451e7375f0b7de 143.204.42.146 HTTP/2 200 OK content-type: text/css content-length: 1010 date: Tue, 29 Nov 2022 22:13:18 GMT server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11 last-modified: Fri, 10 Apr 2020 22:29:00 GMT etag: "3f2-5a2f7428ae907" accept-ranges: bytes x-cache: Miss from cloudfront via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: uyHqWuRh5S_VSe7q4elucfL9TNrZ-WBXynM_LkBioF6U3F49-peYtw== X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with CRLF line terminators Size: 1010 Md5: 683a185465436634825046815ac5a2d2 Sha1: dd9a216245afb09ebc5098aa44374ee8ef51d3dd Sha256: a7081a117335212b9e7f2e348f7369a64423d51db1666310b3451e7375f0b7de
GET /public/guid?cpguid=is8ptunjs&e=ll&t=1669759997720 HTTP/1.1 Host: dwmsurhf1svv8.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: dwmsurhf1svv8.cloudfront.net/public/guid?cpguid=is8ptun (...) FQDN: dwmsurhf1svv8.cloudfront.net IP: 143.204.42.146 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 143.204.42.146 HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-length: 0 date: Tue, 29 Nov 2022 22:13:19 GMT server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11 x-powered-by: PHP/7.4.11 x-cache: Miss from cloudfront via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 7TFEiOYjtKACmIeTaD16hurTEVmtYD2H5UkAIr_Vlmx-7vnQVizuOA== X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/external/check.php?it=2950767&time=1669759999664 HTTP/1.1 Host: dwmsurhf1svv8.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: dwmsurhf1svv8.cloudfront.net/public/external/check.php? (...) FQDN: dwmsurhf1svv8.cloudfront.net IP: 143.204.42.146 HASH: 9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b 143.204.42.146 HTTP/2 200 OK content-type: application/javascript content-length: 78 date: Tue, 29 Nov 2022 22:13:20 GMT server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11 x-powered-by: PHP/7.4.11 x-cache: Miss from cloudfront via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: FMCzLaOsbQVlehv26VO1-csftuiyTJ6Iexh7pooAroUpudupOBDCGQ== X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 78 Md5: 37ebc78db9bc22d4c972c5961163070c Sha1: 865e3671f7e86b52d2f7b006b95ec7799a187572 Sha256: 9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b
GET /download/?file=Bobawitch-Pack-2022.rar HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers	URL: megafiles.link/download/?file=Bobawitch-Pack-2022.rar FQDN: megafiles.link IP: 82.221.129.60 82.221.129.60 HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-encoding: br vary: Accept-Encoding date: Tue, 29 Nov 2022 22:13:16 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info ---
GET /public/external/v2/html.2950767.78f94.0.js HTTP/1.1 Host: dwmsurhf1svv8.cloudfront.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://megafiles.link/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: dwmsurhf1svv8.cloudfront.net/public/external/v2/html.29 (...) FQDN: dwmsurhf1svv8.cloudfront.net IP: 143.204.42.146 143.204.42.146 HTTP/2 200 OK content-type: application/javascript date: Tue, 29 Nov 2022 22:13:18 GMT server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11 x-powered-by: PHP/7.4.11 x-cache: Miss from cloudfront via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: EhXxhpZB2KagSjW0CNjh3xjzK291whINut3PKI-E9aeW59QjwYhYCQ== X-Firefox-Spdy: h2 --- Additional Info --- Alerts: Blocklists: - fortinet: Phishing
GET /download/?file=rocket-loader.min.js HTTP/1.1 Host: megafiles.link User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: megafiles.link/download/?file=rocket-loader.min.js FQDN: megafiles.link IP: 82.221.129.60 82.221.129.60 HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-encoding: br vary: Accept-Encoding date: Tue, 29 Nov 2022 22:13:17 GMT server: LiteSpeed X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=7469 

                                        
                                            
Expires: Wed, 30 Nov 2022 00:17:44 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:15 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    a5daf4dc99951793ae2315d4795e8146

                                                Sha1:   4427507ca4d3a5632cc8f598afbc85e2195d00bd

                                                Sha256: 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 2173 

                                        
                                            
Cache-Control: max-age=132849 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:15 GMT 

                                        
                                            
Etag: "6385df6f-1d7" 

                                        
                                            
Expires: Thu, 01 Dec 2022 11:07:24 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT 

                                        
                                            
Server: ECS (ska/F70E) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 55 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.102.187.140

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert 

                                        
                                            
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
content-length: 939 

                                        
                                            
via: 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:19:38 GMT 

                                        
                                            
cache-control: public,max-age=3600 

                                        
                                            
age: 3217 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    30db107dcf4380cef05efea409c2e6a3

                                                Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9

                                                Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:15 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sectigo.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         104.18.32.68

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:15 GMT 

                                        
                                            
Content-Length: 471 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Last-Modified: Sat, 26 Nov 2022 10:52:28 GMT 

                                        
                                            
Expires: Sat, 03 Dec 2022 10:52:27 GMT 

                                        
                                            
Etag: "f3a765b4264ae829ed2be740a1c14defc45f13d6" 

                                        
                                            
Cache-Control: max-age=304151,s-maxage=1800,public,no-transform,must-revalidate 

                                        
                                            
X-CCACDN-Proxy-ID: mcdpinlb5 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
CF-Cache-Status: DYNAMIC 

                                        
                                            
Server: cloudflare 

                                        
                                            
CF-RAY: 771eb0857a4a0af6-OSL 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    55887e57179e7c6c2549f1fb32910cb7

                                                Sha1:   f3a765b4264ae829ed2be740a1c14defc45f13d6

                                                Sha256: 5b14f5fff19f07ea437b45344f27ce83746a89126199ab85300d6c0c579a5a9a

                                        
                                            GET /Bobawitch-Pack-2022.rar HTTP/1.1 

                                        
                                            
Host: megaload5.sbs

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         198.187.31.100

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
content-length: 707 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:15 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
location: https://megafiles.link/download/Bobawitch-Pack-2022.rar 

                                        
                                            
x-turbo-charged-by: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   707

                                                Md5:    1304294c0823ca486542ba408ed761e3

                                                Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e

                                                Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

                                        
                                            GET /download/Bobawitch-Pack-2022.rar HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1

                                         82.221.129.60

                                        
                                            HTTP/2 301 Moved Permanently 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
content-length: 707 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
location: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   707

                                                Md5:    1304294c0823ca486542ba408ed761e3

                                                Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e

                                                Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    f50fd635895870df33a17fe377a6a038

                                                Sha1:   dd65dfbbc810b095432cfd59f971af04a9e31ab7

                                                Sha256: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

                                        
                                            GET /download/img/folder.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 625 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 164 x 152, 8-bit colormap, non-interlaced\012- data

                                                Size:   625

                                                Md5:    643dacdb5be52ecf48f800d5c9f141c4

                                                Sha1:   4eef0e099b98f030ec188ecf3e70be2b2de12f27

                                                Sha256: 1fb833bcb649adad8c60a197f18ba6a593054809e170ad412cbc55a3b1f8dcfb

                                        
                                            GET /download/img/bitdefender.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 14065 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   14065

                                                Md5:    1ab5ea800c08c6227a774ba1375d152c

                                                Sha1:   67023abc4c85bb6b3852463b1d4ab1ad19a8b7fd

                                                Sha256: 42e3aa54cfacaa5849859a70cb2d5f26e77df19f59e6c83e0077d072efb9a5b7

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    f50fd635895870df33a17fe377a6a038

                                                Sha1:   dd65dfbbc810b095432cfd59f971af04a9e31ab7

                                                Sha256: ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94

                                        
                                            GET /download/img/fsecure.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 15296 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15296

                                                Md5:    fd1de2c7ffc77143631d9d05dd603cb1

                                                Sha1:   6cff3b7c59e622a829349d3e3962277ad7538b69

                                                Sha256: 016d83a08d0f2e6599f446b26a77e0911539061448f480eb41e5fe531f112f9c

                                        
                                            GET /download/img/macafee.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 17777 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   17777

                                                Md5:    177ae9550c0a16f3f0de68fda078a778

                                                Sha1:   44ca071367056ad31ac153cf4f322454c82efd30

                                                Sha256: dc376d6e221d72ef957c74cb25be593ea06b576214a35c975a690b2e554e54e1

                                        
                                            GET /download/img/webroot.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 15034 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   15034

                                                Md5:    25f681adb6e3f6522056fe80df0c75bd

                                                Sha1:   851de93d039237a4ccd680cd9c8bfb3bffcf49f3

                                                Sha256: b9c823dd70eaf6a79ee7f6b48e3ec9e13951c570ad7c95495fc0b3e2c0487a81

                                        
                                            GET /download/img/trendmicro.png HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
cache-control: public, max-age=604800 

                                        
                                            
expires: Tue, 06 Dec 2022 22:13:16 GMT 

                                        
                                            
last-modified: Tue, 23 Aug 2022 19:28:24 GMT 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
content-length: 16877 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 300 x 150, 8-bit/color RGBA, non-interlaced\012- data

                                                Size:   16877

                                                Md5:    875d58eea958e57504086e0d578a974c

                                                Sha1:   99cc83aa37c71bbd56a47be2fc3ac626ec4697af

                                                Sha256: 0c94aabca6e2c41b78dbb2aa7e36c74e2285492d8e3a67288dd4e495fb680087

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.sca1b.amazontrust.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         143.204.42.158

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/html

                                        

                                        
                                            
Content-Length: 55 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Cache-Control: max-age=138114 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Etag: "6385fa2f-1d7" 

                                        
                                            
Expires: Thu, 01 Dec 2022 12:35:11 GMT 

                                        
                                            
Last-Modified: Tue, 29 Nov 2022 12:25:19 GMT 

                                        
                                            
Server: ECS (nyb/1D31) 

                                        
                                            
X-Cache: Miss from cloudfront 

                                        
                                            
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: R9ltCe-Ak_IKiqpwm090xxy-3s0XmZ1SoN3_6NZyB9cXA8ZAWie6BA== 

                                        
                                            
Age: 592 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document, ASCII text

                                                Size:   55

                                                Md5:    9f073354411bbaf7a319b1519f10b4b7

                                                Sha1:   571498f38548829bf186f49f5be9d5fa6e689a68

                                                Sha256: 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5033 

                                        
                                            
Expires: Tue, 29 Nov 2022 23:37:10 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    ac3edd07bb0a4ebdaae6ec26e91d2079

                                                Sha1:   b6efe3811dfa37cdcde1e9d411c171732ac7e12a

                                                Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         23.36.76.226

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" 

                                        
                                            
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5033 

                                        
                                            
Expires: Tue, 29 Nov 2022 23:37:10 GMT 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    ac3edd07bb0a4ebdaae6ec26e91d2079

                                                Sha1:   b6efe3811dfa37cdcde1e9d411c171732ac7e12a

                                                Sha256: c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

                                        
                                            GET /css?family=Roboto:100,300,400,500,700,900|Bowlby+One+SC HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.106

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   8529

                                                Md5:    15e0efeb21216c820b3dd930ef55cf9f

                                                Sha1:   c461ac4337ec8d3491828ec209afcffb79018c5e

                                                Sha256: 6f839433bb71748567ba0e49ebf8c36b7d7336ba34be102d29035e7a61f5fe79

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52cf4797-5177-4859-9523-faeb4e38f224.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 9812 

                                        
                                            
x-amzn-requestid: 70bfeb68-0703-44bf-8550-50c759d52d86 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYgDbFolIAMFYBQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867a15-73fb65ee2b9161372819207f;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: jpQ-1qUf3ysXSe_j4z4PIc5e1zj0MaDF9qliEVxU_4RR66yWHwCWzg== 

                                        
                                            
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:44:35 GMT 

                                        
                                            
etag: "ce411cc5b0a37bbd89551d06d7d0349f45734e97" 

                                        
                                            
age: 1722 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   9812

                                                Md5:    5c5277610f3a542571abb53ffb3d4df1

                                                Sha1:   ce411cc5b0a37bbd89551d06d7d0349f45734e97

                                                Sha256: 3bf1105631ef7fda0249a46390ca90f904ea73b0a4f017c2db85326550a80a3f

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ced71a5-36d7-45c9-b67b-df6c12c1a127.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 6695 

                                        
                                            
x-amzn-requestid: 870d0eb1-8aa0-40d0-a04c-5e2666b68720 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: cYhXTFWBIAMFfvQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-63867c2e-2f45c71127e5bebd660e6023;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Tue, 29 Nov 2022 21:39:58 GMT 

                                        
                                            
x-amz-cf-pop: SEA19-C1, SEA19-C2 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: aLGMz9pYDAK4vBIvhsnNa0T9F_r7kn6BFg9q5dT5Qv7PBG9jHgwGXA== 

                                        
                                            
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Tue, 29 Nov 2022 21:44:44 GMT 

                                        
                                            
age: 1713 

                                        
                                            
etag: "0c3e4019730bae709f01d0fcbc6b4b0f20388c0f" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   6695

                                                Md5:    7a8c2292c953e41a108b1ca1f83b5134

                                                Sha1:   0c3e4019730bae709f01d0fcbc6b4b0f20388c0f

                                                Sha256: 155552a78d298bb7f16b41375faf63037de17d1caee1a836bbd512c2e4e5d1fa

                                        
                                            GET /cdn.mobverify.com/www/filelockers/theme4/css/_bower.css HTTP/1.1 

                                        
                                            
Host: s3.amazonaws.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         54.231.232.200

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: text/css

                                        

                                        
                                            
x-amz-id-2: +HbK7eKNOZf6VDYqgbrveEQC7DaoMeSTc9pKL2aiIDUWtubDHE9SKr7tyHY6UwsCLrPQFrrzcMY= 

                                        
                                            
x-amz-request-id: C0HM4HJVKT9A0SH8 

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:18 GMT 

                                        
                                            
Last-Modified: Tue, 01 Aug 2017 12:31:15 GMT 

                                        
                                            
ETag: "67701840bfc4068df66f1428d9d21afe" 

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Server: AmazonS3 

                                        
                                            
Content-Length: 150324 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (65371)

                                                Size:   150324

                                                Md5:    67701840bfc4068df66f1428d9d21afe

                                                Sha1:   820942666b12a7d52730cbd84113cc62052bcf0e

                                                Sha256: 79d1adf50a4a2b8bdfc88303826755e683ce27111a00783eb2dabeea570a647b

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    49eee25f3ccd585a29e34e80cf5bb160

                                                Sha1:   73eca8be91deedd049304862759a3d8084c0b07e

                                                Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

                                        
                                            GET /fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Cookie: _cpguid=is8ptunjs 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 1238 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1238

                                                Md5:    0bde7d4b3da67537eaf9188e6f8049cf

                                                Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a

                                                Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://megafiles.link 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         216.58.207.227

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 15744 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Wed, 23 Nov 2022 19:33:54 GMT 

                                        
                                            
expires: Thu, 23 Nov 2023 19:33:54 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
age: 527963 

                                        
                                            
last-modified: Wed, 11 May 2022 19:24:48 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data

                                                Size:   15744

                                                Md5:    15d9f621c3bd1599f0169dcf0bd5e63e

                                                Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52

                                                Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.131

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    49eee25f3ccd585a29e34e80cf5bb160

                                                Sha1:   73eca8be91deedd049304862759a3d8084c0b07e

                                                Sha256: 531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

                                        
                                            GET /fonts/fontawesome-webfont.ttf?v=4.6.3 HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Cookie: _cpguid=is8ptunjs 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 404 Not Found 

                                        
                                            
content-type: text/html

                                        

                                        
                                            
cache-control: private, no-cache, no-store, must-revalidate, max-age=0 

                                        
                                            
pragma: no-cache 

                                        
                                            
content-length: 1238 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:18 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators

                                                Size:   1238

                                                Md5:    0bde7d4b3da67537eaf9188e6f8049cf

                                                Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a

                                                Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807

                                        
                                            GET /analytics.js HTTP/1.1 

                                        
                                            
Host: www.google-analytics.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.110

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/javascript

                                        

                                        
                                            
strict-transport-security: max-age=10886400; includeSubDomains; preload 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
content-encoding: gzip 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
server: Golfe2 

                                        
                                            
content-length: 20039 

                                        
                                            
date: Tue, 29 Nov 2022 20:41:08 GMT 

                                        
                                            
expires: Tue, 29 Nov 2022 22:41:08 GMT 

                                        
                                            
cache-control: public, max-age=7200 

                                        
                                            
age: 5530 

                                        
                                            
last-modified: Tue, 27 Sep 2022 22:01:05 GMT 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  ASCII text, with very long lines (1325)

                                                Size:   20039

                                                Md5:    47e6f374ca946fddd5b59871b325736c

                                                Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4

                                                Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

                                        
                                            GET /public/guid?cpguid=is8ptunjs&e=ll&t=1669759997720 HTTP/1.1 

                                        
                                            
Host: dwmsurhf1svv8.cloudfront.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://megafiles.link/ 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
TE: trailers

                                         143.204.42.146

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
content-length: 0 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:19 GMT 

                                        
                                            
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11 

                                        
                                            
x-powered-by: PHP/7.4.11 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront) 

                                        
                                            
x-amz-cf-pop: OSL50-C1 

                                        
                                            
x-amz-cf-id: 7TFEiOYjtKACmIeTaD16hurTEVmtYD2H5UkAIr_Vlmx-7vnQVizuOA== 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            GET /download/?file=Bobawitch-Pack-2022.rar HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Upgrade-Insecure-Requests: 1 

                                        
                                            
Sec-Fetch-Dest: document 

                                        
                                            
Sec-Fetch-Mode: navigate 

                                        
                                            
Sec-Fetch-Site: none 

                                        
                                            
Sec-Fetch-User: ?1 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:16 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /download/?file=rocket-loader.min.js HTTP/1.1 

                                        
                                            
Host: megafiles.link

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Referer: https://megafiles.link/download/?file=Bobawitch-Pack-2022.rar 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         82.221.129.60

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/html; charset=UTF-8

                                        

                                        
                                            
content-encoding: br 

                                        
                                            
vary: Accept-Encoding 

                                        
                                            
date: Tue, 29 Nov 2022 22:13:17 GMT 

                                        
                                            
server: LiteSpeed 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	megaload5.sbs/Bobawitch-Pack-2022.rar
IP	198.187.31.100 (United States)
ASN	#22612 NAMECHEAP-NET
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-11-29 22:13:26 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	2
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (20)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 198.187.31.100

Last 5 reports on ASN: NAMECHEAP-NET

Last 1 reports on domain: megaload5.sbs

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (16)

Executed Evals (0)

Executed Writes (1)

#1 JavaScript::Write (size: 24) - SHA256: bc62fa6c257051d8598f6bba006fa9870df8f19852293f1feba8caf141e36685

HTTP Transactions (63)

Overview

Domain Summary (20)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 198.187.31.100

Last 5 reports on ASN: NAMECHEAP-NET

Last 1 reports on domain: megaload5.sbs

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (16)

Executed Evals (0)

Executed Writes (1)

#1 JavaScript::Write (size: 24) - SHA256: bc62fa6c257051d8598f6bba006fa9870df8f19852293f1feba8caf141e36685

HTTP Transactions (63)

Network Intrusion Detection Systems