| filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar | 188.114.96.1 | 200 OK | 0 B |
URL User Request GET HTTP/2filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 13 Apr 2023 15:21:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 13 Apr 2023 16:21:23 GMT
Location: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BFw9hRNlPCRhTWieMQDH0QbVQJHmphhf7ZR1SvkrBL9JJekCNiXVmGnKsfOokfBmf1ficRzg%2Bx4CPxtgznVqtqFOnd61jkvs5I0srSu1ncqchU7m0LZURd1kuoobJ14%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b74b2d46f8fb50f-OSL
alt-svc: h2=":443"; ma=60
|
|
| filerice.com/xfst_theme2/img/logo.png | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/3filerice.com/xfst_theme2/img/logo.png IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typePNG image data, 169 x 44, 8-bit/color RGBA, non-interlaced\012- data Hash0e8583813d1e63acecfd5efbd9fdc41a ffecb93b48d7d1ae7d46d6483f6e3aa918e1d433 ab3204267a65aa6ea380253f12c75f3a1042b18e89701fa3532bd9054743c846
GET /xfst_theme2/img/logo.png HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: image/png
content-length: 1429
last-modified: Mon, 26 Dec 2022 09:17:32 GMT
etag: "595-5f0b79ae6fc30"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s3HXL6dIekz4QfOS8N%2F8kHjxFHeNmtNOE09Dr1PmZInLztq1d4i8qRxmD0inyMbVpQO40UwiSL3UsRAD%2FcznOX2DL9JVSk2x9AHIoEFUMVwLOJEzWA1pyM2A%2B1jX%2FOM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db0ef1b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js | 104.17.25.14 | 200 OK | 6.6 kB |
URL GET HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP104.17.25.14:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File typeASCII text, with very long lines (20831) Hash368c425fc94c424e1688caadefbed981 13d24c22c199ef6668d758434819f44307a65094 ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 15:21:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 677335
expires: Tue, 02 Apr 2024 15:21:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DEhEI2MzsBl0XP5IQFl3gw14HT8VQ3JpohVmX4G4CsO6e1UZdARWk1LlAmCJO8ob8OMrUgzO3BZw8%2FA%2BB%2FtnIfwDsK4uxqqg4ZcsuQrOi2Zhj%2FJjw4crOftlmqPkfZAL3ArBqHqi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b74b2db4d4ab51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| filerice.com/xfst_theme2/js/jquery-1.9.1.min.js | 188.114.97.1 | 200 OK | 34 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/jquery-1.9.1.min.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeASCII text, with very long lines (32089) Hash32dc1d320f411ea220c8e1da4e768cb4 8e7849be74083b090de768e3979256dc6e389326 55338c21d0e3a049ad2d2aa620ac40a52f2d8bf99133f3242cc5e6a52b86a7e9
GET /xfst_theme2/js/jquery-1.9.1.min.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:53 GMT
etag: W/"169d5-5f0925dd07f22"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=abZIsUdQ2b5Q98M1sf42ejJVkvrYXzALdBQeAQeaigkCi46%2F1QOBv0f0ZDBH5xlwymSkm39BBM3pXqA%2BgPBjqMrzNWCoQbeBV3E%2BNSYRTVvI6tvsAnwJMJDvZYR3v2E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2dafed6b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| filerice.com/xfst_theme2/js/jquery.cookie.js | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/jquery.cookie.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
Hash1a79bc7cb78c2aa8d5f8c58704417cf2 62e877ab636f66b1a2ce68406bd73982b49ae110 2993c493c256ef49dc093670b976489edd381d8e12cda6ec0afe4e1c8b46eea9
GET /xfst_theme2/js/jquery.cookie.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:54 GMT
etag: W/"c31-5f0925de54364"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZoQob05xYiQ%2FAyX%2FpCDNN%2FBqJFR9k3zSJqBzm2cCuTZM48sSGZ1%2BWooTCGjF%2Bhz9f9sdh5vaWh%2FQ7m0STdok6fRQ%2FK346uURfmu3Uvz%2FnK01siV99%2B5jiHslRp%2BK2v0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2dafeddb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| filerice.com/xfst_theme2/js/script.js | 188.114.97.1 | 200 OK | 690 B |
URL GET HTTP/3filerice.com/xfst_theme2/js/script.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
Hash06b8427b0c36acef9ae8039b6cbdff9e 199c25d48992764e4b2c06309d47283cac558e13 4058954478eea16d275ac40c7caa2f0555b81eb24eefb9feb4899f6895e0bba9
GET /xfst_theme2/js/script.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Tue, 04 Apr 2023 08:00:10 GMT
etag: W/"209-5f87e1085b124"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UMsED4dXz9EIiHo0yuiPWaJAf1z0PxKkPfXBBLavWLO37uJHFHG98A%2Bm5KEI1cbdMgyX8uWzaKJKbtx5x0cyyJifspfhxI%2FMui1VS4gqwWCoo5N9m2SABNcOvFyZvKw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db1f01b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-VV9SZWVMLV | 142.250.74.168 | 200 OK | 84 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-VV9SZWVMLV IP142.250.74.168:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint3C:0B:85:94:2A:86:0A:B3:D0:9E:43:A9:87:6A:FB:56:49:9F:F6:B8 ValidityMon, 20 Mar 2023 08:17:43 GMT - Mon, 12 Jun 2023 08:17:42 GMT
File typeASCII text, with very long lines (30260) Hash190b5caa82dddb0aecbbf159fb881295 5ea69d95d7f277b154e1a0d14df919c383e4537e 9030acdf7c3fe6898311cd1e4c8ea440071de91ee2964622754ee4e775b470f7
GET /gtag/js?id=G-VV9SZWVMLV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 13 Apr 2023 15:21:25 GMT
expires: Thu, 13 Apr 2023 15:21:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83939
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 471 B |
IP142.250.74.3:0
Hash81375129214a57d2dc6793c1f3ac675a d123df1cd6676e813a0dc11b5226616449ba6ef1 c08b4485550568c320579d60318c5b1fea9220df17e490418a561b541f6f2441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 15:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap IP142.250.74.106:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint77:43:87:91:D0:0A:64:BD:84:1C:9A:F5:10:86:8E:8E:04:F1:F9:A3 ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
Hash57187156d180b31e2bab8a6a61cc14fe 587e462745cf0554c1bee67e68017679cd913e11 64ebe34707de804f64ae1beb9aed81a53bd1bfc18e1465fd4183f127f498b406
GET /css2?family=Montserrat:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 13 Apr 2023 15:21:25 GMT
date: Thu, 13 Apr 2023 15:21:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| filerice.com/xfst_theme2/fa/webfonts/fa-duotone-900.woff2 | 188.114.97.1 | 200 OK | 166 kB |
URL GET HTTP/3filerice.com/xfst_theme2/fa/webfonts/fa-duotone-900.woff2 IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 165712, version 330.15859\012- data Size166 kB (165712 bytes) Hash76b9d9788f37e68cc80dbe9349de7c65 6b3ede5185b085cc696be94d6ff7d1a389a225ae 3477023d8b7129eb517abf377492a608f2469ae91405fa62974e6771751e04ae
GET /xfst_theme2/fa/webfonts/fa-duotone-900.woff2 HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/xfst_theme2/css/style.min.css
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:25 GMT
content-length: 165712
last-modified: Sat, 24 Dec 2022 12:52:13 GMT
etag: "28750-5f0925f015bd5"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hyx%2FHTpluo052Dnh%2B8EPIBrSnJ7JPQLd6ZA5WqcU%2BaDLfTLhU7lpTivM53d%2FQYcEK6ohAc0qPoCJG449m2he%2BoOsDDZW%2Bbr5arFKxT10qSsI3mky%2BReKN9si8uLG6as%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2dd199cb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 471 B |
IP142.250.74.3:0
Hash0643034ab43fe83d85a590124af08587 920ae732b3a3b1a95081451dcf91ab9e85e35155 ef609fa9ecb60a2afac7fc0e6cff8e68182a1b78a0066541df5cb2b0b038c910
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 15:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 471 B |
IP142.250.74.3:0
Hash0643034ab43fe83d85a590124af08587 920ae732b3a3b1a95081451dcf91ab9e85e35155 ef609fa9ecb60a2afac7fc0e6cff8e68182a1b78a0066541df5cb2b0b038c910
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 15:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 471 B |
IP142.250.74.3:0
Hash0643034ab43fe83d85a590124af08587 920ae732b3a3b1a95081451dcf91ab9e85e35155 ef609fa9ecb60a2afac7fc0e6cff8e68182a1b78a0066541df5cb2b0b038c910
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 15:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| filerice.com/xfst_theme2/js/clipboard.min.js | 188.114.97.1 | 200 OK | 34 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/clipboard.min.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeUnicode text, UTF-8 text, with very long lines (10809) Hasheccd3eea2385017844a984d3710e3fd2 6f6e7c1c2337d8aff9688feced29e8b5580d742b 110ac2ab0667b38e23f87b3422d5050728f34de25d20969b376936b8ecf142f7
GET /xfst_theme2/js/clipboard.min.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:51 GMT
etag: W/"2aa5-5f0925dace233"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G3xxDEAAIxfy8S9XFs93CMi5zFkGlDWfdagc%2Fjd5c9Z02R3ZYVSTzbNy3bNczzL0OwCUutO%2B0TEBYSlcAD8beOi9aJTe6xUhu%2FMNfhq5WxVww7WjK5C8iB%2FGtcO4KYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db1ef8b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22 ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://filerice.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Apr 2023 14:29:42 GMT
expires: Thu, 11 Apr 2024 14:29:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 89503
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 31 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22 ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://filerice.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Apr 2023 14:29:42 GMT
expires: Thu, 11 Apr 2024 14:29:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
age: 89503
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | | 471 B |
IP142.250.74.3:0
Hash0643034ab43fe83d85a590124af08587 920ae732b3a3b1a95081451dcf91ab9e85e35155 ef609fa9ecb60a2afac7fc0e6cff8e68182a1b78a0066541df5cb2b0b038c910
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 15:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| filerice.com/xfst_theme2/css/style.min.css | 188.114.97.1 | 200 OK | 46 kB |
URL GET HTTP/3filerice.com/xfst_theme2/css/style.min.css IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeassembler source, ASCII text, with very long lines (61504) Hash204886a82fc501be0f1819ebc56fcf99 7329f09984ab3c81bf97583f5e95b66af989013a 65a11db222604a2f747fdb93ac06b7ad8fb818ef82d4cb5ae8a8173479988b09
GET /xfst_theme2/css/style.min.css HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: text/css
last-modified: Fri, 03 Mar 2023 04:38:20 GMT
etag: W/"2e7cc-5f5f783c4e700"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ecGzy1LobByXhDUT2o6FhAseuiWNfZv6ZAtfmBxU5xRVdyqztIa1bBSUmSGuBjLMb2lD4xCEmJ9AU0Q%2B19RsOCwXKzvQLQN2HsbxNnne9A1m9f5kJY%2Bcg3rAsIs%2BAE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db0ee9b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| ocsp.r2m01.amazontrust.com/ | 54.230.80.227 | | 471 B |
URL ocsp.r2m01.amazontrust.com/ IP54.230.80.227:0
Hash204c06c67dab4319a44c8cc8181ef9cd 27498168e88a4b5a1748a4f1ff6dee5ece836121 24d2af52d40fd8bf71c94b0258e442b56b89f5f907af22dfee22932df500fd1e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=97123
Date: Thu, 13 Apr 2023 15:21:26 GMT
Etag: "6436dcc8-1d7"
Expires: Fri, 14 Apr 2023 18:20:09 GMT
Last-Modified: Wed, 12 Apr 2023 16:31:04 GMT
Server: ECAcc (nya/78E9)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bvXw-9j7iGn1cRDt6U3B9sMl8XUPaQegpOTioNUCJU4yARBfhSw0Nw==
Age: 6545
|
|
| simplewebanalysis.com/stats | 3.65.16.149 | 200 OK | 40 B |
URL GET HTTP/2simplewebanalysis.com/stats IP3.65.16.149:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerAmazon Subjectsimplewebanalysis.com FingerprintE5:9D:30:D3:0E:8A:EF:0D:43:46:4C:4C:53:AD:05:78:63:E9:04:07 ValidityThu, 02 Mar 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash6972d65a1ec9e47705ca8ed151aad427 bbfa7319df2cd2bcc48f56e2fc24046c5473030f e368c43e4cf7b476876a24c29ef60c49272fcec359955aef0bbef53098c07ecf
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filerice.com
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://filerice.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=48d1202f-2d4d-461e-b9ee-46452a8c761a:1:1; expires=Sun, 10 Apr 2033 15:21:26 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| filerice.com/android-icon-192x192.png | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/3filerice.com/android-icon-192x192.png IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typePNG image data, 192 x 192, 8-bit grayscale, non-interlaced\012- data Hashe78f48261878796d473380899a95440a 8f042a70f7212fb61d61e1335c83a3714776c728 8c8779fdbb36867206d11e055030cbece5d72fc132a6a88970bd558e0a7b6706
GET /android-icon-192x192.png HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ; _ga_VV9SZWVMLV=GS1.1.1681399336.1.0.1681399336.0.0.0; _ga=GA1.1.1869641290.1681399336; dom3ic8zudi28v8lr6fgphwffqoz0j6c=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: image/png
content-length: 1515
last-modified: Tue, 27 Dec 2022 02:18:45 GMT
etag: "5eb-5f0c5df0dcb40"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1227
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5vdhrgK7Vw3O2qAG0%2Bbuxk5H7upxpyVaOOYxTqDCjYG%2B0mPr1HWsDhY%2B3nbx0zW%2F3MzmyWKIZd9jpxPSJDYmFv9NIrDjQxnDOk64sY6%2Fa0wmoUzI5c65OoBhDOALnb8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2e3fba5b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| client.crisp.chat/static/stylesheets/client_default.css?d2149b0 | 104.18.29.91 | 200 OK | 48 kB |
URL GET HTTP/3client.crisp.chat/static/stylesheets/client_default.css?d2149b0 IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File typeUnicode text, UTF-8 text, with very long lines (65436) Hash8d81dd674e4a00bc31deb6ae29aaabea 8522128a353f5870ed6e280e699d070ca54e76b2 eada2d04fe9f97afa7c10e3dff1604a004cb1ca348a300a6c3f509c64b8e9bbd
GET /static/stylesheets/client_default.css?d2149b0 HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: client.crisp.chat
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: text/css
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=315360000
cross-origin-resource-policy: cross-origin
etag: W/"642ad5e4-56afb"
expires: Sun, 10 Apr 2033 15:21:26 GMT
last-modified: Mon, 03 Apr 2023 13:34:28 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6317
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e1bf57b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| shredvealdone.com/watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1 | 192.243.61.225 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1shredvealdone.com/watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1 IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerLet's Encrypt Subject*.shredvealdone.com Fingerprint45:2B:81:6A:29:8B:1A:10:56:D7:19:A9:11:A6:35:8F:F6:08:C5:DB ValiditySun, 02 Apr 2023 04:13:46 GMT - Sat, 01 Jul 2023 04:13:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1 HTTP/1.1
Host: shredvealdone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filerice.com
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Thu, 13 Apr 2023 15:21:26 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filerice.com
Access-Control-Allow-Origin: https://filerice.com
Access-Control-Allow-Credentials: true
Location: https://shredvealdone.com/watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1&shu=39baaf4cc22d160c8d192c8673ee22e713e23b89f9bf702717bf51f19e4061c44a9095b4cfd5b981086b3e3a1ac9e8ff1d5db38a61ba8fbc9de0c2974c82b353e7702b21c4418f59e2d36a334313b48f8c01ad5c9a0215769cda044b70&pst=1681399346&rmtc=t
Set-Cookie: u_pl=18310778; expires=Fri, 14 Apr 2023 15:21:26 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxODMxMDc3OCwiayI6IjVmOTQ3MjY2OTkzZjRkZGI2NWNiYjg5ZTNkNjhmODkyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyMjExMTU5LCJwaWQiOjY4MDA1MywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxNiwiYWlkIjo1LCJwdCI6NCwicGsiOiJua2U5enB4cyIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjoxNzkwODg5NDgsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTI0Mzg2LCJibiI6IkZpcmVmb3giLCJidiI6IjExMS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vZmlsZXJpY2UuY29tL2g4NnFiZ3A2eXVmNi8zNDk0MzFfM3hwbGFuZXRfVW5jZW4tbGVha2VkX1NOSVMtNjM2LnBhcnQyLnJhciJ9fQ.l4P1CKHJRqjYGJjRDMSxd3SAgVbCP06tco-AZE6JYOw; expires=Thu, 13 Apr 2023 15:22:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 215c303fbb7d0704572d807b35550ccf
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| client.crisp.chat/static/javascripts/locales/en.js?d2149b0 | 104.18.29.91 | 200 OK | 5.0 kB |
URL GET HTTP/3client.crisp.chat/static/javascripts/locales/en.js?d2149b0 IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (6814) Hashdc2394672469bd840397725b8d327ede 1f073a6d5450c643568d4889d37300cf182b3050 705e8affac56b08c3661ce5d211c38bf871f3f4f570b2f62f6d31c5ec459a7ee
GET /static/javascripts/locales/en.js?d2149b0 HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: client.crisp.chat
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: application/javascript
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=315360000
cross-origin-resource-policy: cross-origin
etag: W/"62a737a2-1afc"
expires: Sun, 10 Apr 2033 15:21:26 GMT
last-modified: Mon, 13 Jun 2022 13:12:02 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6300
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e69e2db524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png | 45.133.44.10 | 200 OK | 145 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com Fingerprint6F:9C:41:9B:BA:6A:17:A2:42:F8:28:FF:ED:09:F8:26:12:F1:4C:7B ValidityThu, 30 Mar 2023 06:08:09 GMT - Wed, 28 Jun 2023 06:08:08 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data Size145 kB (145012 bytes) Hash620dee7dda3ab0a55fef5e66735e48e1 c03458e7950bed758e4352ec7a78bb434a3164b1 8552142726040854ba6a1d57037aa513e8cb424e3e5b96f017fb742f7c9255c3
GET /cti/bb/16/b7/bb16b71b76fc43a6abd135721b32a822/1658915518.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 15:21:27 GMT
content-type: image/png
content-length: 145012
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 09:52:06 GMT
etag: "62e10ac6-23674"
expires: Sat, 15 Apr 2023 15:21:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| shredvealdone.com/watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1&shu=39baaf4cc22d160c8d192c8673ee22e713e23b89f9bf702717bf51f19e4061c44a9095b4cfd5b981086b3e3a1ac9e8ff1d5db38a61ba8fbc9de0c2974c82b353e7702b21c4418f59e2d36a334313b48f8c01ad5c9a0215769cda044b70&pst=1681399346&rmtc=t | 192.243.61.225 | 200 OK | 4.0 kB |
URL GET HTTP/1.1shredvealdone.com/watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1&shu=39baaf4cc22d160c8d192c8673ee22e713e23b89f9bf702717bf51f19e4061c44a9095b4cfd5b981086b3e3a1ac9e8ff1d5db38a61ba8fbc9de0c2974c82b353e7702b21c4418f59e2d36a334313b48f8c01ad5c9a0215769cda044b70&pst=1681399346&rmtc=t IP192.243.61.225:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerLet's Encrypt Subject*.shredvealdone.com Fingerprint45:2B:81:6A:29:8B:1A:10:56:D7:19:A9:11:A6:35:8F:F6:08:C5:DB ValiditySun, 02 Apr 2023 04:13:46 GMT - Sat, 01 Jul 2023 04:13:45 GMT
File typeHTML document text\012- HTML document, ASCII text, with very long lines (4012), with no line terminators Hashceaa0838a4e2a673a56056f1d90da6dd 7fda1d2edc65f9832293db081858b549348f19ad 896629077dabc7d7bdda7ad66fd355c3b9ccfa9446abfe68a460db7a0a527456
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.81076404037.js?key=5f947266993f4ddb65cbb89e3d68f892&kw=%5B%22download%22%2C%22349431%22%2C%22uncen%22%2C%22leaked%22%2C%22snis%22%2C%22636%22%2C%22part2%22%2C%22rar%22%5D&refer=https%3A%2F%2Ffilerice.com%2Fh86qbgp6yuf6%2F349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar&tz=0&dev=e&res=12.2079&uuid=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1&shu=39baaf4cc22d160c8d192c8673ee22e713e23b89f9bf702717bf51f19e4061c44a9095b4cfd5b981086b3e3a1ac9e8ff1d5db38a61ba8fbc9de0c2974c82b353e7702b21c4418f59e2d36a334313b48f8c01ad5c9a0215769cda044b70&pst=1681399346&rmtc=t HTTP/1.1
Host: shredvealdone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filerice.com
Referer: https://filerice.com/
Connection: keep-alive
Cookie: u_pl=18310778; ain=eyJhbGciOiJIUzI1NiJ9.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.l4P1CKHJRqjYGJjRDMSxd3SAgVbCP06tco-AZE6JYOw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 13 Apr 2023 15:21:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://filerice.com
Access-Control-Allow-Origin: https://filerice.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=48d1202f-2d4d-461e-b9ee-46452a8c761a:1:1; expires=Thu, 20 Apr 2023 15:21:26 GMT; secure; SameSite=None
iprc8bb82191278a6c97dcd681f446aff037=3569681; expires=Thu, 13 Apr 2023 19:21:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 14 Apr 2023 15:21:26 GMT; secure; SameSite=None
uncs=1; expires=Fri, 14 Apr 2023 15:21:26 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 14 Apr 2023 15:21:26 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 14 Apr 2023 15:21:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6fe9a94c3b5d9983f211c088fa87c885
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| client.crisp.chat/settings/website/43511e03-50ac-40ce-959c-630103e65274/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-3-13-15-22 | 104.18.29.91 | 200 OK | 212 B |
URL GET HTTP/3client.crisp.chat/settings/website/43511e03-50ac-40ce-959c-630103e65274/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-3-13-15-22 IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File typeASCII text, with no line terminators Hash9a5747560bb784082bc92e210c1d04ed c1865cdae6ba7639b36f1daa548d5938db1937af 5b1ba2c588ceed042aa0eb33f62805bed520e71b0923d810c87ef97dd178925d
GET /settings/website/43511e03-50ac-40ce-959c-630103e65274/prelude/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&2023-3-13-15-22 HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: client.crisp.chat
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
expires: Thu, 13 Apr 2023 19:21:26 GMT
vary: Accept-Encoding
last-modified: Thu, 13 Apr 2023 15:21:26 GMT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e2e8e3b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| client.crisp.chat/settings/website/43511e03-50ac-40ce-959c-630103e65274/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1680939934780 | 104.18.29.91 | 200 OK | 1.6 kB |
URL GET HTTP/3client.crisp.chat/settings/website/43511e03-50ac-40ce-959c-630103e65274/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1680939934780 IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (1786), with no line terminators Hashb7e2f8f2d6feeb8439ad33403d3da4e0 290def721b992e77070f512fe99958bfd97ed7d1 6af7229f71cb4b79375e44397965bee1d4ed228e1c59e917131f3760707be3d7
GET /settings/website/43511e03-50ac-40ce-959c-630103e65274/?callback=window.%24__CRISP_INSTANCE.__spool.website_handler&1680939934780 HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: client.crisp.chat
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=14400
cross-origin-resource-policy: cross-origin
expires: Thu, 13 Apr 2023 19:21:26 GMT
vary: Accept-Encoding
last-modified: Thu, 13 Apr 2023 14:11:39 GMT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e65de6b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap | 142.250.74.106 | 200 OK | 12 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap IP142.250.74.106:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint77:43:87:91:D0:0A:64:BD:84:1C:9A:F5:10:86:8E:8E:04:F1:F9:A3 ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
Hashdc2b7bd667459d53b5f30e9c660d290d 5cb7fad1bb1208033d299486de96d1143c57134d d6b678039702ff92f676b40559d3d0567f9a712a3e215dec05b84b9df9b2ec79
GET /css2?family=Karla:wght@200;300;400;500&family=Source+Sans+Pro:wght@200;300;400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 13 Apr 2023 15:21:25 GMT
date: Thu, 13 Apr 2023 15:21:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| filerice.com/xfst_theme2/js/jquery.paging.js | 188.114.97.1 | 200 OK | 19 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/jquery.paging.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
Hashd7a2c1c7af2a004a6d68e1e55b1cfb46 7fd6daa7076c30381880519ad06ef5639b19ee28 c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6
GET /xfst_theme2/js/jquery.paging.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:55 GMT
etag: W/"4ba5-5f0925df2918c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J2dOYCAhhJq6BCia7N4oa9AhHcDhuuuTn845EdgQoPA1%2B9KdUjGH2aiMy21kR9tGrirFtBTltxbFX3qd6Anql0BSBRD1l%2FLSvF7LnttrzfDj6UNIi4O%2FTCXiDxxZEqw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2dafed9b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| www.effectivecreativeformat.com/5f947266993f4ddb65cbb89e3d68f892/invoke.js | 173.233.137.36 | 200 OK | 27 kB |
URL GET HTTP/1.1www.effectivecreativeformat.com/5f947266993f4ddb65cbb89e3d68f892/invoke.js IP173.233.137.36:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerLet's Encrypt Subjecteffectivecreativeformat.com Fingerprint2E:A8:8E:04:6C:1D:60:E4:EA:69:33:A0:1B:3C:D9:7E:08:39:B8:B8 ValidityTue, 21 Feb 2023 06:13:46 GMT - Mon, 22 May 2023 06:13:45 GMT
File typeexported SGML document, ASCII text, with very long lines (26943), with no line terminators Hash701f5e9dd5eabaaa2569384b94857e6c e271c9640fad0db9f9de5ac8f5bf84e4f6c09c29 0540635f1e298fa47c6015dbb759676f0d1e7689edd5cedf1bc6b841321c67f0
GET /5f947266993f4ddb65cbb89e3d68f892/invoke.js HTTP/1.1
Host: www.effectivecreativeformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 13 Apr 2023 15:21:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 00676b36b40773acbc2a1b434bd55cd9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| filerice.com/xfst_theme2/js/bootstrap.min.js | 188.114.97.1 | 200 OK | 58 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/bootstrap.min.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeASCII text, with very long lines (57791) Hashe1d98d47689e00f8ecbc5d9f61bdb42e 6778fed3cf095a318141a31f455c8f4663885bde 0a34a87842c539c1f4feec56bba982fd596b73500046a6e6fe38a22260c6577b
GET /xfst_theme2/js/bootstrap.min.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:50 GMT
etag: W/"e2d8-5f0925d9f9fc3"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JdqHbWBnV9mUd0epjWHXbo9THE4FZixBpaFjz%2FkP9FasNDg%2Fo4J91AtQga4A9dRZsZQ3QL1H78%2F8WffOSsAFgYM6rzlQseAXVdbodQL7QcvA%2FmirNDbzhSkZ1XL4WHE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db1ef9b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| client.crisp.chat/static/javascripts/client.js?d2149b0 | 104.18.29.91 | 200 OK | 411 kB |
URL GET HTTP/3client.crisp.chat/static/javascripts/client.js?d2149b0 IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
Size411 kB (411268 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/javascripts/client.js?d2149b0 HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: client.crisp.chat
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: application/javascript
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=315360000
cross-origin-resource-policy: cross-origin
etag: W/"62a737a2-64684"
expires: Sun, 10 Apr 2033 15:21:26 GMT
last-modified: Mon, 13 Jun 2022 13:12:02 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6317
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e1bf54b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| client.crisp.chat/l.js | 104.18.29.91 | 200 OK | 8.4 kB |
IP104.18.29.91:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerCloudflare, Inc. Subjectcrisp.chat Fingerprint2C:C1:6E:7F:ED:D7:B5:B5:E9:5A:E7:94:B7:9E:47:B0:90:F7:E5:D3 ValidityTue, 07 Jun 2022 00:00:00 GMT - Tue, 06 Jun 2023 23:59:59 GMT
File typeASCII text, with very long lines (8670), with no line terminators Hash6049cd4f090c2bc329364e4946a823f1 0825603db1dec50b9e4bd10c05af697baa08d51e 13abb9d031815d62bad706693babad7fae836ddf58cae3a99191d9844b3e484e
GET /l.js HTTP/1.1
Host: client.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filerice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 15:21:25 GMT
content-type: application/javascript
access-control-allow-credentials: false
access-control-allow-headers: Content-Type, Origin
access-control-allow-methods: HEAD, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 300
cache-control: public, max-age=86400
cross-origin-resource-policy: cross-origin
etag: W/"622f402b-20d1"
expires: Fri, 14 Apr 2023 15:21:25 GMT
last-modified: Mon, 14 Mar 2022 13:16:27 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 6343
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7b74b2e16801b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| client.relay.crisp.chat/w/58/?EIO=4&transport=websocket | 64.227.36.222 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1client.relay.crisp.chat/w/58/?EIO=4&transport=websocket IP64.227.36.222:443 ASN#14061 DIGITALOCEAN-ASN
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerSectigo Limited Subjectclient.relay.crisp.chat FingerprintDE:C1:D0:92:2F:AB:BF:30:B3:AB:23:6A:61:3D:EB:7F:F0:5E:2E:EC ValidityTue, 07 Jun 2022 00:00:00 GMT - Sat, 08 Jul 2023 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /w/58/?EIO=4&transport=websocket HTTP/1.1
Host: client.relay.crisp.chat
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://filerice.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: utBUsQd+UMdNP5m3iYgqUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 13 Apr 2023 15:21:26 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jotrfnIKrZG5zK80DozB4NZBKOE=
X-Crisp-Ray: website w:58 10.133.35.18:3000
Access-Control-Allow-Headers: Content-Type, Origin, Upgrade
Access-Control-Allow-Methods: HEAD, GET, OPTIONS
Access-Control-Allow-Credentials: false
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 300
|
|
| filerice.com/favicon.ico | 188.114.97.1 | 200 OK | 1.2 kB |
IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Hashbecd95e13e9651529a5c4a6c3651417a d86cebea15cce61f0c5828fc252ae51e21497c6a 9387d4f33ff9ed20fbbe31edef090d6814b2b15008fe6643f28af4c7da4589f0
GET /favicon.ico HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ; _ga_VV9SZWVMLV=GS1.1.1681399336.1.0.1681399336.0.0.0; _ga=GA1.1.1869641290.1681399336; dom3ic8zudi28v8lr6fgphwffqoz0j6c=48d1202f-2d4d-461e-b9ee-46452a8c761a%3A1%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:26 GMT
content-type: image/vnd.microsoft.icon
last-modified: Tue, 27 Dec 2022 02:18:45 GMT
etag: W/"47e-5f0c5df0dcb40"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1227
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kd3YsDLNerzkEzx5aNxlaJ8LjIqLx%2FgtoFzAkJOgfF7l78qNcmoGp5Dlfa1vjh2FFjvBR6Zr%2BbRZUOA%2Bfwj8SfWw1Bt4DCiSx6ego381i7%2FJPzzK5fjGEd6fIciKkMQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2e3fba2b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| filerice.com/xfst_theme2/js/paging.js | 188.114.97.1 | 200 OK | 1.8 kB |
URL GET HTTP/3filerice.com/xfst_theme2/js/paging.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeHTML document, ASCII text, with very long lines (1921), with no line terminators Hash7e6d789ff68f5a194bf499a29605ca56 41e6fe1bac89caab4600cfba5c56279c3dc2eada 46386c4f2b85b7c26389b6aa77d622fbdd9f28fbba6436619ce25c73549ff5df
GET /xfst_theme2/js/paging.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:58 GMT
etag: W/"739-5f0925e2541bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hjtowuRjK6cgLe9zVCJ%2BHcNiTVifr2QqW9lHN1%2FU6tDVYgjBc9iyjho6K3eSZp6YUpf5eodI47yWOrEhvrFF1lASwEZKUwi1iF4vDeg%2Fk%2BzBtSMpF8pjB0sF8%2Fdxxio%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db0ee1b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| filerice.com/xfst_theme2/js/main.js | 188.114.97.1 | 200 OK | 452 B |
URL GET HTTP/3filerice.com/xfst_theme2/js/main.js IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeASCII text, with very long lines (480), with no line terminators Hashb1fcac5b762af5f678fca2e5cd8f60d8 cfb23198575f5622e7e628abbc3c3ece425969b0 0bef1d529ca0874ae96526abafd137986d21768a530d113cc70f0159167794af
GET /xfst_theme2/js/main.js HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:24 GMT
content-type: application/javascript
last-modified: Sat, 24 Dec 2022 12:51:56 GMT
etag: W/"1c4-5f0925dffb4bc"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YXBHQF%2BSloriG5guEafeUBeb9VPTxjEvYN8P1DTU5f2TTnN49I%2Fynlox7gMvGUy49tzXMQ3wLDVgQfjKLPSGovw481VIiMuiCJCmhQWTzfzcNwlEXXuzDkTY6n7y6mY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2db1ef6b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|
| filerice.com/xfst_theme2/css/bootstrap.min.css | 188.114.97.1 | 200 OK | 156 kB |
URL GET HTTP/3filerice.com/xfst_theme2/css/bootstrap.min.css IP188.114.97.1:443
Requested byhttps://filerice.com/h86qbgp6yuf6/349431_3xplanet_Uncen-leaked_SNIS-636.part2.rar CertificateIssuerGoogle Trust Services LLC Subject*.filerice.com Fingerprint7A:A6:E9:E4:FC:D9:85:BE:8F:E4:37:64:22:CF:D2:C5:B3:01:34:90 ValiditySun, 19 Feb 2023 17:15:04 GMT - Sat, 20 May 2023 17:15:03 GMT
File typeASCII text, with very long lines (65324) Size156 kB (155745 bytes) Hash6cd44014a337c34bfdcb27c1919fbe8f 61f43fdeb1960e096aad30a571f9d77a1f065c8c 972146e9fb595a457c66f3ba9fc29fe7b00780940da8999e17290466d9669837
GET /xfst_theme2/css/bootstrap.min.css HTTP/1.1
Host: filerice.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: filerice.com
Connection: keep-alive
Referer: https://filerice.com/xfst_theme2/css/style.min.css
Cookie: lang=english; affiliate=Fw9UwYMI5D4hxJ6Ccr1NAkpxCKdWdeuy11N7VAjTZK27RsZvarNAHyayFckLIJ%2Fde2PhAMV3K4jdwjYuTS5OW8NOTSaRl1Nb6zMnM8rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 15:21:25 GMT
content-type: text/css
last-modified: Wed, 18 Jan 2023 14:44:32 GMT
etag: W/"26061-5f28adab11400"
cache-control: max-age=14400
cf-cache-status: HIT
age: 1230
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5utgOgjMhcsQGgRQLkgHsIfzkRGaY%2Fs0htJu6nJa6fJ0fhRoFL7LpLeVkF8UYq9XB7q6GsXW9mdM5M8LjbshjKUuPT%2FV%2BBoUabBt%2BHGSeRvdBEowHf7cJmAFCBw9UDw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b74b2dbeffcb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
|
|