Report - funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download

Report Overview

Submitted URL
funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA=
IP
172.67.193.19
ASN
#13335 CLOUDFLARENET
Submitted
2024-07-07 19:36:16
Access
public
Website Title
PSemuX-7z2201-x64
Final URL
funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA=
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
10
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
funfilenow.com	unknown	unknown	No data	No data	1.1 kB	23 kB	104.21.57.223
nostop.go2cloud.org	369893	2010-10-28	2019-09-05	2024-06-14	671 B	555 B	52.210.2.133
speedtest.net	4896	1999-06-25	2012-05-22	2024-07-06	399 B	362 B	151.101.194.219
www.speedtest.net	12523	1999-06-25	2012-05-22	2024-07-07	403 B	6.9 kB	104.17.147.22
www.google.com	7	1997-09-15	2015-05-10	2024-07-07	435 B	2.2 kB	142.250.74.164
stats.webanalyticscounter.com	unknown	unknown	No data	No data	2.9 kB	1.1 MB	104.26.4.10
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-07-07	438 B	1.5 kB	142.250.74.106
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-07-07	1.6 kB	26 kB	142.250.74.99
	unknown				447 B	7.7 kB	104.17.25.14
google.com	1	1997-09-15	2013-10-02	2024-07-06	430 B	701 B	216.58.207.206
r10.o.lencr.org	unknown	2020-06-29	2024-06-06	2024-07-06	2.0 kB	5.3 kB	23.36.77.32
o.pki.goog	unknown	2016-06-13	2024-04-24	2024-07-06	2.6 kB	5.6 kB	142.250.74.131
yourjsdelivery.com	unknown	2020-08-25	2020-08-25	2024-06-14	403 B	545 B	0.0.0.0
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-07-07	430 B	28 kB	104.17.25.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)
2024-07-07 19:36:09	low	Client IP	74.125.250.129	ET INFO Session Traversal Utilities for NAT (STUN Binding Request On Non-Standard High Port)

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	stats.webanalyticscounter.com/stats.js	1.1 MB	2024-06-21	2024-09-11
Pretty URL stats.webanalyticscounter.com/stats.js IP 104.26.4.10 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-21 23:25:36 Last Seen2024-09-11 01:21:34 Times Seen446 Hash d394fb9ed2790e60e4e49f04ba6ee58b fd24219b09c5883d9a5648e8495d7c200fe34850 98335defb854fc032623041d5f988eefd7e8e05714116f8395ddb1bcdf6597b0 Loading...

	cdnjs.cloudflare.com:8443/ajax/libs/underscore.js/1.12.0/underscore-min.js	19 kB	2023-11-10	2024-09-24
Pretty URL cdnjs.cloudflare.com:8443/ajax/libs/underscore.js/1.12.0/underscore-min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-10 16:02:19 Last Seen2024-09-24 16:54:27 Times Seen760 Hash 5e69b8b4c93891157f2dac3721873c59 ac0bc40622bb3babcb228f3662b67ed8ae1012a3 1bc0ea4e2fe66ac337fb1863bbdb4c8f044ee4e84dbe0f0f1b3959bebfa539c1 Loading...

	unknown	34 B	2023-04-14	2024-10-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26:15 Last Seen2024-10-06 05:29:39 Times Seen2616 Hash 7bcdb973ab8af8e24ab11cb554a1ba6e 24e8a10f240f2b06f81d7c173cd0a90606641fc1 916ec4eb9b485eb47f43a17fe212e84e4b72600b45eb6d4588599ad495a57fcd Loading...

	unknown	39 B	2023-04-14	2024-10-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26:15 Last Seen2024-10-06 05:29:39 Times Seen2611 Hash bc51ed8c76553717f10d58b2df60fd76 e2d03a8fd8d280074b226c288880f9df299c7cb1 bee994eaf88453f6343ba57571a069054c12c9b4e42f8cbad4f2ad75c7fb264c Loading...

	unknown	44 B	2023-04-14	2024-10-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26:15 Last Seen2024-10-06 05:29:41 Times Seen2607 Hash 00beb9884d0391b342eadd30744b539a 3124c0bd593822379d22f13d3e08e70a1bf5ea14 92394eec5690449a4f6cfc9a7f97497a69e926b2365cb9a9aad3507a844f835c Loading...

	unknown	47 B	2023-04-14	2024-10-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26:15 Last Seen2024-10-06 05:29:40 Times Seen2604 Hash 580b3e56fc9ab6e8b4655f43ee057cc1 5dfce565e446f4a167195de9a1a5dd26163c711c 446f07b6e56de61d2c2d5b6ba408cc580b492a6d1ede8fc51cfde4ef75a2b382 Loading...

	unknown	47 B	2023-04-14	2024-10-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 16:26:15 Last Seen2024-10-06 05:29:40 Times Seen2604 Hash a01893d8e129ad16c1e0fc5c7537f411 0e46d1bf2718f848d9d596fa269eaedb31204772 cbe7b89533bcd75b69f3e54807308551d68242ec1761e63bee1a99fc6e560175 Loading...

	yourjsdelivery.com/dl.min.js	18 kB	2024-06-18	2024-09-11
Pretty URL yourjsdelivery.com/dl.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-18 15:26:10 Last Seen2024-09-11 01:21:34 Times Seen510 Hash 92a61d7deeeba56e60419c586eaadcb8 e94dfbcd81b5b5f066ebe7dfd66d50f6f0370936 e8c2f349ba55b5535973c1ec9a9ca11055628a11de616f587630830874e0cb40 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	87 kB	2023-03-07	2024-10-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-10-06 05:37:51 Times Seen137881 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA=	554 B	2024-07-07	2024-07-07
Pretty URL funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= IP 104.21.57.223 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-07-07 21:36:23 Last Seen2024-07-07 21:36:23 Times Seen1 Hash b2fe664f1e48a1ccf14e418678925825 cd2582ca542472f41646aa4cdb079205cc9baee0 7acda3db480952c812a7481d8c0570da2da99b3bc6594be17284e73fad4b7599 Loading...

HTTP Transactions (34)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash f63e8d9e64abf0e5b2784ca051160e84 d15d17504ed5c584ba42145060cf745fdb41c1d0 652ee033c72bc8eadcf29c25a5387bc303bf86e6c57f262c576117f659f15eab HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "652EE033C72BC8EADCF29C25A5387BC303BF86E6C57F262C576117F659F15EAB" Last-Modified: Fri, 05 Jul 2024 13:53:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6178 Expires: Sun, 07 Jul 2024 21:18:48 GMT Date: Sun, 07 Jul 2024 19:35:50 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash abec3934929082bd707108b7042796da 4f200b04ad1c6fcac9833107c492a59ebf36dc6e 8e27309b919c0dcb3b0736dd99dad8c7d3bc16b4816dd982e6af6b79d7ead9ed HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "8E27309B919C0DCB3B0736DD99DAD8C7D3BC16B4816DD982E6AF6B79D7EAD9ED" Last-Modified: Sun, 07 Jul 2024 03:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19597 Expires: Mon, 08 Jul 2024 01:02:27 GMT Date: Sun, 07 Jul 2024 19:35:50 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 41036a4c62e61466443bce27a927e029 39a2a8a258c5feaf020246696135700b0c30740d e38b3080a1752122f5a174604bd307c54be31c02e0cdb8e2d9354e2a04e1b50f HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "E38B3080A1752122F5A174604BD307C54BE31C02E0CDB8E2D9354E2A04E1B50F" Last-Modified: Sun, 07 Jul 2024 11:47:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11191 Expires: Sun, 07 Jul 2024 22:42:21 GMT Date: Sun, 07 Jul 2024 19:35:50 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.77.32		504 B
URL r10.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash e430ff7defba95ef2e40c2a2623032a3 4df33994f03cf02626fdfe9c6a51a71f5fea6058 ea2bc04f18953a2d203b059f541bf8bfcd32c63d67b8e1113d927453d8cc9a58 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "EA2BC04F18953A2D203B059F541BF8BFCD32C63D67B8E1113D927453D8CC9A58" Last-Modified: Sun, 07 Jul 2024 04:21:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12423 Expires: Sun, 07 Jul 2024 23:02:53 GMT Date: Sun, 07 Jul 2024 19:35:50 GMT Connection: keep-alive`

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	104.17.25.14	200 OK	27 kB
URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectcdnjs.cloudflare.com Fingerprint3B:5B:7C:DD:19:E8:16:5A:09:22:D6:1E:03:84:8D:B9:A1:32:BF:8E ValiditySun, 02 Jun 2024 00:47:32 GMT - Sat, 31 Aug 2024 00:47:31 GMT File type JavaScript source, ASCII text, with very long lines (65451) Size 27 kB (27433 bytes) Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef HTTP Headers `GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:51 GMT content-type: application/javascript; charset=utf-8 content-length: 27433 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-1538f" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2116204 expires: Fri, 27 Jun 2025 19:35:51 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8vfUNx%2BbvIO7KuIzctYzgCZK%2FVft272DFiXfUS32%2Fk%2F1dMZ78L%2F%2FEOs1OfOKf%2FTD90Pybm%2BvWOHhbhFmnKzibWoD9hGHQFStbil08xZTAJplHFdAQraFGx9Q9aRqMdTmh3ROyawi"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 89fa47b3ab541bfa-OSL alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 34a03e02160b8a663892701fee5efd3e a637b386296028c1ac666e8b9ebaff581635f871 19fc6a1b5659518e23b9ec27e4fc8d8c15d01a76947fd85cf43d321d2683cd03 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css?family=Poppins:300,400,500	142.250.74.106	200 OK	877 B
URL GET HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,500 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subjectupload.video.google.com FingerprintC7:12:52:3A:BD:E0:73:20:AD:A8:5F:DF:12:DB:C6:DE:AF:63:88:6B ValidityThu, 13 Jun 2024 16:32:33 GMT - Thu, 05 Sep 2024 16:32:32 GMT File type gzip compressed data, max compression Size 877 B (877 bytes) Hash e33ffd8073de9564042266afbccb5ad8 783a3c3ba3d16658c636b5d53ed740a0da35094f b09e3dbd0f76613286ebb3769531e412cc6bd0f2079b49f3f1fb7b9c7b001a38 HTTP Headers `GET /css?family=Poppins:300,400,500 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 07 Jul 2024 19:35:51 GMT date: Sun, 07 Jul 2024 19:35:51 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	nostop.go2cloud.org/aff_i?offer_id=235&aff_id=1048&aff_sub=139420&aff_sub2=0&aff_sub3=Windows_10\|Opera&aff_sub4=uy.basesfiles.com&aff_sub5=empty&source=1048-139420&adv_sub=https%3A%2F%2Fwww.7-zip.org%2Fa%2F7z2401.msi&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=funfilenow.com	52.210.2.133		57 B
URL GET nostop.go2cloud.org/aff_i?offer_id=235&aff_id=1048&aff_sub=139420&aff_sub2=0&aff_sub3=Windows_10\|Opera&aff_sub4=uy.basesfiles.com&aff_sub5=empty&source=1048-139420&adv_sub=https%3A%2F%2Fwww.7-zip.org%2Fa%2F7z2401.msi&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=funfilenow.com IP 52.210.2.133:0 ASN #16509 AMAZON-02 Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerAmazon Subject.go2cloud.org FingerprintB0:71:4C:B1:87:BF:BF:D7:99:47:B0:47:9D:6E:E4:FB:3F:E4:D6:26 ValidityMon, 22 Jan 2024 00:00:00 GMT - Wed, 19 Feb 2025 23:59:59 GMT File type GIF image data, version 89a, 1 x 1 Size 57 B (57 bytes) Hash 77d96eebccea5801290ad68b3ccb4199 eaf3924bfd87bbf1f1137c395de8687f20c4f3a6 ac05f643d51698438fc2504bc237b5a39ce1248b037dbf446aaca4ce65c3182c HTTP Headers GET /aff_i?offer_id=235&aff_id=1048&aff_sub=139420&aff_sub2=0&aff_sub3=Windows_10\|Opera&aff_sub4=uy.basesfiles.com&aff_sub5=empty&source=1048-139420&adv_sub=https%3A%2F%2Fwww.7-zip.org%2Fa%2F7z2401.msi&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=funfilenow.com HTTP/1.1 Host: nostop.go2cloud.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 200 OK Server: nginx Date: Sun, 07 Jul 2024 19:35:51 GMT Content-Type: image/gif Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, no-store, must-revalidate Expires: Sat, 26 Jul 1997 05:00:00 GMT Pragma: no-cache Tracking_id: 102dfe3c6a197bff11570df3512622 Access-Control-Allow-Origin: * X-Request-Id: 8f6f0e687a1fc1450b33ff655d7996da Access-Control-Allow-Headers: Tune-SDK-Version Accept-CH: Sec-CH-UA-Model, Sec-CH-DPR, DPR Content-Encoding: gzip`

	o.pki.goog/wr2	142.250.74.131		471 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c1450e5b57b1898f18ab1cf611efa275 ee716e9ce83671ee1ee6c97299a1511c236c3673 1fc9b596f310d1524944af58fbdfb86a910aaf998a3d88c4f148247fd9ac0844 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:52 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	o.pki.goog/wr2	142.250.74.131		471 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c1450e5b57b1898f18ab1cf611efa275 ee716e9ce83671ee1ee6c97299a1511c236c3673 1fc9b596f310d1524944af58fbdfb86a910aaf998a3d88c4f148247fd9ac0844 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:52 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2	142.250.74.99	200 OK	7.8 kB
URL GET HTTP/2 fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subject.gstatic.com FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04 ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0 Size 7.8 kB (7840 bytes) Hash 8d91ec1ca2d8b56640a47117e313a3e9 a9e9bafe64666f4595051a0e895b47a5fa39e67e 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb HTTP Headers GET /s/poppins/v21/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 7840 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 05 Jul 2024 08:03:19 GMT expires: Sat, 05 Jul 2025 08:03:19 GMT cache-control: public, max-age=31536000 age: 214353 last-modified: Fri, 22 Mar 2024 00:02:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2	142.250.74.99	200 OK	7.9 kB
URL GET HTTP/2 fonts.gstatic.com/s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subject.gstatic.com FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04 ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0 Size 7.9 kB (7884 bytes) Hash 9212f6f9860f9fc6c69b02fedf6db8c3 ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b 7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f HTTP Headers GET /s/poppins/v21/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 7884 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 03 Jul 2024 13:40:54 GMT expires: Thu, 03 Jul 2025 13:40:54 GMT cache-control: public, max-age=31536000 last-modified: Fri, 22 Mar 2024 00:00:38 GMT content-type: font/woff2 age: 366898 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	o.pki.goog/wr2	142.250.74.131		471 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c1450e5b57b1898f18ab1cf611efa275 ee716e9ce83671ee1ee6c97299a1511c236c3673 1fc9b596f310d1524944af58fbdfb86a910aaf998a3d88c4f148247fd9ac0844 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:52 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2	142.250.74.99	200 OK	7.7 kB
URL GET HTTP/2 fonts.gstatic.com/s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 IP 142.250.74.99:443 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subject.gstatic.com FingerprintC4:9C:27:09:1C:F7:14:C9:86:F0:B5:42:0B:8A:D2:AE:5E:AE:98:04 ValidityThu, 13 Jun 2024 16:31:03 GMT - Thu, 05 Sep 2024 16:31:02 GMT File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0 Size 7.7 kB (7748 bytes) Hash a09f2fccfee35b7247b08a1a266f0328 0da2d17e738f46d2a09e6fb7969da451719a9820 cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446 HTTP Headers GET /s/poppins/v21/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 7748 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 04 Jul 2024 07:12:08 GMT expires: Fri, 04 Jul 2025 07:12:08 GMT cache-control: public, max-age=31536000 last-modified: Fri, 22 Mar 2024 00:01:14 GMT content-type: font/woff2 age: 303824 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	o.pki.goog/wr2	142.250.74.131		471 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash c1450e5b57b1898f18ab1cf611efa275 ee716e9ce83671ee1ee6c97299a1511c236c3673 1fc9b596f310d1524944af58fbdfb86a910aaf998a3d88c4f148247fd9ac0844 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:52 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 861cce1bf441610f1dfbb14264d55122 1596b2c44fcdb5f7a49c73da766e4ab48b6bd064 f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2" Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18942 Expires: Mon, 08 Jul 2024 00:51:34 GMT Date: Sun, 07 Jul 2024 19:35:52 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash 861cce1bf441610f1dfbb14264d55122 1596b2c44fcdb5f7a49c73da766e4ab48b6bd064 f67d59f3fddbcaf61f9f1aa87eca02a320f59402bb412687a4db4d8aa81867d2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "F67D59F3FDDBCAF61F9F1AA87ECA02A320F59402BB412687A4DB4D8AA81867D2" Last-Modified: Fri, 05 Jul 2024 17:32:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18942 Expires: Mon, 08 Jul 2024 00:51:34 GMT Date: Sun, 07 Jul 2024 19:35:52 GMT Connection: keep-alive`

	cdnjs.cloudflare.com:8443/ajax/libs/underscore.js/1.12.0/underscore-min.js	104.17.25.14	200 OK	6.7 kB
URL GET HTTP/2 cdnjs.cloudflare.com:8443/ajax/libs/underscore.js/1.12.0/underscore-min.js IP 104.17.25.14:8443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectcdnjs.cloudflare.com Fingerprint3B:5B:7C:DD:19:E8:16:5A:09:22:D6:1E:03:84:8D:B9:A1:32:BF:8E ValiditySun, 02 Jun 2024 00:47:32 GMT - Sat, 31 Aug 2024 00:47:31 GMT File type JavaScript source, ASCII text, with very long lines (18888) Size 6.7 kB (6749 bytes) Hash 5e69b8b4c93891157f2dac3721873c59 ac0bc40622bb3babcb228f3662b67ed8ae1012a3 1bc0ea4e2fe66ac337fb1863bbdb4c8f044ee4e84dbe0f0f1b3959bebfa539c1 HTTP Headers `GET /ajax/libs/underscore.js/1.12.0/underscore-min.js HTTP/1.1 Host: cdnjs.cloudflare.com:8443 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:53 GMT content-type: application/javascript; charset=utf-8 content-length: 6749 access-control-allow-origin: * cache-control: no-transform, public, max-age=30672000 content-encoding: br etag: "5fe06887-4b9e" last-modified: Mon, 21 Dec 2020 09:19:03 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTFgXsGPez8tCJDx%2BDfvsb3GNqYogP25lzZ0yj%2Fy46CybkThtQ9Oljj8o8vaP8SrvZbwTs%2BN%2FFvhQL2pzrkcG0N7sy3gwjrwz5SNhE9p7LwFqdvyl3fsUUL1osJ3fcRK9kSo6o6Zr2M3hqg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 89fa47c09a285696-OSL alt-svc: h3=":8443"; ma=86400 X-Firefox-Spdy: h2

	speedtest.net/favicon.ico?1720380953618	151.101.194.219		0 B
URL GET speedtest.net/favicon.ico?1720380953618 IP 151.101.194.219:0 ASN #54113 FASTLY Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGlobalSign nv-sa Subject.speedtest.net Fingerprint24:0B:36:28:3E:31:34:DA:77:CE:C2:B5:D6:36:88:D5:9D:41:DF:1B ValidityWed, 24 Jan 2024 15:29:31 GMT - Mon, 24 Feb 2025 15:29:30 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico?1720380953618 HTTP/1.1 Host: speedtest.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently server: Varnish retry-after: 0 content-type: accept-ranges: bytes date: Sun, 07 Jul 2024 19:35:53 GMT via: 1.1 varnish x-served-by: cache-hel1410025-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720380954.875208,VS0,VE0 location: https://www.speedtest.net/favicon.ico?1720380953618 content-length: 0 X-Firefox-Spdy: h2`

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 627baa6991c18e5e61e3378dc24bbcc8 6425634ba9467b899a9c03f015a162b173d50554 bd3d8af77c65081b8f3bca5211c9340a8e8adb164156fd2bf4c0cf900595a7ca HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:53 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	google.com/favicon.ico?1720380953619	216.58.207.206		246 B
URL GET google.com/favicon.ico?1720380953619 IP 216.58.207.206:0 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subject.google.com Fingerprint5E:16:23:DF:7D:42:8E:61:6E:AA:4A:CC:FB:08:1A:B9:8F:FA:E0:A2 ValidityThu, 13 Jun 2024 15:27:14 GMT - Thu, 05 Sep 2024 15:27:13 GMT File type HTML document, ASCII text, with CRLF, LF line terminators Size 246 B (246 bytes) Hash 1a97f48960f77296ccc610654a8f4111 8feda75441a7b20e735dc139c0b005b73585dbe0 49319ba682f76da19ed7d62a5e649136367904a8609a1c2a2501a1e93490b186 HTTP Headers `GET /favicon.ico?1720380953619 HTTP/1.1 Host: google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently location: https://www.google.com/favicon.ico?1720380953619= cross-origin-resource-policy: cross-origin content-type: text/html; charset=UTF-8 x-content-type-options: nosniff date: Sun, 07 Jul 2024 19:35:54 GMT expires: Sun, 07 Jul 2024 20:05:54 GMT cache-control: public, max-age=1800 server: sffe content-length: 246 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 627baa6991c18e5e61e3378dc24bbcc8 6425634ba9467b899a9c03f015a162b173d50554 bd3d8af77c65081b8f3bca5211c9340a8e8adb164156fd2bf4c0cf900595a7ca HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:35:54 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.speedtest.net/favicon.ico?1720380953618	104.17.147.22		6.1 kB
URL GET www.speedtest.net/favicon.ico?1720380953618 IP 104.17.147.22:0 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwww.speedtest.net Fingerprint18:EC:E3:A8:31:E2:14:D4:46:4B:BA:9A:CE:40:E3:A2:7E:59:87:B1 ValidityWed, 05 Jun 2024 23:23:16 GMT - Tue, 03 Sep 2024 23:23:15 GMT File type MS Windows icon resource - 6 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel Size 6.1 kB (6109 bytes) Hash 4c2b709ede318666dcdb5e94f3597227 e5c414ab6d913b9e93a1e852f5e1f47c41fbd912 caca9270c3bccfaa6645272295c7c53725a58b506f34d64645d94b30be6968f5 HTTP Headers `GET /favicon.ico?1720380953618 HTTP/1.1 Host: www.speedtest.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:36:01 GMT content-type: image/x-icon content-length: 6109 x-frame-options: DENY content-security-policy: frame-ancestors 'none'; upgrade-insecure-requests access-control-allow-credentials: true cache-control: public, max-age=86400 last-modified: Wed, 03 Jul 2024 15:04:40 GMT etag: W/"18e64-19079205340" content-encoding: gzip vary: Origin, Accept-Encoding cf-cache-status: MISS accept-ranges: bytes set-cookie: __cf_bm=8C7tbAaNqR_bxa2x9Vpz7mbxP_p2t.fZam_UXujxxLE-1720380961-1.0.1.1-JLqtsH5mlvI9H5A9_HPj6zz5aXqdpewc8OHtMNmMds_J046ks_UnyL787XzePn8df64NoQC_DvsxNjJb1ShXHA; path=/; expires=Sun, 07-Jul-24 20:06:01 GMT; domain=.www.speedtest.net; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 89fa47f1afdc712e-OSL X-Firefox-Spdy: h2

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash ae75ae6f127fd8866c84bc32a95aafec 3d3c1045477f02830d89d068ce70d74d453d3a6a 8c94523550e3bd9f69f104edb203210e887e06a39df86ff79046fd8192518bba HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 07 Jul 2024 19:36:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/favicon.ico?1720380953619=	142.250.74.164		1.5 kB
URL GET www.google.com/favicon.ico?1720380953619= IP 142.250.74.164:0 ASN #15169 GOOGLE Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subjectwww.google.com Fingerprint7D:D9:03:2A:D5:D4:39:E1:4F:69:08:1C:64:E9:F9:16:1C:B1:5B:CF ValidityThu, 13 Jun 2024 16:36:10 GMT - Thu, 05 Sep 2024 16:36:09 GMT File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Size 1.5 kB (1494 bytes) Hash f3418a443e7d841097c714d69ec4bcb8 49263695f6b0cdd72f45cf1b775e660fdc36c606 6da5620880159634213e197fafca1dde0272153be3e4590818533fab8d040770 HTTP Headers `GET /favicon.ico?1720380953619= HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://funfilenow.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip content-type: image/x-icon cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1494 date: Sun, 07 Jul 2024 19:36:01 GMT expires: Mon, 15 Jul 2024 19:36:01 GMT cache-control: public, max-age=691200 last-modified: Tue, 22 Oct 2019 18:30:00 GMT x-content-type-options: nosniff server: sffe x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	stats.webanalyticscounter.com/favicon.ico	104.26.4.10	200 OK	0 B
URL GET HTTP/2 stats.webanalyticscounter.com/favicon.ico IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:53 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.24 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UucFXO5s8%2BHPo1n%2B3y2stUf8mBRI02igwpNTNhUGtFAxrGoZZLcrUDMC3Um1vc6QvItCf%2F4tkVFLKPFEt%2B42ZFoiGGYIe4o5J4%2B0gLGLZNoMd69neVqJrizVjLx7dr2Vi8ncUjY0qD7zw5ZxzfFI"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47c04c15b515-OSL content-encoding: br X-Firefox-Spdy: h2

	stats.webanalyticscounter.com/stats.js	104.26.4.10	200 OK	1.1 MB
URL GET HTTP/2 stats.webanalyticscounter.com/stats.js IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 1.1 MB (1075224 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /stats.js HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:52 GMT content-type: application/javascript last-modified: Fri, 21 Jun 2024 21:25:59 GMT etag: W/"106818-61b6d13ead2cd" cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HI08hL1yqAmjGL42QcIK53hoZq6R7IWZUOmvo4n4J5sp6hvolAiWXIjh1gpGq3apFfFDaJ10gS8tA7cCtmeZc1AeUsG9eD7ZZ6BFDrKDoA%2FesgJoAuh8cnDGAg3rBrVA2AnYs9vGA00fwpwOBDaK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47b69b28b515-OSL content-encoding: br X-Firefox-Spdy: h2

	yourjsdelivery.com/dl.min.js	0.0.0.0		0 B
URL GET yourjsdelivery.com/dl.min.js IP 0.0.0.0:0 ASN #0 Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services LLC Subjectyourjsdelivery.com FingerprintBE:50:06:88:2C:F6:CD:EF:34:ED:22:26:31:12:C3:15:A5:A9:AE:9C ValiditySun, 19 May 2024 07:03:06 GMT - Sat, 17 Aug 2024 07:03:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /dl.min.js HTTP/1.1 Host: yourjsdelivery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:51 GMT content-type: text/html; charset=UTF-8 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LihTrIyf%2FApsS5Sc2XSmpNDrbWNz9amjVf1jCwHMwQTe60aV1SyMnQhpTd0%2FKqDmSGr9%2FbaOoZgJAE3wG5OSGcy4bjrGz0SZASrvfrVWbEHj2YVIu4gmcM1YuqJi%2B7gdMEwZLQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47b3cae4b509-OSL content-encoding: br X-Firefox-Spdy: h2

	stats.webanalyticscounter.com/stats.php	104.26.4.10	503 Service Unavailable	0 B
URL POST HTTP/2 stats.webanalyticscounter.com/stats.php IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /stats.php HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 1389 Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 503 Service Unavailable date: Sun, 07 Jul 2024 19:36:01 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.24 access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YJx3GWbty8htIsFEnMYBnYVtcZ%2Fx%2BMiNcgabhVnnSeahecqwR2Ih3r8KTkMyTkzujgJh2NI59fyASLNJ1KM5eFu3%2B17Tzq%2F7HWkG2dy1ns%2B7IOa5w%2Bxlku2trZ9%2BljqdjVHgz3kmUbwJOQ6SRcwe"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47f0f9d0b515-OSL X-Firefox-Spdy: h2

	funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA=	104.21.57.223	200 OK	21 kB
URL User Request GET HTTP/2 funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= IP 104.21.57.223:443 ASN #13335 CLOUDFLARENET Certificate IssuerGoogle Trust Services Subjectfunfilenow.com Fingerprint84:4E:E7:35:64:5F:F3:6B:9E:B2:69:98:14:C4:51:E8:AD:2F:D6:CC ValidityThu, 04 Jul 2024 18:58:29 GMT - Wed, 02 Oct 2024 18:58:28 GMT File type HTML document, ASCII text, with very long lines (17815), with CRLF, LF line terminators Size 21 kB (21359 bytes) Hash 61214a11f986dee1253a9294ffc4e0cd fa79b15d27b31f4439b8ee369c0da3bc188edf4c 524b3a1eac7b8e427461ff3e5b7c956447777467ae53cb956b48e38d0e2b3046 HTTP Headers GET /locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= HTTP/1.1 Host: funfilenow.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK date: Sun, 07 Jul 2024 19:35:51 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.1.27 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EI1vPB%2BUE3XH0nS53OLaBkObYm83Y2%2B0bzk%2BRmOBBAyV3TzBjKmTfHe66W8zZyEKoyp%2FOid7U%2FKzSbNeyAKdHlAM63%2FFy%2BTySgsdBqSIe5HrmyREpvuMMF0CVA0vDqWlyg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47ae2cb40b55-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	stats.webanalyticscounter.com/stats.php	104.26.4.10	503 Service Unavailable	0 B
URL POST HTTP/2 stats.webanalyticscounter.com/stats.php IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /stats.php HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 8741 Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 503 Service Unavailable date: Sun, 07 Jul 2024 19:36:02 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.24 access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zAg7BQmWicj%2F2VV7xuGJ8%2BNmZvxwW69ZzBsbRgqZSzixYhwIZo3uWmpqTXXeDE0Lg1MfKL5I4qoMwUxGFb7ZUEKb3jucq%2FzyC8dPpJ9VXScF7%2BlS3MQN0ULA86T9vW8CeIwZp5xKWWfF2JZhL6%2Br"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47f41f70b515-OSL X-Firefox-Spdy: h2

	stats.webanalyticscounter.com/stats.php	104.26.4.10	503 Service Unavailable	0 B
URL POST HTTP/2 stats.webanalyticscounter.com/stats.php IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /stats.php HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 325 Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 503 Service Unavailable date: Sun, 07 Jul 2024 19:36:05 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.24 access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UsDFevkk9wbYFs4ZTPgIqKZeHZNIF31Xm3WsnewxGk8mr1%2BOkgYoZLNHu48NQqa3UMvkpWe8Nc45P3H3jKFqg11xTdEpJmOflwezTpyOD7maI8tHNsni1oKWYUlqfWRZfvwlq%2BvMtm%2Bs2DZjVo93"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa4807dc52b515-OSL X-Firefox-Spdy: h2

	funfilenow.com/favicon.ico	104.21.57.223	404 Not Found	169 B
URL GET HTTP/3 funfilenow.com/favicon.ico IP 104.21.57.223:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerGoogle Trust Services Subjectfunfilenow.com Fingerprint84:4E:E7:35:64:5F:F3:6B:9E:B2:69:98:14:C4:51:E8:AD:2F:D6:CC ValidityThu, 04 Jul 2024 18:58:29 GMT - Wed, 02 Oct 2024 18:58:28 GMT File type HTML document, ASCII text, with no line terminators Size 169 B (169 bytes) Hash 8934dd15647ffb50ecb3f71b99c88d07 36b86f9413015f0f1f09b21d3cafa9132c213270 51c4e25e3493184a4c355c0aaf39c6ef0d60e36e524f23319d006a90602ec335 HTTP Headers GET /favicon.ico HTTP/1.1 Host: funfilenow.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache HTTP/3 404 Not Found date: Sun, 07 Jul 2024 19:35:52 GMT content-type: text/html cache-control: max-age=14400 cf-cache-status: EXPIRED report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c4jg%2FTf6lj5sLwz6T8TsNuRTaE6JN0m3CS7RAZX468yDMKICBFoYztZDKRbU1g5njKpimzBt%2B4%2F56uIs0OZCp8YfYe%2BdcMiUAZteCz1YIT0W%2FyXzjyKLH1zrEbLbpOmw6A%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 89fa47b7e9ca712b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	stats.webanalyticscounter.com/stats.php	104.26.4.10	503 Service Unavailable	0 B
URL POST HTTP/2 stats.webanalyticscounter.com/stats.php IP 104.26.4.10:443 ASN #13335 CLOUDFLARENET Requested by https://funfilenow.com/locatefile/PSemuX-7z2201-x64/139420/0/Windows_10%7COpera/uy.basesfiles.com/empty/4?t=download_v5&rr=32923834&c2=ODkxODczNzA= Certificate IssuerLet's Encrypt Subjectwebanalyticscounter.com Fingerprint53:19:47:9F:F5:31:64:26:F2:13:A2:98:BA:8A:34:F5:21:74:5D:C5 ValidityFri, 24 May 2024 17:53:43 GMT - Thu, 22 Aug 2024 17:53:42 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `POST /stats.php HTTP/1.1 Host: stats.webanalyticscounter.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain;charset=UTF-8 Content-Length: 313 Origin: https://funfilenow.com DNT: 1 Connection: keep-alive Referer: https://funfilenow.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 503 Service Unavailable date: Sun, 07 Jul 2024 19:36:02 GMT content-type: text/html; charset=UTF-8 x-powered-by: PHP/7.4.24 access-control-allow-origin: * cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OyCNMDGp00ypFrMFb7EAAfnq91eM12GvywsyQQGCv6CCtUJChd4%2FVI3IQ%2FiFFBMOpCqeHvTdvjQK53%2BnVGvjywgKtSLpM7WxCEKw%2BJuQbY7atPhyMZNiROQswPkn4GsWbeSgOpz6CwMB7K4khGdF"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 89fa47f4e902b515-OSL X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations