sfile.mobi/includes/adsby.js
172.67.69.138200 OK 13 B URL GET HTTP/2 sfile.mobi/includes/adsby.js
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type ASCII text, with no line terminators
Hash c5f96fbf51ae71c2ab29237fa415bbf8
5f9cbbf13fe8e1775c3b8a99a7cc92ba5a32b81f
4b788930a60496876be01bf2dbc9e79d1ce226545438697f5333a4bf57f952d4
GET /includes/adsby.js HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 13
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=15
etag: "f-5b3f44e345d40"
expires: Mon, 15 May 2023 22:37:09 GMT
last-modified: Fri, 13 Nov 2020 03:05:49 GMT
vary: User-Agent, Accept-Encoding
x-frame-options: DENY
cf-cache-status: HIT
age: 62626
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FCNhy4aDhmWb9AAPXuNZ%2BQd6ARS4a5bPtjYQ87GJZaN8wREUzA%2Ft7XjYAqeX4WqmVYW5cIa0GaCXVNLN1%2BkYBm4QBg2S4NaK5cMfvjhbiYVt8m1KPoyQIZguZJU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28785ee40b39-OSL
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/id.co.danamasbor/2572482C41329913F335A6D107A3F1B5BEAFADF6/3.0.12/icon.png
172.67.69.138200 OK 3.0 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/id.co.danamasbor/2572482C41329913F335A6D107A3F1B5BEAFADF6/3.0.12/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 1dbd3b11402eb8870bccdd7cfdc18b37
b1262ad37b7dc7220d7816daa626aef9b1df4bf9
a23bb6d9cfc1f2792910bca23ba40788f245ab86056fc3a7edf1fb0cc13d01de
GET /cdn-cgi/image/width=110/apk/id.co.danamasbor/2572482C41329913F335A6D107A3F1B5BEAFADF6/3.0.12/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 2981
cf-ray: 7c4b28785eed0b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfj8EEkYzTIGD5VRlaW9Ds3u1q0QHHIZOOit7pJFJtDQ:23d6-11c701b800400"
last-modified: Thu, 29 Nov 1979 17:00:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:99,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=0+0 v=2023.4.2 l=2981
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=64p19MYNJ4x6hAsbv%2FpFBcrvLAseszGghSGDrVp39AvhawYIfGgLybg7P%2FZ4QG3cCaSQIskc0zFHwb3cEqsE4fuiTZQBchE%2F7txRmrIra%2B6qDMBG9FmZ9hHShC4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/com.id.kredi360/20E717CBF6BCEACABD85875D1BFAE2B88ED9984A/2.1.3/icon.png
172.67.69.138200 OK 4.7 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/com.id.kredi360/20E717CBF6BCEACABD85875D1BFAE2B88ED9984A/2.1.3/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash ef2982e4e2316ba7d3804b7446f8fcef
35aee035234939e7cf1fab6661088f8309aa6899
af547140e012a57fbae898f5b66d344d1de1d1293ca9641318b257481410bc7f
GET /cdn-cgi/image/width=110/apk/com.id.kredi360/20E717CBF6BCEACABD85875D1BFAE2B88ED9984A/2.1.3/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 4742
cf-ray: 7c4b28786ef50b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cf8MI5yJQtuRYbKDe3YLEOUCdU0QHHIZOOit7pJFJtDQ:474f-13bb75a9cf380"
last-modified: Wed, 31 Dec 1980 18:01:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:97,h2pri
cf-resized: internal=ok/h q=0 n=19+0 c=0+12 v=2023.4.2 l=4742
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dZwG9GNULezcP8pMcXLaqFWFQqcSTwDePw0EU87DWVdY%2FOnMgA6K4GE%2BRookH0vVxcbx6zJGLQbDunIE8E%2FJ7iQkmbz0isQJyndFg1Tsk7NKg8LeF7v0v1FT%2BYY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/src.com.bni/7E98D658649819E03AE0BFEB4E5035B930F2307C/5.8/icon.png
172.67.69.138200 OK 3.7 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/src.com.bni/7E98D658649819E03AE0BFEB4E5035B930F2307C/5.8/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 3464bebd7d80b308d18975227b33ca0d
1f2b8bfad13aac288e6aa7eb3760e3d1cabc6f4a
a2c70bb7d2ae5e6cb4508acd080814ee77d7c50d0625f5f5a816795ba293fa69
GET /cdn-cgi/image/width=110/apk/src.com.bni/7E98D658649819E03AE0BFEB4E5035B930F2307C/5.8/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 3671
cf-ray: 7c4b28786ef60b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfABlRCuwlPrArZrmIqjZAAF1I0QHHIZOOit7pJFJtDQ:20c13-13bb75a9cf380"
last-modified: Wed, 31 Dec 1980 18:01:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/h q=0 n=55+0 c=28+66 v=2023.4.2 l=3671
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RnsSW4Ft2n%2FvBwx7f1UkXVZIYrL%2Fkl4Nh4i1CT6g7T9ErhKT%2BjJerMV2%2BrfIw9qQadrksgzS%2B4jeKwgnG2qAMDzYI3zC7HuYb1wVbInls1zy%2FyDfJQKKT%2BMa4h4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/id.co.bitcoin/6E6ACA9705B982A424C009D06C86E184B64A6923/4.5.0/icon.png
172.67.69.138200 OK 3.3 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/id.co.bitcoin/6E6ACA9705B982A424C009D06C86E184B64A6923/4.5.0/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 88ee161ade62022383e59abfee619b3a
2c3565c88aaeb6c7fb708d61186c7ff423e5f50d
a78491609d5353b8bc7425662034aa79fc6ef51fa7596a5b3c056198d472f1c6
GET /cdn-cgi/image/width=110/apk/id.co.bitcoin/6E6ACA9705B982A424C009D06C86E184B64A6923/4.5.0/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 3276
cf-ray: 7c4b28786ef80b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfJ3NQlqroEc51Hxj_D5-KWvZ_0QHHIZOOit7pJFJtDQ:240e-5ecd9b3816ff3"
last-modified: Mon, 07 Nov 2022 04:17:27 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/m q=0 n=39+0 c=0+11 v=2023.4.2 l=3276
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q5J5pIuobt%2FxWEJqfs%2B0l4T3X73TDVXSQpI7RuosLQKKU4DbYUgT%2BCDLuh4hREMdO9QytixeL8JaQ2CbsS4CKPqSOkj4%2FGm%2BTpLl%2FuysoFVViWv45MN9jo0tRPM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/com.droid4you.application.wallet/819BD461BA3C98788AB78708E729E78D51F9BC44/8.5.191/icon.png
172.67.69.138200 OK 2.3 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/com.droid4you.application.wallet/819BD461BA3C98788AB78708E729E78D51F9BC44/8.5.191/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 484d8377d5168a447845c31adc775171
a32a19627db350de15f1ed6a39b7264210a56a85
61b1758c84133ca182f515038d078bd8b4fe2f31946a20b256df3f7f2db79edd
GET /cdn-cgi/image/width=110/apk/com.droid4you.application.wallet/819BD461BA3C98788AB78708E729E78D51F9BC44/8.5.191/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 2317
cf-ray: 7c4b28786ef30b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfBb81la0TyHcTx1eTa6jD5yq10QHHIZOOit7pJFJtDQ:2205d-5f2a7ee94813f"
last-modified: Fri, 20 Jan 2023 01:25:59 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/m q=0 n=141+0 c=6+20 v=2023.4.2 l=2317
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ex3qwhAU%2BlspeLE6XFYz649CNq7KOnmu6kCkTUwGAPAAUrQZBhbZ6kCm%2BgumNe%2B7EwZegVpuuIt3P%2BvbprD6pgQfyHsCCRKLyC1ASvzAG87seiYrbdjhu%2FxvWvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/com.kpt.elite/3E61C1BC8D0EFA92F8C099A2038974460F1D0147/3.7.2/icon.png
172.67.69.138200 OK 7.6 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/com.kpt.elite/3E61C1BC8D0EFA92F8C099A2038974460F1D0147/3.7.2/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash d4ad88983f82f3fd164c7690b3e99937
242c5ae107340ac98c9e3c10f915bf5b051599ae
309ff251cd427e81ef8c0a2315c0f7bac1bdf7d8d73b9b58ab05ee4f19d95f3d
GET /cdn-cgi/image/width=110/apk/com.kpt.elite/3E61C1BC8D0EFA92F8C099A2038974460F1D0147/3.7.2/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 7627
cf-ray: 7c4b28787efe0b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfUTdrR3CkzZx94WyyFm90Me2b0QHHIZOOit7pJFJtDQ:93e7-11c701b800400"
last-modified: Thu, 29 Nov 1979 17:00:00 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:93,h2pri
cf-resized: internal=ok/m q=0 n=90+0 c=1+27 v=2023.4.2 l=7627
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PqhQnf8%2BhsPwZIFEJ2Q90U%2BokRih1dHV%2BFZlNLPeBTQO4ASCuD7mrkvmFbiBCjJTeqMYmJqpJyNrjxf6%2FzF6Q5xv83q3CpHtWwYQxnI1YmKU7ogKsqMzGyr1umk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/com.posindonesia.giropos/14085B337CB104EE56E51FD125EF9E1042EAF6DE/2.10.5/icon.png
172.67.69.138200 OK 2.1 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/com.posindonesia.giropos/14085B337CB104EE56E51FD125EF9E1042EAF6DE/2.10.5/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash 259691252b71815d2be452b7b94a555c
c4d65a3cabeb5bc58616f7c20aec85829a5153c7
30d083fc823c2f03bc0ea21762f0d7492283e0f16da4df0060493e460debf174
GET /cdn-cgi/image/width=110/apk/com.posindonesia.giropos/14085B337CB104EE56E51FD125EF9E1042EAF6DE/2.10.5/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 2140
cf-ray: 7c4b28787efd0b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfAN8tNExZfaF9sQSBke4NytIu0QHHIZOOit7pJFJtDQ:1499-13bb75a9cf380"
last-modified: Wed, 31 Dec 1980 18:01:02 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:99,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=0+0 v=2023.4.2 l=2140
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J3W8Z6UPfczQLxKSXrY3QXyqOluZ96gTaS5jDgqIMVI45bnFnpyTRIA8lWkoPY%2FtzS5Is94SviGGUOmbNdHpbC%2Fvj7%2BHVxf2uD3hWmJKeosyf7fSb6dyU9YbmRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
sfile.mobi/cdn-cgi/image/width=110/apk/com.EmasDigi/FF7B5C71195C4E9FDB41644D31727249F3660344/5.1.5/icon.png
172.67.69.138200 OK 3.5 kB URL GET HTTP/2 sfile.mobi/cdn-cgi/image/width=110/apk/com.EmasDigi/FF7B5C71195C4E9FDB41644D31727249F3660344/5.1.5/icon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 110 x 110, 8-bit colormap, non-interlaced\012- data
Hash b59ca786dd4d04f758237248dfb16e0f
79cd479c62c37762da37f499ab1d41b0704aab3a
284381af97b7aade89704ec3b5889e14484bcb272e379b808b2a1ec279f7b400
GET /cdn-cgi/image/width=110/apk/com.EmasDigi/FF7B5C71195C4E9FDB41644D31727249F3660344/5.1.5/icon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 3473
cf-ray: 7c4b28787eff0b39-OSL
accept-ranges: bytes
cache-control: max-age=2592000
etag: "cfq5qm1P3I0unQ05OdDw3yTYkF0QHHIZOOit7pJFJtDQ:24c5-5ecd9c1bc24e7"
last-modified: Mon, 07 Nov 2022 04:21:25 GMT
vary: Accept, Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-resized: internal=ram/m q=0 n=0+0 c=0+0 v=2023.4.2 l=3473
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j20jBIzwsocTBmAAlEHWSJibjdf9cpFMS%2BxP8hRRa2nhq%2FF0IOnLqEVaUs0ZGTzrDt2g9jpkh3GJS217zsgpNSs0qPln6GZ7QRuC8e47Q5AkGVeWUGbmRQGz2Sk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 74429
expires: Sun, 28 Apr 2024 16:00:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CWODbQurg2K4ryPQ6c12rtt%2Fugk3KI8%2Bz0sQ7Xgr07UWSqe0V4nfQMxThCkx64vaD1yEadMU9cTzgzregBBcYEJZDeiywSIIoZ19uL4CF4ex4ni1RT3%2FibvvWikBktAlQG%2BFVnTh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c4b2878889e1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash f31bb3c04de31d1672e384c3eb0e2569
b44b18082ac8fcaaf4226302e53be0ecac041fb2
e0c137d6dd7f17fa0cde4e94ce7b7bfc28a0955d7508a777a90ecd6af20df069
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 09 May 2023 16:00:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-XNQ10X1V2J
142.250.74.40200 OK 74 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-XNQ10X1V2J
IP 142.250.74.40:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintCA:2C:8E:2F:14:74:84:57:8C:39:86:59:92:AC:A1:7C:C8:FA:99:CA
ValidityMon, 17 Apr 2023 08:16:32 GMT - Mon, 10 Jul 2023 08:16:31 GMT
File type ASCII text, with very long lines (5059)
Hash b0922ecfb7149e6a4f000a2b5b3b87c1
9fc94d700e7d7b9c242760b195b6ab97e04bcdfb
d7063f500295b34e255dfc24d53aac9edece58136be334606b9ad8e690c29546
GET /gtag/js?id=G-XNQ10X1V2J HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 09 May 2023 16:00:55 GMT
expires: Tue, 09 May 2023 16:00:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73579
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sfile.mobi/includes/analytics.js
172.67.69.138200 OK 22 kB URL GET HTTP/2 sfile.mobi/includes/analytics.js
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type ASCII text, with very long lines (12884)
Hash 11f11a9177192e579d9f8d01b4470eb0
06363e5e8104cf124851cb6f9acf8e17ab0fa8ae
c02c34250922dff564644356dfca5559876b0e08323e4ff81f42ffcdb321cef0
GET /includes/analytics.js HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
cf-bgj: minify
cf-polished: origSize=52082
etag: W/"cb72-5fb3268678e55-gzip"
expires: Mon, 15 May 2023 21:48:12 GMT
last-modified: Mon, 08 May 2023 18:00:02 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 65563
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tVW0ncUaAERtpchnwBPJ38IYBX97YHWQ%2Fi6%2FtHIhdjvVr5yvXwAyqxvhQV7LK1d6SCxg9kZks7iOXT1RBj%2FivdwrmQ5l139YZfxS0uY1zpwTtvt8GJEnCLCScrA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28795ff20b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/includes/fonts/raleway-v14-latin-regular.woff2
172.67.69.138200 OK 21 kB URL GET HTTP/2 sfile.mobi/includes/fonts/raleway-v14-latin-regular.woff2
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type Web Open Font Format (Version 2), TrueType, length 20724, version 1.0\012- data
Hash 43c849ea0258ce0d23a480e840881f16
5222f2283ff9eed9c05025b15dcca453a43cb8c3
b3287a4018a220fe4a205c68bbb34a847fe5038c5dfbe575dd538df025b0497a
GET /includes/fonts/raleway-v14-latin-regular.woff2 HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-length: 20724
last-modified: Mon, 26 Aug 2019 01:13:52 GMT
etag: "50f4-590fade753400"
cache-control: max-age=604800
expires: Mon, 15 May 2023 11:03:11 GMT
x-frame-options: DENY
vary: User-Agent, Accept-Encoding
cf-cache-status: HIT
age: 104264
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vx3z51zURwaQXg7p%2FmMLE3XYuHNbVLFmf%2B27pJyGNNxu%2FNcN14OxwwSuHvkH0jYfs1lj9a3iJ1vP03iwYDp%2FygZQjgKsEqCVh0RSuF6RyqFDjXn62pOP5yajlSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b2879c8870b39-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.25.14200 OK 77 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.25.14:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sfile.mobi
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 72014
expires: Sun, 28 Apr 2024 16:00:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IVsXnSz0fSjo%2FlBiDuQBNaF%2FxlcZHgIjBCCJAGEpe%2F6hZ98miQtIbiqi6YyJxSivFp4mNsMIiAm1VK%2FJyFU2WWCaHt%2BF3NDI6Up%2B3tVxDE1%2B6n6yIkQFvSYsByfLQ%2Fffvk57Rfb0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c4b2879fdffb4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
sfile.mobi/icon/sfile-favicon.png
172.67.69.138200 OK 1.6 kB URL GET HTTP/2 sfile.mobi/icon/sfile-favicon.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c95ba8563fa6c88c0a431fc97b8175b
52d10299240136ff498c6dae3847662f9953d150
3438b8c9e88b10b9ea2cd353929ab4d345d679a842313c78123b25c290bb7902
GET /icon/sfile-favicon.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8; _ga=GA1.2.2136996745.1683648055; _gid=GA1.2.601440958.1683648055; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 1626
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2055, status=vary_header_present
etag: "807-554f42e2ce1c0"
expires: Sat, 27 May 2023 17:42:46 GMT
last-modified: Sun, 23 Jul 2017 04:03:27 GMT
vary: User-Agent, Accept-Encoding
x-frame-options: DENY
cf-cache-status: HIT
age: 1030689
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8v2edin370aegjwWa88xFIEzX0KoxcsNt25qUQApd%2Fym8FrmLnLJiUjWtLa8jtdkyWhB9VBqU3SX9UnuIQhFF0KT42PnGNF2I8y539MiBFPQb%2Bu0CvK0HBz63RA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b287a28c50b39-OSL
X-Firefox-Spdy: h2
sfile.mobi/icon/sfile-icon-192x192.png
172.67.69.138200 OK 10 kB URL GET HTTP/2 sfile.mobi/icon/sfile-icon-192x192.png
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c657c0b27e6a3e98ae2736eab216cdb3
2eab135276b13dc87bdd3314ad8d7462e8246d35
5c9d9f4629d28f3fda7ccf4bae7bf6c53285686854a238b9ac0f2bac00836cb3
GET /icon/sfile-icon-192x192.png HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8; _ga=GA1.2.2136996745.1683648055; _gid=GA1.2.601440958.1683648055; _gat=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/png
content-length: 10001
cache-control: max-age=2592000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=11566, status=vary_header_present
etag: "2d2e-572ecea29a780"
expires: Sat, 13 May 2023 23:49:40 GMT
last-modified: Wed, 08 Aug 2018 13:59:10 GMT
vary: User-Agent, Accept-Encoding
x-frame-options: DENY
cf-cache-status: HIT
age: 2218275
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0MQ6Ib%2BO4%2Fim1CKF%2BbLzNd6IeEJaR%2B1%2BT9H%2BymBfp7rP1i1CQY9BQc4FG3XzUXD6R3DUJQitUQHnJ%2FD%2F4AxnyX%2BVRQGGmg9MgvOWnj9WWp91fqcWB2Jg%2B9RUwI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b287a28c30b39-OSL
X-Firefox-Spdy: h2
sfile.mobi/includes/fonts/raleway-v14-latin-regular.woff2
172.67.69.138200 OK 21 kB URL GET HTTP/2 sfile.mobi/includes/fonts/raleway-v14-latin-regular.woff2
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type Web Open Font Format (Version 2), TrueType, length 20724, version 1.0\012- data
Hash 43c849ea0258ce0d23a480e840881f16
5222f2283ff9eed9c05025b15dcca453a43cb8c3
b3287a4018a220fe4a205c68bbb34a847fe5038c5dfbe575dd538df025b0497a
GET /includes/fonts/raleway-v14-latin-regular.woff2 HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8; _ga=GA1.1.2136996745.1683648055; _gid=GA1.2.601440958.1683648055; _gat=1; _ga_XNQ10X1V2J=GS1.1.1683648055.1.0.1683648055.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-length: 20724
last-modified: Mon, 26 Aug 2019 01:13:52 GMT
etag: "50f4-590fade753400"
cache-control: max-age=604800
expires: Mon, 15 May 2023 11:03:11 GMT
x-frame-options: DENY
vary: User-Agent, Accept-Encoding
cf-cache-status: HIT
age: 104264
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K0Bqrzvx5iH1mXztYkeg9i3xlt9eC5XabSiHpGRH6uCNkO7El4A%2Bgf7dMBYbieHlYOvbhVIj7mhOMPos0fXMiXLxxlGqTPQGpUhFXoWOL9DBXV%2Bh5%2Fu4jMwbCMU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b287af9990b39-OSL
X-Firefox-Spdy: h2
sfile.mobi/downIoad/201122/56936/6726a56e5a6faa3e5cf3ab81c523c130/vbug-by-www.anonimindo.net.apk&is
172.67.69.138302 Found 33 kB URL User Request GET HTTP/2 sfile.mobi/downIoad/201122/56936/6726a56e5a6faa3e5cf3ab81c523c130/vbug-by-www.anonimindo.net.apk&is
IP 172.67.69.138:443
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /downIoad/201122/56936/6726a56e5a6faa3e5cf3ab81c523c130/vbug-by-www.anonimindo.net.apk&is HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 09 May 2023 16:00:54 GMT
content-type: text/html; charset=UTF-8
location: https://sfile.mobi/4Dvs47Kf1e9
set-cookie: PHPSESSID=904ss6pnujq705894uqegp6du8; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: DENY
vary: User-Agent
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lJu4AzPoNAlQLkbk%2FmxiS%2BbnVg74tYosg4ePuY%2FJYeapql6bkgh94nulu3keifatQUuMke1aQ168yNA3%2FUvx96ZzlbeuqAbUfdjwzhfoZhW11DR5UIT4cm5mC2E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28735a5b0b39-OSL
X-Firefox-Spdy: h2
172.67.69.138200 OK 33 kB URL User Request GET HTTP/2 IP 172.67.69.138:443
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4Dvs47Kf1e9 HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:54 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: _v201122=1; expires=Wed, 10-May-2023 16:00:54 GMT; Max-Age=86400; path=/4Dvs47Kf1e9
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=blE79DNdsdbsYxg3U8LcowgA64Jgw8Tp2sTseIlqUHEI31zp9zox74PQUB4wOrSyAr2GJO2uyPXfVcGeknxKIWsIZ74dih1Q8ebuvMiAV4NwR0t8tPJzwoeMmNY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28757c810b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/includes/main-min.css
172.67.69.138200 OK 27 kB URL GET HTTP/2 sfile.mobi/includes/main-min.css
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type ASCII text, with very long lines (25590), with CRLF line terminators
Hash 986660afda6a541addaf77e7fb8a5d4f
cf4dba035df7a09f83d87839d41eb03a24903400
b85136bf0a494514ef0e4321ec8c6754b8f2520868b262811322a62c9863da40
GET /includes/main-min.css HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: text/css; charset=utf-8
last-modified: Sat, 05 Nov 2022 06:53:42 GMT
etag: W/"68ea-5ecb3a69a8980-gzip"
cache-control: max-age=2592000
expires: Wed, 31 May 2023 21:39:06 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 670909
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=grQ2OzLEqRLu%2BAIs6oVJsOPf6raQEPBzumpYCZtoFsgYprUTz5saf4mKSq%2B0%2BiErcrw3%2Bc%2B58DSiNbABNB2sTh4x7m1HNxaCK25qok8j2dh5KG43%2FdJa5JHFqyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28785edd0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/txt.svg
172.67.69.138200 OK 3.2 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/txt.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3461), with no line terminators
Hash 5d69bea6e596b46c47d4c48fa425cfe3
25ddd704f96d8704def4ba8faa0ca60d965ebdb4
b3355fc50d12aa158b37b16cd715a47517f45a4a521072990baf63a306e5569d
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/txt.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Sun, 23 Jul 2017 04:35:21 GMT
etag: W/"c81-554f4a0423440-gzip"
cache-control: max-age=604800
expires: Fri, 12 May 2023 20:16:07 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 330288
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vU1KX7x9mJJ5V%2FZlEEdRLXfUnR8jngdnM0oKMWEFyjzVMZKWIi%2FFquTU6pE6Ii7HiTpPZtqrPbHIcghxMyMh8KU2ATqDEByqSsaInom0wxMAm3yFQ4ferfK6wXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28787f0a0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/pdf.svg
172.67.69.138200 OK 3.8 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/pdf.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (4012), with no line terminators
Hash c3ea2f5d05f1cee5b5eb682b857d60f8
e94c3cd5bf277347cb001d1c5a8adde1097680f6
f93b9eedc014232e9248901f341e95901999b9a9aaa8ffab90bbdd7decb46a6d
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/pdf.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Sun, 23 Jul 2017 04:55:06 GMT
etag: W/"ea8-554f4e6e3de80-gzip"
cache-control: max-age=604800
expires: Sat, 13 May 2023 00:48:52 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 313922
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QruizGDHqOgRMxEcDvSHiRYv8n7cAqRfHzoL2uoPsqRvGHSHXKJeKtfBNVANWMkXSEeK7RQ1UpXjOYJdRznjkS7WR7UbsF7Ppks3%2FhIIG4bDIVE0biGeKA07Lok%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28787f090b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/ehi.svg
172.67.69.138200 OK 1.4 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/ehi.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1482), with no line terminators
Hash 72ad048c90ae60b0ef9c2f909269e44a
b713246f9b1454c586c1f597e785ae6e228fd50f
de44b6e41b9d35b46cc8ee0b59238b92f70e9c1b83a19fa2889e3d002d7b05e6
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/ehi.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Sun, 23 Jul 2017 06:12:11 GMT
etag: W/"594-554f5fa8fc4c0-gzip"
cache-control: max-age=604800
expires: Sat, 13 May 2023 07:26:07 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 290088
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GRkcTt0pOZTKZs4zeUZsvbblCcU7uhw621PoxuiiZD2vAysV5QGB0bANIlm3t533lx2OHdRm6I7Krh74HGLSgVOzJcQajS2bFwu1iBVdxpWo4Jsfb%2FvChlwDhgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28787f0d0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/apk.svg
172.67.69.138200 OK 2.5 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/apk.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2467), with no line terminators
Hash 469674871e148e599e809ddc7572d14d
99394ad1a68c8998e3fe431110833bd7e66477bd
51b16bf6325b4773905added21bd82bfbd1f8fa9ee86039bc7b3b572f376ae99
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/apk.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Sun, 23 Jul 2017 05:51:20 GMT
etag: W/"995-554f5afff0600-gzip"
cache-control: max-age=604800
expires: Mon, 15 May 2023 15:41:31 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 87564
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dIGO%2BIneZpCZh%2FuGB1YDt1DzG6m%2FWUH5vylGsjFQ0f7QVVhaDfmb0NSNBOZ9CSsU56PbxRbi7NsHlOVfoOcut1xzgdZHVUWompLTwCIos4Sfz3%2Bx3JAQTw86p1s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28785eec0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/img/Sfile-Logo.svg
172.67.69.138200 OK 5.6 kB URL GET HTTP/2 sfile.mobi/img/Sfile-Logo.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (5686), with no line terminators
Hash 29d9f3d0785d233602384223659ff407
2d87838a65792866a0a18c3d6b88b6714ba2a486
ccafb969fbadb6d9a63869f62a0538504001d5b0d59924e91ddc86b4a7b6d2f9
Analyzer Verdict Alert fortinet Malware
GET /img/Sfile-Logo.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Mon, 05 Oct 2020 09:51:24 GMT
etag: W/"15b1-5b0e96cdf5f00-gzip"
cache-control: max-age=604800
expires: Sat, 13 May 2023 16:32:11 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 257324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rye0EEh5h2qPF2c3m6OXTusyKR5Mrhn%2BwiyWBNhzFLmq8zcCXGTiQG%2BuZmHbw5X%2F3GJCpZtSDCHiP1%2B1B8yMWSm2s8temkHESs2qxu%2B9wA48Lf5kmupUsQXN%2F%2B4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28785eeb0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/hc.svg
172.67.69.138200 OK 1.9 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/hc.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2012), with no line terminators
Hash ac183bad8a9dbea7038a83b440a985dd
eac21265d4d46cd44cd2b73efdc1c12e5af9d173
62d431a9b2d8a25f68461812168eb6a82ddc27246de49e73246d215b2a431aba
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/hc.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Mon, 07 Sep 2020 16:11:11 GMT
etag: W/"77a-5aebb7786e5c0-gzip"
cache-control: max-age=604800
expires: Fri, 12 May 2023 13:48:24 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 353551
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UBcO1o%2Bj6dVERu4KcLm9stmliz%2BCKYn7RR5VYU8aLIrPyK9Ti2TYyPO0f%2BAkgK%2FR0kV14xsM6I4Hk1%2FXeQVJQ3Hw%2FOe5WVtlwHe%2BEzN%2Fv3f08WwmOnKOOHZN3u4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28787f070b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
sfile.mobi/icon/smallicon/npv4.svg
172.67.69.138200 OK 1.7 kB URL GET HTTP/2 sfile.mobi/icon/smallicon/npv4.svg
IP 172.67.69.138:443
Requested by https://sfile.mobi/4Dvs47Kf1e9
Certificate IssuerGoogle Trust Services LLC
Subject*.sfile.mobi
FingerprintF6:1C:B1:63:3E:E2:BB:F0:B1:32:47:74:FD:1D:2A:46:B9:B4:9F:2D
ValiditySat, 01 Apr 2023 08:04:46 GMT - Fri, 30 Jun 2023 08:04:45 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1816), with no line terminators
Hash c22256205cc3d0d09276e1bd374f9c98
5d0bb88215bd5d666284af22f995d304e4e9e677
64e21fce1bdd5e9475b77480999e44c238ba3157349f4f2dba1033911ec52a1b
Analyzer Verdict Alert fortinet Malware
GET /icon/smallicon/npv4.svg HTTP/1.1
Host: sfile.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sfile.mobi/4Dvs47Kf1e9
Cookie: PHPSESSID=904ss6pnujq705894uqegp6du8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 09 May 2023 16:00:55 GMT
content-type: image/svg+xml
last-modified: Wed, 23 Jun 2021 01:54:25 GMT
etag: W/"6a8-5c5652fa0f640-gzip"
cache-control: max-age=604800
expires: Sat, 13 May 2023 16:32:11 GMT
vary: Accept-Encoding,User-Agent
x-frame-options: DENY
cf-cache-status: HIT
age: 257324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6mSVQw54JphA7kRWVDjNMYQrqZCBSFRr4fCE%2FW3KHopq%2BrDh2%2BwjZMLZdMEr0aPfP8v9fZG4AqBzsvWWQ8zDfGPMjhwVcNwnSYx7CB5fXD51P1uv86NVeSjpOik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c4b28787f0b0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2