| anonymfile.com/gz5kO/100k-samples.txt | 138.201.48.112 | 301 Moved Permanently | 162 B |
URL HTTP/1.1anonymfile.com/gz5kO/100k-samples.txt IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /gz5kO/100k-samples.txt HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 09 Dec 2022 04:16:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://anonymfile.com/gz5kO/100k-samples.txt
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash7181eff9c60e83eb0004ece591e47dca 0fd8cd0c9d10b0547938982e57d2c43e2d98679f 89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7396
Expires: Fri, 09 Dec 2022 06:20:04 GMT
Date: Fri, 09 Dec 2022 04:16:48 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashaea93551fa9deb76ae49a3b4019d64fe e3b8862057ebe839959228e42246d7b1807fc90c 7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3882
Expires: Fri, 09 Dec 2022 05:21:30 GMT
Date: Fri, 09 Dec 2022 04:16:48 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 04:08:17 GMT
content-type: application/json
age: 511
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3533
Expires: Fri, 09 Dec 2022 05:15:41 GMT
Date: Fri, 09 Dec 2022 04:16:48 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bo+ZCOLnYTqR+nXA99EvwsujI9k2NJ3TWPc+VTV6pUMsh46WNYnU3tEJ+XIFqrFV9ZuLvQ1XjAA=
x-amz-request-id: F9PA67H3V4XKGRFS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 03:50:06 GMT
age: 1602
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| anonymfile.com/css/theme.min.css | 138.201.48.112 | 200 OK | 75 kB |
URL HTTP/2anonymfile.com/css/theme.min.css IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typeUnicode text, UTF-8 text, with very long lines (65533), with no line terminators Hash65c31d311ae68e4aabece34b7545367b 7e4f7469233e4d26c716c6f8630e1d83a4625d20 6f3f8aa982c4b3661a2d02193f0b21b313a408076802980ea8662dcd6b42eee5
GET /css/theme.min.css HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: text/css
etag: W/"61727336-921fb"
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
date: Fri, 09 Dec 2022 04:15:38 GMT
expires: Fri, 09 Dec 2022 04:20:38 GMT
vary: Accept-Encoding
x-original-content-length: 598523
content-encoding: gzip
content-length: 74764
cache-control: s-maxage=10
X-Firefox-Spdy: h2
|
|
| anonymfile.com/img/logo-anon-warning.webp | 138.201.48.112 | 200 OK | 15 kB |
URL HTTP/2anonymfile.com/img/logo-anon-warning.webp IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typeRIFF (little-endian) data, Web/P image\012- data Hash7b596f481388ac5ef6d74a15a351f6c3 6756e88c0b46cc981b7bbbdaf2ead77bd258a472 cd830cff1dfb9af2181dfe61645addbe21981954713fba54d5875a038e673972
GET /img/logo-anon-warning.webp HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: image/webp
content-length: 15344
last-modified: Sat, 30 Oct 2021 12:14:11 GMT
vary: Accept-Encoding
etag: "617d3713-3bf0"
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| anonymfile.com/img/main/footer.webp | 138.201.48.112 | 200 OK | 178 kB |
URL HTTP/2anonymfile.com/img/main/footer.webp IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typeRIFF (little-endian) data, Web/P image\012- data Size178 kB (178070 bytes) Hash79ccb3a1b78412a1a530284f45ea7056 626d0494e1bd871e67ecffad44d04ac2343fb7e5 3d4e83b59664d7a779fa777d4ee0e17a1bc09302f9b9cde60815a3142256d8b8
GET /img/main/footer.webp HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: image/webp
content-length: 178070
last-modified: Wed, 10 Aug 2022 07:17:48 GMT
vary: Accept-Encoding
etag: "62f35b9c-2b796"
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cache-control: s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css | 104.17.24.14 | 200 OK | 14 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css IP104.17.24.14:0
File typeASCII text, with very long lines (65345) Hash642445b86596bdeaa98e92faa2064fc6 6c5539660bf533d34e37b917973c941d1c963374 4a5a39e9f325c5578dccd880c1d516eae190ee39f7539f4a6c6c52d2eee4cbdf
GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 11439327
expires: Wed, 29 Nov 2023 04:16:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yZzC8VFM0s9SgVBYyPQ%2FASA4bKSF%2FZaRHnCbPNwYGk1Q7yIoEVsNcj5CcCrxZFQEG%2FX3BY8aeaxJzDcOQkKDwzX3boxLb%2FyD3M42HdC8a%2Fwivop%2BnovAAEnKQC5iXYCDN7MSV3nU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 776aed73de17b503-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| anonymfile.com/img/logo-anon-warning.png | 138.201.48.112 | 200 OK | 41 kB |
URL HTTP/2anonymfile.com/img/logo-anon-warning.png IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typePNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced\012- data Hashd52ea6ebcd0b10dcf112a9d6c43ceee0 641e5277e2e079f0e88e2899879fda8882e58d28 77cb73f16f049b51c0a81c12ed878e11efe3b9a71c632a3bdb647d963059532e
GET /img/logo-anon-warning.png HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/png
content-length: 40729
etag: "617bd210-9f19"
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
accept-ranges: bytes
date: Fri, 09 Dec 2022 04:15:39 GMT
expires: Fri, 09 Dec 2022 04:20:39 GMT
cache-control: s-maxage=10
X-Firefox-Spdy: h2
|
|
| anonymfile.com/js/site.js | 138.201.48.112 | 200 OK | 2.0 kB |
URL HTTP/2anonymfile.com/js/site.js IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
File typeASCII text, with very long lines (5640) Hasha779d1605363c034784168e0553fee12 203adaeac5eec419f7bdf4ba6840c9378c9692e5 0ac5db7b1ae244540526d4c971799e4c8ba3f5921dda88b94d10d2cb6a730bc6
GET /js/site.js HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-original-content-length: 9351
vary: Accept-Encoding
content-encoding: gzip
content-length: 1993
etag: W/"PSA-aj-ZD_qAZjk-5"
date: Fri, 09 Dec 2022 04:16:49 GMT
expires: Fri, 09 Dec 2022 04:20:41 GMT
cache-control: max-age=231
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.6.0.min.js | 69.16.175.10 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.6.0.min.js IP69.16.175.10:0
File typeASCII text, with very long lines (65447) Hash899f0189aaf034bbba5340f724d91dfa 210ea9de03968edb9d839ba4a0ce2d48666a8ab8 949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670559409.dop208.sk1.t,1670559409.cds218.sk1.hn,1670559409.cds210.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash6fba40dfdcde443855844f6241ca6d85 4ad19aa8f3a191688fbf7038760f757ddaebf11b 09b6375f2b0780ffb3c0bc96a5ab4a7332a43b23717779bd05523ee978ce5d4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3898
Cache-Control: max-age=139739
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 04:16:49 GMT
Etag: "63922652-116"
Expires: Sat, 10 Dec 2022 19:05:48 GMT
Last-Modified: Thu, 08 Dec 2022 18:00:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
|
|
| code.jquery.com/jquery-3.6.0.min.js | 69.16.175.10 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.6.0.min.js IP69.16.175.10:0
File typeASCII text, with very long lines (65447) Hash899f0189aaf034bbba5340f724d91dfa 210ea9de03968edb9d839ba4a0ce2d48666a8ab8 949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670559409.dop204.sk1.t,1670559409.cds066.sk1.hn,1670559409.cds210.sk1.c
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Cache-Control, Backoff, Content-Length, Content-Type, Last-Modified, ETag, Expires, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 04:07:55 GMT
age: 534
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash6fba40dfdcde443855844f6241ca6d85 4ad19aa8f3a191688fbf7038760f757ddaebf11b 09b6375f2b0780ffb3c0bc96a5ab4a7332a43b23717779bd05523ee978ce5d4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3898
Cache-Control: max-age=139739
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 04:16:49 GMT
Etag: "63922652-116"
Expires: Sat, 10 Dec 2022 19:05:48 GMT
Last-Modified: Thu, 08 Dec 2022 18:00:50 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfd55f4aaaab6ec40bc7dc10252cd819a a72523f60be265a391fa9edc43e0a93418ad1fd0 bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5064
Cache-Control: max-age=108867
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 04:16:49 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 10:31:16 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashd3c2666db3c15225923dddb92dacf735 64e9db12b4b93a22a1f1246f2f53c605aecd2a5b e951f784500dc601aa5687424d9ed761d651deedd0e05f5bf1c89127988dbdfd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E951F784500DC601AA5687424D9ED761D651DEEDD0E05F5BF1C89127988DBDFD"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15161
Expires: Fri, 09 Dec 2022 08:29:30 GMT
Date: Fri, 09 Dec 2022 04:16:49 GMT
Connection: keep-alive
|
|
| anonymfile.com/ngx_pagespeed_beacon?url=http%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt | 138.201.48.112 | 204 No Content | 0 B |
URL HTTP/2anonymfile.com/ngx_pagespeed_beacon?url=http%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ngx_pagespeed_beacon?url=http%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 52
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 04:16:49 GMT
cache-control: max-age=0, no-cache
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash6e13c29f35a5eedc82eeee2c21abddbf 7f83c18bff6c06979796c60748193f1d183b0770 4de9dbb278c8a27194b4813014d3a3f03d0c309c379576372088053efb39a858
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DE9DBB278C8A27194B4813014D3A3F03D0C309C379576372088053EFB39A858"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2178
Expires: Fri, 09 Dec 2022 04:53:08 GMT
Date: Fri, 09 Dec 2022 04:16:50 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 54.148.84.125 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.148.84.125:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kTnh0+RmexyMfskzVncNbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 9h/7FH9JGTtDnonYRYILKx5tZ2g=
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash27f907a256adb2c2f78f02a5f9b10c99 3411bd289f7e48859cde22993e8bd795ac9b19b2 907bff5886c7b9a138f540090f7e0010621667c24aa02c3fd075f083d0a3b683
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "907BFF5886C7B9A138F540090F7E0010621667C24AA02C3FD075F083D0A3B683"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7688
Expires: Fri, 09 Dec 2022 06:24:58 GMT
Date: Fri, 09 Dec 2022 04:16:50 GMT
Connection: keep-alive
|
|
| my.rtmark.net/gid.js?userId=b27dec1697e84d549cb7ac05f82c7fcc | 139.45.195.8 | 200 OK | 65 B |
URL HTTP/2my.rtmark.net/gid.js?userId=b27dec1697e84d549cb7ac05f82c7fcc IP139.45.195.8:0
File typeJSON data\012- , ASCII text Hashbca4b874d64c80ace0df9ee2f9b48c32 d51d0770521b7d1009b5d737dc57dc53fd7dab12 e5b2b3ea3dccd09f37b0220a7d4ea9d6bb25ed1b691cef049f7907ef3366f728
GET /gid.js?userId=b27dec1697e84d549cb7ac05f82c7fcc HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://anonymfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b27dec1697e84d549cb7ac05f82c7fcc; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash8a6b22af4d1a488f68a265150639a3f4 dc989b771559b25d8c6a11c72fb622a2775f7443 e3a5ade484be7eaafac55491ba7f6fe73e5473783a0425d84ed3f8f762b26226
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3A5ADE484BE7EAAFAC55491BA7F6FE73E5473783A0425D84ED3F8F762B26226"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18227
Expires: Fri, 09 Dec 2022 09:20:37 GMT
Date: Fri, 09 Dec 2022 04:16:50 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash5befea1ff179e1346422afeace6ac43d 313a8a8c24dd6a29b69d6fa15a29826250995e29 f61f64c91aed0910ea20c1b3cf030f219d080a3bb2087a1fe2b80a403074edb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F61F64C91AED0910EA20C1B3CF030F219D080A3BB2087A1FE2B80A403074EDB9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8538
Expires: Fri, 09 Dec 2022 06:39:08 GMT
Date: Fri, 09 Dec 2022 04:16:50 GMT
Connection: keep-alive
|
|
| ibrapush.com/zone?pub=0&zone_id=5307590&is_mobile=false&domain=anonymfile.com&var=&ymid=&var_3= | 139.45.197.250 | 200 OK | 664 B |
URL HTTP/2ibrapush.com/zone?pub=0&zone_id=5307590&is_mobile=false&domain=anonymfile.com&var=&ymid=&var_3= IP139.45.197.250:0
File typeJSON data\012- , ASCII text, with very long lines (663) Hash924f83d583902548517c3327ff8e4493 7d5ea76f95d862b44558e6428f0a0d2bb20e2b0c 92e16e70459ff85e5803ded19d1f535cb6197a2b1eda7b254cb663b81908147c
GET /zone?pub=0&zone_id=5307590&is_mobile=false&domain=anonymfile.com&var=&ymid=&var_3= HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/json; charset=utf-8
content-length: 664
x-trace-id: 4e7d8265e3ceb0ee0a472ef352573be9
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashf93fe0c44e63867b7f8553c1ca73460e e664d98cd9803e5f179af596d8a2f50d79fc92b0 dbb9ed743e3bf5d61dd66e676c81d5e2a43c8287d61ef34d90b6c7790ca6106e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 04:16:50 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 01:33:16 GMT
Expires: Tue, 13 Dec 2022 01:33:15 GMT
Etag: "e664d98cd9803e5f179af596d8a2f50d79fc92b0"
Cache-Control: max-age=335184,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776aed78fa98b512-OSL
|
|
| nanouwho.com/27/11a99959c11b6755664b3df2c6eb7de1 | 139.45.197.242 | 200 OK | 123 kB |
URL HTTP/2nanouwho.com/27/11a99959c11b6755664b3df2c6eb7de1 IP139.45.197.242:0
File typeASCII text, with very long lines (65523) Size123 kB (123307 bytes) Hash38d111990afbf367150f8a4b6d73144e d0a56c53162a8a44621560bb75c8161ae2b7d194 2f1aeee93eb878545880eb031a68cb950f2cc4eb3c53e601a8ad92fffc4306fb
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /27/11a99959c11b6755664b3df2c6eb7de1 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Cookie: scm=1; OAID=184db8f17ca74a679dc3461f445e2043; oaidts=1670559410
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Wed, 07 Dec 2022 09:08:16 GMT
expires: Wed, 06 Jan 2083 09:08:16 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ibrapush.com/custom | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| ibrapush.com/custom | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| ibrapush.com/custom | 139.45.197.250 | 200 OK | 39 B |
IP139.45.197.250:0
File typeJSON data\012- , ASCII text Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Content-Type: application/json
Origin: https://anonymfile.com
Content-Length: 387
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: a18c9f58232b3d422c3da56bce73a8bc
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| ibrapush.com/custom | 139.45.197.250 | 200 OK | 39 B |
IP139.45.197.250:0
File typeJSON data\012- , ASCII text Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Content-Type: application/json
Origin: https://anonymfile.com
Content-Length: 768
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: e94d041bb85d65bda55c886dcc322270
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| nanouwho.com/11?rnd=3125563403&z=5307589&b=16033037&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaGbL8bqLRAPNIKt1-CGZIN2qc1QYg8DK8yoPkazAUDa4ymnVPHotjSTDKiQGieI1cIH4VabE_9twQjwnSkXtZCEkL3hqeJ8Vg0A_hM6UWyJMb1q6cVr6xifw_1yO9KbYQfTHsPn8iMxQGNfWmChRYJHsbULOl0X8rQHzqvwinEgfZhGiaDm2Fc4jTNX02cEa-bsPFvdOwwYGwsCh4JTKIYUwC48Yy0I2mu9xqnoRXQFNDBbyvQrDkpVbN5xeDeOI7eMsOTvrshxtAPbuuODwa-y-LcqNjT3GT2ASt4Qv3vQ5Y72PfYKS-9734VMxCz5Mjnj_O2Es5DUiNVUH8R7d74y6Zx_KUdUominifcwT4ZBFRPE4i60sZPbhNELghd5xPOPyF0oKyirOsz8xnsQrQdW4-Qk808rvoDdyGt9Ox-UEQonP0ilGa7fX03PrJM04hZ6E3RLNE3tD7ScEJ1NK6HC3x_YSZstgP51CBC4Bm-x61hWkkgUIbM9-1LfWmnNWu3RPZVphbJxGrxcOwfyNQePAMmCiHDDcl4CevJCGoPn2lhVr5v1e2jCqpdyTp9AZrGzK_c3NNuZrKOFKtfh7Ryh3KRT0nugtFzIKy-Xb_3YfEQlqPnpLGZWHJu_0z29XYcPbg0LMQBRJ0mJkBRhiY90FRQ=&ruid=2857b628-6ac5-4fab-9717-e6127c420f40&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=86 | 139.45.197.242 | 200 OK | 0 B |
URL HTTP/2nanouwho.com/11?rnd=3125563403&z=5307589&b=16033037&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaGbL8bqLRAPNIKt1-CGZIN2qc1QYg8DK8yoPkazAUDa4ymnVPHotjSTDKiQGieI1cIH4VabE_9twQjwnSkXtZCEkL3hqeJ8Vg0A_hM6UWyJMb1q6cVr6xifw_1yO9KbYQfTHsPn8iMxQGNfWmChRYJHsbULOl0X8rQHzqvwinEgfZhGiaDm2Fc4jTNX02cEa-bsPFvdOwwYGwsCh4JTKIYUwC48Yy0I2mu9xqnoRXQFNDBbyvQrDkpVbN5xeDeOI7eMsOTvrshxtAPbuuODwa-y-LcqNjT3GT2ASt4Qv3vQ5Y72PfYKS-9734VMxCz5Mjnj_O2Es5DUiNVUH8R7d74y6Zx_KUdUominifcwT4ZBFRPE4i60sZPbhNELghd5xPOPyF0oKyirOsz8xnsQrQdW4-Qk808rvoDdyGt9Ox-UEQonP0ilGa7fX03PrJM04hZ6E3RLNE3tD7ScEJ1NK6HC3x_YSZstgP51CBC4Bm-x61hWkkgUIbM9-1LfWmnNWu3RPZVphbJxGrxcOwfyNQePAMmCiHDDcl4CevJCGoPn2lhVr5v1e2jCqpdyTp9AZrGzK_c3NNuZrKOFKtfh7Ryh3KRT0nugtFzIKy-Xb_3YfEQlqPnpLGZWHJu_0z29XYcPbg0LMQBRJ0mJkBRhiY90FRQ=&ruid=2857b628-6ac5-4fab-9717-e6127c420f40&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=86 IP139.45.197.242:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /11?rnd=3125563403&z=5307589&b=16033037&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=BaGbL8bqLRAPNIKt1-CGZIN2qc1QYg8DK8yoPkazAUDa4ymnVPHotjSTDKiQGieI1cIH4VabE_9twQjwnSkXtZCEkL3hqeJ8Vg0A_hM6UWyJMb1q6cVr6xifw_1yO9KbYQfTHsPn8iMxQGNfWmChRYJHsbULOl0X8rQHzqvwinEgfZhGiaDm2Fc4jTNX02cEa-bsPFvdOwwYGwsCh4JTKIYUwC48Yy0I2mu9xqnoRXQFNDBbyvQrDkpVbN5xeDeOI7eMsOTvrshxtAPbuuODwa-y-LcqNjT3GT2ASt4Qv3vQ5Y72PfYKS-9734VMxCz5Mjnj_O2Es5DUiNVUH8R7d74y6Zx_KUdUominifcwT4ZBFRPE4i60sZPbhNELghd5xPOPyF0oKyirOsz8xnsQrQdW4-Qk808rvoDdyGt9Ox-UEQonP0ilGa7fX03PrJM04hZ6E3RLNE3tD7ScEJ1NK6HC3x_YSZstgP51CBC4Bm-x61hWkkgUIbM9-1LfWmnNWu3RPZVphbJxGrxcOwfyNQePAMmCiHDDcl4CevJCGoPn2lhVr5v1e2jCqpdyTp9AZrGzK_c3NNuZrKOFKtfh7Ryh3KRT0nugtFzIKy-Xb_3YfEQlqPnpLGZWHJu_0z29XYcPbg0LMQBRJ0mJkBRhiY90FRQ=&ruid=2857b628-6ac5-4fab-9717-e6127c420f40&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&sah=1002&drf=&hil=1&ist=0&ot=86 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Cookie: scm=1; OAID=b27dec1697e84d549cb7ac05f82c7fcc; oaidts=1670559410
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://anonymfile.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 15a04cf98cb6999fd472c605af46c1ec
access-control-expose-headers: X-Sc
set-cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
oaidts=1670559410; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
|
|
| betotodilea.com/500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false | 139.45.197.237 | 200 OK | 0 B |
URL HTTP/2betotodilea.com/500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false IP139.45.197.237:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://anonymfile.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashb16b33c26d2f1c15ceb01a41b82d9666 25f16e8eef51dd04706936a76b2c8c899095cad6 bda4920c745e13e006293cd7ca600fa230f08860c018c841d9dbe296f36c64be
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDA4920C745E13E006293CD7CA600FA230F08860C018C841D9DBE296F36C64BE"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2032
Expires: Fri, 09 Dec 2022 04:50:42 GMT
Date: Fri, 09 Dec 2022 04:16:50 GMT
Connection: keep-alive
|
|
| bedrapiona.com/5/5307591/?oo=1&js_build=iclick-v1.458.0 | 139.45.197.234 | 200 OK | 1.7 kB |
URL HTTP/2bedrapiona.com/5/5307591/?oo=1&js_build=iclick-v1.458.0 IP139.45.197.234:0
Hashc596a95eec4c360ce8dcb91786dcc1f4 10ea9635dac2542b112bb32e01887ccebe8ea5cd dd9ca0b74b7e2548ca43201c86bdc57affb4066104021d1857ecaffa8910a9f7
GET /5/5307591/?oo=1&js_build=iclick-v1.458.0 HTTP/1.1
Host: bedrapiona.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: application/json
x-trace-id: b69ee9815d8cd65298229c843d11c955
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc; expires=Sat, 09 Dec 2023 04:16:49 GMT; path=/; secure; SameSite=None
oaidts=1670559409; expires=Sat, 09 Dec 2023 04:16:49 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| betotodilea.com/500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false | 139.45.197.237 | 200 OK | 12 kB |
URL HTTP/2betotodilea.com/500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false IP139.45.197.237:0
Hash1b9ea99e96b63d31ab7730d8ce3d5e97 f57a5db9e98bd9a9c82e3365cb5072a5b2e711a1 3498f844eb934ed1ba3f15a87770a6a77859eb4f65cc6ab7b55cbaa11424ef7d
GET /500/5307588?excludes=&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=0&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Cookie: OAID=27872000227b4baab5f290fc0520ddd1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/javascript
x-trace-id: c8ab8afa5c01d6d07149a68cd792830e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://anonymfile.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc; expires=Sat, 09 Dec 2023 04:16:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ibrapush.com/pfe/current/universal.min.js?v=3.1.409 | 139.45.197.250 | 200 OK | 64 kB |
URL HTTP/2ibrapush.com/pfe/current/universal.min.js?v=3.1.409 IP139.45.197.250:0
Hash6ad0d6914fc12234a74dd2fa76473cfc 8402ba1ed2ee65b5102b51ca5c0cd327907f317a 51c0cca2afe16eeff9ed16b8039c2f87dd4307139534ff58d4f9a117dcb70dbe
GET /pfe/current/universal.min.js?v=3.1.409 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:46 GMT
etag: W/"6388cb76-18c6c"
access-control-allow-origin: https://anonymfile.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js | 104.16.126.175 | 302 Found | 609 B |
URL HTTP/2unpkg.com/filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js IP104.16.126.175:0
Hash7c31cc5f233c9a8a05ffe99c695edb1d 59f4b511dbb3671fc5e5705f6b091e74efd9d7ec d0c4c4bce343e7bf300b22ba96723f0e7710308605fcb19b721ba0f7657d5173
GET /filepond-plugin-file-validate-size/dist/filepond-plugin-file-validate-size.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKTHK96J3TDBC5Y8S93816Q8-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 776aed746982b527-OSL
X-Firefox-Spdy: h2
|
|
| interstitial-07.com/contents/s/66/34/46/8ca9a7d12267b3b43e9d23c04f/0681892114441.jpeg | 139.45.197.152 | 200 OK | 57 kB |
URL HTTP/2interstitial-07.com/contents/s/66/34/46/8ca9a7d12267b3b43e9d23c04f/0681892114441.jpeg IP139.45.197.152:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data Hash6634468ca9a7d12267b3b43e9d23c04f dd438f13b2aaa9ecb6ac4a8f994c40c8b77cb1e8 7cfee30b3d910ccb67ae55cb502459d27a75d4a0df2f6806a90ae8c6bcec7008
GET /contents/s/66/34/46/8ca9a7d12267b3b43e9d23c04f/0681892114441.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=JRoDaTp6zBRFqfJ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Fnanouwho.com%2F12%3Frnd%3D2175050966%26z%3D5307589%26b%3D16033037%26c%3D6404088%26var%3D%26d%3Dhttp%253A%252F%252Ftryhardnow.com%252Fbase.php%253Fc%253D350%2526key%253D2c1f9aa01554345b3025ac0d005c7bea%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DBaGbL8bqLRAPNIKt1-CGZIN2qc1QYg8DK8yoPkazAUDa4ymnVPHotjSTDKiQGieI1cIH4VabE_9twQjwnSkXtZCEkL3hqeJ8Vg0A_hM6UWyJMb1q6cVr6xifw_1yO9KbYQfTHsPn8iMxQGNfWmChRYJHsbULOl0X8rQHzqvwinEgfZhGiaDm2Fc4jTNX02cEa-bsPFvdOwwYGwsCh4JTKIYUwC48Yy0I2mu9xqnoRXQFNDBbyvQrDkpVbN5xeDeOI7eMsOTvrshxtAPbuuODwa-y-LcqNjT3GT2ASt4Qv3vQ5Y72PfYKS-9734VMxCz5Mjnj_O2Es5DUiNVUH8R7d74y6Zx_KUdUominifcwT4ZBFRPE4i60sZPbhNELghd5xPOPyF0oKyirOsz8xnsQrQdW4-Qk808rvoDdyGt9Ox-UEQonP0ilGa7fX03PrJM04hZ6E3RLNE3tD7ScEJ1NK6HC3x_YSZstgP51CBC4Bm-x61hWkkgUIbM9-1LfWmnNWu3RPZVphbJxGrxcOwfyNQePAMmCiHDDcl4CevJCGoPn2lhVr5v1e2jCqpdyTp9AZrGzK_c3NNuZrKOFKtfh7Ryh3KRT0nugtFzIKy-Xb_3YfEQlqPnpLGZWHJu_0z29XYcPbg0LMQBRJ0mJkBRhiY90FRQ%3D%26bag%3Da9-OYwXQr-qHbm9hIb80PA%3D%3D%26ruid%3D2857b628-6ac5-4fab-9717-e6127c420f40%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fanonymfile.com%252Fgz5kO%252F100k-samples.txt%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D939%26wfc%3D0%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: image/jpeg
content-length: 56557
last-modified: Wed, 01 Jun 2022 14:55:35 GMT
vary: Accept-Encoding
etag: "62977de7-dced"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| unphionetor.com/fv.js?t=72747&cb=1342216184 | 139.45.197.236 | 200 OK | 2.2 kB |
URL HTTP/2unphionetor.com/fv.js?t=72747&cb=1342216184 IP139.45.197.236:0
File typeASCII text, with very long lines (5213), with no line terminators Hash0254fb1dad74628b7ad0f97d304fac92 35f7af13a08eb87023ec7df4d3c35c21b2cde79d 47fb6ce428ca80ea69b772e4f66e4e5c622a4005db601746033d04511bd27536
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /fv.js?t=72747&cb=1342216184 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: c2d7b867c5215c432f4831bdac5b0866
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined | 139.45.197.236 | 204 No Content | 0 B |
URL HTTP/2unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined IP139.45.197.236:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Fri, 09 Dec 2022 04:16:51 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 918c2cca8ffa2c3235c3aeae3f56bb84
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7487
Expires: Fri, 09 Dec 2022 06:21:38 GMT
Date: Fri, 09 Dec 2022 04:16:51 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7487
Expires: Fri, 09 Dec 2022 06:21:38 GMT
Date: Fri, 09 Dec 2022 04:16:51 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7487
Expires: Fri, 09 Dec 2022 06:21:38 GMT
Date: Fri, 09 Dec 2022 04:16:51 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg | 34.120.237.76 | 200 OK | 8.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9cb76c68a8cd472600106cc118067868 6cee6b1828c709f68b995197ca943a5c393f86fb 009d9ba19043b03b5aceeb80b69bf249f19a0a225bdbfef7ab8691669cb64130
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F884d1162-4377-487f-a056-b21117ef5001.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8204
x-amzn-requestid: cf54b5f8-ede8-49d5-aa56-5d9de98e3ab8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjtKfEiToAMFSXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af576-6ddfe35c0b31074d6a07076f;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UfqFAlLedF6ZkfbGXhyYDcvu0porNJb6LPaeQ8p4dqWqsFD6iRgWLw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 15:12:28 GMT
age: 47063
etag: "6cee6b1828c709f68b995197ca943a5c393f86fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg | 34.120.237.76 | 200 OK | 7.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash955c6ac69b89f6cbd497df53fcb2ae1b 2506152cdd1056533116feb9350124356e570e54 fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7217
x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUEDEWpIAMFqUQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:39:07 GMT
age: 70664
etag: "2506152cdd1056533116feb9350124356e570e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasheb00a2a503a690cee3e4dd729b5bc9bd cfb1e5bcab2148a777889680e6e36b9d7e8917ec 7e4583ae78ab597639f53669ac2d67d1ebd26be3278c2fc3fc95af934178c116
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9f25ad59-b8ed-49ea-9611-21f63c20c8fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: beadd240-39d0-407d-a890-6a095657cac3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEd8HC0oAMFUag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb459-44d4f63c62f58684782ef14a;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kTEbkncBnAJmQE8cdAqvDtejiwaetpRBsVcpLXy1h52lO4iUkzmOGA==
via: 1.1 74aa91fe819001bcedd882694f52b436.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 16:28:48 GMT
age: 42483
etag: "cfb1e5bcab2148a777889680e6e36b9d7e8917ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c3214044657f3b876d1f1848bca5684 7558222788f06623ddae6e883413e38e1146281e e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: N-zFZ8yeL7RrOZ5xfqvfBaE3zcXWecvr6Jd-93nKiUZlCXp2n2_Bgw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:41:46 GMT
age: 2105
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5de5d319f43d9c9c641419d96655541f cde4c7fa0145d3645af17e34c83c63c08f76a076 fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 12:33:10 GMT
age: 56621
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash730ba1a8edb79ba6f83b46d1ba5aed7b 55a236fedf6f5f7ca2bb88ae13e20846a50fd36d f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12748
x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjuciEptIAMFj9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 13:49:59 GMT
age: 52012
etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| betotodilea.com/impression/u-GuSA1SL5nYsBUcen7KJsYo2gJTkRzFmfPamId3Hrac42j5P-I_v5FsIMIk_KAeoqRDgCfgcYqS3ciEFWLBfLvZgUK2cgR34jGzeBdQqvvrqR4kn1gwTisxcBHOn7RZwQyKNiIpV6PPYplacI7WegqehHKIusoHDB2P7Q22P3JolLUeeUW4GmLNnf4bxN4uebddaPd2hf5nI3uCm0HTKImDXeXx5XlaNUw7CFU1EJGbxkj6voOFTPwLHLeiRMjwkZXu2hSYsffju6qRJDDjBf3wAdqvqUPYkbOafQM70QXsE1zlfI6ATnpf_raiaRUDvBFnS-0ZUw30RgxqpCea3HQJCxfHyPpeC8keCog31y6O3z0fc7uzDvXHcdhdzy3h6GIvZQAul5o4QezMbYZfxmZ6BHbtyBEK1SMzXCkN_HyakBTzKfOXZCFMUiPwnMcKUxkcpDtn-YgTmbmawf0GGxSk5M3xN4JsxedV9LdIgOfhLgQi8sfRTLA-uA-l-0yjw-M31J4aHELoHM0iYZFVX7MS1DdASMEP0vCju1ScwqVAf4feNhSW1n2OCOcUcYFAgNaZqeFRHGJDipvg85iTWXWOEO95c_yU?_z=5307588&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false | 139.45.197.237 | 200 OK | 43 B |
URL HTTP/2betotodilea.com/impression/u-GuSA1SL5nYsBUcen7KJsYo2gJTkRzFmfPamId3Hrac42j5P-I_v5FsIMIk_KAeoqRDgCfgcYqS3ciEFWLBfLvZgUK2cgR34jGzeBdQqvvrqR4kn1gwTisxcBHOn7RZwQyKNiIpV6PPYplacI7WegqehHKIusoHDB2P7Q22P3JolLUeeUW4GmLNnf4bxN4uebddaPd2hf5nI3uCm0HTKImDXeXx5XlaNUw7CFU1EJGbxkj6voOFTPwLHLeiRMjwkZXu2hSYsffju6qRJDDjBf3wAdqvqUPYkbOafQM70QXsE1zlfI6ATnpf_raiaRUDvBFnS-0ZUw30RgxqpCea3HQJCxfHyPpeC8keCog31y6O3z0fc7uzDvXHcdhdzy3h6GIvZQAul5o4QezMbYZfxmZ6BHbtyBEK1SMzXCkN_HyakBTzKfOXZCFMUiPwnMcKUxkcpDtn-YgTmbmawf0GGxSk5M3xN4JsxedV9LdIgOfhLgQi8sfRTLA-uA-l-0yjw-M31J4aHELoHM0iYZFVX7MS1DdASMEP0vCju1ScwqVAf4feNhSW1n2OCOcUcYFAgNaZqeFRHGJDipvg85iTWXWOEO95c_yU?_z=5307588&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false IP139.45.197.237:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4491705564909da7f9eaf749dbbfbb1 279315d507855c6a4351e1e2c2f39dd9cd2fccd8 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/u-GuSA1SL5nYsBUcen7KJsYo2gJTkRzFmfPamId3Hrac42j5P-I_v5FsIMIk_KAeoqRDgCfgcYqS3ciEFWLBfLvZgUK2cgR34jGzeBdQqvvrqR4kn1gwTisxcBHOn7RZwQyKNiIpV6PPYplacI7WegqehHKIusoHDB2P7Q22P3JolLUeeUW4GmLNnf4bxN4uebddaPd2hf5nI3uCm0HTKImDXeXx5XlaNUw7CFU1EJGbxkj6voOFTPwLHLeiRMjwkZXu2hSYsffju6qRJDDjBf3wAdqvqUPYkbOafQM70QXsE1zlfI6ATnpf_raiaRUDvBFnS-0ZUw30RgxqpCea3HQJCxfHyPpeC8keCog31y6O3z0fc7uzDvXHcdhdzy3h6GIvZQAul5o4QezMbYZfxmZ6BHbtyBEK1SMzXCkN_HyakBTzKfOXZCFMUiPwnMcKUxkcpDtn-YgTmbmawf0GGxSk5M3xN4JsxedV9LdIgOfhLgQi8sfRTLA-uA-l-0yjw-M31J4aHELoHM0iYZFVX7MS1DdASMEP0vCju1ScwqVAf4feNhSW1n2OCOcUcYFAgNaZqeFRHGJDipvg85iTWXWOEO95c_yU?_z=5307588&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=1&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:55 GMT
content-type: image/gif
content-length: 43
x-trace-id: ffc2e2baf7f7fc237f927b82c3371e85
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| betotodilea.com/500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false | 139.45.197.237 | 200 OK | 0 B |
URL HTTP/2betotodilea.com/500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false IP139.45.197.237:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://anonymfile.com/
Origin: https://anonymfile.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:55 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://anonymfile.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| offerimage.com/www/images/e27e78d3b01907b714b7d939d7eed85d.png | 172.67.22.216 | 200 OK | 43 kB |
URL HTTP/2offerimage.com/www/images/e27e78d3b01907b714b7d939d7eed85d.png IP172.67.22.216:0
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hashe27e78d3b01907b714b7d939d7eed85d 2d4aa0d84925e5031861258c341788450ba8b43c 37024bac32f0cc3299c2492471b40e6beb2fd7b3cb73b172d68207e87cdfd6e6
GET /www/images/e27e78d3b01907b714b7d939d7eed85d.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:55 GMT
content-type: image/png
content-length: 43157
last-modified: Thu, 10 Dec 2020 12:59:54 GMT
etag: "5fd21bca-a895"
expires: Fri, 09 Dec 2022 16:46:34 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 41421
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 776aed9bcd80b4f3-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js | 104.16.126.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js IP104.16.126.175:0
GET /filepond-plugin-file-validate-type/dist/filepond-plugin-file-validate-type.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GKTHK97EQYR10PSKT45PKV58-fra
cf-cache-status: EXPIRED
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 776aed746983b527-OSL
X-Firefox-Spdy: h2
|
|
| tzegilo.com/stattag.js | 172.67.194.45 | 200 OK | 0 B |
IP172.67.194.45:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6513
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S4FWa3oL91DZwFtt0%2FyjEW1%2B7vC6ktn5OHWt40NchC1YCqxn9bLEeTlJTUZaqjgJUMgyxH8UrhVnSePG6b56kkLwoXrRtohchSYZYMbt4tXJMvXPTl6z0otz%2Fu6nfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776aed77fafc0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ibrapush.com/pfe/current/tag.min.js?z=5307590 | 139.45.197.250 | 200 OK | 0 B |
URL HTTP/2ibrapush.com/pfe/current/tag.min.js?z=5307590 IP139.45.197.250:0
GET /pfe/current/tag.min.js?z=5307590 HTTP/1.1
Host: ibrapush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:46 GMT
etag: W/"6388cb76-390a"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
link: <https://my.rtmark.net>; rel=dns-prefetch;, <https://my.rtmark.net>; rel=preconnect
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anonymfile.com/gz5kO/100k-samples.txt | 138.201.48.112 | 410 Gone | 0 B |
URL HTTP/2anonymfile.com/gz5kO/100k-samples.txt IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
GET /gz5kO/100k-samples.txt HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 410 Gone
server: nginx
content-type: text/html; charset=UTF-8
set-cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; expires=Fri, 09-Dec-2022 06:16:48 GMT; Max-Age=7200; path=/; samesite=lax
anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D; expires=Fri, 09-Dec-2022 06:16:48 GMT; Max-Age=7200; path=/; httponly; samesite=lax
date: Fri, 09 Dec 2022 04:16:48 GMT
x-page-speed: 1.13.35.2-0
cache-control: max-age=0, no-cache
X-Firefox-Spdy: h2
|
|
| unpkg.com/filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js IP104.16.126.175:0
GET /filepond-plugin-file-validate-size@2.2.8/dist/filepond-plugin-file-validate-size.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1a7f-mapzppsO4HAWL/eiqLcABeu0hWU"
via: 1.1 fly.io
fly-request-id: 01GJZ5C0MRVMZFWGTQD5XR207X-ams
cf-cache-status: HIT
age: 918791
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 776aed75da05b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| betotodilea.com/500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false | 139.45.197.237 | 200 OK | 0 B |
URL HTTP/2betotodilea.com/500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false IP139.45.197.237:0
GET /500/5307588?excludes=15161934&oaid=b27dec1697e84d549cb7ac05f82c7fcc&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fanonymfile.com%2Fgz5kO%2F100k-samples.txt&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://anonymfile.com
Connection: keep-alive
Referer: https://anonymfile.com/
Cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:55 GMT
content-type: application/javascript
x-trace-id: 40ca1049fb9b75c10303d6f5fef7cfca
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://anonymfile.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b27dec1697e84d549cb7ac05f82c7fcc; expires=Sat, 09 Dec 2023 04:16:55 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anonymfile.com/pagespeed_static/js_defer.I4cHjq6EEP.js | 138.201.48.112 | 200 OK | 0 B |
URL HTTP/2anonymfile.com/pagespeed_static/js_defer.I4cHjq6EEP.js IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
GET /pagespeed_static/js_defer.I4cHjq6EEP.js HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
vary: Accept-Encoding
x-content-type-options: nosniff
date: Fri, 09 Dec 2022 04:16:49 GMT
last-modified: Fri, 09 Dec 2022 04:16:49 GMT
cache-control: max-age=31536000
etag: W/"0"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| betotodilea.com/400/5307588 | 139.45.197.237 | 200 OK | 0 B |
URL HTTP/2betotodilea.com/400/5307588 IP139.45.197.237:0
GET /400/5307588 HTTP/1.1
Host: betotodilea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: application/javascript
x-trace-id: 72a9eeabcb9c153679347488ebf7a444
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=27872000227b4baab5f290fc0520ddd1; expires=Sat, 09 Dec 2023 04:16:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anonymfile.com/sw.js | 138.201.48.112 | 404 Not Found | 0 B |
IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
GET /sw.js HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
date: Fri, 09 Dec 2022 04:16:49 GMT
x-page-speed: 1.13.35.2-0
cache-control: max-age=0, no-cache
content-encoding: br
X-Firefox-Spdy: h2
|
|
| inklinkor.com/tag.min.js | 172.67.211.29 | 200 OK | 0 B |
IP172.67.211.29:0
GET /tag.min.js HTTP/1.1
Host: inklinkor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: text/javascript; charset=utf-8
x-trace-id: 103aa3827aa0cb482df451136103e55c
cache-control: max-age=86400
last-modified: Fri, 02 Dec 2022 10:20:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Sat, 10 Dec 2022 03:48:59 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 1670
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4VzsI4C2jfVRX0BJiJeSRcNWm4owcAKoZR838Eqh2QFd6rHsGaTn%2FJ1vBI6VQV3r3nDJob0f14RsP8i1KosQQLZXMymv8bvDbj54LdZ0AtpLEne0eRtH%2BDRKNFcZ%2FAK6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 776aed756fd0b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unpkg.com/filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js | 104.16.126.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js IP104.16.126.175:0
GET /filepond-plugin-file-validate-type@1.2.8/dist/filepond-plugin-file-validate-type.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 09 Dec 2022 04:16:49 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1d07-1hxUHKzrTl3rNdhkJwK4kJGou0I"
via: 1.1 fly.io
fly-request-id: 01G2PJZCDRWWWP671QTKZ7W61J-fra
cf-cache-status: HIT
age: 18386361
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 776aed75da03b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| nanouwho.com/1?z=5307589 | 139.45.197.242 | 200 OK | 0 B |
IP139.45.197.242:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /1?z=5307589 HTTP/1.1
Host: nanouwho.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://anonymfile.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 04:16:50 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 401683122f58425da838e6d9454e2500
access-control-expose-headers: X-Sc
x-sc: MF_9up_139MrT4LUGscvkuiI0t8WxvQhX_VnCV7mBjrlrjBDKtHVA-X1BY78MOQUUi2OF3Y6sHNw9MFiBuqBz4K6H9E=
set-cookie: scm=1; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
OAID=184db8f17ca74a679dc3461f445e2043; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
oaidts=1670559410; expires=Sat, 09 Dec 2023 04:16:50 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| anonymfile.com/sw.js | 138.201.48.112 | 404 Not Found | 0 B |
IP138.201.48.112:0 ASN#24940 Hetzner Online GmbH
GET /sw.js HTTP/1.1
Host: anonymfile.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anonymfile.com/gz5kO/100k-samples.txt
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlI1ZE9oamEyeHVRb1oyN2wySGdCbnc9PSIsInZhbHVlIjoiVFZDTUtOd3lrMzh6UEZ1Q243V2g5dFpMYlVTc1ZDUTF3YU91UXpxUUlxTDlrV3VVUmpSV3hoVFZubStIdHJHWFk4L3JRaDEydFVpbFdzR2NzMEpUZE5sclo1c2xkaXFVdjI3bisxYmlKT1hxNkM2K3FqdHdHMlA3aXJHRk5BbXgiLCJtYWMiOiJmMGY1ZDRkOTI5YTU5YWEwMDI4NThiNjA1Y2Y3MDBmYzU5YWUyN2EzYmJmOTgyYzljZTJmOTM3YzE1MWU2NDljIiwidGFnIjoiIn0%3D; anonymfile_session=eyJpdiI6InRlTTl5bDNJS0hzSDlMRzRjM0J6NWc9PSIsInZhbHVlIjoidERRZVdEMHZtK0VyTXlva0ZmbUZ2MytYMUViMEUrRzVXTlRtRUhqUzVlYkdDeEJIZ0lEeXRTNXZnbXFJREpUdW9nbjhvUjNUK0ZMeDNlRVBuNlRoQk1YRUZ4K0F2N1VYbXdXQWpjRkNDZTdCb3pybVZtTXRhQjVxeFlaQUpIZGoiLCJtYWMiOiI5Zjk3MDM3ZjYwMDc1N2VhN2YyYjQ0ZWE5ZmVmZGJlNjFiNTY3YjBkOWU3YTBkODkzZGEzODVjNjM2MzcwYzhjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
date: Fri, 09 Dec 2022 04:16:50 GMT
x-page-speed: 1.13.35.2-0
cache-control: max-age=0, no-cache
content-encoding: br
X-Firefox-Spdy: h2
|
|